We have two Sophos XG firewalls and are setting up OTP 2FA with Sophos Authenticator. After scanning the barcodes for both, the Sophos Authenticator displays both accounts with the same default non-unique account name "Sophos SFOS." This makes it difficult to differentiate as to which token goes with which firewall.

When you are configuring something using the web interface you can't see the firewall name unless you are in the dashboard. It would be nice to have the firewall name at the top of the web page.

I'd like to see a few improvements to management and monitoring of APs being controlled by an XG appliance:

• Display other competing networks and channels strength for channel selection


• Show access point utilization and establish thresholds for utilization trends


• Integrate floor plans to position APs visually.


• Couple the former with perhaps a mobile app to identify potential deadzones/heat mapping

Use case currently is that I've been getting reports from one of my sites that wifi has been having intermittent issues, and the data needed to remedy it effectively is much more difficult to obtain than it needs to be

Please add a 'test' button on the Adminstration > Notification settings page. Also show a decent error when the test e-mail could not be sent.

Can you show Network Interface up/down status at Main/First Screen
(Control Center --> Interface)

Can we please increase the size of the box used to show the Firewall rules to something larger that 5 rules?

Making it expandable either manually or automatically as you expand or collapse rules..

Please add the modification for hotspot voucher templets and captive portal registration page

Please integrate Let's Encrypt. I remember an anouncement at one of the first XG Roadshows that new features will be provided for xg and later maybe for sg. But SG gets Let's Encrypt first and un XG we waiting for it since years....

requesting for scanning of encrypted FTP

This would increase the security that not somebody else is trying to steal his identity. It would be also great that the admins are informed with too many failed logins.

Clients should be authenticated based on the client certificate instead of username/password for SSL VPN remote access. The Sophos XG should validate the certificate via a CRL or via OCSP.
This functionality is supported by most other vendors and solutions (e.g. Cisco Anyconnect or OpenVPN).

Hi Team,

On now Sophos can add bandwidth limitation to user wise/ Application wise and Rule wise.
But if bandwidth limitation had on network adapter wise and VLAN wise, It will be very helpful to all of them. So I'm requesting to add that feature ASAP.

please provide filter option for mac with ip
under intrusion prevention
under Spoof Protection Trusted MAC
it is very difficult to change the mac or ip numbers . In our organization 250 Hosts are bind with mac for security purpose. There are 40 pages across we have to search it is very difficult. Thee is no option for export also. This feature is available in cyberoam 100ing firewall. but in sophos XG210 its a major pain to always scroll all the pages to find a single entry.

currently there is no easy way to control NATting of System initiated traffic, this would be incredibly useful when using a 4G SIMs

Which uses a Private IP address range not a public. there are also ISPs which use Private IP addresses and route Public IPs to the private IP.
which means you cannot register or control using Central.

Hello Team,

Pls add bandwidth usage for user wise / group wise in to reporting.

Hello Team,

We have a request here from customer to have option for schedule reboot for Iview.
For your assistance please. Thank You.

We should have the report for WAN like how many throughput per WAN link in the Report menu (Currently, We just have system graphs). Moreover, XG Firewall v18 have SD-WAN routing policy we should have the report for SD-WAN routing policy as well.

Currently Internet Explorer 6 – 9 are listed in the Applications list on our Sophos XG310s. We would like to be able to prevent our end-users from using Internet Explorer 10 and 11.