XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. SSL client configuration profile name

    All profiles installed in a computer are installed in vpn client as [user]_ssl_vpn_config. If you install a new profile when another one is already installed it overwrite the installed one.
    I know it is possible to edit the configuration file name for that but it would be great if the profile were installed with a name like [user]@device or something like that.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  2. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  3. prtg

    regarding monitoring for sophos products with prtg from paessler:
    is there any planning for a partnership to create sensors for utm, xg, wireless etc based on standard sensors for prtg ?

    or - is there any planning to distribute sensors or rest api scripts to take senseful analysis of this items / regarding too - snmp and operating values.

    at the moment, it is really a lot of work to create new simple sensors for monitoring sopohs products on a base level.

    it can be nix if the events were dropped by sophos central - but it is not nearly…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sophos connect client allowed users

    The Sophos connect client permit list should be able to add users by active directory security group. We are a firm spread across 9 offices and the STAS works great on 17.5 MR9 to load the users to all firewalls but the process of adding all users into the connect client is really laborious especially when there is high turnover.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  5. With active MPLS link bypass Particular Server IP Traffic through IPSEC S2S VPN link

    A particular Server IP address which is included in the Static Route range for MPLS

    connection need to redirect through IPSEC Site to Site VPN link.(Case ID 9440485)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  7. Email Alerts

    Please Enable the Feature of Email Alerts, whenever the users try to access any Blocked Website.get Email alerts who trying to access.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  8. Alert on advance threat Protection and Web protection

    PLease allow us to receive alerts for advance threat Protection and Web protection. If there is any kind of DoS or DDOS attack and any type of Web application blocked, admin can get alerts instantly on email.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. block email by keywords in subject and/or body

    Sophos XG firewall doesn't have a lot manual features to play with in the email classification department.
    One that is very important and is missing is the classification by keyword in subject and/or body of an email along with the possibility to change the the value of the classification that certain keywords have to stop an email.
    We need more flexibility in this department, we need a much more fine control of what we let in and what we don't want, and right now Sophos XG firewall won't give that fine control that i thought it would give.
    I hope…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. PPPOE time period option to reconnect after long outage

    PPPOE connection does not reconnect after being out of service (Outage) for too long. Need an option to set a time period for a attempt to reconnect after a long outage. The only solution for now is to get back to the office and reconnect manually which is a pain.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Microsoft sstp vpn pass through WAF rule

    At the moment, it is not possible to publish Microsoft SSTP server through WAF rule. Traffic is blocked at the Proxy module level. It would be good if this module were told about SSTP.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Webserver Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos firewall rule routing control works.

    Routing internet traffic via another gateway should be supported when configured via a firewall rule. Case number 9360729 goes into detail with issue.

    I would also like to do policy based routes for only internet bound traffic so that internal traffic can still use the routing table of the Sophos to reach corporate networks and only internet traffic will go out via another gateway.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. Major XG Log Improvements

    The log reporting thru XG GUI is very bad. Hard to believe this is the case on a firewall....

    The log would benefit from the following changes.

    1. When scrolling thru the log the column headers are not sticky.
    2. The ability to sort each column with ascending or descending.
    3. The ability to filter events using a time range and place under the "Timer Filter".
    4. Change the word "Timer Filter" to "Time Filter".
    5. Add the ability to filter on a date range. Add this button next to the "Time Filter" and call it "Date Range".
    6. Ensure…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. Load Balancing of SSL VPN

    It is better to have load balancing on SSL VPN. This will help us in managing the traffic when 50 users connected to SSL VPN

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. RED Log Spelling: transfered vs transferred

    In the RED Log the word transfered is splled wrong:
    eg: Thu Nov 14 16:59:11 2019 REDD INFO 123123123123_c/RED-TunnelName transfered bytes TX: 0 RX: 0

    https://www.wordreference.com/definition/transfer

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  16. Firewall log in CLI

    It is not Possible to have a meaningful LOG for the Packetfilter/Firewall in CLI. If the Web Interface becomes inaccessible for some reason (as it was the case yesterday for one of our Firewalls) there is no way to gather information from the Firewall Logs.

    An implementation as with UTM's packetfilter.log is missing!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  17. Firewall log in CLI

    It is not Possible to have a meaningful LOG for the Packetfilter/Firewall in CLI. If the Web Interface becomes inaccessible for some reason (as it was the case yesterday for one of our Firewalls) there is no way to gather information from the Firewall Logs.

    An implementation as with UTM's packetfilter.log is missing!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. Download Logs from Webinterface

    How could it be, that there is no useful way to download the LOG-Files from XG Firewalls.
    The only way i could find is described here: https://community.sophos.com/kb/en-us/123337
    Is it to much work to bring basic functionality to the utterly slow UI?

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  19. IPSec with IP Range and List Type

    In the IPSEC connection, we have the option to create an IP range.
    But we cannot choose the created rang.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  20. password of the day

    Possibility to use encrypted(WPA2 Personal) Hotspot with Password of the day, with only enter the Password in WLAN Connection. Actually you have to enter the Password to connect to the WLAN, and then you have to enter it again at the Login homepage.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 105 106
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.