XG Firewall
Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.
-
Sophos for non-IT users
There is a desperate need in the world for sole proprietors and small business owners to get and use these great products. Non of the documentation is at the level where a massage therapist, lawyer, etc. can make any sense of it.
These people may be small now but if you can grow with them you have an untapped market.
I've been doing cyber compliance and have written info sec policies and done training for decades. I'm familiar with the nomenclature and basic concepts but even I can't seem to get this firewall installed. I can help with this with…1 vote -
Diameter authentication on Sophos XG
Most companies are now switching from radius to diameter authentication.
When is Sophos going to add diameter authentication to their authentication method. Thanks
1 vote -
Issue with Encrypted Backup File in XG Firewall
Hi Sophos,
I feel encrypted backup file feature on XG firewall which is inconvenience. Can you let this feature be optional on new firmware update?2 votes -
Can we have an option to disable inactivity time out on sophos XG firewall web admin console.
Customer wants to be able to view sophos XG dashboard on their SOC and the web GUI keeps timing out. can be have option to disable inactivity time out or to extend it to infinity.
1 vote -
AV Scanning DNAT
We are using CR100ing device, when we create a virtual host(DNAT Rule), it create firewall rule automatically, it this automated created rule can enable av & as scanning on SMTP, SMTPS, FTP, HTTP, HTTPS, POP3, IMAP.
But Know i just buy SOPHOS XG-210, this appliance does't have this feature. so Kindly work on that and resolve this issue asap.2 votes -
CAA User inactivity
We would like to have the option to set the user inactivity per login method. We are trying to create a Zone that can only be accessed when the user authenticates with the Sophos Client Authentication Agent. We don't use STAS because we don't want the user to be logged in continiously. It it possible to set the Inactivity time for NTLM logins. Please enable the feature to also specifiy this time for users that are authenticated trough CAA.
When setting the General Maximum session timeout, all users are being disconnected an the duration can not be any longer than…
2 votes -
1 vote
-
traceroute visible
On UTM9 there was an option to enable "Traceroute visibility" but on Sophos XG (SFOS 17.5.5 MR-5 latest firmware version) there is not way to enable this feature.
2 votes -
Sophos XG to support VLAN 1 ID
Hello Team,
We have customer requesting for Sophos Firewall XG to support VLAN 1 ID as on UTM this is supported. For your assistance please. Thank You.
1 vote -
Hairpining
Can automatic NAT hairpining be built into SFOS automatically like it is in UTM? Very frustrating to have to create hairpin rules in order to access published servers from behind the same XG firewall. The best solution I've found to date is to set the source zone as "any" on the business rule governing the DNAT for the published service, however, that masks the true source IP address for any device on the outside accessing that published service because the firewall translates the source to it's own IP address. That makes it impossible to filter and restrict access to some…
2 votes -
DHCP for IPSec, SSL-VPN static IP for user, capacity for adding more lease ranges or duplicate settigs for SSL VPN
DHCP for IPSec,
SSL-VPN static IP for user,
capacity for adding more lease ranges or duplicate settigs for SSL VPN4 votes -
FAILOVER - Time for the primary link be the main link again after getting down
In case we have automatic failover set and the primary link gets down, Sophos XG would change routes to the secundary link. So far all good. However, sometimes this main link is still facing problems and will get down again very soon. This instability will cause problems to the users.
It would be good to have an option to set the time the primary link would become the main link again after it gets down. For example, only after 5 minutes the main link being up it would replace the secundary link.
1 vote -
Automatic Blacklisting and Reporting of Intruders
Linux has a program called Fail2Ban which can monitor various system logs for events like failed login attempts and then act on those events by doing things like create black list entries in the firewall to block that IP address from accessing the firewall for a configured time period or semi-permanently. It also has the ability to notify the website https://www.abuseipdb.com/fail2ban.html of the intrusion. It would be very nice if Sophos could implement this or something similar in the XG.
3 votes -
Monitoring of Sophos XG210
Dear Team,
We want to monitor the all the parameters of Sophos XG 210 firewall.
Parameter mainly include the Interface, Power supply, temperature etc.
Could you please create the MIB / OID values for it then will help to monitor the system
You can refer the case ID. #8792069
9 votes -
Gateway failback timeout configuration in firewall
Hi,
When the Active gateway comes back online, traffic should fail back to the Active gateway within specific timeout option in seconds like Gateway Failover timeout.
There should be an option for Gateway Failback timeout.
1 vote -
DNS https
DNS over HTTPS or DNS over TLS
I know there is a feature request for DoT already but id like to add to that request by asking for the option to choose DoH or DoT?7 votes -
Stick IP functionality for NAT Pools or any NAT rule
Coming from a Juniper background, we have the functionality of "Sticky IP" (Junipers "Address-Persistent") for any NAT rule. In Sophos you can only do this if performing a load balance NAT to a webserver (KB:132277).
It would be great to be able to do this in any NAT rule.
Thank you1 vote -
1 vote
-
Enable user inactivity timer issue
Enable user inactivity time frame must be encrage ,Inactivity timer should be more then 5days (1440 to 7200 mints),we facing issue in every Monday mins after holiday next working day for authentication.
1 vote -
: www.cert-in.org.in. The alerts on latest malware are published under VIRUS ALERTS section.
JCry ransomware is designed to encrypt data and append filenames with a ".jcry" extension. Once data is encrypted, JCry opens a pop-up window and generates the HTML file, "JCRY_Note.html", then drops a copy in every existing folder. The HTML file delivers a message informing victims about the encryption and ransom demand. This activity was observed in the Information Technology Sector.
*******************************IOC*****************************
Analysis:Host
IPv4: 172.81.182[.]63
Sighted: 2019-03-08 [only single sightings used]
Kill chain Phase: Command and Control
Characterization: IP WatchlistHost
URL: http://185.163.47[.]134/flashplayer_install.exe
Sighted: 2019-03-08 [only single sightings used]
Kill chain Phase: Delivery
Characterization: URL Watchlist
[MD5:C86C75804435EFC380D7FC436E344898].1 vote
- Don't see your idea?
