Using Sophos XG 18.01 , had a recent issue where a LAN>>LAN rule was deleted automatically when a RED device interface was removed from the XG.

It would be great, if "Tags" or "Locks" could be applied to Firewall rules, that either stops these rules from being deleted, or alternatively prompts for login credentials or a warning before the rule is deleted.

Today too many companies need to define at what time the user can connect via SSL VPN, for example, users can only connect during business hours from Monday to Friday

I don't want to use a secure storage master key. This is something we don't need and will just make life more difficult for our staff who manage more than 150 different Sophos XG devices having to store keys all over the place. I'm sick and tired of the screen popping up every time I log in and the fact I can't take a manual backup.

Will Sophos please stop forcing this and make it optional. I'm the Administrator, not Sophos.

How do you change the default content within the Quarantine Digest.

We want to add a company logo and change the default text within this email to something more user friendly.

We also want to add instructions to this email for our users.

How can this be completed.

Currently in XG v18 VLAN bridge in MESH newtwork using APX appliances is not supported.
This feature does exist in current Central Wireless.

Please support it also in XG.

There is no possibilty to report traffic caught by default drop rule.
Workaround with "ANY ANY DROP" rule does not work because 80/443 traffic is sent to proxy which reply "blocked" web site (incorrect). Other protocols are dropped correct w/o any reply.
Default drop rule does not replay anything (correct, but does not log them)

Our client is asking to block NordVPN, unfortunately there's no NordVPN to application control.

We have users with more than one e-mail account. But with login based on AD, we can only associate one account at time.

Make possible to associate more than one e-mail accont per user, at least on Quarantine .

Please enable the option for importing the new user credentials through .csv file, which was there but now you have removed after firmware upgradation.

it is amazing, if any Firewall Rule deleted then sophos do not make logs. it is a basic report which every admin wants.

At the moment there is no way to redirect HTTP to HTTPS automatically for User Portal. Since the configuration is inside a APACHE httpd.conf file, it should not be difficult to implement it. Thanks

It's already possible to search for IP Hosts but not for IP Host Groups.

When you have 50 IP Host Groups pages you have to click quite often to find the right group.

It would be really useful if you could apply QoS and routing policy to data generated by the XG, such as signature updates. So these updates do not impact the WAN bandwidth low speed links.

We have a number of XG firewalls connected to very low bandwidth / high latency WAN connections.

On the old Cyberoam OS it was possible to select which pattern modules are updated automatically. This saved unnecessary data being downloaded as we only need IPS and Application signatures to stay up to date.

Need the Option to add multiple WAN interfaces in Sophos Connect client settings.
if there is 2 WAN connection and 1 connection is down then the remote client don't have any option to connect to VPN through 2nd available ISP. if this option is available then the user will have 2 profiles in their Sophos connect client.

I would like to see the XG VPN report yield a detailed view of each successful connection and the duration of said connection (similar to the UTM's remote access logs). We currently get a detailed view of failed attempts, but an aggregate of the successes per user.

This is required for compliance purposes.

Hi,

I am in the process of trying to convince the manager that the Sophos XG is not causing any delay in Video Voice communication. To do this I would need to bit of information. The size of the QoS queue so I can show the voice queue remains low. The time it takes to process traffic through the Sophos XG, or time to process traffic through each QoS Queue.

So it would be great to have a feature that monitor, reports on processing time of packets through the Sophos XG and Size of QoS queues.

Thanks

It would be nice to have a "Night Mode" version of the UI.

Would make everything visually better on the eyes, instead of blinding.