XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Notification for failed HA synchronization

    Email notification for any failed HA synchronization

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  2. port monitoring

    I know there was another idea post for Decryption port monitoring but I'd like to have full blown Port Monitoring as found on all managed or semi managed switches as well as most Ent grade Firewall apps from other developers so this would be a powerful addition for diagnostics / hunting over XG's own reporting functionality which Ive found isn't sufficient, Packet Capture is limited to 2MB at a time and their config and filtering doesn't have custom option facility.

    Hope this idea gets votes and would love to see it added to XG sometime in the future.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  3. port monitoring

    I know there was another idea post for Decryption port monitoring but I'd like to have full blown Port Monitoring as found on all managed or semi managed switches as well as most Ent grade Firewall apps from other developers so this would be a powerful addition for diagnostics / hunting over XG's own reporting functionality which Ive found isn't sufficient, Packet Capture is limited to 2MB at a time and their config and filtering doesn't have custom option facility.

    0 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  4. Log archiving in external server

    As per my company policy we have to retain 3 years log, is there any way in Sophos xg where we can archive daily log reports to external servers automatically without using GUI.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. report

    Dear Team

    currently not able to check user wise web and application report like who is using tor proxy or any other web or application.

    example i have downloaded movie from any web but there is no option to find which user have access which application.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  6. Change in configuration

    I would like to have a feature in XG when there is a successful admin login and if any changes done in XG on admin login.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  7. System Graphs Report to generate

    System Graphs Report to generate from diagnostics menu

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  8. Device last reported location.

    Ability to view the Last recorded location of the device

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. Creation of log / Record specific for a singol user and save like a template

    Currently is not possible cCreation of log / Record specific for a singol user and save the it like a template. Is it possible implement this feature?
    R

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  10. FourEyes - Data Anonymization - Audit logging

    When Data Anonymization is enabled, one would think that it was possible to see when and who has initiated an de-anonymization of anonymized data, however this seems to be missing. We need this for compliance, it is simply not enough to anonymize the data.

    The only logs related to this is authorization events in the form of logins, but these events does not reflect an de-anonymization event.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  11. Bandwidth Monitoring & Usage Reporting

    Hi Sophos,

    We would you to improve sophos xg for support usage monitoring every traffic shaping rules and provide the reporting tools also.

    Because now sophos xg can limit bandwidth for users but for monitoring just provide from linux base its not informationable for common user, we need to monitoring in detail usage per vlan based/subnets, from system graph just inform for all traffic accumulation.

    we hope sophos can improve that i trust its can be usefull tools.

    Thankyou,
    Adi

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  12. reporting

    Hi,
    It has become apparent for us to try and implement Traffic Shaping rules for specific interfaces - in our example we have couple of rule and 4 ISP provide circuit in that
    utilization of bandwidth on rule base report WAN usage.
    please prepare the bandwidth occupancy based on the functions such as rule name Annotation, DI, OP, SF etc

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  13. VPN detail report

    We have Migrated our Firewall from 18.0.3 MR3 to 18.0.4 MR4 from then Detailed report of Date wise VPN Usage is not coming from Fireawall

    We need date wise report with data like


    • Who accessed VPN (User name)

    • From Which Public IP and with VPN IP (Source)

    • Which Server it accessed (Destination)

    • Which Service Used (Protocol)

    • If data transferred , how much data transferred (data size & File Transfer details)

    • When Session Authenticated & when Started (Start time)

    • When Session Terminated (End time)

    • Success and failure incidents count its details (Audit Logs)

    Please help as early as possible

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. Policy Test should display blocked for unauthenticated users

    When the option "Use web authentication for unknown users" is selected in the Firewall Rules, the Policy Tester shows the result as "Allowed" even for unauthenticated users. I suggest it should display as Blocked for unauthenticated users.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. API user last login other details

    Want to get the following details for VPN users.


    1. User create date

    2. User last modified date

    3. User last connection date

    4. User last date of password change

    This information via API would assist with internal compliance audit and auto disable of accounts not in use as well as automated emails to change passwords.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  16. Ability to pull traffic reports that display IPs as well as Associated Mac Address of the PC using the IP.

    We would like the ability to generate traffic reports from our XG firewall that include the Mac address of the PC using an IP at the time. Currently we can see the IP and the Host name of the PC however since DHCP can lease that same IP out to multiple computers within one month, we would like a way to differentiate which PC used the IP and how much traffic Each PC used. Thus displaying the IP alongside with the associated Mac address and total data usage would be very ideal.

    We would like to pull a weekly report…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  17. Include clientless access logs in the messages sent by syslog reporting service of the XG FW

    Hello,

    We are using clientless access VPN to allow remote VNC sessions.
    XG firewall realease is : SFOS 18.0.3 MR-3
    In order to create dashbords for clientless activity and bookmarks usage correlated with data from other systems, we need to centralize clientless activity logs from the XG FW to a global log server.
    On the XG firewall, we configured syslog for all logs but we were unable to receive logs for clientless detailed sessions. They are visibly not handled by syslog.
    The only way to access the logs is to read the /log/clientlessacces.log file directly, or to download it

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. Gateway failover notification

    Gateway failover notification required by mentioning ISP name in subject line as in ver18 getting in mail body only

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  19. Gateway failover notification

    Gateway failover notification required by mentioning ISP name in subject line as in ver18 getting in mail body only

    0 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  20. Granular VPN Report

    I would like to see the XG VPN report yield a detailed view of each successful connection and the duration of said connection (similar to the UTM's remote access logs). We currently get a detailed view of failed attempts, but an aggregate of the successes per user.

    This is required for compliance purposes.

    9 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 8 9
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.