XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. FourEyes - Data Anonymization - Audit logging

    When Data Anonymization is enabled, one would think that it was possible to see when and who has initiated an de-anonymization of anonymized data, however this seems to be missing. We need this for compliance, it is simply not enough to anonymize the data.

    The only logs related to this is authorization events in the form of logins, but these events does not reflect an de-anonymization event.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  2. Bandwidth Monitoring & Usage Reporting

    Hi Sophos,

    We would you to improve sophos xg for support usage monitoring every traffic shaping rules and provide the reporting tools also.

    Because now sophos xg can limit bandwidth for users but for monitoring just provide from linux base its not informationable for common user, we need to monitoring in detail usage per vlan based/subnets, from system graph just inform for all traffic accumulation.

    we hope sophos can improve that i trust its can be usefull tools.

    Thankyou,
    Adi

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  3. reporting

    Hi,
    It has become apparent for us to try and implement Traffic Shaping rules for specific interfaces - in our example we have couple of rule and 4 ISP provide circuit in that
    utilization of bandwidth on rule base report WAN usage.
    please prepare the bandwidth occupancy based on the functions such as rule name Annotation, DI, OP, SF etc

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  4. VPN detail report

    We have Migrated our Firewall from 18.0.3 MR3 to 18.0.4 MR4 from then Detailed report of Date wise VPN Usage is not coming from Fireawall

    We need date wise report with data like


    • Who accessed VPN (User name)

    • From Which Public IP and with VPN IP (Source)

    • Which Server it accessed (Destination)

    • Which Service Used (Protocol)

    • If data transferred , how much data transferred (data size & File Transfer details)

    • When Session Authenticated & when Started (Start time)

    • When Session Terminated (End time)

    • Success and failure incidents count its details (Audit Logs)

    Please help as early as possible

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. Policy Test should display blocked for unauthenticated users

    When the option "Use web authentication for unknown users" is selected in the Firewall Rules, the Policy Tester shows the result as "Allowed" even for unauthenticated users. I suggest it should display as Blocked for unauthenticated users.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  6. API user last login other details

    Want to get the following details for VPN users.


    1. User create date

    2. User last modified date

    3. User last connection date

    4. User last date of password change

    This information via API would assist with internal compliance audit and auto disable of accounts not in use as well as automated emails to change passwords.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to pull traffic reports that display IPs as well as Associated Mac Address of the PC using the IP.

    We would like the ability to generate traffic reports from our XG firewall that include the Mac address of the PC using an IP at the time. Currently we can see the IP and the Host name of the PC however since DHCP can lease that same IP out to multiple computers within one month, we would like a way to differentiate which PC used the IP and how much traffic Each PC used. Thus displaying the IP alongside with the associated Mac address and total data usage would be very ideal.

    We would like to pull a weekly report…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  8. Include clientless access logs in the messages sent by syslog reporting service of the XG FW

    Hello,

    We are using clientless access VPN to allow remote VNC sessions.
    XG firewall realease is : SFOS 18.0.3 MR-3
    In order to create dashbords for clientless activity and bookmarks usage correlated with data from other systems, we need to centralize clientless activity logs from the XG FW to a global log server.
    On the XG firewall, we configured syslog for all logs but we were unable to receive logs for clientless detailed sessions. They are visibly not handled by syslog.
    The only way to access the logs is to read the /log/clientlessacces.log file directly, or to download it

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. Gateway failover notification

    Gateway failover notification required by mentioning ISP name in subject line as in ver18 getting in mail body only

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  10. Gateway failover notification

    Gateway failover notification required by mentioning ISP name in subject line as in ver18 getting in mail body only

    0 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  11. Granular VPN Report

    I would like to see the XG VPN report yield a detailed view of each successful connection and the duration of said connection (similar to the UTM's remote access logs). We currently get a detailed view of failed attempts, but an aggregate of the successes per user.

    This is required for compliance purposes.

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. Qos Queue monitor

    Hi,

    I am in the process of trying to convince the manager that the Sophos XG is not causing any delay in Video Voice communication. To do this I would need to bit of information. The size of the QoS queue so I can show the voice queue remains low. The time it takes to process traffic through the Sophos XG, or time to process traffic through each QoS Queue.

    So it would be great to have a feature that monitor, reports on processing time of packets through the Sophos XG and Size of QoS queues.

    Thanks

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add Additional Sophos XG V18 SNMP CPU Reporting Options

    Hi Team,

    The new Sophos XG V18 SNMP MIB's do not have an option to query Overall/Total CPU Usage as a singular value.

    While I appreciate Sophos in V18 offer querying using the HOST-RESOURCES-MIB library, from what I can tell this only provides per-core utilization.

    I would like to suggest adding a Sophos OID (Similar to V17) that provides overall CPU Usage reported as a singular value so that we can configure SNMP alert monitoring based on both Per-Core and Overall CPU Usage.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. User internet usage report fine tuning

    Need user web browsing report and internet usage report finetune. Not able trace user which site accessed and how much internet used individual users.
    Not able to trace user internet usage activity clearly.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. Report Dropped Traffic by Internal Default Drop rule

    There is no possibilty to report traffic caught by default drop rule.
    Workaround with "ANY ANY DROP" rule does not work because 80/443 traffic is sent to proxy which reply "blocked" web site (incorrect). Other protocols are dropped correct w/o any reply.
    Default drop rule does not replay anything (correct, but does not log them)

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  16. Generate report about how long time a user stay connected at VPN

    today, companies have no way of knowing how long a user was connected to the VPN and today due to use in the home office, the company has no control over usage and how long the user was connected

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  17. It will be great if we are able to Upgrade the XG firmware from 17.5.14 to 18.0.2

    Would like to take a minute to address my request to the development team to have the feature in upgrading from firmware 17.5.14 to firmware 18.0.XX since we might lose some data if we did downgrade the firmware to an older module. Even though we have the backup for the old version but we might lose some data and sites which are currently connected to our XG firewall.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. Custom report download in PDF & HTML in one go

    Dear Team,

    In PDF & HTML, we can only download the report page by page only which is very time consuming and also not the right way to export the data.

    In CSV format above requested format is available but it should also be with PDF & HTML option so that on one go we could export the data in single file.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  19. Need option to export the all DHCP Leased Ip's to a file

    In Network>DHCP. Is it possible to have entire leased Ip's list to download in excel file.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  20. admin log

    it is amazing, if any Firewall Rule deleted then sophos do not make logs. it is a basic report which every admin wants.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 8 9
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.