XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Possibility to except source networks in SMTP exceptions

    In the current version (17.5.5) it is still not possible to define whole source networks in SMTP exceptions. It is only possible to select single ip hosts or fqdn hosts.
    In a few cases you need to exclude whole /27 networks from greylisting, SPF and more. Very annoying to create single hosts to add.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Info which blacklist triggered and why

    When a mail has been rejected I can see this in the log but I don't know which RBL has triggerd this and why.
    I wish more details in the email log.

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Implement Soft Greylisting

    The bigger mail providers are sending the mails from its customers with different mail servers which are having different IP addresses to balance the load. But this is very difficult for a greylisting mechanism which is programed very strict. As a result some mails are coming through late or senders which are on the whitelist are blocked.

    There is a mechanism around which is called "Soft Greylisting". For example: The last byte inside of an IPv4 address is not getting analyzed in the assumption that the mail server are normally together in a subnet.

    I would like to get "Soft…

    32 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Support the use of FQDN and IP lists objects in Email Filtering.

    The UI functionality is there but it saves without any errors although it doesn't work at all.
    This allows customers with a large number of backup MXs or those using commercial backup MXs (it won't pass the SPF checking normally unless you make an exception rule for every single one of them....) to bypass SPF or any other checking.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. log viewer rejected\dropped emails

    Prior to 17.5 upgrade, you could see details about an email that was rejected\dropped (senders IP address, among other details) that seems to have been removed in this latest firmware. Hovering over the email in the mail logs says why it was rejected, but the only way to get more detail now would be to open an console session. Please add functionality back in future releases (we are running in MTA mode)

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Combine Mail exeptions

    Combine Mail Exeptions like Sender (and/or) Mailserver (and/or) receipient address to
    make it more powerful and flexible.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Quarantine Digest based on mail domain

    The quarantine report is only sended to users registered on the firewall (manually created or LDAP users that logged into the user portal for example)
    If there is a mail quarantined for a user that hasn't logged into the user portal yet, no quarantine digest will be sended.
    I request an option for quarantine digest to send the report based on the recepient-domain without the necessity to log in for the users (something like there was on the utm)

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Technology Email List

    Technology list facilitates the seekers as well as providers interms of platform so as they can access each other at right time with less amount of effort and in most acceptable way.
    visit: http://www.datazeon.com/technology-email-list.html

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. quarentine

    It would be helpful to have an editable summary message with either my company logo or at least Sophos's logo to quickly know it is official. We are seeing scam messages get through pretending to me SPAM reports.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Info which blacklist triggered and why

    When a mail has been rejected I can see this in the log but I don't know which RBL has triggerd this and why.
    I wish more details in the email log.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Sophos Outlook add-in encrypt forwarded messages

    When a user replies or forwards a message that was previously sent as encrypted, the Outlook ribbon will show the Encrypt button as being pressed. This gives the end-user the impression that the mail will be sent as encrypted. But the add-in will not insert the "x-sophos-spx-encryption: yes" line in the e-mail header, so the XG will not encrypt the message. Please get the Outlook add-in fixed so that will properly modify the e-mail header when the Encrypt button is shown as pressed.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. What is Email Appending?

    Everything about Email appending is explained over here

    Visit: http://globalelist.com/blog/what-is-email-appending/

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. configurable SFP settings

    on 17.5 new SPF settings if enabled, the behavior for SPF is if SPF results is NONE it will reject the email. There should be option to either reject or accept emails with no spf records.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Validate passwords entered for smarthost and notifications

    It appears that passwords of a certain length or containing certain characters are not properly handled by Sophos when it attempts to authenticate with a smarthost. The result is that Sophos cannot authenticate with the smarthost and outbound e-mails remain stuck in the spool, showing as failed. There is no indicating in the logs accessible in the GUI that the problem is an authentication error.

    It might save users some frustration if Sophos were to either include validation logic to reject problematic passwords when they are entered and/or including a note or tip in the GUI indicating the applicable parameters…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. MTA SMTP policy filter mails by headers from, to, etc..

    223/5000
    In the legacy mode of the e-mail protection module there are filter options of the e-mail headers, in the MTA mode there are no such options, as well as those of probable SPAM, probable virus, etc.

    It would be very interesting to have these options.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Purge email via GUI

    Hi,
    To be able to purge all emails in mail spool via GUI instead of CLI!
    Many Thanks

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. SPX hostname in reply button

    The SPX PDF has a reply button which points to the IP address of the XG firewall. Make it possible to change this IP to the FQDN, for example the hostname which is configured under SPX portal settings.
    Further it should be possible to add your own SSL certificate to this FQDN so a user will no longer receive a browser warning regarding the certificate.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Determine Outgoing Mails not only through sender domain (Problem with Spoofing Mails)

    Currently the Sophos XG and UTM Mailfilter seem to make a difference on Outgoing and Incoming Mails.

    An incoming Mail seems to be determined by checking the protected Domains. All Domains that are not protected Domains are incoming Mails.

    An outgoing Mail seems to be dtermined by checking the protected Domains. All Protected domains are incoming Mails.

    That could lead to several problems, because only the Domains are taken into account in this decision.

    1. In my opinion when "Scan outgoing mails" is not checked there is no check on "outgoing" mails. That could lead to problems with spoofing mails…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Need to make Strong incoming Email Protection with Sophos XG135 Firewall like a Sophos UTM 120 Firewall

    Need to make Strong incoming Email Protection with Sophos XG135 Firewall like a Sophos UTM 120 Firewall (This e-mail was blocked because it is likely to be spam, virus infected, or caught by the expression or file extension scanner.)

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Mail Protection: File Protection Quarantine instead of removing Attachment

    Currently it is only possible to remove attachments from mails depending on file extensions or mime types. We would like to have a quarantine first approach which was possible on a SG.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6 7 8
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.