SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

SG UTM

Suggest, discuss, and vote on new ideas for SG UTM. The ultimate network security package.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. VPN: Local VPN ID choices with IPsec PSK

    This has been marked as "completed" but to my understanding is only half complete.
    Having multiple IPSec site-to-site tunnels autheticated by PSK, one still can't freely choose the ID for each tunnel.

    Given I have multiple tunnels to customer networks (where I can't change the ID Type expected for my host)
    some expect me to give the external IP as Peer ID others expect the hostname (which sometimes doesn't even match the real one)
    Under current 9.4 I can only set my ID once for all tunnels but not individually per tunnel.
    So any Connection should also allow to edit…

    3 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
    • scan .pdf

      scan .pdf's for SPAM URL's

      3 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
      • Central Portal: Adjust Columns Widths

        The column widths in the Central interface are fixed. This does not make sense and makes many items in the Alerts and RCA sections unreadable. The user should always be able to adjust all column widths.

        This should also be true for the Central Endpoint client. It makes no sense that the window is a fixed size that can not be expanded or maximized and that the columns cannot be adjusted. I cannot read most of the lines on my system which severely limits the usefulness of the log.

        22 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
        • Scheduled custom web protection report format option

          When creating and scheduling a new custom web protection report there is no option to select in which format it will be sent. It gets sent as a .pdf file by default, please add the feature to select either .csv format or .pdf format.

          2 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
          • Rewrite dynamic URL for a VPN bookmark

            I want to add a https bookmark that will take the user to my internal vmware horizon html access landing page.

            The clientless access bookmark is a dynamic url and currently the XG is unable to intercept the request and rewrite.

            I am requesting that development create a regular expression to capture these types of requests.

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
            • Domain Network Definition

              It would be very beneficial to be able to create a domain network definition to build firewall rules off of. For example, I might only want hosts which reverse to the domain of .att.net to be able to connect to a particular firewall rule. Or perhaps hosts with a .edu extension to be able to use a firewall rule. There are many uses for this (including SMTP).

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
              • Sandstorm messages language choice

                For our users it will be comfortable to have the Sophos Sandstorm messages during file download analysis in german.

                6 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
                • Notify solution providers of service issues

                  Reflexion apparently had an issue that caused daily quarantine summaries to not be sent out. We were not aware of the issue until we opened a support request. Please send proactive service notifications when there are issues.

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • SMTP: Change Intervall for Spool notifications

                    We need to be able to change the standard Intervall for Admin notifications related to the SMTP Spool when the delivery of a mail fails e.g. due to external mail servers being offline.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                    • SophosSG430

                      UTM: SophosSG430(9.409-9)

                      Hi,
                      I've set "* *" to "SMTP Profile ".(There are number of SMTP Profile settings.)However, if I select *. * In the Mail Manager's SMTP log screen, the log does not appear. Please change the setting in order to investigate the log efficiently.

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                      • DHCP release

                        Clearing or releasing the DHCP lease IP..

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          1 comment  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                        • Outlook add-in for Email Protection

                          Outlook add-in so users can add senders to their blacklist on the local XG. (somebody has previously suggested an add-in for reporting spam to Sophos, however this would be a more immediate solution so the users are confident they won't see that spam item again)

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                          • iftop

                            Need to have the iftop command to diagnoze bandwith usage.
                            The current "live connection" view is too limited in sorting.

                            2 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                            • network authentication

                              in Sophos when we authentication on network it connect through our default getaway and also showing SSL certificate issue could we access it through FQDN .

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                              • Alert for Web application firewall

                                To be able to set email recipients to be informed of Web Application Firewall logs:
                                - Mass Block/reject scenario (Identify malicious attempts continuously)
                                - Possible configuration error so relevant Dev/Engineer end will be kept informed of likely settings problem (pre-empt possible change error/settings error)

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                • Handling of quarantined email with not-abused attachments

                                  My Suggestion ist about mails / attachments, which are malicious but were classified only as spam.
                                  I would welcome possibilities in the Mail-Manager to
                                  - rescan a previous received mail, which is not delivered yet
                                  - deliver to a different account than to the original recipient to do e.g. deep checks. (Maybe this would harm personal rights or privacy policies, so take it just a guess. Maybe someone else has a more realistic proposal :-) )
                                  - cut off an attachment / to deliver the mail without the attachment
                                  Real life example: We had roundabout 10 mails in 20 mins,…

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                  • web exception

                                    need a repository of web exceptions maintain by sophos (webprotection -> filtering options -> exceptions)

                                    sophos needs to maintain a database of them and i just pick the ones I want from a list - this could auto update or not (maybe an 'update rule from sophos database' button) - will save me trying to work them out

                                    if a page isn't working what happens usually is web protection is just turn off then back on - and that isn't good

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Deinstall antivirus software / tool

                                      Need to have a deinstall antivirus tool in order to resolve most of the issues when reinstalling the product, for example MSI error or Autoupdate component corrupt.
                                      At least would be very appreciate a check tool that checks if all the antivirus software components are installed properly and could advise you if something miss from your system.

                                      2 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Relay Wake on LAN through Sophos XG

                                        We have lot of customers with different networks and a Sophos XG as Default Gateway.
                                        Relaying wake on lan request through Sophos XG would be nice.

                                        3 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Edit maximum archive extraction size

                                          Beeing able to edit Maximum Archive file extraction size

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.