In the logviewer for XG appliances, being able to filter out multiple values for SRC or DST would be extremely useful!

Hi Teams,

One of our Customer wants to publish OWA with Exchange 2016 but as per Sophos, we were communicated by Sophos, OWA is not supported by XG Firewall for Exchange 2016. Customer is currently using two appliances of XG firewall 650 as a web proxy in their environment. Now we have a feature request or idea to include the OWA Publishing on Exchange 2016 through the XG Firewall. For future enhancement is there any product that supports both Web Proxy and OWA Publishing on Exchange 2016.

As it is right now, SDWan can be used to do routing between Devices that have a definable Gateway. That being said, you need to define a Physical interface and when doing the site to site SSL VPN you cannot use SDWAN routing as the SSLVPN is defined as a virtual interface. Would suggest that improvements are made to the SDWAN routing to allow either defined VPNS to show up as a interface, or allow for all virtual interfaces to show up as a interface along with the physical ones.

Business Rules needed Schedule Feature, there is no schedule option available to on and off the firewall specially in WFH environment really requires it.

Allow to set a Name or Description in Spoof protection trusted MAC

Protect > Intrusion Prevention > DoS & Spoof Protection

On the table only show mac address an ip address, it would be nice to relate the FQDN or any kind of description to the mac addres and ip.

The idea is to allow the use of a FQDN in the local ACL when adding a rule to allow for example the WAN HTTPS management. The interface only allow IP addresses for the moment.

It appears that the Sophos dashboard displays network attacks even for vulnerabilites that have been given an exception.

I use VirusTotal often either manually or via 3rd party apps or even via the API, so it would be ideal if we could use VirusTotal within Sophos XG v18 Web UI somewhere for diagnostics or threat hunting as an option on live logs or reports.

The Sophos XG Firewall routers need the web interface config pages speeded up - all units are much slower than the Cyberoam UTM pages load at and adding and changing a config can take from 5 to 15 seconds to load. Makes configuring a sophos from scratch a slow and tedious process.

Possibility to change the highest supported version of IGMP. Prohibition of use of IGMPv3 version.

To summarize:


Default re-key time for IPsec remote access is set to 4 hrs and does not have any option to change it from GUI.
- This usually happens in the backend without any interruption (with only one authentication). However, if we have configured MFA then it will prompt for the OTP after every 4 hours as it requires reconnecting.

Administrators may be able to config this behaviour as well be able to associate the IPSec Remote Access to another Policy than the default one.

Currently LAN to WAN is supported, but not WAN to LAN. Checking known users, selecting users, and having them login if they are an unknown user will be a replacement for the https bookmarks removed from the user portal.

In the different rules creation fileds it's not very easy to find your objects in the "Add new item" button. The search is effective only if you know the beginning of the word you are searching but it's not always the case. Please add the possibility to search a word or a partial term of an object like it was possible in SG. It will make your product much more user friendly...

It's very difficult to find your rules in XG compared to SG. In SG there was a textbox search who was very efficient because it was filtering rules on any fields with the text entered. Please add this functionality into the different XG views !

In the firewall rules the column are too small and it's difficult to look for the desired rule as their name are troncated with "...". It would be much more easier if the size of the column were adjustable or even filterable like in SG....

It would be great to be able to enter a partial MAC-Address as eg. 00:1A:E8:* within the MAC Address Definition section.
The MAC-Address in this example would involve every device from the vendor Unify.

It would be great to be able to assign the netflow service to zones the same as you can with most other services: SNMP, SSL portal, ping, user portal, etc..
You cannot truly segregate all management traffic/duties with the current implementation without rewiring the default Lan port to be a dedicated management interface

We are using DHCP server from our XG firewall. IP leasing setting is 12 hrs. I am looking for some tools from which i can find the ghost IP ( IP which is not active) and clear it up from the DHCP pool in order to assign to new connection.

Secondly I want to know that how can i make a rule that if a device is not authorized to access internet should not get the IP from the DHCP server.