Palo Alto has a wonderful feature called DNS Sinkholing( https://docs.paloaltonetworks.com/pan-os/7-1/pan-os-admin/threat-prevention/dns-sinkholing#) where infected machines on the inside network that send dns requests external for malicous urls can be easily identified. This is achieved by resolving bad urls to a Sophos Public IP address and then every internal machine trying to access this IP is known to be infected with malware. Currently with Advanced Threat protection we can only see these DNS requests from the internal DNS server and not the end device which makes tracking down infected machines a much greater task.1 vote
Ability to whitelist or reclassify known good traffic the XG detects as another type of application.
Example. Cisco Meraki WAPS talk to each other on UDP port 9358. Our XG430s think this is something called ThunderVPN and continually report on it as a level 5 threat.
Call with Sophos support confirms at present no way to exclude this from report or whitelist. Sam with VMWare replication. Classed as ideafarm-door (only a level 1 threat) but still shows up in reports as sending large amounts of traffic (expected).1 vote
The "block google QUIC" checkbox does not actually block QUIC, as it says, but instead blocks all UDP on port 80 and 443. 443 UDP is not always QUIC! This is misleading, and should be renamed to "Block UDP 80 and 443 (like Google QUIC)".7 votes
Block fortinite app in from games section in application category4 votes
I'd like to see NetMotion Mobility Client added to the list of applications. It's vital to our business functions.1 vote
Hi Sophos Team,
May I ask if you can add this kind of feature that is an application detection? its like on remittance concept whenever you have this kind of wallet app then the firewall will allow you to have access on internet.
While if you don't have this kind of application or wallet then the firewall or endpoint will redirect you from google play as an example to download the said application.
Request To Add the application Mobile Legends to be availablel under application filtering of Sophos UTM and XG
Request To Add the application Mobile Legends to be control under application filtering of Sophos UTM and XG
Customer is requesting to add the games mobile legends under Application Control on Sophos UTM and Sophos XG
Application: Mobile Legends
Reason for request: This is Game is not filtered on Sophos SG and XG Application Control2 votes
Current SFOS 17.0.2 MR-2 still don't have Google play store on the application control signature , while the traffic is false matched as Youtube streaming.
Can't block or Traffic shape google play store traffic41 votes
The ultrasurf proxy restriction in XG firewall gives false response. The log viewer indicates that the application is being denied while the user is bypassing all the policies with a simple extension in chrome browser. It would be better if it rather said allowed than give false information.8 votes
Please add Dialpad to the list of Applications on the XG.3 votes
TRY TO BLOCK CCPROXY APP.3 votes
There is no Application Specific Signature for Ring Central, which means we can't apply Application-based Traffic Shaping Policy for it.
Please add Ring Central as a defined Application.
Customer would like to allow Text for Whats App but blocks the block download & Upload of Images,video & audio7 votes
Many online games are detected (incorrectly) as various tunnels/proxies or P2P applications. more work needs to be done to detect games such as
Elder Scrolls Online
This will allow us to use the application filter to allow games from our residential network while still blocking malicious & unpermitted applications.
Thank You12 votes
The XG doesn't correctly identify Apple FaceTime traffic. It instead just lists it as "Other Applications." Until it is identified, I'm limited in how to apply rules to is such as bandwidth constraints or to block it altogether for some users.14 votes
Can you add the ability to detect what operating system a computer is running (based on HTML headers perhaps) and warn if certain operating systems such as XP are seen?5 votes
- Don't see your idea?