SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Filter Action -Downloadsperre per Passwort/Pin Umgehen

    Wir haben in unserer SG-Firewall (Modell:SG230, in der Filteraktion „Default content filter action“ eingestellt, dass bestimmte Dateiendungen beim Download geblockt werden (exe, bat,…).

    Nun ist es für uns als Administratoren trotzdem manchmal notwendig an einem User-PC einen Download zu tätigen. Dafür müssen wir dann den Webfilter temporär ausschalten. Das ist aber ungünstig, da man schon mal vergessen kann ihn wieder einzuschalten. Es wäre von Vorteil wenn ich bei jedem einzelnen geblockten Download die Sperre z.B. mit der Bestätigung eines Passworts oder PINs, welches nur wir Admins kennen, dann trotzdem durchführen könnte.
    Esist einfacher und weniger umständlich, wenn man das direkt…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. password complexity rules for local authenticated users

    You can set the simplest passwords for local users (e.g. SSL-VPN).
    I think it is important to be able to set a guideline for the complexity of passwords

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Mixing Wireless Client Traffic Types on Same AP

    Hello Team,

    We have customer here requesting to allow bridge to lan and bridge to vlan client traffic to be configured on one AP at the same time. For your assistance please. Thank You.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Auto-renew DHCP after outage

    Whenever I reboot my networking gear or when there was an Internet outage, it remains down. I can only fix it by manually renewing the DHCP of my WAN (manually pressing "Renew" for the external interface on the Interfaces page). I want this to happen automatically, because when the cable modem gets a new firmware and is being rebooted in the night, the next day the UTM is still offline. Very cumbersome when not on site.

    In particular, not only other users mentioned it on the support pages here already, but also other users with other products have this problem.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. SSLVPN Load Balancing in Cyberoam CR35iNG

    Hello,

    I checked with Sophos technical support team and found that there is no option for Load Balancing / sharing for SSLVPN on Cyberoam CR35iNG.
    We are using 2 ISPs with 30 Mbps each. If there was a way to make some sort of division in VPN rules/setting so that half of our employees could user 1st ISP and other other half could use 2nd ISP. This would really impact bandwidth usage and decrease lags on SSLVPN. As of now due to COVID-19 situation all of our employees are working from home and our 2nd ISP is not getting used…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow network traffic quotas on XG to be applied directly to rules rather than users or groups.

    Would be nice to apply network traffic quotas to a rule rather than just users or groups. This would allow IoT or headless devices to be cut off after exceeding a quota.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
  7. Option to restart AP under UTM Web Admin

    Hello Team,

    We have request here from customer, asking to have option to restart AP under UTM Web Admin interface. For your assistance please. Thank You.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  8. Request for sandstorm scanning to support Optical disk image ISO, IMG, BIN. etc.

    Hello Team,

    We have customer here requesting for sandstorm scanning to support Optical disk image ISO, IMG, BIN. etc. under email appliance. For your assistance please.

    Thank You.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Require YouTube Educational Features for UTM9

    Require YouTube Educational Features for UTM9

    Add a feature to allow only educational youtube to users.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. SPX Encryption and DKIM in Email Appliance

    There is already a known issue (SEA-749) for this but when can expect a resolution for being able to DKIM sign SPX Encrypted emails in the Sophos Email Appliance?

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. L2TP VPN OTP/MFA

    the lack of L2TP MFA/OTP is a deal breaker for MacOS shops, can't imagine you're not aware of lost business over this issue.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Wireguard VPN support

    I'd be nice if you would include WireGuard in your suite of server-side VPN protocols in your UTM line.

    132 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  13. I need a management app to control my utm

    question about management app

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
  14. Let's Encrypt Wildcard Integration

    Let's Encrypt Integration came with UTM 9.6. That's great!

    You should now implement the support of Let's Encrypt Wilcard domains with ACMEv2.

    Best Regards

    61 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. E-Mail Exception for encrypted attachments

    It should be possible to create an exception for encrypted attachments without having to disable the malware scan.

    30 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. The ability allow computers to access internal web resources but block external web sites

    for instance the internal network is 10.52.112.0 the users should have access to any web resource published on internal web servers, like Quality manuals, health and Safety, Human Resources, company, company directories etc.
    However the users should not have access to browse external wen sites like google.com, facebook and whatever is external.
    This should be able to be controlled by user name, or IP address or hardware address

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. fake email-sender-address

    EMail-Sender-Address has normally this form : "Given Name" <senderemail@domain.com>
    1. a part - shown-name, human readable name of sender
    2. a part - sender-email-address

    SPAM/Malware comes often with an additional email-address in first part.
    like this : "Given Name <FakeEMailaddr@fakedomain.com>" <senderemail@domain.com>

    You see in outlook Mail only the first part "Given Name <FakeEMailaddr@fakedomain.com>".
    The real sender-EMail-addresse will be hidden.
    You can only see the real Address you move the mouse pointer over shown first part.

    The User don't check this and belive it comes from "Given Name" with the email-address FakeEMailaddr@fakedomain.com.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. SSL VPN - Assign IP address via internal DHCP server

    When clients connect via the SSL Remote Access VPN, you should have the option to assign IP Addresses via an internal DHCP server and not only from the UTM Virtual IP Pool. This is currently available with PPTP and L2TP over IPsec but not with SSL VPN. Companies need to have more control over the IP addresses and leases assigned to clients that connect via the SSL VPN.

    57 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  19. restrict machine to log in on remote access vpn if it do not have any sophos agent installed on the machine

    Customer is requesting to have restriction for the machine to log in on remote access vpn if it do not have any sophos agent installed on it. For your assistance please

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  20. Add mobile app "Toggle" to Application Control in UTM.

    Please add the mobile application "Toggle" to the list of Streaming Media in Application Control in the UTM. Staff are misusing the bandwidth to watch dramas during office hours and neglecting their duties.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.