XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 'Blocked File Type' for POP3 / IMAP

    Like SMTP option, allow to remove MIME type (especially Office document containing macro .DOCM which is used by Locky)

    16 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Email addresses should be case insensitive

    When viewing the various dashboards, email addresses should not be split into separate entries if someone used various case (all lower case, all upper case, some lower and some upper case).

    16 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. SPX reply to include attachments

    When a recipient of an encrypted mail replies there is no option to include an attachment as part of the secure reply. This was a feature on the SG, needs to be added to the XG.

    15 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sending only 1 quarantine report to user

    Currently the quarantine digest sends a report to very e-mail adres that is configured as a user.

    When user1 had 1 email address it gets 1 report
    When user2 has 3 email addresses it gets 3 quarantine reports these other two are duplicates, so only need to be send once.

    15 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Quarantine mail contains only reason "File-Extension" but not which extension exactly

    We have configured the system to quarantine emails with certain extensions.
    However, the recipient then only sees the quarantine reason "File Extension" in the notification. It is urgently desired that he also sees directly which file extension it is. The admin only sees this in the mail manager.

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Quarantine Digest sent without need to log in first

    The quarantine report is only sended to users registered on the firewall (manually created or LDAP users that logged into the user portal for example)
    If there is a mail quarantined for a user that hasn't logged into the user portal yet, no quarantine digest will be sended.
    I request an option for quarantine digest to send the report based on the recepient-domain without the necessity to log in for the users (something like there was on the utm)

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Outgoing email quotas

    The MTA should offer an option or a specific FW rule to set some email outgoing limit up (e.g. max 200 outgoing emails per hour, max 10 emails per hours if user is XYZ, ecc.).

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Customizable Quarantine Email

    How do you change the default content within the Quarantine Digest.

    We want to add a company logo and change the default text within this email to something more user friendly.

    We also want to add instructions to this email for our users.

    How can this be completed.

    13 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Exclude networks in SMTP source exceptions

    In the current version (17.5.5) it is still not possible to define whole source networks in SMTP exceptions. It is only possible to select single ip hosts or fqdn hosts.
    In a few cases you need to exclude whole /27 networks from greylisting, SPF and more. Very annoying to create single hosts to add.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Filter encoded content on headers

    Hi,

    we received a phishing attempt in which an internal and effective email address appear as sender. After some analysis we found in the message header that sender and subject were encoded on UTF-8 (Base64).

    Here the modified header as example:


    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide via hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hide (TLS) id hide; Wed, 10 May
    2017 23:45:21 +0200
    Received: from hide (hide) by hide
    (hide) with hider (TLS) id hide
    Transport; Wed, 10 May 2017 23:45:21 +0200
    X-Virus-Scanned:…

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. time of click protection

    For real protection from malicious emails, this is one of the best way to protect organization. This hasn't been in Sophos email appliance, UTM but I wonder if they will be adding it to XG. Without this, there is no easy way to compete with Fortinet/Proofpoint ... I won't even mention this is demanded by customers.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. MTA SPAM Filter

    We need to have a better spam filter/content filtering in the XG Firewall. the SG Firewall has a better filtering/blocklist to prevent spam. the XG allows messages that were not allowed through on the SG. not sure if this was from one of the blocklist/RBL but we need that one back, the XG filter is fairly week. can you please put a better one in? also need better content filtering

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Outlook Plugin to let users access quarantined emails instead of the portal

    It would be nice if there was an outlook plugin that could communicate with the XG mail quarantine and list off what is in a users email quarantine inside of outlook without having to have a user login again. This way users would not have to access the portal using a web browser to control email. It could simply list what the emails info just as in portal and have a download to outlook option as well. It would seriously help with deploying an additional security measure, for example I currently have Office 365 security enabled, users get spam mail…

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. SMTP authenticated relay on Sophos XG

    Hello Team,

    We have customer here requesting for XG to have a function as SMTP authenticated relay.
    For your assistance please. Thank You

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. remove releaselink in Quarantine Digest

    please remove releaselink in Quarantine Digest.
    The standard user is not able to distinguish between harmless SPAM mails and dangerous SPAM mails.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Ability to send quarantined messages to shared mailboxes

    We have quite a few shared mailboxes for the likes of HR, Finance and reception to name a few. Whilst I can send individuals a quarantine report to their mailbox there doesn't seem to be the ability to do this with shared mailboxes, or at least they do not show up in the list.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Send all SMTP logs to Syslog Server

    Currently only the AV and SPAM events are reported via syslog. For an overview and traceability of events, a complete forwarding of all SMTP log messages to an external Syslog host (or iView) is required.
    This is not possible in the current output of XG < v17.0. SMTP log data must be copied manually via SCP.

    Requested function: Send all SMTP events to syslog host.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Customize time schedule for digest sent-out based on recipient domain

    As admin I should be able to customize time schedule for email digest sent-out based on recipient domain.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enable selectable SSL certificate for SMTPS scanning

    The Email Protection lacks ability to select a specific host certificate for an exposed SMTP server. Right now only CA certificate can be chosen and host certificate is dynamically created. SSL Certificate in Email Protection could be assigned the same way Web Certificate is in Web Protection.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Email Protection: exceptions for virus,- spam and content checks

    Please make it possible to make specific exceptions for virus,- spam and content checks like it is possible in the UTM. Now you can only make general "Spam Check Exceptions" for "Domain Name"??? Which actually only creates an exception for the IP blacklisting check.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.