XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. XG Wireless Logging is unavailable since first release

    SFVH (SFOS 17.5.8 MR-8) ; Home license

    For whatever reason, XG disallows logging for wireless functionality.

    I can select the box under Configuration -> System Services -> Logging > Wireless, hit "Apply" and the selection is cleared.
    I can confirm afterwards that system logs contain no WiFi activity entries.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Web Category upload /download controls

    I have a "Blocked URLs" Category on 5 firewalls, and I need to update all 5 firewalls whenever I need to block a new **** / torrent / gambling URL.
    Please provide a central method to update a user created Category. The update method should also allow deletion of URLs.

    The current "upload from text file" method is pretty smart, it appends only the URLs that are different than what is already in the Category so as to avoid duplications. But the upload method does NOT allow deletions.

    Consider allowing deletions by removing URLs that are in the Category but…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Can Cyprus (Greek) and Cyprus (Turkish) be added?

    The Greek part of Cyprus is a member of the EU. An EU country group would need to contain the Greek part of Cyprus, not the whole of Cyprus.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  5. Unable to access play store / Gmail app on mobile phones after blocking personal gmail access from firewall

    As suggested by sophos engineer, the feature is not available currently. I need this to be have on xg firewall so that i am able to access gmail app / play store on mobile phones with wifi connection passing through firewall

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Ability to use non standard port for configuring web server under XG

    Hello Team,

    We have customer here requesting to use a non standard port (other than port 80 and 443) for configuring web server under XG. For your assistance please. Thank You.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Webserver Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. is it possible to display e.g. Hoste IP/Host FQDN items or groups, how and where the object is being used?

    is it possible to display e.g. Hoste IP/Host FQDN items or groups, how and where the object is being used/linked in the XG?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  8. VPN client autoupdate for remote users

    Is there a Sophos idea existing, that the VPN client should be checked for updates when the VPN client dials in ?
    if necessary, automatically updated before the VPN client connects.
    The download is provided by the XG Firewall and the client is up-to-date without admin rights or end user oder administrator intervention.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add the Option to Download Windows 10 Always ON VPN Profiles

    Microsoft supports adding always on VPN profiles to Windows 10, would be great to be able to have an Always ON VPN profile that can be generated and downloaded from the VPN page in WebAdmin on the XG Firewall.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  10. Grant Admin Rights to AD Groups instead of just users

    Would be great to be able to grant admin rights to an entire group instead of just a user.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  11. Bypass voucher login for specific host

    I have third-party WiFi APs connected to a network port on Sophos XG firewall and hotspot/voucher defined on Wireless configuration. I have specific hosts that need to be able to authenticate/access Internet without voucher login. These specific hosts do not have web browser or capability to login with a voucher (example: PoS terminals) and hence the need to bypass login based on either MAC address or IP address by creating a firewall rule. However, this is not working and it forces the host to login.
    Ticket #9121971

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add a UTC or GMT timezone

    There are only cities available for selecting a time zone. Some customers may want to their logs to be in UTC/GMT which is not a clearly available option. Adding a definition for UTC/GMT would be great.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. Enable multiple source NAT in IPSEC tunnel

    Currently we are unable to NAT multiple source subnet with single IP on Sophos XG firewall, kindly enable it.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  14. XG Firewall integrate with 3rd NSPM (Network Security Policy Management)

    I suggest create an integration of XG Firewall with 3rd solution of NSP for optimization and check rules duplicated, overlayed or shadowed. The XG Firewall not realize this functions and some customers want this.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  15. Adding web category on XG to integrate external URL database in set up of an on-prem web server t

    Hello Team,

    We have customer here requesting to have option when adding web category on XG to integrate external URL database in set up of an on-prem web server that will purely be used to input the list of web servers. For your assistance please. Thank You.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. load balancing

    WAN load balancing not working in sophos firewall it should work as it was working in cyberoam firewall

    upgrading firewall menas notjing like making it non working
    Kidly sort out

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. add internet scheme in sophos XG- 105W

    i am using a sophos XG-105w and internet scheme feature is not showing so kindly add internet scheme in XG-105W sophos

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Ability to use FIDO 2 and U2F Tokens to log in into Sophos XG management website and user accounts

    Using FIDO 2 Tokens for logging passwordless in into the Sophos XG Firewall as an Administrator or User would make it more comfortable and secure to log in.
    Using it as a 2FA using the U2F standard would make the login much more secure.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  19. iview

    I need to install VMware tools for integration with backups. There are many people that asking about this problema but nobody has open this idea.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  20. Automatically turn down other Member interfaces in the bridge when one of the interface states is switched to down

    Automatically turn down other Member interface(s) in the bridge when one of the interface states is switched to down.
    For example, transparent deploy FW for detection. There are two interfaces (Port1 and port2) in a bridge group.
    PortE3 and PortE3 are connected to a switch (PortE3 --- switch A, PortE4 - switch B). If portE3 is switched to the down state, switch B will still send data to Port E3. After 4~5 seconds, STP will detect this change.
    We want PortE2 to switch to the down state immediately when the PortE1 state is down.In this case, stp can switch lines…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.