SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improvement suggestion: SNMP sysobjectied and (AP) access points.

    I am requesting a slight improvement change in SNMP for Sophos UTM Home edition.

    Can the sysObjectID be changed to the Sophos sysObjectID?

    Currently its set on the generic Linux one: 1.3.6.1.4.1.8072.3.2.10

    I think the Sophos one starts with: .1.3.6.1.4.1.9789

    I monitor my home net and it would be nice if discovery recognizes my Sophos UTM as a firewall instead of a Linux EndNode.

    Also is it possible to add SNMP to the AP firmware for discovery purposes and simple traffic queries? SNMP query credentials could be either added to the same SNMP config or add a new one under…

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SNMP Monitoring  ·  Flag idea as inappropriate…  ·  Admin →
  2. active directory DNS

    For our main subnet, we use Microsoft Active Directory integrated DNS and DHCP. But for other subnets, the Sophos device is the DNS server and DHCP Server. So when a device gets an IP address from the Sophos, we might make it static which adds an entry under the Network Definitions section. But it would be great if those same DNS records could be automatically added (and synced) to Active Directory DNS. I'd like to see the Sophos DNS have the ability to sync with Active Directory DNS. At the very least, one-way sync (that is, Sophos DNS records are…

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. spx password special character (ÄÖÜ)

    many european customers try to register SPX with passwords with special characters. And they are not crowned with success. Why do you stop on your spx.js->function password_contains_alphanumeric->re_chars on hex7e?

    4 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. generating reports depending on the mac address

    generating reports depending on the mac address

    and monitoring the activity also depending on mac address

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. Email format of Quarantine Report

    I want to appoint the format of the isolation report email from Sophos UTM.
    In the case of an HTML form, I am garbled.
    I want the format conversion function of the isolation report email.
    =========================
    Sophos UTMからの隔離レポートメールのフォーマットを指定できるようにしてほしい。
    HTML形式の場合、文字化けする。
    隔離レポートメールのフォーマット変換機能が欲しい。

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Designation of the origin of transmission address

    I want to appoint an origin of transmission address of the isolation report email from Sophos UTM.
    =========================
    Sophos UTMからの隔離レポートメールの送信元アドレスを指定できるようにしてほしい。

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Designation of the origin of transmission address

    I want to appoint an origin of transmission address of the isolation report email from Sophos UTM.
    =========================
    Sophos UTMからの隔離レポートメールの送信元アドレスを指定できるようにしてほしい。

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
  8. Email format of Quarantine Report

    I want to appoint the format of the isolation report email from Sophos UTM.
    In the case of an HTML form, I am garbled.
    I want the format conversion function of the isolation report email.
    =========================
    Sophos UTMからの隔離レポートメールのフォーマットを指定できるようにしてほしい。
    HTML形式の場合、文字化けする。
    隔離レポートメールのフォーマット変換機能が欲しい。

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
  9. Support for TLS 1.3

    Support the latest version of TLS protocol for improved security and performance. TLS 1.3 is huge step forward for web security and performance.

    51 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Email Protection : TLS Version and Ciphersuite selection

    Dear Sophos Team,

    please add an TLS Version selector to the Email Protection settings, like it's already done in "Webserver Protection > WAF > Advanced".

    In addition, please add an Ciphersuite Selector, so advanced users can specify further down which ciphersuite ( ECDH-* / DHE-*/ AES-*/ .. / ) they want to use.

    25 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support VPN Configuration from Microsoft Intune and Windows 10

    Microsoft have been working on their Intune Solution which includes a way to configure a VPN policy that is deployed. There are a number of "Connections" available from other vendors by Sophos are not present. It would be great if Sophos would create a "UWP VPN plug-in" which will allow us to be able to configure VPN's via this. If using Autopilot in the future too a VPN maybe required if not in the office and this same configuration is used.

    5 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  12. SMTP Force TLS

    With Version 9.510-5 there are two Options for SMTP TLS
    "Require TLS negotiation/hosts/nets"
    "Require TLS negotiation sender domains".

    Please add the option to Require TLS negotiation for recipient Domains

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Packet Capture

    Would like to see a packet capture utility in web admin on the Sophos UTM AWS appliance. This along with support for IKEv2 would bring this product line to a 9/10 rating in my mind.

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. scripting modules

    Would be nice to have some sort of template scripting / cronjob creation for easy creating of complex/dynamic rules.E.g.:
    1. {check_url:www.....;every 5 minutes}
    2. if 0 -> {wan_failover:next_wan,sendmail}
    3. if 1 -> {wan_failover:default,sendmail}

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Translation of templates

    Hi,

    the sophos support told me, to place my issue here.

    Currently it is not possible to translate all web messages, e.g. the quota time limit page. I can translate only a part of it, which looks rather unprofessional to the enduser.

    Thanks for reading.

    Marcel Hoffmann

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  16. NBN Telstra

    As yet there is no support for MPoA which is the required protocol for VDSL2 on the NBN network. With ADSL fading out this seems to be an essential feature

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  17. adding an option to remove users from UTM

    i would like you to add an option to remove users from UTM after they get authenticated and synced from STAS to the UTM, sometimes even when you remove the user from the STAS it keep stuck in the UTM and then i have to restart the device to wipe all the users and start fresh, adding this option will ease the work

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. IPSEC networks overlapping static routing entries

    Currently it's not possible to configure site-2site ipsec Connection with networks which are already configured in static Routing. It doesn't matter if the ipsec Networks are smaller than the static route Networks. The ipsec deamon results in an error message like: "cannot route -- route already in use for "

    It should be possible to setup a site-2-site tunnel with subnetwork ranges, which are already configured and covered by a static route.

    3 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
  19. ADD DNSexit.com as dynDNS Provider

    ADD DNSexit.com as dynDNS Provider
    please add DNSexit.com as dynDNS Provider.
    because they can host top domain name(yourdomain.com) for free.
    or create own providers under dynDNS for any other profider.

    thanks!

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
  20. Create API for Sandstorm File Submissions

    There's the API which you can use to GET and PUT and there is the Sophos UTM version 9.6 Beta manual Sandstorm file submission. Please extend the API so we can script the sandstorm file submissions.

    https://ideas.sophos.com/forums/17359-sg-utm/suggestions/13393251-make-an-api-for-sandstorm-sample-submissions

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.