XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. I would like Sophos Home Premium to support "Synchronized Security".

    I would like Sophos Home Premium to support "SOPHOS XG Synchronized Security".

    7 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
    • Allow SFM or CFM to have a central repository of Applications for synchronized application control

      Synchronized application control is an amazing feature; needing to manually categorize applications separately on every firewall isn't. Being able to have a central location for all of them would be great, as you'd be able to have your known bad/good applications available right out of the gate.

      2 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
      • not to detect Synchronized Application Control based on path

        Currently, Synchronzed Security detects application based on installation path of an application. It could easily cause problem, as the same abc.exe in C:\ and D:\ on different computer is detected as two different application, which results in huge workload of firewall administrator.
        Please change the mechanism how Synchronzed Security detects an application, for example hash value of abc.exe.

        4 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          1 comment  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
        • Email Alert for Heartbeat status + Customize the heartbeat block page

          It would be good to have an email alert when any endpoint goes to critical "red" mode so that we know the reason for internet not working.

          Also if we can customize the heartbeat block page it would be good.

          2 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow heartbeats from more than one Central account

            Synchronized Security is a really cool idea, but the current implementation really limits what can be done; and in many cases prevents deployment of Synchronized Security.
            A couple of changes could greatly expand usage:

            1. Support/recognize heartbeats from more than one Sophos Central account.
            As a Sophos partner, I run Sophos Endpoint on my laptop that I use at Sophos client sites.
            If I deploy FW rules that use heartbeats, I effectively lock myself out.
            Just because you have a heartbeat does not mean you have a heartbeat that the XG FW will acknowledge/accept.
            Sophos XG clients would greatly benefit…

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
            • Heartbeat Endpoint Listing Dashboard when all endpoints are Green

              When viewing the Heartbeat dashboard, if all endpoints are green status, you can't view them. If some are yellow or red, they show up by default and you can add the green ones by clicking on the correct checkbox. But if all are green, there is no such checkbox, and no endpoint list presented. Would like to see that enabled.

              6 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
              • Syncronized Security without Sophos Cloud on own hardware

                Possibiltiy to make a own environment for the Syncronized Security on our own hardware, to use it without Sophos Cloud like a management-server for communicating XG with Endpoint.
                Thanks.

                2 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                • Use synchronized security to deploy firewall cert to endpoint for SSL scanning

                  having the endpoint be able to deploy the firewalls CA/Cert to perform the SSL scanning would be a huge asset to assist deployment and improved security in non AD environment especially

                  13 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Make this work for on premise!

                    Make Hearbeat work for on premise installations with a local SFM and Endpoint. The traditional customers wont't update to cloud if Sophos FORCE them.

                    The customer must have a choice - do I want it in the cloud or in my own datacenter.
                    We're loosing them.....

                    4 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                    • Enable features for home version

                      Hi,

                      I would like to ask for the HA function in sophos xg home lots of people run it in homelab and like to experiment with it.
                      Also 1 or 2 endpoint licenses to use heartbeat function
                      Last a sandstorm option maybe limited in a way.

                      14 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                      • Can XG firewall user authentication be added to Sophos enpoint client?

                        Sophos endpoint client already has users information. Why not have that info shared directly so authentication does not need multiple configuration points.

                        14 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          1 comment  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                        • Sophos Cloud Cache Server Support

                          Please add support for the firewall to be a cache server for Sophos Cloud AV, I would prefer not to setup a Windows server for onsite virus patter caching.

                          9 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                          • Policy Routing based on Web Categories and/or Applications

                            it could be very nice to have the ability to make the routing decision based on the Web Category (Applications too) within the web policy (or apps filter) for exemple, so we can use the main Wan or Gw for business related and productive categories and Apps and all the rest goes through the secondary Wan connexion usually used for backup for exemple. and it can be blocked if primary wan or gw is down so the backup wan or gw gets used for the business traffic.

                            57 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              3 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                            • SFM unable to sync via push with managed firewalls through PAT/NAT

                              We were unable to get the push mode to work when syncing a SFM with a managed firewall. Ping works between the SFM and all firewalls, but no syncing or pushing. The workaround is using the fetch/pull configuration. Though this is a technical issue, some of your competitors have faced a similar issue and have created workarounds. We look forward to future updates and working with you further.

                              Please see similar issues here: https://community.sophos.com/products/xg-firewall/f/43/t/80124 and https://community.sophos.com/products/xg-firewall/f/119/t/78302.

                              3 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                              • Sophos Cloud Deployment Behind an XG -Firewall(Initial deployment)

                                Security heartbeat is indeed a great innovtion.But issue comes ,when it comes to deployment of sophos cloud in a corporate/Enterprise network with 500 odd users.Rite now,Installer which is delivered over mail which is a quick installer & some 150 +MB need to get downloaded from internet each time a user clicks on setup link eating about 30 minutes for installation on a single client machine.So how much time for a 500 user network & load it takes on network.
                                So most IT administrators reluctant to go for cloud deployment when it comes head-office deployments.
                                So this idea deals with an…

                                19 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  3 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Using Sophos Home for Home licence

                                  The Security Hartbeat uses the commercial version of Sophos cloud services.
                                  For home licence users it would be nice to have the Sophos home cloud instead of to exchange the Sophos endpoint protection of UTM).

                                  67 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    1 comment  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Intergrate Alarm output into RMM tools

                                    With the new XG firewall with the heartbeat function. Nearly all IT reseller/Partners use RMM tools, these alarms need to be integrated into these tools. (Connect wise, kasya, etc).

                                    Adding a connector into these tools will do the following:-

                                    Integrate automatic Ticket generation for alarms and alerts from the Sophos XG platform into the IT billing and Ticket system.
                                    Stop IT companies having to go and manage multiple web pages and different sites to generate Tickets of work.
                                    Be a powerful difference between Sophos and other Firewalls sold.
                                    This should not be very hard to integrate into the Partner Web…

                                    9 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                    • Web Protection: Enforce policy on Sophos Endpoints

                                      It would be amazing to configure the Sophos Endpoint (not the UTM-provided one) to inherit the Web Filtering policy defined in the UTM.

                                      25 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Don't see your idea?

                                      Feedback and Knowledge Base

                                      icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.