XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Please chage category of site https://bg.as51430.net

    bg.as51430.net change category to proxy or none, as in customer enviournment due to this site psiphon is establishing, its current cat. is Personal sites

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Web filtering Adblock list support

    For home use it would be really nice to block ads before even entering the network.

    A very popular format for these link lists is the format used by the popular addon adblock. There are many lists out there which are very nicely maintained (for example easylist). It would save a lot of work if we could just use these lists.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Custom Web Category increase link limit

    The Domain Limit for a custom Web Category is 2000. This is ridiculously low for todays amount of harmful websites.

    Please set the limit higher.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Web Category Add HTTPS support

    I wanted to block some ads using a nicely made list available on the internet.

    Sadly all the links in todays information technology are protected as they should be.

    XG is not able to handle a https source for a blocking list. This should be changed.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. categorizing non-categorized web sites / workflow

    XG should have something like workflow integrated for giving enduser possibility to submit non-categorized web pages for categorization.

    XG doesn't have large database of categorized website outside English speaking areas and this is really becoming nightmare to manage.

    Also, admins should get notification so they quickly allow "unknow" pages so business keeps running.

    Today, actually you have to let non-categorized pages to be accessible and this is really big risk from any angle. Have customer looking to switch back to competitor because of this poor database.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Improve sample submission page

    I have list of many suspicious URLs but our Sophos products XG, Endpoint & Central Email categorize/filter/handle them differently. If all these products use same URL categorization DB it will be helpful for all of us.

    In many cases Sophos Labs doesn't know URL belongs to which category and we have to keep submitting them constantly this is tedious process in which we are helping Sophos to becomes stronger and Sophos is making this process lengthy & difficult to submit. There should be an easy way so that we too can contribute faster.

    > Submit a FalsePositive mail should from…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Web Policy Enhance Default Action

    XG Policies obliges to define a Default action to Block o Allow, which makes it less easy to define exceptions for certain users and web destinations or categories.
    For example, if a Defined a Base Policy for the whole enterprise, and I want a group of users to let visit a certain web category, I must edit the base policy and add a line for each user (groups doesn't work well with AD intergration and STAS) for the allowed category, or clone the policy and adjusting it accordingly.
    It would be so much easier to define a New Policy in…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Detailed List of IPS rules used in the XG Firewall

    I want to get an IPS rule file(.csv) in Sophos XG firewall. It does not allow to export to a file as a .csv. Would be used in the SIEM solution as a detection rule.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Extend IPS/IDS content filter maximum file length

    The current file length limit for content filters is 2000 lines. It is important for us to extend it because many external lists are much longer than 2000 lines.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow downloads from specific websites

    Allow the possibility to download files types from specific websites.

    i.e. Block all executable and compressed downloads except from the following websites.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add/Change/Override URL category for website

    I see there are similar feature requests from other people but Sophos really needs to step with their support (really bad) as well as with features which will save a lot of time partners and Sophos XG admins.

    Since XG has really poor database of categorized websites, Sophos really needs to work on this in order to create workflow where non-categorized or wrongly categorized sites can be adjusted without taking big manpower from administrators!!!
    We also work with some other firewall vendors and categorization is actually next business day where customers are the ones submitting it over web.

    As far…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. import

    It would be helpful if you could import and export e.g. IP addresses or URL lists in the exception window for the web filtering. Currently you have to type them in one be one.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Filter out search query results containing specific keywords in the Youtube app

    I would like to be able to filter out any results from appearing in the Youtube app which contain specific keywords, so videos and their metadata (description, etc.) which contain these keywords are not shown. The keywords may appear in the video name, channel name, video description, etc. basically in all the content youtube shows as part of the video.

    A user may search for a filtered out keyword, and this search is not blocked, but in the result set videos and their metadata which contain the keyword are filtered out. For the user the result set looks empty.

    See…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Block all Youtube videos belonging to a specific channel

    I would like to block all the videos belonging to a specific channel, including videos which are included in the youtube home page, explore section, subscriptions section, library, playlists, history, youtube search results, etc. This needs to apply both when using the youtube app and the web site.

    As a result of the blocking the videos, descriptions, etc. (metadata) belonging to the channel will not be shown in the youtube home page, playlist, search result, history, etc. while other videos not belonging to the channel are shown.

    This also needs to apply as new videos are added to the channel,…

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. wccp

    Like one the previous products (Sophos Web Appliance) that had been replaced, having WCCP support on the XG appliance would allow it to be dropped in directly. Thank you.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow IP/FQDN exceptions on proxy settings

    We intended to host our website on our LAN. A public IP(a.b.c.d) was NAT to local server and it was accessible from open internet but the same public IP(a.b.c.d) was inaccessible from inside the LAN.

    On testing further, it was figured that when this public IP(a.b.c.d) is added to exception list (in advanced settings of proxy in Windows OS) as a.b.c.d or a.b.c.* etc, it worked fine.

    Sophos needs to have settings in proxy configuration where exceptions can be added, so that we don't have to make changes on >1000 computers.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Chrome SSO should work externally as well. With all our students being educated form home It'd be great to push their filter profiles.

    Chrome SSO should work externally as well. With all our students being educated fromm home it'd be great to push their filter profiles externally.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Please add safe search enforcement for duckduckgo.com on XG firewalls

    All of the top search engines should have an option to redirect to safe versions. Please add a add a safe search redirect for duckduckgo.com to goto safe.duckduckgo.com https://blog.hubspot.com/marketing/top-search-engines

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Block exe and allow by typing a password

    The idea is to block by default certain file types, and instaed of just blocking, I would like to add the possibility to download them, by using an admin password, this way, when the user faces this, an Admin can go and type the password to download the file.

    I already saw this working on other vendor, but do not rember which one...

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Unrecognized SSL Protocol Exception

    Allow exceptions for the Unrecognized SSL Protocol blocking. Currently, a single IOT device in an isolated subnet requires this feature to be disabled across the board.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.