DSCP is a new feature but can be only used on User/Network rule. I would like to see the DSCP even on BAR in order to better manage multiple ISP.
Cyberoam has this feature.
Other UTM/WAF vendors integrate virtual patching features on their product. A really brute force protection in missing on WAF too.
Please add it.33 votes
It would be very nice if Let's Encrypt certificates (letsencrypt.org) can be generated directly from the XG Gui. So that the "Let's Encrypt Client" is integrated in the XG. Would it be possible?
Best Regards470 votes
We’re considering this
Adding a Business application non-HTTP rule you should have the option to use "Objects > Hosts and Services > Services" objects as the Port Forwarding target.
This reduces the rules required and keeps it more unified..
At the moment you need to add multiple rules I.E. A hosted service uses a mixture of single ports, port ranges and both tcp/udp will require multiple rules to achieve something very simple.94 votes
This is currently being developed for inclusion in v17
At the moment there are different type of authentication missing even on UTM9 against ISA server 2006, such as:
1. Two-factor authentication using forms-based authentication and a client certificate.
2. Delegation of credentials by using NTLM or Kerberos authentication.
3. Kerberos constrained delegation.
4. Secure Sockets Layer (SSL) client certificate constraints
In this way, XG and UTM9 are the very alternative to ISA Server.126 votes
- Don't see your idea?