Implemented the wifi graphs/reports that are available in the cloud (central) to the XG as well, as currently, the XG options for wifi are useless.

XG is not working to perform hair pinning. now a days so many device to access internaly by global ip without fqdn so enable this feture

STAS to allow unauthenticated users internet access. We use STAS to map ~IP against users for web use monitoring, we don't want to restrict non authenticated users or annoy them with having to login to the XG.

Add a support to ciper suit TLSECDHERSAWITHAES128GCM_SHA256 -

{0xC0,0x2F} in Cyberoam OS

The administrator must able to reset the Quota for a user.
This option was working fine on the UTM but is not available in the XG.

The Quota is only good working wen I can set Quota on a user activities group.
And in this group are categories.
And a user can be in different groups on the XG.

So you have a group whit free internet for work and a group whit Quota internet for pause or fun.

SNMP v3 version in XG105 firewall is not available, please check possibility to add it in the new firmware version ASAP. Because without SNMP v3 i dont like to call it as firewall itself.

reset the firewall hit counter, not only after reboot

Current log format has key=value pairs, which are easy to manage in certain centralized logging solutions. However, some of these values contains quotation marks " and some does not. As there are several longer values, a quotation mark is reasonable and thus every value should have quotation marks.

Can we please update OpenSSL to a newer version and also maybe compile it to use the AES extensions in the CPU for those of us that have processors that support it? 50 road warrior vpn users and 12 red devices, and 5 site to site tunnels can crush a 310.

Allow Changing HA-monitored Interfaces without breaking HA like in UTM/SG - OS possible.
Why is there the need to break HA if only a change or modification on a productive plant ist planned, that schould be online 24x7? That´s why HA is implemeted!!

If a Firewall Rule (User/Network Based) is disabled, it would be nice to have the option to activate it inside of rule configuration aswell.

When creating a Business Application Rule as a NAT, to have the option to choose more than just one IP Address to receive the connection.

Hi Team- could you please has all Public IP vs Internal IP NAT IP information in tabular format,every time i would need to check every NAT/Business rule .

This is frustrating and time consuming process and has chances of wrong assessment.

From our Sophos XG 450 devices we would need to export logs related to DHCP.

The data we need are: IP address, Mac address, Host Name.
We would also need to export logs related to SSL VPN Client connections with the same information (IP address, Mac address, Host Name)

Rogari Andrea

As I recently noticed while creating Business rule to forward port that if we select "create reflexive rule" it doesn't create rule for Lan-Lan access as cyberoam does have that.

So request you to kindly add this feature in future upgrade. it helps to optimize time and have clarity for the same.