SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Show State Table

    There does not appear to be any way to view an active NAT translation table with connection states from the SG series web-interface.

    Similar to pfSense "states table", would be very handy to see active NAT translations, with source IP / port, translated IP / port and destination IP / port.

    Also good would be optional method to close some connections from the web-interface.

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
    • Central Portal: Adjust Columns Widths

      The column widths in the Central interface are fixed. This does not make sense and makes many items in the Alerts and RCA sections unreadable. The user should always be able to adjust all column widths.

      This should also be true for the Central Endpoint client. It makes no sense that the window is a fixed size that can not be expanded or maximized and that the columns cannot be adjusted. I cannot read most of the lines on my system which severely limits the usefulness of the log.

      22 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
      • Issue: Client IP in Sophos UI does not update when client IP changes

        VLAN 14 Returned by RADIUS Server:

        Calling-Station-Id = "00-27-10-6F-60-04"

        Tunnel-Type:0 += VLAN

        Tunnel-Medium-Type:0 += IEEE-802

        Tunnel-Private-Group-Id:0 += "14"

        Confirmed Test Client has IP in VLAN 14:

        wlan0 Link encap:Ethernet HWaddr 00:27:10:6f:60:04

        inet addr:10.100.14.130 Bcast:10.100.14.255 Mask:255.255.255.0

        Wireless client in Sophos UI shows VLAN 14 IP:

        *Client is then disconnected and reconnects (new VLAN will be assigned)

        VLAN 15 Returned by RADIUS Server:

        Calling-Station-Id = "00-27-10-6F-60-04"

        Tunnel-Type:0 += VLAN

        Tunnel-Medium-Type:0 += IEEE-802

        Tunnel-Private-Group-Id:0 += "15"

        Confirmed Test Client has IP in VLAN 15:

        wlan0 Link encap:Ethernet HWaddr 00:27:10:6f:60:04

        inet addr:10.100.15.240 Bcast:10.100.15.255 Mask:255.255.255.

        Wireless client in Sophos UI still shows VLAN 14 IP…

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
        • As SUM is doing backups for all the connected UTM`s - I would like to get the backups by email from the SUM.

          As SUM is doing backups for all the connected UTM`s - I would like to get the backups by email from the SUM.

          2 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow reordering of Local Service ACL Rules

            You can't reorder Administrator Local Service ACL Rules after initial creation. Reordering involves deleting and adding rules to create new orders

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
            • allow to disable userportal when OTP is enabled

              i want to turn the user portal off for security and to stop users downloading vpn software to any computer - but if OTP is enabled i get 'OTP users cannot access auto-created tokens in user portal' - so my work around it to turn off auto generate OTP then turn off the portal but this makes it hard to turn back on

              i want to be able to turn the user portal off no matter what

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                1 comment  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
              • Could not see live VLAN traffic in XG firewall

                SG series firewall having a good desk-board where we can see all WAN's, LAN's and VLAN's live traffic and bandwidth monitoring and also monitoring usage of bandwidth of individual users. ( We are using ASG220 since last 6 years).
                After upgrade to XG series firewall with firmware version SFOS 16, GUI is totally different and very difficult to troubleshooting of monitoring of live bandwidth usage of VLAN. There is no way to monitor live VLAN traffic in XG firewall.

                4 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                • 1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                  • speed test on dashboard

                    exactly that " speed test on dashboard " and also a test like "namebench" in dashboard or in Network Services

                    2 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                    • Rename port XG

                      Is possibile in future release of Sophos XG rename the port connection? it will be more usefull for the implementation of rule and routing

                      3 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                      • for Aplication control, edit all the items in the main screen

                        in aplication control, we should be able to edit all the item´s in the main screen, by using the edit, delete or check -box option in each item, i wish to add an image (edited) for ilustrate the idea, but i can´t doit in this post.

                        if the web manager allow me for do this i guess i´ll could be more clear

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                        • want to disable userportal with otp auto generate enabled

                          when 'Auto-create OTP tokens for users' is enabled on OTP tab and i try and disable the userportal i get 'OTP users cannot access auto-created tokens in user portal'

                          for security i only enable the portal when i need to tell a user how to setup the ssl vpn client connection all other times i disable for security

                          to get round this i have to disable the auto create option then i can disable the userportal this is a pain as i need to enable both next time

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                          • View comment

                            Is possibile in future release of Sophos XG to view the comment of the firewall rule in the list and not only when i modify a single rule?

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                            • Group firewall rule xg

                              With the new Sophos XG I think is more clear if it's possible to Group every rule by the zone and you can expand the Group you need, like every rule from WAN to LAN, every rule from LAN to DMZ ... etc. it is possible?

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                              • DHCP-server selection at Lease Tables

                                Please include a combo-box to choose between the running DHCP servers in the IPv4/v6 Lease-Table-Tabs.

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                • Allow User Portal and Admin Console use the same port with different hostnames

                                  I'm not a fan of using non-standard port numbers for protocols. Whilst you can reconfigure the Admin Console to use the standard HTTPS port of 443, it then prevents you from being able to use the User Portal (unless I've missed something!)

                                  I'd like to be able to connect to the admin interface with one address (e.g.: https://fw-admin.domain.net) and the user portal with another (e.g.: https://portal.domain.net)

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                  • scanning of subfolders for removable drives for Sophos Clean

                                    Sophos Clean provides a switch, /scanonly, to specify a drive to scan however this doesn't scan subfolders. Being able to effectively scan removable drives AND subfolders with Sophos Clean seems to be critical to determine if a removable drive is clean. Sophos Clean is a 2nd opinion scanner, is it not?

                                    1. How will this new feature address your business requirements?: allow us to effectively scan subfolders for potential malicious files without having to pick one at a time.

                                    2. How would you rate the importance of this feature?; Critical

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Consistent display of firewall rule names/comments

                                      We noticed that the management overview(i.e. recent changes) refers to the firewall rules by name. This name, however, is nowhere to be found on the firewall rules list (or elsewhere, for that matter) - makes that name quite useless. What you do see is the comment you added (or did not add) when creating/editing the rule.
                                      Makes no sense to mel.

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                      • UserPortal

                                        Admin can disable the user name change in the user portal;
                                        Admin can disable the display of the security group;
                                        SSL VPN page should not be visible to users who do not have access =.;
                                        UserPortal with login integration Single-Sign-On;

                                        This is very much needed in the tool, since it is a security tool should also have this internal security regarding users.

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Support Request integrated in user portal

                                          An interesting (IMHO) feature to be integrated in user portal is support request.
                                          Users can launch support request and admin can take user desktop control using an HTML5 or Java RDP App.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 8 9
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.