XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Remove Specific SMTP Headers

    I'd like the ability to remove specific SMTP Headers from outbound emails, as was possible in UTM 9.

    This can be used, for example, to remove internal server names and IP Addresses from emails sent over the Public Internet

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Localization of quarantine messages

    My customer wishes to receive his quarantine Messages in his native speaking language.
    Unfortunately such a common function is not available.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. SPX encryption on deprecated TLS version

    Auto encrypt email when the SMTP relay communication is on deprecated TLS version or in Plain Text mode.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. in the mail logs screen add two columns to select which email is spam or not spam

    add two Columns in mail logs with check boxes so the administrator can easily add/remove to the scope of quarantine filter

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Implement Soft Greylisting

    The bigger mail providers are sending the mails from its customers with different mail servers which are having different IP addresses to balance the load. But this is very difficult for a greylisting mechanism which is programed very strict. As a result some mails are coming through late or senders which are on the whitelist are blocked.

    There is a mechanism around which is called "Soft Greylisting". For example: The last byte inside of an IPv4 address is not getting analyzed in the assumption that the mail server are normally together in a subnet.

    I would like to get "Soft…

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Customizable Emails

    We would like the email to come from “Company Name” instead of “Sophos”

    Ex: It will say "Sophos <XYZ-sophos@xyz.com>".

    I realize there is not an editable field to modify from the services tab----> administration---> notification tab; but seeing how we manage many of these devices; is there some way around this limitation?

    For what it is worth; I believe this was an editable option in past series.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Email Policies & Exceptions File Protection

    When selecting Compressed Files to block, the system erroneously filters out winmail.dat mime type Application/MS-TNEF files. winmail.dat is used by senders using Rich Text Format mail.

    Application/MS-TNEF mime type is not available at all to whitelist.

    Please rectify this ASAP.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support ISO-2022 encoding for Japanese mail quarantine

    The ISO-2022 code used as standard in Japanese is not displayed.

    UTF-8 is used very little in Japan.
    Please correspond to ISO-2022.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Do not send multiple copies of quarantine digest in A-P HA mode

    Only send 1 copy of quarantine digest when XG is configured in Active-Passive HA.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. notification of email spool backlog

    Mail spool will occasionally queue up incoming email messages and then never send them off to email server. MTA service is running but will not be able to successfully resend them until the service is restarted or a malformed email is delete from spool. Would like to at least have some type of notification of the mail spool queue growing (maybe beyond 50 records) and a GUI restart option for the MTA service.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. SPX template per domain

    We only want SPX encryption being activated when a user explicitly enables "Encrypt" via the Outlook SPX plugin. In all other cases the mail should not be encrypted.
    We have a Exchange server with several domains. I want to make a rule that mails being sent from (domainA.com) are using "TemplateA" while mails being sent from (domainB.com) are using "TemplateB".
    Please make it possible to use a template based on the domain.
    Now you van only set a template for a domain (via SMTP route&scan) if you want that ALL mail is being encrypted.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. SPX: Use hostname in reply button

    The SPX PDF has a reply button which points to the IP address of the XG firewall. Make it possible to change this IP to the FQDN, for example the hostname which is configured under SPX portal settings.
    Further it should be possible to add your own SSL certificate to this FQDN so a user will no longer receive a browser warning regarding the certificate.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. More buttons to manage spammed e-mails

    When you have to check the quarantined e-mail or the e-mail log, you can surf the pages only one by one. It would be a great improvement to have more buttons that give the choice to jump to a desire page, or to the last one.
    Futhermore, in the quarantined e-mail tag, if you want to whitelist/block an e-mail address or a domain, you cannot right click on the address and open a dialog box to perform these task.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. editable text for attachment removal

    After an attachment has been removed, a standard text is added. For a better understanding of the recipient of the mail, it would make sense to adapt the text from the administration.
    Text resource should therefore be changeable and not stored in the binary file, as is currently the case.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Mail Protection: File Protection Quarantine instead of removing Attachment

    Currently it is only possible to remove attachments from mails depending on file extensions or mime types. We would like to have a quarantine first approach which was possible on a SG.

    46 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. We should receive mail alerts and list of users who have registered on XG portal for SPX encryption module

    We should receive mail alerts and list of users who have registered on XG portal for SPX encryption module

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow FQDN host on email relay

    Enable email protection module -> relay settings -> Host Based Relay to allow from FQDN host rather than IP address. This will be useful when allowing O365 to relay through the XG firewall (required for email encryption when sending from an O365 tenant).

    33 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. S/MIME and OpenPGP Encryption

    I am not sure if something is already known about it but when can we expect that feature? Some of our customers are convinced of the XG but want to have mail-encryption with S/MIME and OpenPGP.....

    23 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Delete Emails in SMTP Quarantine after xx days

    At the moment Emails in SMTP Quarantine will only be deleted, if the Quarantine Area is full. Other Sophos products auto-delete these Emails after 30 days. It would be great, if the XG does that too.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Block mails with to many addresses in To: or CC:, so use of BCC can be enforced.

    To avoid fines it helps to be able to block outgoing mails with too many email addresses in To: or CC: field, with exceptions of course. And/or have a function to move all To: and CC: entries to BCC:.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.