XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Notified abount Access Point UP / Down

    it could be nice to receive notification about the status of AP connected to XG (Wireless Protection), actually the state is displayed on the dashboard (numer of total AP / number of AP connected) but it is not a warning, there is no log in the Wireless Security section related to an AP that goes offline. Also in SFM there is no specific Alert/Notification about AP state.

    27 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Optional Antennas for Wireless-APs

    Hi,
    we need the option to use external antennas with the Sophos APs.
    Cisco offers a large range of antennas to cover mostly situations.

    So you can use directed antennas. sector antennas or use outdoor antennas and the AP is mounted indoor.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Customize Hotspot mail for "password of the day"

    The customization of the daily mail for the hotspot-password "password of the day" should be possible, so it could fit the CI of the customer like other customization options in the xg, that are already available

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. WI-FI connectivity status and usage

    XG wireless lack a way to identify devices connected to the APs as well as not able to see any kind of live usage data. In SG it's possible to see how a wide variety of wireless information and live data. This really is something required in Sophos XG

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Simultaneous Logins* restriction o

    Simultaneous Logins* restriction settings for each interface.

    It would be good if cyberaom gives an option to restrict Simultaneous Logins* to particular interface.
    Currently if set Simultaneous Logins* restrction for users, it applies globally to all interface

    ( if interface based restriction is there , we can assign one user to login through 2 devices on LAN and 1 through WIFI interface.

    Currently if we set 3 , they are bale to login all 3 either through LAN or WIFI.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Sopgos XG RADIUS IOS & Android Authentifizierung

    Sehr geehrte Damen und Herren,

    wir würden uns wünschen. dass es in der Sophos XG möglich ist Anmeldungen welche von einem IOS/Android über RADIUS laufen in den Live Usern angezeigt werden.

    Somit ist es möglich auch auf Smartphones Gruppen/benutzerdefinierte Firewall Regeln zu erstellen.

    Der Sophos Network Agent für IOS/Android ist sehr unpraktikabel und fällt somit für uns weg.

    Wir haben gesehen, dass in der SFOS 17.1 schon Vorarbeiten geleistet wurden, was dieses Feature angeht.

    Ich hoffe das wir hierfür zeitnah eine praktiable Lösung erhalten.

    Mit freundlichen Grüßen

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Wireless Accespoint IDS/IPS or UTM application <3

    Wireless Accespoint IDS/IPS or UTM application.
    Why? Because WAN is not the only "outside" of a network. As a Blueteam Sys/Netadmin aspirering to be an ethical hacker I consider all "acces ports/acces points/network entrys" as "Outside". Scanning for malware and payloads on Wireless Acces Point level would be an absolute godsend. (btw there is still no silver bullet for EvilTwins.. just saying xx.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Have menu to show list of devices connected on particular AP under XG

    Hello Team,

    We have customer here requesting to have menu to show list of devices connected on particular AP under XG. For your assistance please. Thank You

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. rogue

    Add a classification of "External" to the Rogue AP Actions. The reason is that we want to designate third party access points which are not approved for use, but which are not rogue (i.e. connected to our network without authorization) as External.

    Sophos should then develop a set of features we can implement by policy to take action. An example would be a policy that prevents authorized devices from connecting to Rogue or External access points.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. remove ERROR notification in access_server.log for radius

    As per case 8135146 this is a feature request.

    Using RADIUS SSO for the wireless. On the access_server log in XG we see the following" errors"
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Possibilidade de reiniciar AP via Interface Gráfica (WEB)

    Implementar a possibilidade de reiniciar AP via Interface Gráfica (WEB)

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Able to reboot AP from XG

    It will be much easier for us if we able to reboot the AP from XG.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. 802.11 k

    Apple Devices & WiFi:
    So everybody knows that Apple has its own opinion for WiFi Roaming and switching to the next AP with the best wifi signal. I think it's a good idea to implement the 802.11k standard to Sophos AccessPoints, according to the knowledge page from Apple at: https://support.apple.com/en-us/HT202628 where they talking about the 802.11k Standard. Maybe this is a solution for Apple devices that have connection issues and do not want to switch the access point.

    30 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. SNMP

    SNMP monitoring added for Sophos wireless access points (AP100C)

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support for WPA3

    I realize that it's a new standard, and the WFA is only just now beginning to certify devices, but are there plans to attain WPA3 certification for Sophos AP and managing firewalls?

    https://www.theverge.com/2018/1/9/16867940/wi-fi-alliance-new-wpa3-security-protections-wpa2-announced

    24 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Seamless activation of new Wi-Fi SSID

    If a new SSID goes online (due to a schedule), all other SSIDs goes offline for a short time. So all Wi-Fi clients on all SSIDs will be disconnected.

    This is very annoying, for example, if you have an all-time internal Wi-Fi for corporate devices and a guest Wi-Fi, which is only switched on between typical business hours.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Remote Restart of Wireless Access Point

    I'm facing a issue of High Latency on my Wi-Fi network with Sophos XG 230. While troubleshooting the same, I thought of restarting the APs to see if that helps. I'd to go and do that manually by going to every place the APs are installed. In a 6Floor building and 3 satellite office connected on fiber, with more than 15 APs, its a bit tough job to do so.

    Request to enable a function in the OS to restart the APs remotely,

    20 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. HOTSPOT's Terms of use acceptance page clear out session

    Force a client to see the HOTSPOT's Terms of use acceptance page every time during testing? Or give us a way to clear out a session for testing he custom template.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Mesh for AP55s on 5ghz

    Currently you can only create a 2.4ghz mesh network on AP55s.Business requirement
    1/. Sophos stays competitive and in the business of WIFI security
    2/. Sophos has products that people want to add the their XG range of hardware
    3/. provides greater throughput than achievable using 2.4ghz mesh.
    Larger files take noticeably longer to load over a 2.4ghz mesh

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. We need OTP for WiFi Guest users access to same same or different network. When new guest come in Office then they connected to network anda

    We need OTP for WiFi Guest users access to same same or different network. When new guest come in Office then they connected to network and when Guest users try to access internet they should for mobile number and after submitting Guest user get OTP on mobile number which he enter.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.