XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Blocking of file transfer in Skype

    Blocking of file transfer in Skype

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Bittorrent

    My feedback is as follows;
    Every time we raise an issue ticket with any Sophos Support, They try to analyse, and finally, I prooved today How the user can by-pass your Firewall Rules and Policy.after you gone through which application of Bittrorrent has allowed by Firewall Policy, you created a new test Firewall rule/policy. & applied on my Desktop system IP & Mobile IP for testing. once you are successful on reported website URL or application, I tried with the following website which also allowed access and signature are not available in your algorithm
    https://extratorrent.si
    https://torrentz2eu.in/
    https://extratorrent.cm/
    https://deluge-torrent.org/

    http://www.publicdomaintorrents.info/

    https://bitlove.org/directory

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Block file transfers by filetype within chat apps

    Need to be able to block just executable files on chat applications. Want to allow video, images, etc but block executables.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. Unable to access play store / Gmail app on mobile phones after blocking personal gmail access from firewall

    As suggested by sophos engineer, the feature is not available currently. I need this to be have on xg firewall so that i am able to access gmail app / play store on mobile phones with wifi connection passing through firewall

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Admin role that can only manage Captive Portal configuration

    i just want to add a capitive portal access for the monitor profile user that monitor user only change header and footer notification in captive portal as per network mentinance of organisation.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Browser based proxy authentication

    Implement browser based authentication like what the UTM and all other solutions offer. This would be brilliant for the authentication to be browser based on devices with multiple users using it with the same IP

    11 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ascending Order and Search bar to find the Hosts in Firewal Rules

    If 100+ MAC hosts are added in “Source networks and devices” in firewall rule but these MAC hosts are not coming in ascending order and it is very difficult to search the specific Host and have to check host list one by one and it should have a search bar to search the host from the list.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. Synchronised app control should work in HA active-active mode

    Hi make syncronised application control work in HA active-active mode, currently it is a feature that does not work unless in HA active-passive mode. Also, inform resellers of this limitation to stop them mis selling the product.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  9. Customize or override application reports for incorrect traffic

    Ability to whitelist or reclassify known good traffic the XG detects as another type of application.

    Example. Cisco Meraki WAPS talk to each other on UDP port 9358. Our XG430s think this is something called ThunderVPN and continually report on it as a level 5 threat.

    Call with Sophos support confirms at present no way to exclude this from report or whitelist. Sam with VMWare replication. Classed as ideafarm-door (only a level 1 threat) but still shows up in reports as sending large amounts of traffic (expected).

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  10. web interface user portal

    Add option in User Portal to be able to use the XG web interface. Also be able to access other XG web interfaces from the User Portal bookmarks.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support for multicast to allow use of network scanners

    As per feedback received from your support engineer , XG215 UTM does not support MultiCast which my scan application is using. Kindly provide a patch in my XG215 UTM to support MultiCast at the earliest so that we can put End Points , Servers , Printers and Scanners in different VLANs.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Ability to change SIP URI address on the fly

    I have recently purchased Sophos XG210 & XG330 two firewall but none of them having the facility to change the SIP URI address in incoming & Outgoing traffic on gateway level.
    Sophos must include this feature in the next version because of this now I am moving to another firewall which has this feature.

    My Case ID is #8563807 your support team tried thier level best to support me but due to lack of sophos feature they coulnd manage to support me.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. QOS reduces bandwidth on Surfing Quota expiry

    After using Surfing Quota for Users. Speed should be decrees rather than stooped internet.

    35 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. Firewall alert through SMS text message

    need to add my mobile number into to the firewall i want received up time and downtime logs status via msg

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. User level application policy in Sophos XG like internet scheme on XG

    I would request to Sophos team to have feature to control/apply user level policy for application filter as well , when we migrate from cyberoam to Sophos there was feature called internet scheme where we can select the users separate policy even they have another group. Please bring this option or advice us is there any other option made in Sophos

    14 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. SCADA/ICS Application Awareness

    Please bring the ICS/SCADA protocol awareness that the Cyberoam devices have over to the XG.

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. OpenAppID integration

    OpenAppID is an open, application-focused detection language and processing module for Snort that enables users to create, share and implement application detection. OpenAppID puts control in the hands of users, allowing them to control application usage in their network environements and eliminating the risk that comes with waiting for vendors (Sophos, for example) to issue updates.

    OpenAppID harnesses the power of open source and the larger security community to provide application visibility and address the application attack vector by accelerating development of application detectors and controls. Application-layer context augments security events that tie to attack protection and allows for granular…

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Clone application filter policies

    Allow cloning of policy in Application Filter. It would be great if i can clone a policy and tweak it for other staff to use, saves a lot of time.

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. 19 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  20. Identify internet services/apps by IP/port for use in firewall rules

    Add Internet services (applications) to firewall policies. Maybe very useful to switch to a real application firewall. Now also fortinet introduced the "internet service database" to reach this goal

    10 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.