XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. SSL VPN with seperate DHCP scopes

    I would like to see in IPSEC and SSL the option to set each SSL remote configuration to be able to have it's own DHCP server, for example I want this group of users on SSL to use one DHCP server and scope and another set of users to use a different DHCP Scope.
    This would help when trying to isolate networks across domains.

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  2. SSL VPN Reports should include the timestamp of when the user connects and disconnects

    SSL VPN Reports should include the Timestamp of when the user connects and disconnects.

    This feature needs to be added.

    142 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    21 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  3. Multiple search domains with SSL VPN

    Some other products allow for multiple search domains/search suffixes. This would be a good feature to implement in the XG.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  4. single sign on for Bookmark in Clientless Access VPN

    XG cannot forward the user identity from User Portal to Bookmark in clientless access VPN.
    At the moment, we have to configure a shared login credential (Automatic Login) for Bookmark.
    It would be better if XG retrieve user information from a User Portal session and forward it to a Bookmark.

    16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  5. Rename RED devices on XG

    Why on earth am i not able to rename my RED units to something sensible? Instead all units is called reds1,reds2, reds3 etc, in the name they are added!
    This is hopeless - and it quickly becomes hard to identify the units/networks!

    30 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  6. RED - device info and bandwith monitoring

    Sophos RED:

    I have just begun implementing Sophos RED devices to branch offices. And the implementation have been very straight forward and easy to deploy.

    What i really need is some way to get information about the device connectivity.
    - How much bandwith is the location using? (Daily, weekly etc.).
    - How is my 3G failover connectivity connection? (No/bad/good/excelent connection)
    - Email notification in the event of failing over to backup 3G / WAN.

    Right now i am simply blind on what status is on the RED...

    AND also - please add a RED category...

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  7. RED: Webfilter Agent or Module on RED for local web breakout.

    Lots of customers love the idea of the Sophos RED, but they are less enthusiastic when they learn about the web filtering limitations.
    The remote site must have an Internet connection as this is what the RED uses to connect back to the central SG/XG, but if they use this for direct internet access, they have no web protection features. If they backhaul web traffic to the SG/XG they get web filtering, but waste a lot of bandwidth in the process.
    I am suggesting a RED, that allows local breakout, but has a local web filter proxy controlled transparently by…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  8. Wake On LAN - Send Magic Packet to Clientless Hosts

    Would it be possible to incorporate sending WOL packets to host before trying to connect to them using Clientless access?

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  9. SSL VPN client that logs on before Windows

    We need a SSL VPN that can log on before windows. This is required in many environments as it allows GPOs to resolve properly.

    103 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    11 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  10. SSL VPN client for mass deployment

    We need a way to deploy the SSL VPN on mass without logging into the user portal. A standard MSI would be ideal which could be deployed by any ESD or as part of an image.

    74 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    12 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  11. SSTP VPN - Native Support

    Microsoft PPTP VPN is using a weak algorithm (MS-CHAP v2 which can be cracked) so you should upgrade to SSTP vpn protocol available from Windows Vista. You could allow users to download certificate from user portal and no more actions are required on client side. Think about whem you need to manage 100 users and you need to manage them, such as udating their client or when they move from once PC to another. In this way, is the client OS that manage the entire overhead and from XG side is another add-on from TMG's competitor.
    The same request has…

    44 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  12. Assigning static ip to SSL VPN users

    It would be very convenient to assign static ip to users logging in through SSL VPN client. Currently this feature is available only to L2TP and PPP users.

    220 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    58 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  13. Bring RED Tunnels to UTM's and also to Sophos XG

    I would love to be able to create RED tunnels to other Sophos Firewall XG devices aswell as Sophos UTM's.

    This was a big disappointment to myself who used RED tunnels between UTM's

    29 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add support SNMP via VPN without add static

    Add support SNMP via VPN without add static routes. This could be as SSH via VPN, only choose a checkbox allowing or deny the service.
    Today it is needed add static route pointing to tunnel name.

    Best regards,

    Carlos

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
1 2 3 4 5 6 8 Next →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.