XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Per-user session timeouts

    We need session time out after 10 minutes for specific user but this setting availed for all users not for one specific user so please add this feature in firewall.
    I recommend you to add captive portal session in suffering quota where is Cycle hours.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  2. DHCP options 81

    If you use the Sophos DHCP Server and another DNS Server it is necessary that the option 81 is active to set and update the reverse zone pointer in the DNS Server.
    It is possible to add per CLI options to the DHCP Server but just to set an option without to know which fields has to be set makes no sense.
    Please add the option 81 to the DHCP Server.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  3. Integrate with prtg for monitoring

    regarding monitoring for sophos products with prtg from paessler:
    is there any planning for a partnership to create sensors for utm, xg, wireless etc based on standard sensors for prtg ?

    or - is there any planning to distribute sensors or rest api scripts to take senseful analysis of this items / regarding too - snmp and operating values.

    at the moment, it is really a lot of work to create new simple sensors for monitoring sopohs products on a base level.

    it can be nix if the events were dropped by sophos central - but it is not nearly…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sophos firewall rule routing control works.

    Routing internet traffic via another gateway should be supported when configured via a firewall rule. Case number 9360729 goes into detail with issue.

    I would also like to do policy based routes for only internet bound traffic so that internal traffic can still use the routing table of the Sophos to reach corporate networks and only internet traffic will go out via another gateway.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  5. Firewall log in CLI

    It is not Possible to have a meaningful LOG for the Packetfilter/Firewall in CLI. If the Web Interface becomes inaccessible for some reason (as it was the case yesterday for one of our Firewalls) there is no way to gather information from the Firewall Logs.

    An implementation as with UTM's packetfilter.log is missing!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  6. Need to download all LDAP Authentication user from Sophos portal

    Hi team,

    we are unable to download the active session or LDAP authenticated users from Sophos portal. please help how we can download. Although this facility was available in Cyberoam100ING

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  7. Diagnostics: Test remote IP for Open Port

    You already have the netcat (nc) program available in the console, please add the ability to test for an open port using either TCP or UDP at a specific IP address.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  8. Display hotfix status

    Information about current hotfix installation status in the GUI.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  9. One Click Download from SMB/FTP/SFTP Bookmarks

    Would be awesome if we could specify a file as the initial directory so a bookmark could be used to download a single file such as a Mac VPN client directly from a share or FTP folder.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  10. Configure Discover (TAP) Ports from UI

    Please add the ability to configure/deconfigure ports as Discover/TAP ports from the UI.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  11. 'Change system language' is dangerous and should be harder to select by accident

    Im Punkt Sicherung & Firmware unter dem Tab Firmware gibt es die Möglichkeit die Sophos XG zurückzusetzen, ich halte es gefährlich das man hier die Sprache auswählen darf, denn es kann im "Eifer des Gefechts" passieren, das man denkt das man hier die Systemsprache der Sophos XG ändern kann, dabei setzt man das ganze Gerät zurück, vielleicht sollte man, wenn überhaupt die Sprache nach dem Drücken auf Übernehmen setzen lassen.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  12. DHCP: Allow static lease of addresses within the dynamic pool

    Currently it is not possible in the Sophos XG to store static DHCP leases in the internal DHCP server where the IP addresses are located within the configured DHCP pool. This is with other manufacturers such. B. AVM (Fritz! Box) without problems possible. Thus here is the DHCP for large customers currently partly to use. When will this be a solution.

    Aktuell ist es in der Sophos XG nicht möglich Statische DHCP Leases im internen DHCP Server zu hinterlegen, bei denen die IP Adressen sich innerhalb des konfigurierten DHCP Pool befinden. Dies ist bei anderen Herstellern wie z. B. AVM…

    87 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. System Traffic via Upstream Proxy

    we need the feauture that we can tunnel the System-traffic like Pattern Updates , U2Date etc. through the upstream proxy.

    Unfortunately, this is currently not possible

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  14. Expose mail queue information via SNMP

    We'd love to monitor the SMTP queue via SNMP. We have an issue earlier in the week (#9330679) where we ended not receiving external emails for several hours because the XG 230 was having problems delivering email to our internal exchange servers, resulting in 750+ emails being queued.

    Would have been great to have been alerted via our existing monitoring solution that we had a queue building up.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  15. Azure Accelerated Networking

    It would be great if you could update the XG Firewall for Azure to be able to support Accelerated Networking. See the URL below. It seems this would be a nice selling point.

    https://docs.microsoft.com/en-us/azure/virtual-network/create-vm-accelerated-networking-cli

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  16. Retrieve device information via API

    Note: There is no category "API"...

    Add functionality to retrieve model number, serial number, cpu types, cores and ram via API. We use the API to create automated documentation for our infrastructure...

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  17. Central Registration - improvement

    currently a partner is unable to register the XG under the tenant within the partner portal, this must be completed by the tenant, would it not be prudent for the Partner to be able to register it within the tenant?

    Usually there is no one who is trained for this administration procedure outside of the partner itself.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. VPN Logs from Log Viewer and Not CLI Only

    We should be able to get this right in the log viewer and not have to go through this. The UTM had this and we need to get the feature parity up to speed. This seems so basic to me. See below for Sophos instruction to pull logs via CLI, this isn't cool.

    https://community.sophos.com/kb/en-us/123310

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow PPPoE without username and password (IPoE, NBN)

    Many NBN providers in AU do not require a username and password for NBN FTTN. Instead, they use IPoE.

    Please fix the fact you cannot save the PPPoE settings without entering a username and password. Either that, or allow you to enable DSL with connection type DHCP or static selected

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  20. Log Viewer: Filter the Firewall log to show entries with no User name

    One of the columns in the Firewall log is User name.
    If I click Add filter and choose User name in the Field box, my only options for Condition are: is, is not, Starts with and Does not start with.
    I need to find all of the log entries that have no User name. If I try to use the filter to see those entries by the Condition box to "is" and leaving the Value box empty, an error appears stating "You must enter a value for User name".

    To allow me to find all of the log entries that…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 24 25
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.