Hi make syncronised application control work in HA active-active mode, currently it is a feature that does not work unless in HA active-passive mode. Also, inform resellers of this limitation to stop them mis selling the product.

Ability to whitelist or reclassify known good traffic the XG detects as another type of application.

Example. Cisco Meraki WAPS talk to each other on UDP port 9358. Our XG430s think this is something called ThunderVPN and continually report on it as a level 5 threat.

Call with Sophos support confirms at present no way to exclude this from report or whitelist. Sam with VMWare replication. Classed as ideafarm-door (only a level 1 threat) but still shows up in reports as sending large amounts of traffic (expected).

Add option in User Portal to be able to use the XG web interface. Also be able to access other XG web interfaces from the User Portal bookmarks.

As per feedback received from your support engineer , XG215 UTM does not support MultiCast which my scan application is using. Kindly provide a patch in my XG215 UTM to support MultiCast at the earliest so that we can put End Points , Servers , Printers and Scanners in different VLANs.

I have recently purchased Sophos XG210 & XG330 two firewall but none of them having the facility to change the SIP URI address in incoming & Outgoing traffic on gateway level.
Sophos must include this feature in the next version because of this now I am moving to another firewall which has this feature.

My Case ID is #8563807 your support team tried thier level best to support me but due to lack of sophos feature they coulnd manage to support me.

After using Surfing Quota for Users. Speed should be decrees rather than stooped internet.

need to add my mobile number into to the firewall i want received up time and downtime logs status via msg

I would request to Sophos team to have feature to control/apply user level policy for application filter as well , when we migrate from cyberoam to Sophos there was feature called internet scheme where we can select the users separate policy even they have another group. Please bring this option or advice us is there any other option made in Sophos

Please bring the ICS/SCADA protocol awareness that the Cyberoam devices have over to the XG.

Allow cloning of policy in Application Filter. It would be great if i can clone a policy and tweak it for other staff to use, saves a lot of time.

Add Internet services (applications) to firewall policies. Maybe very useful to switch to a real application firewall. Now also fortinet introduced the "internet service database" to reach this goal

Identify application activity in detail eg. Webmail > message sent > via GMail/Office 355

Open up dynamicly the ports that are negociated and used by MS-RPC. Intead of opening up a full range

We could like to be able to create a custom Application Category for applications discovered as part of the Synchronised Application Control process.

We would like to be able to block newly discovered/uncategorised applications (SyncAppCtl), until they have been verified by an admin. Once verified we would like to add them to a custom category which we can allow/deny access to the Internet as part of an application filter policy.

It does not seem possible to change the default action for an application filter once it has been created. While there may be little need for this in most use-cases, it would be tremendously helpful for one-off testing.

Allowing to set application bandwidth based on the percentage of the WAN bandwidth available will make enable copying configs from firewalls with different total WAN bandwidth. Moreover will make it a less hassle to upgrade or downgrade WAN bandwidth in the future. This feature would greatly enhance the settings for MSPs or vendors who send out pre-configured firewalls.

Allow us to 'exclude' certain applications which may not be able to be configured on an IP/port basis, from the Quota functionality.
E.g Skype, Viber, Skype4Business, Office365

Also, Windows Update and other software update that may consume quota quickly.