XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Load Balancing of inbound SSL VPN connections

    It is better to have load balancing on SSL VPN. This will help us in managing the traffic when 50 users connected to SSL VPN

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Firewall log in CLI

    It is not Possible to have a meaningful LOG for the Packetfilter/Firewall in CLI. If the Web Interface becomes inaccessible for some reason (as it was the case yesterday for one of our Firewalls) there is no way to gather information from the Firewall Logs.

    An implementation as with UTM's packetfilter.log is missing!

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  3. password of the day

    Possibility to use encrypted(WPA2 Personal) Hotspot with Password of the day, with only enter the Password in WLAN Connection. Actually you have to enter the Password to connect to the WLAN, and then you have to enter it again at the Login homepage.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. REQURIED DEB FILE SOPHOS CLIENT INSTALLATGION FOR UBUNTU AND LINUX PLOT FORM

    Dear team my suggestion is kindly create the deb file for ubuntu and linux plot form as like Windows and MAC systems.
    It will be very help full if create the deb file for install and set the credential.
    whatever the procedure given in the Sophos web site for installation it will be like challenges.

    Kindly do the needful on urgent basis.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. s3.amazonaws.com link not working through fqdn.

    s3.amazonaws.com link not working through fqdn. [#9303687]

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. VPN tunnel keep-alive function for outbound connections

    Our XG IPSec VPN Tunnel to Microsoft Azure does not stay up, because when there is no activity Microsoft shuts down the tunnel. To overcome this, we have had to implement a 5 minute ping to each of our 5 warehouses from a VM in Azure. A keep alive feature on the XG side would solve this problem. Other firewalls, such as Dell's Sonicwall, have a keep alive feature that addresses this issue.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  7. Need to download all LDAP Authentication user from Sophos portal

    Hi team,

    we are unable to download the active session or LDAP authenticated users from Sophos portal. please help how we can download. Although this facility was available in Cyberoam100ING

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  8. we require all reports(WAF/SSL VPN/Sandstorm) date wise

    we require all reports(WAF/SSL VPN/Sandstorm) date wise

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. Diagnostics: Test remote IP for Open Port

    You already have the netcat (nc) program available in the console, please add the ability to test for an open port using either TCP or UDP at a specific IP address.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  10. Display hotfix status

    Information about current hotfix installation status in the GUI.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow domain wildcards for enforced TLS

    Allow wildcard domains for enforced TLS when sending email. e.g. Force TLS to all *.gov.uk domains.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos Connect Client - Implement Policies like UTM

    UTM had the option to create multiple Sophos Connect policies for managing configuration files from the GUI. Each policy could have customised settings relevant to that connection.

    Now you're required to download the Connect Admin tool to configure basic things like 'Allowed Local Network(s)', Client DNS Suffix, Auto-Connect Tunnel etc. etc.

    This should be added to the WebAdmin GUI like it was in UTM.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow custom OpenVPN parameters in SSLVPN configuration

    Being that the SSLVPN is based on OpenVPN could you please add a freeform text field to the SSLVPN page under Advanced that would allow us to enter custom server configuration parameters? Better still would be the ability to view and edit the entire config file itself but that may be asking a bit much.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  14. Feature Request - Add Alternate Shell option to RDP Bookmarks

    It would be really awesome if you could add the Alternate Shell parameter to the RDP Bookmark setup so we can have an RDP bookmark that launches a shared application on a server. Since you took away our HTTPS bookmarks this is our only real alternative, to share a browser application via RDP that points to the website we wish to publish a bookmark to.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  15. Include SSLVPN Site-to-Site in Admin Device Access Profile

    When you create a profile to allow an Admin User to connect VPN tunnels that does not apply to the SSLVPN tunnels, only IPSec. Either create a separate SSLVPN category or add a line for it, or simply include it in the generic "Connect tunnel" right.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  16. One Click Download from SMB/FTP/SFTP Bookmarks

    Would be awesome if we could specify a file as the initial directory so a bookmark could be used to download a single file such as a Mac VPN client directly from a share or FTP folder.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  17. Configure Discover (TAP) Ports from UI

    Please add the ability to configure/deconfigure ports as Discover/TAP ports from the UI.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. Mac-Bind user webusage report

    couldn't been able to fetch report of mac-bind users, as we are using windows dhcp, so if you can allow web usage report of mac-bind devices,

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  19. Control Center - VPN Status

    Hi,

    In the Control Center the VPN status is displayed as "down" even if the VPN is part of a failover group.

    I believe a vpn should only have its status changed to down if it is a vpn active by the administrator and not part of a failover group.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  20. Offer ruggedized industrial hardware models

    Offer hardware appliances rated for industrial environments like your competition does.

    https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiGateRuggedSeries.pdf

    https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiSwitchRugged.pdf

    Maybe Team up with a company like Welotec and use something like their Arrakis platform. Or take it a step further and make your own. A ruggedized RED would be the only device of its kind in the industry and ensure sales of rugged XG devices.

    Don’t let market share slip away on this HUGE opportunity, critical infrastructure is in dire need of the type of devices you are so good at producing. Once the industry starts standardizing on a particular product they tend to…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Hardware  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.