XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. POP3/IMAP-Increase email scan limit

    Please increase POP3/IMAP email scan size limit from 10 MB to at least 50 MB as for SMTP. It is not acceptable to have security only until 10 MB. Denying is also no option, if you want to keep your business communication going.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. DLP - trigger encryption based on keywords in subject

    Please add the ability to encrypt e-mail based on a keyword at the beginning of the Subject of an e-mail like "Secure" or "Confidential" or "Encrypted". This functionality already exists on the SG, can you bring it over to the XG? In lieu of this could you provide more than just a plugin for Outlook? Something for mobile devices? An extension for Thunderbird?

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. user with more than one email account quarantine

    We have users with more than one e-mail account. But with login based on AD, we can only associate one account at time.

    Make possible to associate more than one e-mail accont per user, at least on Quarantine .

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Configurable SPF settings

    on 17.5 new SPF settings if enabled, the behavior for SPF is if SPF results is NONE it will reject the email. There should be option to either reject or accept emails with no spf records.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Email Policies & Exceptions File Protection

    When selecting Compressed Files to block, the system erroneously filters out winmail.dat mime type Application/MS-TNEF files. winmail.dat is used by senders using Rich Text Format mail.

    Application/MS-TNEF mime type is not available at all to whitelist.

    Please rectify this ASAP.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Attachements in SPX

    Attachements of encrypted mails will be attached in the PDF file.
    It would be more user friendly, if all attachements could be seperatly attached to the eMail. Not all receipients have acrobat reader installed, but use for default Edge or similar to view PDF files.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow/Deny right to release quarantined message per-user

    In UTM it is possible to decide in which cases users get the right to release their quarantined e-mails or only an utm-administrator. We believe a lot of users do not have the competence to decide wether an e-mail is worth to be released from quarantine or not.
    Please make this feature possible in XG, because many customers don't want to switch to XG because of this feature. We also ask for the possibility to choose several data types for attachment based policies, not only one type. It is not really practicable to choose all data types and then to…

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add override for sender greylisting

    Greylisting is a great addition, but emails can be long when it comes to reception because of how the email server at the other end is setup. In one case I had a 100 ips cycled through before the email was accepted in the grey list. The IPs where all in the same subnet.

    It would be nice to add a feature where the administrator can automatically whitelist the greylist or say that a particular subnet is permitted to be whitelisted.

    This would save a lot of time on emails coming in for the first time from a particular source.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allow modification of Data Protection notification emails

    Submitting on behalf of client.

    When using data protection and data control lists for email protection outbound to automatically SPX encrypt with "Notify Sender" checked; if someone tries to send an email hitting the rule, currently the subject line is something along the lines of "Your Email violates Organization Confidentiality Policy". Customer would like to have the ability to modify/customize this subject line.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Role-based admin: SMTP Quarantine admin only

    I would like to give one of our users access to SMTP Quarantine screen ONLY to go thru all quarantine emails and the user can delete or release the emails

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. PFS

    In order to avoid warnings due to deficient email encryption, should be installed as soon as possible a PFS encryption in the XG.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Web portal to view secure email

    The SPX Email Encryption is an awesome feature used by many of my customers. However, it's not always trust by recipients because everyone these days are taught not to open unusual emails. The likes of UK Government and Barclays send an email to you to say there is a secure document waiting in their portal. So you logon and see that document and have the choice to save it locally.

    What would be awesome is this same/very similar feature on the UTM/XG, so you still have the SPX encryption engine but the email/pdf is held on the device for X…

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. SPX - Sender Notifications

    When sending an encrypted e-mail it would be nice if the Sender would receive confirmation from the appliance that the e-mail was indeed encrypted and sent to the recipient. Could you add this as an option in the SPX templates if it isn't already there?

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. SMTP MTA listen Interface/IP

    When enabling the SMTP Relay option for WAN, the SMTP port is open for all IP addresses (including Alias) you have assigned to the WAN zone.

    The feature to use the ACL (Administration-> Device Access -> Local service ACL exception rule) to assign a service to an IP is missing the option to bind the SMTP port to a set interface or IP address.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Send Quarantine Digest for all configured domains

    If you have 2 email domains defined, xyz.com and xyzllc.com, and emails to both domains go to the same users, the quarantine digest is sent for xyz.com but not for xyzllc.com.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add blocked file type in log viewer or mail logs

    Please add blocked file type in the log viewer or mail logs so that we don’t have to go into policy test and see what file type is been blocked.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Sophos Outlook add-in encrypt forwarded messages

    When a user replies or forwards a message that was previously sent as encrypted, the Outlook ribbon will show the Encrypt button as being pressed. This gives the end-user the impression that the mail will be sent as encrypted. But the add-in will not insert the "x-sophos-spx-encryption: yes" line in the e-mail header, so the XG will not encrypt the message. Please get the Outlook add-in fixed so that will properly modify the e-mail header when the Encrypt button is shown as pressed.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Export mail logs to CSV or extend email logs under log viewer

    When looking through Email - Mail Logs i'm able to view previous days/months. When looking through log viewer i'm only able to see the previous day. I would like an option to export mail logs from the Email - Mail Logs menu as this contains more usable data.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. SPX template per domain

    We only want SPX encryption being activated when a user explicitly enables "Encrypt" via the Outlook SPX plugin. In all other cases the mail should not be encrypted.
    We have a Exchange server with several domains. I want to make a rule that mails being sent from (domainA.com) are using "TemplateA" while mails being sent from (domainB.com) are using "TemplateB".
    Please make it possible to use a template based on the domain.
    Now you van only set a template for a domain (via SMTP route&scan) if you want that ALL mail is being encrypted.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Block entire email when attachment is blocked

    Currently when email file type attachment was blocked, the recipient still received the email with filtered added in the subject.
    Why can’t the XG just blocked the email and notify with a failure notice saying banned file type detected. Serve no purpose that the recipient received the email without the attachment and receiver still need to notify the sender.....

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.