XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Radius SSO support in wireless enterprise authentication - forward accounting request to RADIUS Server

    Radius SSO via wireless enterprise authentication does not currently show the authenticated user in the live activities on the XG interface since Accounting requests are not forwarded from the Sophos Access Points. Can an update provide this functionality so users who connect via RADIUS authentication can be authenticated to the XG and therefore have web policies applied to their accounts.

    3 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. voucher

    It would be useful to allow the admin user to place a comment/description against each individual voucher for audit purposes.

    On the UTM after vouchers were generated the admin user was able to edit the Comment/Description field. They use this to record the user that receives the voucher.

    Currently on the XG, this field is not editable after the vouchers are generated.

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. david.skingley@spicerhaart.co.uk

    Would it be possible to enable SNMP on Sophos Wireless AP's?

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. MAC Address Groups for WiFi with being able to add a Name to the MAC address for SG & XG

    This will be a well sought after feature as people often leave the company or upgrade their devices and searching for the old MAC address becomes a daunting task when we need to update it or remove it.

    Can you add the feature where it allows us to create a MAC group and in it able to create individual users with multiple MAC addresses. That we can assign to a Wifi network.

    As the current setup in the SG & XG, in MAC hosts we have to enter each mac address to a list, times how many users in that…

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. add timestamps in hostapd.log

    /log/hostapd.log should include date/timestamps for troubleshooting purposes.

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. simplified wireless client list presentation

    offer a streamlined wireless client list in the gui as a single matrix of rows & columns with all info rather than requiring clicking through the 'by ssid' & 'by ap' nested menus waiting for each one to load to get basic client info. cli implementation of the same concept would also be useful.

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Notified abount Access Point UP / Down

    it could be nice to receive notification about the status of AP connected to XG (Wireless Protection), actually the state is displayed on the dashboard (numer of total AP / number of AP connected) but it is not a warning, there is no log in the Wireless Security section related to an AP that goes offline. Also in SFM there is no specific Alert/Notification about AP state.

    20 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Optional Antennas for Wireless-APs

    Hi,
    we need the option to use external antennas with the Sophos APs.
    Cisco offers a large range of antennas to cover mostly situations.

    So you can use directed antennas. sector antennas or use outdoor antennas and the AP is mounted indoor.

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Customize Hotspot mail for "password of the day"

    The customization of the daily mail for the hotspot-password "password of the day" should be possible, so it could fit the CI of the customer like other customization options in the xg, that are already available

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. WI-FI connectivity status and usage

    XG wireless lack a way to identify devices connected to the APs as well as not able to see any kind of live usage data. In SG it's possible to see how a wide variety of wireless information and live data. This really is something required in Sophos XG

    10 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Simultaneous Logins* restriction o

    Simultaneous Logins* restriction settings for each interface.

    It would be good if cyberaom gives an option to restrict Simultaneous Logins* to particular interface.
    Currently if set Simultaneous Logins* restrction for users, it applies globally to all interface

    ( if interface based restriction is there , we can assign one user to login through 2 devices on LAN and 1 through WIFI interface.

    Currently if we set 3 , they are bale to login all 3 either through LAN or WIFI.

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sopgos XG RADIUS IOS & Android Authentifizierung

    Sehr geehrte Damen und Herren,

    wir würden uns wünschen. dass es in der Sophos XG möglich ist Anmeldungen welche von einem IOS/Android über RADIUS laufen in den Live Usern angezeigt werden.

    Somit ist es möglich auch auf Smartphones Gruppen/benutzerdefinierte Firewall Regeln zu erstellen.

    Der Sophos Network Agent für IOS/Android ist sehr unpraktikabel und fällt somit für uns weg.

    Wir haben gesehen, dass in der SFOS 17.1 schon Vorarbeiten geleistet wurden, was dieses Feature angeht.

    Ich hoffe das wir hierfür zeitnah eine praktiable Lösung erhalten.

    Mit freundlichen Grüßen

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Wireless Accespoint IDS/IPS or UTM application <3

    Wireless Accespoint IDS/IPS or UTM application.
    Why? Because WAN is not the only "outside" of a network. As a Blueteam Sys/Netadmin aspirering to be an ethical hacker I consider all "acces ports/acces points/network entrys" as "Outside". Scanning for malware and payloads on Wireless Acces Point level would be an absolute godsend. (btw there is still no silver bullet for EvilTwins.. just saying xx.

    2 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Have menu to show list of devices connected on particular AP under XG

    Hello Team,

    We have customer here requesting to have menu to show list of devices connected on particular AP under XG. For your assistance please. Thank You

    4 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. rogue

    Add a classification of "External" to the Rogue AP Actions. The reason is that we want to designate third party access points which are not approved for use, but which are not rogue (i.e. connected to our network without authorization) as External.

    Sophos should then develop a set of features we can implement by policy to take action. An example would be a policy that prevents authorized devices from connecting to Rogue or External access points.

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. remove ERROR notification in access_server.log for radius

    As per case 8135146 this is a feature request.

    Using RADIUS SSO for the wireless. On the access_server log in XG we see the following" errors"
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May 25 08:51:02 [4143859520]: handle_radius_account_req: request received from radius client 172.16.1.68
    ERROR May 25 08:51:02 [4143859520]: handle_radius_account_req: received radius accounting with status 3
    MESSAGE May…

    1 vote
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Possibilidade de reiniciar AP via Interface Gráfica (WEB)

    Implementar a possibilidade de reiniciar AP via Interface Gráfica (WEB)

    3 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Able to reboot AP from XG

    It will be much easier for us if we able to reboot the AP from XG.

    18 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. 802.11 k

    Apple Devices & WiFi:
    So everybody knows that Apple has its own opinion for WiFi Roaming and switching to the next AP with the best wifi signal. I think it's a good idea to implement the 802.11k standard to Sophos AccessPoints, according to the knowledge page from Apple at: https://support.apple.com/en-us/HT202628 where they talking about the 802.11k Standard. Maybe this is a solution for Apple devices that have connection issues and do not want to switch the access point.

    26 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. SNMP

    SNMP monitoring added for Sophos wireless access points (AP100C)

    7 votes
    Sign in
    (thinking…)
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.