XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Option to select which page to load after logon

    The control center page which appears upon logon with the graphs, stats, and sfos update popups can take a very long time to load on lower end hardware such as xg105's. Working with 50 of these becomes time consuming. A configurable setting to select which page is the default after logon such as Administration, Firewall, Network would be helpful for those of us who don't need the control center every time.

    1 vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    • Persistent DHCP Leases on unexpected power off / power loss

      On unexpected power loss or shutdown, when the XG Firewall powers back on, it is unaware of any previously leased DHCP IP addresses. Because of this, the XG Firewall leases out already in use IP addresses, causing conflicts, until either the original lease on the device expires or unless the device is smart enough to recognize this and ask for a new IP address. This can cause significant connectivity issues on large network segments with DHCP enabled.

      Other *nix distributions handle this by writing a temp file containing active leases each time an address is handed out so that the…

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
      • Local Admin UI shows different config than Sophos Central

        When the XG is configured via Sophos Central the local admin UI:

        1) No longer shows the actual configuration of the unit - only the old config from the time administration was switched to SC.

        2) The local admin UI still allows configuration changes to be made. However, these changes are not applied to the unit. There is no warning about this either.

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
        • Add notifications

          Hello,
          Please add more notifications to sophos xg firewall like RED fails, system restart, and other options that was available in SG
          Thank You

          4 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
          • Cycle Surfing quota: Per session

            Now the minimum cycle is a day. If you can enhanced this to per login session, this would be great.

            2 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
            • firmware update without service interruption

              firmware update in High Availability (HA) mode should be possible without service interruption

              4 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
              • office 365 mail Notification

                Why does not 17.5 is not supporting the office 365 mail notification. Need to allow the feature in the XG firewall,.

                2 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                • Change front lcd display text

                  It would be great to change the front LCD display text using Advanced Shell.

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                  • Federico Poni

                    It would be useful to be able to set the number of simultaneous logins for guest users during bulk creation, or to set up simultaneous logins in the guest user creation template

                    2 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                    • Firewall Rule backup wan Server all connections over primary

                      Add the option for Action on Failback on the Firewall Rule itself when using the Primary WAN and Backup WAN options.
                      We have situations where we have a Voice Firewall rule that is for the customers Hosted phones system. We offer the ability to have failover WAN on the system(phone and firewall). In cases due to poor ISP quality the backup WAN (on the voice rule) is not ideal for VOIP and has issues like echo, Dropped packets and so on.
                      In a failover event we are able to have there phones starting using the backup connection however when it…

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                      • Dear Sophos Team, Please upgrade Sophos XG firewall with feature individual Userwise policy. Thanks

                        Dear Sophos Team, Please upgrade Sophos XG firewall with feature individual Userwise policy. Thanks

                        2 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                        • Complete

                          Create complete(!) backups. There are many things missing in the Backup i.e. SPX-Text Mail-Qarantine.

                          There are also Bugs in Backup. When restoring a full backup some Groups and Hosts getting new Names (like old Name was: 'group' new name was 'group_123'

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                          • Change services attached to rule

                            There should be no reason to not be able to change a service that's applied to a rule (like a port change within the service) while it's attached to a rule.

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                            • host

                              Ability to use IP Host name (Console --> System --> Hosts and services) when creating an IP List (Console --> System --> Hosts and services --> IP Host --> IP List) . I would like to define the name/IP once, and when I change the IP for that name, all instances in IP Hosts, Rules, Routes, etc... are changed.

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                              • Apply multiple rule changes all at once

                                Allow for the ability to make multiple changes across the firewall and perform a one time commit of all the changes.
                                Benefits:
                                1) Ability to make linked changes ie make an interface change along with associated rules or service changes
                                2) Improved UI performance as you don't have to wait for each change to be applied before the next action can be performed
                                3) Allow for rule/changes reviews and correct errors before applying
                                4) Allow for a rollback timeout implementation eg make changes, commit and then confirm within xx minutes, if not rollback to previous config in case of getting…

                                3 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                • Please has all Public IP vs Internal IP NAT IP information in tabular format,

                                  Hi Team- could you please has all Public IP vs Internal IP NAT IP information in tabular format,every time i would need to check every NAT/Business rule .

                                  This is frustrating and time consuming process and has chances of wrong assessment.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Search firewall rule for an ip that never get connected to the firewall

                                    As I asked here

                                    https://community.sophos.com/products/xg-firewall/f/firewall-and-policies/110382/search-firewall-rule-for-an-ip/395411#395411

                                    i would like to have this feature .
                                    i would like to be able to find which rule contain a specific IP .

                                    let’s say I have 200 rules and I don’t remember which rule contain a specific IP and that IP never connect to the firewall , so I can’t use the log viewer and also i don’t want to use the policy test .

                                    I would like to be able to search inside the rules for a specific IP using the GUI

                                    5 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                    • reason for wrong credentials should be logged in web console

                                      reason for wrong credentials (OTP/access server, ...)
                                      should be logged in web console as this is done in /log/access_server.log

                                      Otherwise you never know what part of credentials are invalid.

                                      3 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                      • klisiewicz.roman@gmail.com

                                        Can you please add ability to make a reservation for addresses that in the scope of DHCP server ?? or just from DHCP menu add an option "add to address host" or else.. so easy ! :)

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Native VLAN in sophos XG

                                          NATive VLAN option is not available in SOPHOS XG, it is availbale in cisco, juniper, huawei and so on. kindly add it in upcoming releases

                                          5 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 34 35
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.