XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Mac based authentication

    Give option to restrict a user accessing internet from specific MAC address only. Current in 16.05 there is option shown in Authentication > Users > Details, but it doe **** work.
    Sophos support says, such a feature is not available. Please bring the feature back.

    Summary: Restrict a user from a particular MAC address. User should able to login to internet/UTM from this MAC address only

    56 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Excempt Specific Applications from Traffic Quota

    Allow us to 'exclude' certain applications which may not be able to be configured on an IP/port basis, from the Quota functionality.
    E.g Skype, Viber, Skype4Business, Office365

    9 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Device Type and OS type detection, so can apply rule by it.

    please we need to apply rules by device type or OS type.
    which most of our customers ask for it, cause it included on other firewall.

    23 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Add Action section (Detect, Drop) for all attacks or security reports

    Add an Action section that was taken to all kind off attacks and security reports as in logs (Detect, Drop)

    7 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  5. DNSimple Dynamic DNS Provider

    Please add DNSimple as a Dynamic DNS provider. The link below provides info on their Bash Client as well as APIs if you should choose to bake your own or extend some convenience features into the Web Interface. All that is needed to make this work on an XG is some sort of scheduler (LaunchD/Cron) to run the bash script.

    https://developer.dnsimple.com/tools/

    Bash Script Example Below:

    #!/bin/bash

    TOKEN="your-oauth-token" # The API v2 OAuth token
    ACCOUNT\_ID="12345" # Replace with your account ID
    ZONE\_ID="yourdomain.com" # The zone ID is the name of the zone (or domain)
    RECORD\_ID="1234567" # Replace with the Record ID …

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Dynamic DNS Providers  ·  Flag idea as inappropriate…  ·  Admin →
  6. Allow outgoing emails to be signed with DKIM

    Include the possibility of signing outgoing emails using DKIM for all or only selected email domains as in UTM9

    190 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    29 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. report on user

    Currently the system cannot report on specific domains - urls that users have entered to a search engine.

    Need a report that can do this without reporting on ALL the urls required to make a page work - dont want to see multiples of the same urls or the extra urls required to make a page display - only want a list of what users are trying to access

    11 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  8. generate a report on enabled content

    i would like to be able to print the following reports from Cyberoam:

    1. A complete list of all domains or keywords added into Cyberoam
    2. A complete list of domains or keywords added to a catagory in Cyberoam

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  9. We need Some Report via Wireless Protechtion

    we need report log Bandwidth usage each AP and count live connection about each client connect each AP

    12 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Wireless Site Survey

    I think you can do it on Sophos Cloud, but the ability to upload and mark on on a floor plan where all the access points are, and do site surveys.

    22 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Sophos Cloud Cache Server Support

    Please add support for the firewall to be a cache server for Sophos Cloud AV, I would prefer not to setup a Windows server for onsite virus patter caching.

    9 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Synchronized Security (Heartbeat)  ·  Flag idea as inappropriate…  ·  Admin →
  12. SMTP Smarthost

    Get back the possibility to relay outgoing email from the Sophos XG to a SMTP smarthost like we had in UTM 9

    67 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Email Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Audio for RDP sessions

    Currently RDP sessions through the User Portal don't offer Audio. This feature would be handy for remote users to be able to playback voicemails, etc.

    11 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  14. Full screen for RDP sessions

    RDP sessions from the User Portal don't allow you to adjust the screen resolution or go full screen to fit the remote desktop to your screen.

    37 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  15. ipsec vti / routable ipsec / routable ssl vpn with abilities to connect to none sophos remote

    RED Tunnels is nice only if i can live in a world where every firewall/gateway is made by sophos. So at least support some standard means to create routable vpn.

    6 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. 3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  17. WAN-Link Failover Rule - DNS

    Please Add a fail-over rule for Test like up to differen dns - server... if the connection times out / no answer, you know what to do... ;-)

    Today I got one WAN - Link ping able (UP) but the Service Provider was not able to route ANY DNS REQUEST ( neither to the ISP-DNS nor the GOOGLE DNS 8888)

    THX

    7 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  18. Mixing Wireless Client Traffic Types

    I want to be able to add all my wireless networks to all my access points.
    Currently I cannot mix "Bridge to AP LAN" and "Bridge to VLAN" on the same access point which I could easily do on other wireless systems.

    10 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. TR-069 Provisioning

    Auto-provisioning via TR-069/CWMP protocol to configure wan ip address, firewall rules, management server, etc.

    https://en.wikipedia.org/wiki/TR-069

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  20. 4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.