XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. NDR

    I would like the ability to disable NDR's.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Key word blocking

    Our SG-210 had the ability to block/quarantine emails that had key words. It also showed the originating IP that the XG does not provide. These were great tools that I would like back.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. unable to check detail report of flooding IP address without live time

    We are able to check the flooding IP in live environment but not in rest time that is most priority from network security analysis as well as system admin. please help to enable on priority.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  4. Tunnel Bandwidth

    VPN tunnel bandwidth/Traffic monitor

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Remote VPN login session details

    Remote VPN login session details

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Revoke DHCP lease from client

    The ability to revoke the DHCP leased out to certain client.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. mithungupta@ncuindia.edu

    Currently the network traffic policy in the firewall is useless because firewall access server do periodic authorization for the users every 3 minutes. Due to this users are able to download more data they want. Time for periodic authorization for user should be decrease or the feature of increase or decrease should be in dashboard.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication clients  ·  Flag idea as inappropriate…  ·  Admin →
  8. office 365 SMTP Host set up

    Have a pre-configured O365 smtp host option, which includes all Exchange Online Protection IP address ranges. So we dont have to manually add in all of the reccomended ones from Microsoft

    https://docs.microsoft.com/en-us/office365/enterprise/urls-and-ip-address-ranges

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. WAF and DNAT Wizard

    v16 had a nice and simple wizard to use. With v18, the DNAT wizard is poor in terms of graphics and options you can select. WAF has became a action and customers are not able to find without asking or google it. Please bring the "old" wizard and the old different icons, as the idea of having different icons and wizard was nice. I also suggest to have a wizard for SD-WAN inside firewall policy. You can change Firewall tab to Policy Tab.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  10. sophos connect

    Sophos connect automatically connects upon windows startup without clicking connect button, is there a solution for this already?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  11. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow to create Rule based on the Application.

    Please, Allow the creation of Application based Rules just like with any NGFW competitor.

    Currently on XG v18 you need to setup the service, then the web filter, and for last setup a Application filter just to block/allow something.

    Allowing to create the Rule directly based on the application instead of the service would allow for much better management of Sophos XG.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. XG logging - following proxy connections

    At the moment to follow a user trying to connect to a site using 8080 proxy, I have to look at the firewall log and then the web log and back again, it is quite difficult to show that a user is failing authentication, firewall log shows traffic on 8080 to the XG, no traffic out to destination, also it would be helpful to add to the firewall log, when an 8080 is being used, what the ultimate destination IP is.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  14. Since reports are based on the UTC timezone, the times recorded in the reports are different to the ones recorded on the central dashboard

    Since reports are based on the UTC timezone, the times recorded in the reports are different to the ones recorded on the central dashboard

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  15. Reports, Application/Web, Search Engine

    In reporting, we need the ability to be able to:
    1) Search all the result pages, not just the current page of results.
    2) Download all the result pages, not just the current page of results.

    This applies specifically in our case to Reports, Application/Web, Search Engine

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  16. office 365

    Integrate Microsoft AzureAD for user identification for user based XG firewall web policies and reporting. I saw the request for Azure Directory Services which is not free. AzureAD is free with every Office365 tenant. Sophos Central has AzureAD sync, expand this to XG Firewalls as another Server or Directory as a Service model. Seams like this bridge is already half built.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Authentication clients  ·  Flag idea as inappropriate…  ·  Admin →
  17. Migration Tool For Sophos Iview

    Hello Team,

    We have customer here requesting to have migration tool for Old Iview for UTM to IviewV3 for XG OS. For your assistance please. Thank You

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  18. Change mac-address to WAN alias

    Hello Team,
    I need you to implement the mac-address change function for Aliases. I would need to differentiate the mac-address between the ip associated with the physical card and the ip associated with the alias.
    I would not be wrong but in the SG series this was possible.
    Thank you.

    Andrea Protto
    Biesse Sistemi srl

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Hardware  ·  Flag idea as inappropriate…  ·  Admin →
  19. Azure Virtual WAN

    Become Virtual Wan Partner Azure.
    It is a business opportunity for the manufacturer and for Sophos Partners!
    https://docs.microsoft.com/es-es/azure/virtual-wan/virtual-wan-locations-partners

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  20. A way to show SFP module details from the GUI or via the shell console

    Hello Team,

    We have customer here requesting to for a way to show SFP module details from the GUI or via the shell console for Sophos XG Firewall.

    For your assistance please. Thank You.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Hardware  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.