XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. MTA SMTP policy filter mails by headers from, to, etc..

    In the legacy mode of the e-mail protection module there are filter options of the e-mail headers, in the MTA mode there are no such options, as well as those of probable SPAM, probable virus, etc.

    It would be very interesting to have these options.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Combine Mail exceptions

    Combine Mail Exeptions like Sender (and/or) Mailserver (and/or) receipient address to
    make it more powerful and flexible.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Make to possible to use MTA in Sophos XG without Transparent Mode

    Currently it's only possible to use the MTA in Transparent Mode.

    It's not possible to choose to use it only as MTA without the Transparent Mode.
    If the Automatic MTA Rule is disabled MTA isn't working anymore.

    Please make it possible to choose between a Transparent and a not Transparent Mode of the MTA like it was in Sophos UTM.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Serve Quarantine Digest on a different port to Admin Console

    When you configure the quarantine digest to reference the external IP address of the XG unit, the digest email references the "Admin Console Port". This is absolutely absurd. It effectively means that I need to open up access to the Admin portal to the entire world without restriction - this is a MASSIVE security risk.

    The easiest solution is to change the XG to use the User Portal port for the "release" link under the action heading.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Increase number of items per page in email logs

    Would be nice if you should display more than 20 messages at a time for those situations where massive amounts of email needs to be deleted from logs. We were just in the situation where we had to delete 7,000 messages and had to do them 20 at a time. We shouldn't need to run a script on the backend or call technical support. Have maybe 20 message option, 100 message option, 500, 1000, etc.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Global Quarantaine for E-Mails with certain attachments

    we are now using a Firewall with a global quarantine for E-Mails with office documents which are send from outside. Administrators release this E-Mails after reviewing them. Not a single one emotet E-Mail reached a user since we have this feature enabled. As soon as the feature is implemented in the XG Firewall, we can switch completely to the XG and turn off out old Firewall. We need this feature absolutely on the XG

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. E-Mail notification of deleted/rejected spam mails when not using quarantine

    e-mail notification for deleted / rejected spam-mails. If you don't use quarantine for spam you don't get any Information about deteled /rejected mails

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. editable text for attachment removal

    After an attachment has been removed, a standard text is added. For a better understanding of the recipient of the mail, it would make sense to adapt the text from the administration.
    Text resource should therefore be changeable and not stored in the binary file, as is currently the case.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Integration of https://haveibeenpwned.com/ into XG Firewall

    The "Have i been pwned" Service is a great thing to check for breaches in online Accounts.
    One customer had a breach because of credential stuffing. He used the same password for some online Accounts as well as his Active Directory Account.

    We checked a lot of other Mailadresses with this service.
    And found some more breaches.
    The Sophos XG, because of its insight in company Mailadresses, could potentially use this service to warn admins, that an email / password combination has been found on haveibeenpwned and immediate action is necessary.
    As a field on the Dashboard with some informations…

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. smtp port

    Give the ability to specify an outgoing email port.

    Exchange 2013 and 2016 do not perform recipient verification like the XG expects. The XG needs to communicate via port 2525 to allow for recipient verification. That port could be changed with Exchange to anything else but since it is preconfigured for 2525 it wouldn't matter because the port can't be changed on the XG.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. View Mail Logs on Console

    I would like to view Mail Logs on Console, either having console commands that accepts filter criteria, or ability to view mail log files. Thanks.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. MIME-Type recognition is sometimes wrong!

    I analysed MIME-Type recognition and found that MIME-Type recognition is not working proper. As example, DOCX-files are recognized as "application/msword". The right MIME-Type of DOCX-files is "application/vnd.openxmlformats-officedocument.wordprocessingml.document".

    I already opened a support case with request number 03058060 and got this answer:
    "Yes, the MIME recognization from XG for .docx is under applications/msword"

    So please change MIME-Type recognition, that it serves the MIME-Types, which are listed here:
    https://docs.microsoft.com/de-de/microsoft-365/compliance/supported-filetypes-datainvestigations?view=o365-worldwide

    or here:
    https://developer.mozilla.org/en-US/docs/Web/HTTP/BasicsofHTTP/MIMEtypes/Commontypes

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Show deleted mails from quarantine in smtp log

    Please add a functionality, to show emails in smtp log, which were deleted from the smtp quarantine! If a mail gets quarantined, the smtp log shows "quarantined". But if I now delete the email, this action is not logged into the smtp log. Instead of this, if you delete mails from smtp spool, it gets logged into smtp log. Why? Please log this and show this in smtp log. If i release a mail from quarantine, this is logged to smtp log as "delivered"...

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. user portal more email adresses

    On xg user cannot access to quarantine email.
    If you have 2 email domains defined, xyz.com and xyzllc.com, and emails to both domains go to the same users, the quarantine digest is sent for only xyz.com but not for xyzllc.com.

    Users shoul be able to see all the quarantine emails from all their email-adresses.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. email quarantain

    Edit the Release Link in Quarantine digest email for XG 17.5.13, not to x.x.x.x:4444
    rather to the UserPortal, instead to message: "You can release quarantined emails only from user portal. To release them, sign in to user portal."
    Or remove the link.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Malware scan feature

    Regarding the MALWARE scan mechanism, many times we have complains from office users that emails are moved to Quarantined because some files in them fail to be scanned.

    Can there be a discrimination on a future update, regarding the exact sub-reason of an attachment being unscannable ?

    For example, due to an error differs fromfile being locked with a password or a modified pdf failed to open or do open but with a pop up error message that user can bypass and view/edit file.

    To activate/deactivate above said parameters, based on specific Sender address / domain etc.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Sophos SPX Outlook Add-in - improved user friendliness

    Sophos SPX Outlook Add-in - improved user friendliness

    Problem/issue:
    The Sophos SPX add-in for outlook enables a user to encrypt outgoing emails. This add-in works just fine from a technical point of view, but it is not as user-friendly as it could and should be. When a user clicks on the Encrypt-button and enables encryption, it turns grey to indicate that it is enabled. But this is not easy to see for the user. This is not a clear indication showing that encryption is enabled, and especially if a user has enabled the dark or grey themes in newer versions…

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. I would like to know if there is a way to add the well known and trusted domains to the quarantine digest skip address patterns with a simpl

    I would like to know if there is a way to add the well known and trusted domains to the quarantine digest skip address patterns with a simpl

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Request to have option to blocked recipient email address under MTA mode

    Hello Team,

    We have customer here requesting to have option to blocked recipient email address under MTA mode on Sophos Firewall XG. For your assistance please

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Mail log display incoming vs outgoing

    In the mail logs add a arrow to each line to show what is incoming vs outgoing emails.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.