SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Remote Syslog: create profiles for multiple hosts

    In addition to the "support for multiple remote syslog servers" it would be very nice if one could choose which log files to send to which remote syslog server.

    There could be profiles that allow e.g. to only send Content Filter logs to an ARM server but send Packet Filter logs to another alerting system and maybe backup all log files on a third central syslog server.

    There is the possibility to choose which log files to send, but not on a per-remote-syslog server level.

    17 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Logging  ·  Flag idea as inappropriate…  ·  Admin →
  2. MailSecurity: Test Expression Filters Button

    It would be nice to have a "test function" for Expression Filter. The admin should enter the expression and the body of message. Clicking on a "test" button, Astaro should check if the expression matches or not.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Networking: Configurable MTU for HA-Interface

    several times we had the problem with MTU setting on HA interface. In an datacenter environment there is no possibility to link HA interfaces with direct cabling. So we have to implement a VLAN between locations of both ASGs. From this point we had problems with bigger ASG appliances, because they set MTU per default to 2000, which needs support of jumbo frames on switches, what we cannot provide.
    We solved this via the command line but after some up2dates it resets to 2000 on some updates.
    If we could set MTU manually on HA interfaces (on all other interfaces…

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add GB English as a Language Option

    Can we have an English GB setting in this version please, so that the dates in the reports are shown the correct way round and words are spelled correctly like Organisational.

    (I know there are more yanks out there than us brits, but we did invent the english language)

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  5. MailSecurity: Require encryption/signature

    Using a special marker mail should be disallowed if encryption/signature are not possible.
    This should result in an NDR - "mail not send - encryption not possible"

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Web Protection: Scan Dropbox files

    Implement a Dropbox (https://www.dropbox.com/ and similar) filtering and scanning functionality for those that use this type of exchanging files.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Reporting: Reports by User Agent

    It would be nice to sort reports/statistics by User Agents.


    1. You'll be able to only look at real users - Software Update Agents wont be displayed

    2. You have the chance to find unwanted Devices in an easy way
      Maybe it will make sense to add this also to the filters section. even if I know that you can fake your Browser Agent - as I do exactly now ;-)

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  8. Mail Protection: Multidrop POP3 Support

    Some isp's offer multidrop pop3 accounts. Basically one acount downloads all the messages from the pop3 server

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Mail Security: Increase Database Retention for SMTP to 1 Year

    Current SMTP database log only allows 30 days retention. Many organizations will have a one-year retention policy.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Pushing Routes to SSL Clients with custom Metric

    It would be helpful to define which routes are pushed to the SSL clients AND define the desired Metric to the route. I's needed when clients open the tunnel in the internal network and you don't want the traffic to go through the tunnel instead of the local NIC.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  11. Troubleshooting for RED

    to be able to do basic troubleshooting on RED devices it would be fine to include CLI access and some basic commands like:
    tcpdump
    traceroute
    ping
    telnet (for Port checks)
    ...

    this would be fine, if something fails between remote location and central device. It would be nice to be able to prove functionality for other involved parties.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
  12. 10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  13. WebAdmin: Send Backups via FTP

    Instead of using an email address to send the backups to, can you please add FTP functionality so that we can use a centralised location that can be backed up without an user input other than the original config.

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  14. Authentication: Routing Authentication per Domain

    It's important to have a chance in big customers the chance to route authentication process in base of domain name. it would an improvement about what there is already available. Example: users@gabriele.com will be authenticated by radius on server1; if authentication fail, users@gabriele.com will be authenticated by Active directory on server2. ecc.

    Very efficient in big environment.

    25 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. SSL VPN: Client Installation Options

    It would be nice if you could pass options to the SSL VPN Client installer, such as
    auth-nocache etc....

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  16. FTP Proxy: Profiles Support

    i need a ftp proxy profile mode where i can set different profiles for different networks.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Mail Security: Separate Incoming and Outgoing Extension Blocking

    To prevent Intellectual Property Data-Loss, it would be much better,
    if there are 2 separate Filter Lists - one for Incoming and one for Outgoing Extension Blocking.
    Via Extension Blocking we want to prevent, that e.g. DWG-File Attachments are sent to customers by the Engineering department without approval.
    After approval, the secretary should be able to release the outgoing blocked Mail.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. 3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  19. Packet Filtering: Rule-Match Tester

    I recently ran into some trouble trying to figure out if a specific traffic was being blocked or is allowed to pass through.
    IT would make things much easier If I had a search-option to put in a source and/or destination IP and port and let the Astaro check if there is a rule covering this IP/Port or not.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  20. Stricter Control over Relaying Allowances

    Currently Email Relay checks for allowed users and Host based, in both cases the user name or IP address can be spoofed or hijacked by a spambot, it would be great to have more granular checks such as that the user allowed to relay should send with the same account and as well limit maximum number of emails per sender.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.