I miss a Pre-Authentification Option for WAN 2 LAN Rules. Example for TS Access. ALL Sonicwall Boxes have/can this!

It would be great for audit unused firewall rules, if all rules had information with the last access date and time.

Regarding the MALWARE scan mechanism, many times we have complains from office users that emails are moved to Quarantined because some files in them fail to be scanned.

Can there be a discrimination on a future update, regarding the exact sub-reason of an attachment being unscannable ?

For example, due to an error differs fromfile being locked with a password or a modified pdf failed to open or do open but with a pop up error message that user can bypass and view/edit file.

To activate/deactivate above said parameters, based on specific Sender address / domain etc.

In SYSTEM > Hosts and services , there are group setting for IP host and FQDN host.
Please also add the group setting for MAC host.

Customer is using the Sophos wireless; when they configure "MAC filtering", they hope can select a MAC group rather than MAC list.

One specific name mapping to a MAC address , then grouping multiple MAC addresses to a group, for easy to maintain the MAC filter table.

The log retention report period start from 1 month. in our case , the log storage has not enough if i even keep 1 month for all the category. The same trouble to purge the report. I would suggest that the retention period set as number of days which helps to mention the days 10,20 or 25 as well as in purge settings.

Currently we have to way to find out from which source ip a rejected or accepted mail is coming.
Also for Outgoing emails we dont know which remote server received our email.
Please add to columns to the SMTP Log showing the SRC and DST IP.

In Sophos XG in there is no option to plan a Firmware Update. You just can update it manualy. I woul'd like to have the option to plan a installation of the Firmware Update.
It would be very helpful.

Load IP list from url.
It would be almost mandatory in any coporate firewall the ability to load an IP list from a URL to create an IP list in "host and services" to use it in a firewall rule

For example I want to load this IP list to use it in a rule to allow only this IP
https://s3-eu-west-1.amazonaws.com/plex-sidekiq-servers-list/sidekiqIPs.txt
This IP list gets updated frequently so it should include as well an option to autoupdate

Hide Protected by SOPHOS footer in website blocked page in SOPHOS firewalls to prevent from social engineering.

create traffic shaping firewall rule and check to Traffic speed for specific Protocol like 3389 port speed check.

source is LAN and Destination ANY but services is select to RDP and check it created firewall rules Implement or Not.

Having iPerf available on the system. Would make it very easy to test bandwith speeds.

In the "Log viewer" custom time range filter is missing. If lot of firewall traffic is logged, option "Last 10 minutes" still display too much events.

Add support for STIX/TAXII threat intelligence feeds

CTR file must have file extension name

CTR files don't have any file extension name. It caused
1. Customer can't upload file through Support Web Form
2. FTP server or client sometimes misunderstand file type as Text and make it corrupted,

I have a client that would like to have a feature where in he can delete live users in STAS in one click

MAC not capture in Authentication agent mobile app
To impliment MAC bases authentication.
Please provide New version of App in Android and ios to capture MAC also.

Right now the physical interfaces are assigned automatically to WAN, LAN... and can't be changed, if after an installation you add more virtual or phisical interfaces you can't configure them in Sophos.

Sophos websites and application block page is looking very weird. It should be customized or at least have some good view. i.g. fonts and center image, logo etc. like other firewalls have.

Allow (within the organization) the ability to add their own applications. Currently there appears to be no way to add a custom application without getting approval through the Sophos board.

Please add a threshold setting to Central alerts. We have several clients with Internet and/or power issues that trigger down/up alerts, all in less than one minute. These arent email alerts, just the alerts that show in Central monitoring.