XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add Google Play Store to Application control signature

    Current SFOS 17.0.2 MR-2 still don't have Google play store on the application control signature , while the traffic is false matched as Youtube streaming.

    Can't block or Traffic shape google play store traffic

    42 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  2. identify Apple FaceTime application

    The XG doesn't correctly identify Apple FaceTime traffic. It instead just lists it as "Other Applications." Until it is identified, I'm limited in how to apply rules to is such as bandwidth constraints or to block it altogether for some users.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add more applications for various XBOX, PS4 &other video games

    Many online games are detected (incorrectly) as various tunnels/proxies or P2P applications. more work needs to be done to detect games such as
    GTA5
    Elder Scrolls Online
    Rainbow Six:Siege
    etc.
    This will allow us to use the application filter to allow games from our residential network while still blocking malicious & unpermitted applications.
    Thank You

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  4. Application Specific Signature for Ring Central

    There is no Application Specific Signature for Ring Central, which means we can't apply Application-based Traffic Shaping Policy for it.

    Please add Ring Central as a defined Application.

    See below:
    https://community.ringcentral.com/ringcentral/topics/how-do-i-troubleshooting-call-quality-issues-qos
    https://www.ringcentral.com/support/qos-router.html?_ga=1.41909153.2038724511.1480961611

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  5. Ultrasurf Proxy; False Log

    The ultrasurf proxy restriction in XG firewall gives false response. The log viewer indicates that the application is being denied while the user is bypassing all the policies with a simple extension in chrome browser. It would be better if it rather said allowed than give false information.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  6. Rename the "Block QUIC" checkbox

    The "block google QUIC" checkbox does not actually block QUIC, as it says, but instead blocks all UDP on port 80 and 443. 443 UDP is not always QUIC! This is misleading, and should be renamed to "Block UDP 80 and 443 (like Google QUIC)".

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow text for WhatsApp but not images, video or audio

    Customer would like to allow Text for Whats App but blocks the block download & Upload of Images,video & audio

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add Windows XP as a High Risk Application

    Can you add the ability to detect what operating system a computer is running (based on HTML headers perhaps) and warn if certain operating systems such as XP are seen?

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  9. Fortnite

    Block fortinite app in from games section in application category

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  10. Application Detection

    Hi Sophos Team,
    Good Day!

    May I ask if you can add this kind of feature that is an application detection? its like on remittance concept whenever you have this kind of wallet app then the firewall will allow you to have access on internet.

    While if you don't have this kind of application or wallet then the firewall or endpoint will redirect you from google play as an example to download the said application.

    Thanks,

    Brian,

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  11. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  12. ccproxy

    TRY TO BLOCK CCPROXY APP.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  13. Advanced Threat protection reolve bad urls to Sophos IP Address

    Palo Alto has a wonderful feature called DNS Sinkholing( https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/threat-prevention/dns-sinkholing#) where infected machines on the inside network that send dns requests external for malicous urls can be easily identified. This is achieved by resolving bad urls to a Sophos Public IP address and then every internal machine trying to access this IP is known to be infected with malware. Currently with Advanced Threat protection we can only see these DNS requests from the internal DNS server and not the end device which makes tracking down infected machines a much greater task.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  14. Request To Add the application Mobile Legends to be availablel under application filtering of Sophos UTM and XG

    Request To Add the application Mobile Legends to be control under application filtering of Sophos UTM and XG

    Customer is requesting to add the games mobile legends under Application Control on Sophos UTM and Sophos XG

    Application: Mobile Legends
    Publisher: https://www.mobilelegends.com/
    Reason for request: This is Game is not filtered on Sophos SG and XG Application Control

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  15. reports

    Ability to whitelist or reclassify known good traffic the XG detects as another type of application.

    Example. Cisco Meraki WAPS talk to each other on UDP port 9358. Our XG430s think this is something called ThunderVPN and continually report on it as a level 5 threat.

    Call with Sophos support confirms at present no way to exclude this from report or whitelist. Sam with VMWare replication. Classed as ideafarm-door (only a level 1 threat) but still shows up in reports as sending large amounts of traffic (expected).

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  16. NetMotion VPN

    I'd like to see NetMotion Mobility Client added to the list of applications. It's vital to our business functions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Detection Requests  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.