XG Firewall
Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.
-
Add support SNMP via VPN without add static
Add support SNMP via VPN without add static routes. This could be as SSH via VPN, only choose a checkbox allowing or deny the service.
Today it is needed add static route pointing to tunnel name.Best regards,
Carlos
11 votesThis should be addressed, as part of our improvements to VPN tunnel capabilities in v17.
-
Add support to USB NIC
At home USB NICs are ideal. Exactly the same problem we had in UTM9. Link below.
334 votesThis feature is under consideration for a future release, though a target version or timeframe is not yet set.
-
Enable/Disable Interface
At the moment, there is no way to disable/enable an interface inside SFOS.
Strange!Even using CLI menu.589 votesThis is a high priority feature, and will likely be targeted as soon as possible after v17 ships, though it is not yet committed to a release.
-
POP3/IMAP-More action options when scanning
At the moment, scanning POP3/IMAP traffic does only allow to change subject or accept. A really antispam engine will block spam email even on these protocols. Please add more action options.
112 votes -
Feature request - Custom security risks level
I am using SFOS at home (at moment) and I have seen from reports that some custom ports (in my case TCP:49275) does not have a risk level. All other know application are already classified. My questions are:
why do not add the chance for custom port to become an application?
why do not add custom risk level to custom application?
Why users cannot change the risk level on know application?
I work with Health care industry and banks too and every customer has different needs so I am sure that for some Skype (for example) is extremely risky while…
56 votes -
Sophos VPN app for mobile platforms
Sophos should develop an own VPN app for mobile operating systems (iOS / Android / Windows Phone) which can connect via the UTM using the configuration pushed from the UTM to the SMC server.
It should also support the Per-App-VPN feature which was introduced in iOS 7.369 votesThis feature is considered a high priority, and is under consideration for a future release, though a target version or timeframe is not yet set.
-
Native Microsoft Azure Site-to-Site VPN
Sophos UTM already natively supports automatic site-to-site VPN tunnels with BGP routing to AWS. I look forward to Sophos UTM supporting the same sort of site-to-site VPN tunnels with BGP to Microsoft Azure in public and private cloud deployments.
I think the easiest way for this to work would be for Sophos UTM to look at the requirements of getting the VPN itself setup (which has been documented in the forums and works), then to make BGP work on top of that, then ensure that BGP and the VPN can work between multiple private cloud and public cloud sites, then…
219 votesUnder Review ·
AdminJan Weber
(Product Manager, Network Security Group, Sophos Features & Ideas Laboratory)
responded
We will address this within XG Firewall in one of the upcoming releases.
-
Web Protection: Enforce policy on Sophos Endpoints
It would be amazing to configure the Sophos Endpoint (not the UTM-provided one) to inherit the Web Filtering policy defined in the UTM.
45 votesUnder Review ·AdminJan Weber
(Product Manager, Network Security Group, Sophos Features & Ideas Laboratory)
responded
Moved to XG forum for future tracking, will be reviewed as part of Synchronized Security.
- Don't see your idea?
