Super Admin Can Access from Public Network WAN Interface and Admin Can access from Local Network LAN interface only and from WAN interface only accessible by Super Administrator which is should be owner can able to change his own Super Admin.

IPS not Working on SOPHOS XG Home

The title pretty much spells it out here. It's very disappointing that you can't add a VPN user without disrupting all your current VPN users...

Geo Blocking is a great addition, but doesn't list all the countries.

For instance, I have a customer getting hit by Kenya and Kyrgyzstan. Any ETA on when Geo Blocking will be fully rolled out?

Grouping NAT rules - same as grouping Firewall Rules.

kindly add loopback interface and ip sla features in v18. loopback interface is need to use in bgp and "ip sla" is needed for link high lentency failover.

The ability to revoke the DHCP leased out to certain client.

Have a pre-configured O365 smtp host option, which includes all Exchange Online Protection IP address ranges. So we dont have to manually add in all of the reccomended ones from Microsoft

https://docs.microsoft.com/en-us/office365/enterprise/urls-and-ip-address-ranges

Currently one can only use the Policy Tester for IPv4 addresses. Please add the ability to also test IPv6 addresses.

requesting for scanning of encrypted FTP

Hi Team,

On now Sophos can add bandwidth limitation to user wise/ Application wise and Rule wise.
But if bandwidth limitation had on network adapter wise and VLAN wise, It will be very helpful to all of them. So I'm requesting to add that feature ASAP.

please provide filter option for mac with ip
under intrusion prevention
under Spoof Protection Trusted MAC
it is very difficult to change the mac or ip numbers . In our organization 250 Hosts are bind with mac for security purpose. There are 40 pages across we have to search it is very difficult. Thee is no option for export also. This feature is available in cyberoam 100ing firewall. but in sophos XG210 its a major pain to always scroll all the pages to find a single entry.

In case anyone up high at sophos is listening, how about this idea: Sophos is already in the firewall and AP business. Now we just need switches managed through Sophos Central with Sophos Synchronized Security added.
Ports to infected endpoints could be shutdown when the XG or the endpoint see a device in an unhealthy state.

There would be better visibility with Synchronized Applications, seeing traffic that the firewall can't see.
Partners could offer a complete "Network in a box" solution for every point of endpoint connectivity, whether wired or wireless!

It would be great to have more Pre-defined services with their relevant ports listed.
Like some other Firewalls have such as CheckP...t.

Or perhaps a way to import a services scv file.

MAC not capture in Authentication agent mobile app
To impliment MAC bases authentication.
Please provide New version of App in Android and ios to capture MAC also.

I have a new request about issuing shared limit network quota for a group.
Now when I assign to network quota to group , that group each user will getting that particular data quota.

Ex: User Group Name - Test and Allocated 200GB to group, The test group have 10 Users.
As now In sophos Each user will get 200GB. But I want to use this 200GB as a Shared Data bundle.

I'm using AD as authentication service in my sophos xg.
But users can't change password using user portal.
So pls enable that option for the AD.

I have a huge problem with doing HTTPS Decryption and Scaning.
Because in my enviroment haven't AD to push self-signed certificate.
So I want to add CA Author Signed certificate, But unfortunatley any of CA Authority not providing root certificate. Therefore I have new suggestion , Pls add sophos own CA Signed root certificate to sophos firewall. It will be helpful all of sophos users to enable HTTPS Decryption and Scaning without installing certificate manually. Because browser will trust certificate automatically. I still waiting for solution for this.