XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Send Quarantine Digest for all configured domains

    If you have 2 email domains defined, xyz.com and xyzllc.com, and emails to both domains go to the same users, the quarantine digest is sent for xyz.com but not for xyzllc.com.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Provide an easier way to deploy SSL Decryption CA on mobile devices

    I again noticed last night, the issue of getting Cert's onto Client devices in order for HTTPs decrypt and scan to work. Its fine for us IT people or Techies but for end users its always a headache (well in my case it has) So I wondered if it would be possible for Cert installation to be added as a feature of either Sophos Mobile control or another App that can be downloaded via the XG user portal or even just a link on the user portal (we already have the Client Auth cert on the user portal for IOS/Android…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Quarantine mail contains only reason "File-Extension" but not which extension exactly

    We have configured the system to quarantine emails with certain extensions.
    However, the recipient then only sees the quarantine reason "File Extension" in the notification. It is urgently desired that he also sees directly which file extension it is. The admin only sees this in the mail manager.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Few dongles not detected as a Modem across Cyberoam 10iNG and 15iNG device.

    Enter Dongle and Jio JMR1040 hotspot is not working on Cyberoam 10iNG and 15iNG device.
    Refer the ticket no- RE: [#9070238] Unable to connect WWAN
    Because as per your list maximum brands not available in India so take the logs from tier3 engineer Amitkumar Patel and modify the firmware and release new firmware. Inform us so that our problem can resolve.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cyberoam  ·  Flag idea as inappropriate…  ·  Admin →
  5. SFM Change Firmware update "Apply" button to "Schedule"

    In Sophos Firewall Manager, when updating the Firmware of an XG Firewall, there is an "Apply" button, which brings up a scheduler when clicked.

    This is confusing, as it seems like this button will apply the firmware immediately without warning. Please change the name of this button to "Schedule" instead of "Apply" so that it's more obvious that the firmware will be scheduled for install and not apply immediately.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
  6. Ability to send quarantined messages to shared mailboxes

    We have quite a few shared mailboxes for the likes of HR, Finance and reception to name a few. Whilst I can send individuals a quarantine report to their mailbox there doesn't seem to be the ability to do this with shared mailboxes, or at least they do not show up in the list.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Log Viewer: Filter the Firewall log to show entries with no User name

    One of the columns in the Firewall log is User name.
    If I click Add filter and choose User name in the Field box, my only options for Condition are: is, is not, Starts with and Does not start with.
    I need to find all of the log entries that have no User name. If I try to use the filter to see those entries by the Condition box to "is" and leaving the Value box empty, an error appears stating "You must enter a value for User name".

    To allow me to find all of the log entries that…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  8. Network Alias GUI

    When you have more than three alias ip addresses defined on a network interface the list will expand on mouse-hover to show the scroll bar. At least on Chrome and Firefox this scroll bar will force the edit/delete icons to flow over to another line making it almost impossible to edit the entries. This could be easily fixed by removing the max-height definition in the gui css on the "aliasBlockPort" element and removing the on-hover css change to overflow:auto.

    Addidionally, when deleting an alias entry it will show an confirmation popup for deleting the entry. But the popup does not…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  9. Apply different load balancing condition for specific firewall

    Customer would like to have different load balancing condition for specific firewall rule created. For your assistance please. Thank You.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. DLP protection sensitivity

    It has come to my attention that DLP on the XG only catches certain things like social security numbers and bank accounts if there are 10 or more listed in the email. Most my clients when sending emails are referring to a single account with one or maybe two social security numbers, so these would never get caught. Even one social security number or bank account not encrypted in an email is a big problem.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Block file transfers by filetype within chat apps

    Need to be able to block just executable files on chat applications. Want to allow video, images, etc but block executables.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Firewall hard drive maintenance routine

    I recently experienced a firewall freeze/crash and from what I read in the forums, the most common cause is some type of hard drive failure/corruption. I suggest the following:

    Create a maintenance routine and/or structure that allows the firewall to check its hard drive at regular maintenance intervals for file corruptions, bad sectors, etc. in order to promote a continuously healthy hard drive and firewall!

    Perhaps a parallel/mirrored drive system could both facilitate this maintenance routine as well as improve the firmware update process if it is not already existing.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  13. SSL VPN client should remember username & password

    I would like to have the SSL VPN client have the ability to save the username and password as well as an option to start at login or system start up. I have been able to do this manually with services and text file for auth with shortcut, etc but would be much easier built into the software. Most other clients have this and it has not been officially supported nor developed into the app at all. I have been using SG and XG appliances for about 6 years now with no sign of having this added. Thanks in advance

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  14. Option to prevent user changing their own password

    When we provide same username for more than 2 person in case of examination or class . means multiple login with same user id, then any one can change the password and other will suffer. if password changing option will be disable then we need not to worry about these conditions

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  15. TOR exit nodes as a WAN Source

    Please create and update daily the TOR exit nodes as a WAN Source network. Ideally we would want to block anything attempting to access, scan or interact with our WAN IP Space from such a risky source.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. macOS Sophos connect client paste password

    macOS Sophos connect client paste password :
    It would be cool if we can paster our password in Sophos Client Connect in macOS rather than write manually especially when the password is very strong.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  17. Can Cyprus (Greek) and Cyprus (Turkish) be added?

    The Greek part of Cyprus is a member of the EU. An EU country group would need to contain the Greek part of Cyprus, not the whole of Cyprus.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. Unable to access play store / Gmail app on mobile phones after blocking personal gmail access from firewall

    As suggested by sophos engineer, the feature is not available currently. I need this to be have on xg firewall so that i am able to access gmail app / play store on mobile phones with wifi connection passing through firewall

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ability to use non standard port for configuring web server under XG

    Hello Team,

    We have customer here requesting to use a non standard port (other than port 80 and 443) for configuring web server under XG. For your assistance please. Thank You.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Webserver Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. VPN client autoupdate for remote users

    Is there a Sophos idea existing, that the VPN client should be checked for updates when the VPN client dials in ?
    if necessary, automatically updated before the VPN client connects.
    The download is provided by the XG Firewall and the client is up-to-date without admin rights or end user oder administrator intervention.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.