XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support the use of FQDN and IP lists objects in Email Filtering.

    The UI functionality is there but it saves without any errors although it doesn't work at all.
    This allows customers with a large number of backup MXs or those using commercial backup MXs (it won't pass the SPF checking normally unless you make an exception rule for every single one of them....) to bypass SPF or any other checking.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Quarantine Digest sent without need to log in first

    The quarantine report is only sended to users registered on the firewall (manually created or LDAP users that logged into the user portal for example)
    If there is a mail quarantined for a user that hasn't logged into the user portal yet, no quarantine digest will be sended.
    I request an option for quarantine digest to send the report based on the recepient-domain without the necessity to log in for the users (something like there was on the utm)

    18 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. MTA SMTP policy filter mails by headers from, to, etc..

    In the legacy mode of the e-mail protection module there are filter options of the e-mail headers, in the MTA mode there are no such options, as well as those of probable SPAM, probable virus, etc.

    It would be very interesting to have these options.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Combine Mail exceptions

    Combine Mail Exeptions like Sender (and/or) Mailserver (and/or) receipient address to
    make it more powerful and flexible.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Exclude networks in SMTP source exceptions

    In the current version (17.5.5) it is still not possible to define whole source networks in SMTP exceptions. It is only possible to select single ip hosts or fqdn hosts.
    In a few cases you need to exclude whole /27 networks from greylisting, SPF and more. Very annoying to create single hosts to add.

    12 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Validate passwords entered for smarthost and notifications

    It appears that passwords of a certain length or containing certain characters are not properly handled by Sophos when it attempts to authenticate with a smarthost. The result is that Sophos cannot authenticate with the smarthost and outbound e-mails remain stuck in the spool, showing as failed. There is no indicating in the logs accessible in the GUI that the problem is an authentication error.

    It might save users some frustration if Sophos were to either include validation logic to reject problematic passwords when they are entered and/or including a note or tip in the GUI indicating the applicable parameters…

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Add content disarm and reconstruction

    Add Content Disarm and Reconstruction to XG-Firewalls Email Protection functionality.

    It would be great to enable the XG firewall to use CDR when handling incoming emails (with the possibility to access original files for a certain time if neccessary)

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Enable SPF protection on transparent mode as well as current MTA mode

    Enable SFP email protection in transparent mode.. with the phishing these days, it only makes sense (not just MTA mode as not everyone can use this efficiently or if they have additional anti-spam measures on their own mailserver.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add Report for Outgoing Emails Attachment Size

    In Mail Usage Report on Cyber Roam Please add Attachment Size in an email Also Mention on report.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. 2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Sophos SPX Outlook Add-in - improved user friendliness

    Sophos SPX Outlook Add-in - improved user friendliness

    Problem/issue:
    The Sophos SPX add-in for outlook enables a user to encrypt outgoing emails. This add-in works just fine from a technical point of view, but it is not as user-friendly as it could and should be. When a user clicks on the Encrypt-button and enables encryption, it turns grey to indicate that it is enabled. But this is not easy to see for the user. This is not a clear indication showing that encryption is enabled, and especially if a user has enabled the dark or grey themes in newer versions…

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. IP List Object for MTA mode

    This is more of a bug than an actual idea. However the tech support for ticket #8659892 insists this is a new idea .
    When creating Exceptions in MTA mode , it allows us to create an IP List object when we want to define a new object to be selected. However This IP List object couldn't be selected at all.
    This behaviour is more of a bug than a new feature especially considering that it took them to find out for themselves that IP List is not supported (else they would have replied me that right away instead of…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add blocked file type in log viewer or mail logs

    Please add blocked file type in the log viewer or mail logs so that we don’t have to go into policy test and see what file type is been blocked.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Sophos Outlook add-in encrypt forwarded messages

    When a user replies or forwards a message that was previously sent as encrypted, the Outlook ribbon will show the Encrypt button as being pressed. This gives the end-user the impression that the mail will be sent as encrypted. But the add-in will not insert the "x-sophos-spx-encryption: yes" line in the e-mail header, so the XG will not encrypt the message. Please get the Outlook add-in fixed so that will properly modify the e-mail header when the Encrypt button is shown as pressed.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Filtering mails based on their language

    We can block connections from country based rules, thanks for theSophos.
    But we can not filter mails if there is chinese , arabic or russian characters in its body.
    It would be very nice if we can filter mails with predefined character sets.
    For example if the subject has chinese charset or if the body has russian charset.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Email logs should show which blacklist triggered and why

    When a mail has been rejected I can see this in the log but I don't know which RBL has triggerd this and why.
    I wish more details in the email log.

    31 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Improve DLP Notifications to sender

    When DLP encrypts a mail the notification that the sender receives has an attachment with the headers of the encrypted mail. Not all senders of email are IT admins. Please change the senders DLP notification so that they are made aware of which email sent was encrypted and why e.g. Your email sent to (recipient) at 27/1/2019 13:00 was encrypted as it contained an IBAN number.....

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Make to possible to use MTA in Sophos XG without Transparent Mode

    Currently it's only possible to use the MTA in Transparent Mode.

    It's not possible to choose to use it only as MTA without the Transparent Mode.
    If the Automatic MTA Rule is disabled MTA isn't working anymore.

    Please make it possible to choose between a Transparent and a not Transparent Mode of the MTA like it was in Sophos UTM.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Export mail logs to CSV or extend email logs under log viewer

    When looking through Email - Mail Logs i'm able to view previous days/months. When looking through log viewer i'm only able to see the previous day. I would like an option to export mail logs from the Email - Mail Logs menu as this contains more usable data.

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. MAIL with Protected file got quarantined and not delivered to the recipient

    While some one send a mail with protected File as an attachment, Sophos will not show any logs in the e-mail Logs Troubleshooting and it quarantine mails even-if sender address/mail domain is added in the white-list.
    Sophos will send bounced back mail to the sender regarding nondelivery of the mail for those recipients who are in CC that sopho could not able to send the mail with recipient error .

    As of now solution is send the protected file as zip format in the attachment.

    Rakesh Maniya

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.