SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Networking: DHCP Server for Additional IP's

    Extend the DHCP server to support IP Ranges from the Additional Addresses

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  2. Reporting: Top Blocked Viruses & Extensions

    from other categories (like "top blocked users") we're able to click on the name to see the categories, or click on the categories to see the names.
    When a virus has been blocked, we can't see from which site the virus came or which user was connecting to the website containing the virus.
    Same goes for the blocked extensions: we can't see who tried to download the content that was blocked.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  3. Notifications: Virus Detection Email Alert

    Request the option to send an email alert to the admins when a user visits a website that has a virus detection.

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  4. Web Gateway: Cool off period after too many "content blocked" attempts

    ...after X attempts of trying a not allowed ("content blocked") URL.


    • Account should be disabled for X minutes or

    • Admin enables the account

    This would be great ;-) Thanx!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Reporting: Link IPS, and Malware events to description

    Idea:
    Link IPS and Malware events in reports to a online database with a description of the event if available.

    Reason:
    It's always a lot of work to find out the reason of IPS events as "SHELLCODE x86 inc ecx NOOP" or to find a description of a Virus like "HTML/Infected.WebPage.Gen"

    Benefit:
    It would ease administrators lives to easily find out, which behavior the security events triggered or what they even mean.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →

    We are planning to integrate more tightly with Sophos Labs, this feature will be possible during that project, in an as-yet to be determined release.

  6. Configuration Best-Practices Auditor

    I have seen a lot of ASG systems out there, which have use a insecure or not (possible) optimal configuration in ASG. Some other manufacturers will bring up while configuration already a warning, when a setting may affect system security.

    It would be nice to have a possibility to start a basic system configuration checker, which will check the configuration against some "best practice" recommendations and generate a little audit report with found issues, a small explanation and a recommendation to make it better.

    Issues could be (to list some...)
    - inappropriate configured proxies with access from ANY networks
    -…

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  7. LCD-Display Configuration via WebAdmin

    It would be usefull to configure the output for a small LCD-Display using the webinterface.
    I m using a fanless system without monitor.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  8. MailSecurity: Queue delays should be configurable

    Please, let a way to configure the delays for queued Email managment (retry frequency, retry duration, etc...)

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Web Protection: Improve Localization of Messages

    I would be nice to be able to better translate the web proxy messages. Currently, if you translate it to spanish, there are still english messages that are not appropiate for foreign language users.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Reporting: SNMP Trap for File-Scanning Oversize Files

    I would like an SNMP trap and/or email sent when a user requests a file that is scanned by the anti-virus system, but is larger than the threshold.

    This way I can gauge the size of the files that are being downloaded and also know if my threshold is too low.

    My BlueCoat Proxy AV will send an email and SNMP trap such as:

    Cause: Maximum file size exceeded (engine error code: 0x00000000)

    File has been passed through unscanned.

    2009-06-04 11:39:13-04:00EDT
    Hardware serial number: xxxxxxxxxx
    ProxyAV (Version 3.2.2.1(36678)) - http://www.BlueCoat.com/
    Machine name: ProxyAV
    Machine IP address: xx.xx.xx.xx
    Server: xx.xx.xx.xx
    Client:…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SNMP Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  11. Management: Display SSH key fingerprint in WebAdmin

    This is a (very) minor feature. It would be nice if the SSH fingerprint would be available somewhere in WebAdmin (preferably under the Management->System Settings->Shell Access tab). This way, if the WebAdmin certificate is already trusted, the fingerprint could be compared by the administrator to the one reported by the ssh client instead of just blindly accepting it (which is a security problem).

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  12. Core: Database API

    Would like an API into the database so to pull stats for mail users into 3rd party application

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Large SSL certificate sizes support

    I would like to be able to actually control the bit size limit if the certificate and ca for the ssl vpn feature like (4096)+ bit length

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow mixed HTTP proxy modes for same subnet

    Actually Astaro chooses HTTP proxy profile by source network only. This disallows the use of 2 or more different proxy modes for same source subnet(s) without restrictions and workarounds. It would be helpful, if for same source subnet(s), if needed, between one and all proxy modes at same time could be activated.

    For the SSO, Standard and Basic Modes maybe a option to customize the proxy port for each profile and make the http proxy chosing the appropriate proxy profile using source network AND proxy port may allow this behaviour ?

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Networking: QoS Based on User Group

    Allocate service bandwidth based on user group membership via eDirectory/AD/or local group membership.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  16. Connection Tracking module for ip_nat_netbios

    Connection tracking is implemented for typical tcp-protocols like FTP. Microsoft netbios based protocolls needs conntrack mode also.

    A sample solution is available e.g. from http://www.cse.unsw.edu.au/~matthewc/files/ipnatnetbios.c, but other solutions should be available.

    For Firewalls between company networks with WINS and netbios protocol and NAT at the same time a connection tracking would be needed.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
  17. Customizable User Certificate Validity Period

    User certificates (used for ssl VPNs) has very long duration (20 years?). IT revisions are not very satisfied with such configuration, proposed certificate validity is 1 year or less.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  18. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  19. Provide link for checksums along with firmware download

    As far as I can see, there are no checksums provided for firmware downloads for Cyberoam UTM devices. Providing hashes using a known strong algorithm (e.g. SHA256) is standard practice, and is especially important for firmware upgrades for critical security infrastructure. This is trivial to implement and it would be nice to have a link to hashes added in the notification banner for firmware upgrades. Bonus points for signing it with a GPG key.

    It's possible that these are available, but they should be more apparent and be located in the same place as the firmware file or with the…

    0 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
1 2 180 181 182 184 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.