SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. WAN Interface speed test

    Being able to test WAN Interfaces by isolating from the network traffic temporarly. That would be very helpful to identify slow internet connection and causes.

    6 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
    • We need real time bandwidth per ip or user base.

      We need real time bandwidth per ip or user base.

      13 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
      • Wireguard VPN support

        I'd be nice if you would include WireGuard in your suite of server-side VPN protocols in your UTM line.

        5 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
        • UEFI boot

          Make the ISO a standard UEFI ISO

          3 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            1 comment  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
          • DNS over TLS

            Please implement support for DNS over TLS queries to supported resolvers (like the new Quad9 resolvers). Very important privacy feature, imho.

            65 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              7 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
            • Editable notification subject for admin notifications

              Please make the admin notifications subject editable.

              Some service-systems can't handle the square brackets at the notification header.
              Customization for the design of this header would be helpfull in those cases.

              (btw. it would definitely help already, if there would be just one dropdown field, where you can change the square brackets into a normal bracket, a pipe or a simple slash).

              Thanks
              Felix

              10 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
              • Modify built-in mod_security rule criticality

                The ability to not just create a "skip rule ID" entry for a signature, but actually modify whether the firewall treats it as critical or not. Similar to tuning rules and rule categories in the IPS.

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  1 comment  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
                • Support for Industrial Protocols in DPI / IDS

                  We are fairly recent Sophos partner, our business is in industrial automation and control systems customers.

                  Security for industrial automation, critical infrastructure, and industry 4.0 is very much a hot topic right now.

                  We would like to see some development to include capability for Deep Packet Inspection and control of industrial control protocols such as:

                  Modbus TCP
                  Ethernet/IP (CIP)
                  OPC Classic (DCOM / RPC)
                  Siemens S7
                  etc.

                  Inclusion of rules for these into IDS would also be welcomed.

                  A number of vendors approaching us are starting to get into this specialist area of the market and it would be great…

                  2 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • Ability to Package Central Linux installer in an RPM file

                    Sophos Product:

                    Sophos Central

                    Version in Production:

                    Linux agent

                    Feature Request Summary

                    How will this new feature address your business requirements?:

                    We are wanting the ability to create an RPM file for deployment onto our Linux fleet. This will give us the ability to install the agent onto our large Linux fleet via our satellite deployment environment. As we have a large Linux fleet we need the ability
                    to deploy via an RPM file as installing the agent manually on each server is not feasible. As a few of our Linux servers are on a private network and unable to…

                    2 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                    • Give UTM Home Users the same level of customization that XG allows it's home users.

                      Give SG UTM Home Users the same level of customization that XG grants it's home users.
                      For instance, full customization of all features, including block page, image, etc.

                      3 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                      • Add Veeam replication to Applications

                        Please add an application category for Veeam replication traffic. It currently appears as the highest traffic volume as "Unclassifed" - sick of having to explain it every month.

                        5 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                        • VPN connection log

                          The default behaviour of the SSL VPN client is to truncate the log file on OpenVPN startup. Want to have the option to append in stead of truncate.

                          3 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
                          • SPX Encryption

                            Would like SPX encryption where the user only has to initially specify the password with "[secure:password]". Once the password has been specifed for a particular email address, there seems to be no reason to specify the password everytime if I click the "outlook plugin" to enable an encrypted email.

                            4 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                            • SPX in SEA and UTM - support fo Russian and Azerbaijani languages in PDF

                              Hello!

                              At this moment SEA and UTM support the limited number of Languages

                              https://docs.sophos.com/msg/sea/help/en-us/msg/sea/concepts/ConfigPolEncryptSPXMain.html?hl=spx%2Clanguage

                              We highly need the support of Russian and Azerbaijani languages in PDF, this need for tens of thousands users.
                              It's one of the killer features in SEA / UTM.

                              5 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                              • 1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                • Log the domain used for virtual web servers in WAF

                                  Currently, Web Server Protection logs only note the first listed domain to identify which virtual web server was used by the client.
                                  • server: first domain name of the virtual server serving the request

                                  Since there can be a number of domains used by the same virtual web server, it would be much more useful to log the actual domain requested in the host header. As different domains can be used for different environments, this would provide much better analytics on how the virtual web server is being used.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Web Protection Block Files Upload

                                    It would be nice to block file upload on cloud services or any other webiste, to prevent any kind of data leakage.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Color Blind Support for utilization graphs.

                                      Can you guys add some kind of colorblindness support or the ability to change the colors of the graphs in the reporting views for your products?

                                      2 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                      • HTTPS Certificate on Captive Portal

                                        It would be great if the WiFi Captive Portal provided a link to download the HTTPS Certificate Authority so that visiting users can be properly filtered with HTTPS scanning. This is important in educational institutions to help protect students from web browsing by visitors.

                                        Estimados, sería muy importante poder generar una actualización en la que desde el Captive portal se pueda descargar el certificado de SOPHOS para la aplicación del escaneo HTTPS y forzar el SAFE SEARCH. En instituciones donde asiste mucha gente con dispositivos propios que utilizan el servicio de WIFI no se puede instalar de forma centralizada el…

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Safe Search HTTPS Certificate

                                          Estimados, sería muy importante poder generar una actualización en la que desde el Captive portal se pueda descargar el certificado de SOPHOS para la aplicación del escaneo HTTPS y forzar el SAFE SEARCH. En instituciones donde asiste mucha gente con dispositivos propios que utilizan el servicio de WIFI no se puede instalar de forma centralizada el certificado lo que impide el uso del servicio de escaneo que es muy importante sobre todo en instituciones educativas para proteger los contenidos a los que acceden los alumnos.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.