XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. SPX hostname in reply button

    The SPX PDF has a reply button which points to the IP address of the XG firewall. Make it possible to change this IP to the FQDN, for example the hostname which is configured under SPX portal settings.
    Further it should be possible to add your own SSL certificate to this FQDN so a user will no longer receive a browser warning regarding the certificate.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. More buttons to manage spammed e-mails

    When you have to check the quarantined e-mail or the e-mail log, you can surf the pages only one by one. It would be a great improvement to have more buttons that give the choice to jump to a desire page, or to the last one.
    Futhermore, in the quarantined e-mail tag, if you want to whitelist/block an e-mail address or a domain, you cannot right click on the address and open a dialog box to perform these task.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. editable text for attachment removal

    After an attachment has been removed, a standard text is added. For a better understanding of the recipient of the mail, it would make sense to adapt the text from the administration.
    Text resource should therefore be changeable and not stored in the binary file, as is currently the case.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Mail Protection: File Protection Quarantine instead of removing Attachment

    Currently it is only possible to remove attachments from mails depending on file extensions or mime types. We would like to have a quarantine first approach which was possible on a SG.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. We should receive mail alerts and list of users who have registered on XG portal for SPX encryption module

    We should receive mail alerts and list of users who have registered on XG portal for SPX encryption module

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Digest Emails for Qurantine Management more often

    Please give the possibilty to send Digest Emails for Qurantine Management more than once a day, even like UTM 9, there you can configure two reports a day ...

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow FQDN host on email relay

    Enable email protection module -> relay settings -> Host Based Relay to allow from FQDN host rather than IP address. This will be useful when allowing O365 to relay through the XG firewall (required for email encryption when sending from an O365 tenant).

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow wildcards for "Sources/Hosts" spam check exceptions

    If you want to receive Office365 Emails in a timely manner, you must disable Greylisting checks for this sender. This would be *.mail.protection.outlook.com. But at the moment wildcards aren't allowed.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Bounce Report

    A more in-depth spam report when a email gets blocked or quarantined would be helpful. Browsing the quarantine now to release mails when needed does not show us why it was rejected in the first place so the client can change their sending methods.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. S/MIME and OpenPGP Encryption

    I am not sure if something is already known about it but when can we expect that feature? Some of our customers are convinced of the XG but want to have mail-encryption with S/MIME and OpenPGP.....

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Delete Emails in SMTP Quarantine after xx days

    At the moment Emails in SMTP Quarantine will only be deleted, if the Quarantine Area is full. Other Sophos products auto-delete these Emails after 30 days. It would be great, if the XG does that too.

    21 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Block mails with to many addresses in To: or CC:, so use of BCC can be enforced.

    To avoid fines it helps to be able to block outgoing mails with too many email addresses in To: or CC: field, with exceptions of course. And/or have a function to move all To: and CC: entries to BCC:.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Attachements in SPX

    Attachements of encrypted mails will be attached in the PDF file.
    It would be more user friendly, if all attachements could be seperatly attached to the eMail. Not all receipients have acrobat reader installed, but use for default Edge or similar to view PDF files.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Integration of https://haveibeenpwned.com/ into XG Firewall

    The "Have i been pwned" Service is a great thing to check for breaches in online Accounts.
    One customer had a breach because of credential stuffing. He used the same password for some online Accounts as well as his Active Directory Account.

    We checked a lot of other Mailadresses with this service.
    And found some more breaches.
    The Sophos XG, because of its insight in company Mailadresses, could potentially use this service to warn admins, that an email / password combination has been found on haveibeenpwned and immediate action is necessary.
    As a field on the Dashboard with some informations…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. custom SPX template HTML

    Pls add a possibility to upload custom SPX templates as html files (like in UTM)

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. spx

    For automated email systems it would be very helpfull, if you can create an email protection rule that will encrypt all outgoing mails with SPX that are sent from an specified host from internal LAN

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Reject invalid HELO or missing RDNS exceptions

    For internal use it would be usefull to allow exceptions for this.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. SPX reply to include attachments

    When a recipient of an encrypted mail replies there is no option to include an attachment as part of the secure reply. This was a feature on the SG, needs to be added to the XG.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. mail

    In UTM it is possible to decide in which cases users get the right to release their quarantined e-mails or only an utm-administrator. We believe a lot of users do not have the competence to decide wether an e-mail is worth to be released from quarantine or not.
    Please make this feature possible in XG, because many costumers don't want to switch to XG because of this feature. We also ask for the possibility to choose several data types for attachment based policies, not only one type. It is not really practicable to choose all data types and then to…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. SMTPS port 465

    SMTPS also works on port 465 - please add support for it.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.