XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. multiple addresses in dhcp relay on xg firewall

    Describe how 2 addresses in a dhcp relay are processed, please.

    Round-robin?
    Failover?
    Is the second address completely ignored?
    Are both addresses tried, fastest response wins?

    If Round-robin, please add option to choose Failover.

    If Failover, what are the failover conditions?

    Please allow at least a timer condition that can be set.
    If Failover conditions are met, when does the relay revert back to the primary address?

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  2. Encrypted Backups - Option to use or not use

    Allow to not encrypt backups on XG Firewall 17.5. RIght now we are forced to do encrypted backups. It would be nice to have an option to skip it.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  3. SSO Client for Mac

    Could you please add an SSO Agent / Client for Mac OS devices?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  4. missing DigiCert root in Certificate Authorities

    Missing DigiCert root in Certificate Authorities
    Uploaded PFX certificates from DigiCert are signed with red cross because root certificate "C=US/O=DigiCert Inc/CN=DigiCert SHA2 Secure Server CA " is missing in Certificate Authorities.
    So this certificate cannot be added as appliance cert.
    Please add it.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  5. Integrate NTOPNG or similar funtionality into SFOS

    There is a Linux utility called ntopng https://www.ntop.org which is very good at identifying and classifying network traffic at high speed. If you could integrate this into SFOS it would be a very powerful tool.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Declined  ·  0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  6. Option to select which page to load after logon

    The control center page which appears upon logon with the graphs, stats, and sfos update popups can take a very long time to load on lower end hardware such as xg105's. Working with 50 of these becomes time consuming. A configurable setting to select which page is the default after logon such as Administration, Firewall, Network would be helpful for those of us who don't need the control center every time.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  7. Complete

    Create complete(!) backups. There are many things missing in the Backup i.e. SPX-Text Mail-Qarantine.

    There are also Bugs in Backup. When restoring a full backup some Groups and Hosts getting new Names (like old Name was: 'group' new name was 'group_123'

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  8. Routing table does not show IPSEC networks

    The CLI command 'route' does not show IPSEC networks.

    SFOS 17.5.0 GA

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  9. internet schema

    I want to Internet Schema feature on Sophos XG firewall.
    This features is very useful but it was removed on a new UTM. Therefore I don't want to upgrade my Cyberoam aappliance to Sophos XG Firewall

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Declined  ·  0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  10. "Data limit (Traffic Shaping) reached contact administrator" intimation needs its pop-up to be displayed in front of screen or in "Client A

    Client Authentication Agent pop doesn't display in front of current screen.
    But instead of that can we get a notification in task bar application icon mentioning "Data limit has been exceeded contact administrator".

    If this is not possible can we have a trigger inform of email, message etc mentioning your data limit has only **mb or customized option for the same.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  11. 4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  12. Business Application Rule Change Destination Port

    When you select Change Destination Port and enter a value, the tick box should remain if you go and enter/edit the rule again. As it is at the moment the tick box is removed and its not clear that the destination port is what you have enter (previously). And if you wish to change back to the default port (then you would just remove the tick box), as it is atm you have to enter that port by selecting change destination port

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. Firewall rule display

    In the default view, Business Application Rule do not show Source Hosts. Not even when you hover over the field. Cyberoam UI does show this handy and import information. You can see at an instance if you have the rule open to all or restricted to certain host/networks.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  14. GuestAP Network Interface Hide

    If the device you have does not support wireless, you should hide the GuestAP Network Interface,

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  15. WEB & application filter for user and user group on XG firewall

    Please add the feature of web & application filter on user and user group.
    It is useful for XG

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  16. Provide redirect option for either HTTP or HTTPS in Guest user settings portal, as it blocks the access on Google Chrome

    Provide redirect option for either HTTP or HTTPS in Guest user settings portal, as it blocks the access on Google Chrome

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  17. SSO

    I would suggest SSO client compatible with Samba4 as domain controller

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. new firewall rule is immediatly active; default should deactivated

    new firewall rule is immediatly active; default should deactivated

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  19. Display Gateway configuration of rule in the Firewall page

    On the general Firewall page where you see a list of all of your rules, it would be nice to see what the gateway configuration is for each rule. Since the multipath routing occurs in the firewall rule itself it would be very helpful to get an overall view like you can get in the Multipath Rules tab located in UTM.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  20. Request-URI Too Long

    Add option to change the accepted string length for the API XML call to avoid the error:

    Request-URI Too Long

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.