XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. bit trorrent

    My feedback is as follows;
    Every time we raise an issue ticket with any Sophos Support, They try to analyse, and finally, I prooved today How the user can by-pass your Firewall Rules and Policy.after you gone through which application of Bittrorrent has allowed by Firewall Policy, you created a new test Firewall rule/policy. & applied on my Desktop system IP & Mobile IP for testing. once you are successful on reported website URL or application, I tried with the following website which also allowed access and signature are not available in your algorithm
    https://extratorrent.si
    https://torrentz2eu.in/
    https://extratorrent.cm/
    https://deluge-torrent.org/

    http://www.publicdomaintorrents.info/

    https://bitlove.org/directory

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. exe

    Need to be able to block just executable files on chat applications. Want to allow video, images, etc but block executables.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Unable to access play store / Gmail app on mobile phones after blocking personal gmail access from firewall

    As suggested by sophos engineer, the feature is not available currently. I need this to be have on xg firewall so that i am able to access gmail app / play store on mobile phones with wifi connection passing through firewall

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. Some websites taking too much time to load, It works fine without using cyberoam CR25ing.

    In firmware version 10.6.2 of cyberoam CR25ing many websites taking too much time to load properly, but when I create new rule without attach identity it works fine.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Multiple IP Range Add in IP Host Service

    Multiple IP Range Add in IP Host Service

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. need whitelist for application filter

    At the moment, application filter works on blacklist, and we cannot create whitelist application filter to allow a specific application, and block all other applicaitons including unknown/unclassified applications.

    Other vendors can achive it, Palo Alto Application Whitelist Example: https://docs.paloaltonetworks.com/best-practices/8-1/internet-gateway-best-practices/best-practice-internet-gateway-security-policy/identify-whitelist-applications/application-whitelist-example#

    There are a number of compliance criteria (CIS for one) that require whitelisting of network applications, as per https://www.cisecurity.org/blog/understanding-cis-control-2/

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  7. only captive portal read write feature access for monitor profile user

    i just want to add a capitive portal access for the monitor profile user that monitor user only change header and footer notification in captive portal as per network mentinance of organisation.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. Browser based proxy authentication

    Implement browser based authentication like what the UTM and all other solutions offer. This would be brilliant for the authentication to be browser based on devices with multiple users using it with the same IP

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  9. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  10. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. To find out that host is enlisted in how many firewall rules.

    There is no option to search the host that host is enlisted in how many rules. There is an option in Packet Capture but it shows only one rule thru which his traffic is passing thru.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Ascending Order and Search bar to find the Hosts in Firewal Rules

    If 100+ MAC hosts are added in “Source networks and devices” in firewall rule but these MAC hosts are not coming in ascending order and it is very difficult to search the specific Host and have to check host list one by one and it should have a search bar to search the host from the list.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Hi make syncronised application control work in HA active-active mode

    Hi make syncronised application control work in HA active-active mode, currently it is a feature that does not work unless in HA active-passive mode. Also, inform resellers of this limitation to stop them mis selling the product.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. application based rule creation

    XG dont have an option to create firewall rule based on Application/application category.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. CIsco webex is having audio problem

    CIsco webex is having audio blocking issue inspite of whitelisting the said application and give priotise bandwidth.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. cyberoam CR100ing has been work as ntp server.

    Dear Team ,

    we want cyberoam CR100ing has been work as ntp server.
    cyberoam provide date & time to end user System.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. Unique traffic-shaping rules per WAN interface

    If an XG has 2 WAN interface; say fiber and LTE, it would be wonderful to be able to have different application based traffic shaping rules.

    e.g.

    When the primary fiber WAN is active, I want VOIP to be prioritized.

    When the primary fiber WAN fails and the XG switches over to backup LTE WAN, I want VOIP to be prioritized, Backup-traffic&File-transfers&Youtube&Spotify&Twitch&etc. to be blocked, and general HTTPS to be throttled.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. application filter in user base and group base in sophos xg firewall add

    application policy applied in user base and group base in sophos add the features

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. mozila thunderbird

    Request you to please add mozila thunderbird in application control.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  20. SNMP v3 version in XG105 firewall is not available

    SNMP v3 version in XG105 firewall is not available, please check possibility to add it in the new firmware version ASAP. Because without SNMP v3 i dont like to call it as firewall itself.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.