XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. SSL client configuration profile name

    All profiles installed in a computer are installed in vpn client as [user]sslvpn_config. If you install a new profile when another one is already installed it overwrite the installed one.
    I know it is possible to edit the configuration file name for that but it would be great if the profile were installed with a name like [user]@device or something like that.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  2. Integrate with prtg for monitoring

    regarding monitoring for sophos products with prtg from paessler:
    is there any planning for a partnership to create sensors for utm, xg, wireless etc based on standard sensors for prtg ?

    or - is there any planning to distribute sensors or rest api scripts to take senseful analysis of this items / regarding too - snmp and operating values.

    at the moment, it is really a lot of work to create new simple sensors for monitoring sopohs products on a base level.

    it can be nix if the events were dropped by sophos central - but it is not nearly…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  3. Sophos connect client allowed users

    The Sophos connect client permit list should be able to add users by active directory security group. We are a firm spread across 9 offices and the STAS works great on 17.5 MR9 to load the users to all firewalls but the process of adding all users into the connect client is really laborious especially when there is high turnover.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  4. With active MPLS link bypass Particular Server IP Traffic through IPSEC S2S VPN link

    A particular Server IP address which is included in the Static Route range for MPLS

    connection need to redirect through IPSEC Site to Site VPN link.(Case ID 9440485)

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Email Alerts

    Please Enable the Feature of Email Alerts, whenever the users try to access any Blocked Website.get Email alerts who trying to access.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  6. Alert on advance threat Protection and Web protection

    PLease allow us to receive alerts for advance threat Protection and Web protection. If there is any kind of DoS or DDOS attack and any type of Web application blocked, admin can get alerts instantly on email.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. PPPOE time period option to reconnect after long outage

    PPPOE connection does not reconnect after being out of service (Outage) for too long. Need an option to set a time period for a attempt to reconnect after a long outage. The only solution for now is to get back to the office and reconnect manually which is a pain.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Microsoft sstp vpn pass through WAF rule

    At the moment, it is not possible to publish Microsoft SSTP server through WAF rule. Traffic is blocked at the Proxy module level. It would be good if this module were told about SSTP.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Webserver Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Sophos firewall rule routing control works.

    Routing internet traffic via another gateway should be supported when configured via a firewall rule. Case number 9360729 goes into detail with issue.

    I would also like to do policy based routes for only internet bound traffic so that internal traffic can still use the routing table of the Sophos to reach corporate networks and only internet traffic will go out via another gateway.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  10. Major XG Log Improvements

    The log would benefit from the following changes.


    1. When scrolling thru the log the column headers are not sticky.

    2. The ability to sort each column with ascending or descending.

    3. The ability to filter events using a time range and place under the "Timer Filter".

    4. Change the word "Timer Filter" to "Time Filter".

    5. Add the ability to filter on a date range. Add this button next to the "Time Filter" and call it "Date Range".

    6. Ensure export to xls downloads all entries. Seems to stop at 100 records or less.


    7. Add the ability to break the logs up on pages if…

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  11. Load Balancing of inbound SSL VPN connections

    It is better to have load balancing on SSL VPN. This will help us in managing the traffic when 50 users connected to SSL VPN

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Firewall log in CLI

    It is not Possible to have a meaningful LOG for the Packetfilter/Firewall in CLI. If the Web Interface becomes inaccessible for some reason (as it was the case yesterday for one of our Firewalls) there is no way to gather information from the Firewall Logs.

    An implementation as with UTM's packetfilter.log is missing!

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. password of the day

    Possibility to use encrypted(WPA2 Personal) Hotspot with Password of the day, with only enter the Password in WLAN Connection. Actually you have to enter the Password to connect to the WLAN, and then you have to enter it again at the Login homepage.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. REQURIED DEB FILE SOPHOS CLIENT INSTALLATGION FOR UBUNTU AND LINUX PLOT FORM

    Dear team my suggestion is kindly create the deb file for ubuntu and linux plot form as like Windows and MAC systems.
    It will be very help full if create the deb file for install and set the credential.
    whatever the procedure given in the Sophos web site for installation it will be like challenges.

    Kindly do the needful on urgent basis.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. s3.amazonaws.com link not working through fqdn.

    s3.amazonaws.com link not working through fqdn. [#9303687]

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. VPN tunnel keep-alive function for outbound connections

    Our XG IPSec VPN Tunnel to Microsoft Azure does not stay up, because when there is no activity Microsoft shuts down the tunnel. To overcome this, we have had to implement a 5 minute ping to each of our 5 warehouses from a VM in Azure. A keep alive feature on the XG side would solve this problem. Other firewalls, such as Dell's Sonicwall, have a keep alive feature that addresses this issue.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  17. Need to download all LDAP Authentication user from Sophos portal

    Hi team,

    we are unable to download the active session or LDAP authenticated users from Sophos portal. please help how we can download. Although this facility was available in Cyberoam100ING

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. we require all reports(WAF/SSL VPN/Sandstorm) date wise

    we require all reports(WAF/SSL VPN/Sandstorm) date wise

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  19. Diagnostics: Test remote IP for Open Port

    You already have the netcat (nc) program available in the console, please add the ability to test for an open port using either TCP or UDP at a specific IP address.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  20. Display hotfix status

    Information about current hotfix installation status in the GUI.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.