XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Automatically submit unknown Web address for categorisation

    When blocking of unknown sites is activated you always have to submit many websites when you are surfing unusual websites such as blogs and personal websites of small companies etc.
    Could you please give XG an function to automatically submit unknown Websites for categorisation to Sophos when XG detects an unknown Website while surfing?
    This could improve the quantity and quality of the Sophos Website categorization data a lot!

    4 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    • Ability to block a specific web page

      Currently you can only block domains such as docs.google.com. Phishing attacks are being produced using google docs so I would like to be able to block an entire url
      ie. https://docs.google.com/forms/d/e/1FAIpQLSeRTnbGoDaAuJx_gZ0bHOIeS5MW9UI6PxoCJQ9It0mAFdUwSw/viewform

      2 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
      • Safeguarding

        Safeguarding reports to meet prevent duties and keywords monitoring preconfigured.

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
        • Targeted Verified Email List

          Procure Data is an established and renowned name in the field of email marketing solutions and marketing databases for clients across the US, Canada, Europe and other countries.

          http://www.procuredata.com/

          2 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
          • whitelist exception for office 365 by default

            We've found that XG v17 and even some v16.5+ firmware breaks office365 activations, updates and downloads by Sophos' IPS/content filtering. The only way to get it to work is to go through the VERY long list to whitelist all the URL's to make it work. Office365 is a fairly widely used product for installations. Wouldn't it make sense to put in the exception's list (even if not enabled by default) in order to not have to do this for every firewall out there? Either that or fix the IPS/content filtering so that it stops tripping up on O365 updates and…

            10 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
            • Request to Increase the Inactive time to UNLIMITED for Android and IOS web clients

              Dear Team,

              Present in XG210 (SFOS 17.1.2 MR-2) Firewall, for Android and IOS web clients maximum inactive time is limited to 1440 minutes. If any user is not connected to Network with in 1440 minutes,he automatically logged out from Network.

              Kindly Update this, Android and IOS web clients maximum inactive time to UMLIMITED As soon as possible.

              Thanking you,

              7 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
              • Device specific web filtering for XG as in SG firewall

                Allow web filtering policy based on device types - Chromebooks, IOS, MAC OS, among other device types including Windows and Linux. This was really very useful in SG firewall

                4 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                • Lifestyle Says

                  Lifestyle says brings you a plethora of fashion, health, travel, etc. for the ever young and vivacious you. Keep yourself updated on the recent trends and innovation in the Lifestyle sector. We let you live your life to the fullest, enjoying every moment.

                  http://www.lifestylesays.com/

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • URL Rewrite

                    I'd like the ability to rewrite a URL for outbound proxy connections.

                    For example, this could be used to remove or inject a specific setting into the query string for specific websites.

                    I believe this is similar to how search engine "Safe Search" is set/enforced, but this could be set for other websites as well.

                    2 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                    • Map IP Address to a user

                      I'd like to ability to map an unauthenticated IP Address to a particular user.

                      This could require the user to 'sign-in' the first time, and have the firewall 'remember' their device/static IP address, or it could be set manually in the firewall for an IP address/range/list.

                      This would need to work transparently with other authentication methods, such as Active Directory

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                      • allow exclusions for certificate validation

                        for Web Protection it would be good to have the option to download / exclude certificates for certificate Validation (Block invalid certificates in General Settings).
                        the setting like we have in SWA is missing in XG: http://wsa.sophos.com/docs/wsa/webhelp/swa/tasks/ConfigGlobalPolCertValidAddFromWeb.html

                        3 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                        • Web Block Tags

                          When users see a blocked page it would be beneficial to see what group they belong to so that adjustments could be made quickly.

                          Currently the only supported tags are: {user}{url}{category}

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                          • need require interface internet date, timing with speed wise report monthly

                            need require interface internet date, timing with speed wise report

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                            • OCSP stapling

                              OCSP stapling for the XG Webproxy.

                              2 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                              • Quota Time in actions (Policy Web Protection)

                                add the option Surfing Quota in actions in the policies of the web protection as already exists in the UTM

                                2 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                • DNS Web filter

                                  DNS Web filter would be a good add to Sophos XG.

                                  Reference:
                                  https://cookbook.fortinet.com/dns-web-filtering/

                                  12 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                  • logoff user

                                    We would like the ability to Log a user off by redirecting them to a web page / site.

                                    At present we are using http://sophos:8090/ to log a user on, but the ability to have a log out button and or feature of the same would be great.

                                    We are a school, so it helps from time to time.

                                    Thanks

                                    8 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Privoxy functionality

                                      Privoxy is able to supress redirects that google is placing on their search results. OR redirects to analytcs sites.
                                      Blocking categories makes the search sites not usable.

                                      4 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Web Filtering Category with coinminer type website

                                        In asia so many bitcoin miner case.
                                        Taiwan was test target with many countrys.
                                        so many business customer want to detect inside or outside problem with miner attcked.
                                        but some miner website is normal and legal.
                                        Just hacking category can't include all miner webside, just only inlegal webside is not enough.
                                        Endpoint protection this product has application contral with miner type category.
                                        so why in XG can't do this?

                                        17 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                        • "Skip Logging" for Web Filter Exceptions

                                          It would be nice if there was the option to "Skip" Logging of specific web requests in the Web filter. For example, I see my logs spammed with certain domains, even if it's blocked, such as ( trouter.io ) and it's quite annoying to sort through.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.