Firewall Management in Central

Suggest, discuss, and vote on new ideas for Firewall Management in Sophos Central. Powerful enterprise and multi-customer management for Sophos XG Firewall.


Firewall Management in Central

Suggest, discuss, and vote on new ideas for Firewall Management in Sophos Central. Powerful enterprise and multi-customer management for Sophos XG Firewall.


  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Autoresolve Alerts

    There are many situations where central raises more than one alert to a specific topic. Examples:
    - Firmware upgrade (Connection lost, Gateway up, Firewall upgrade completed)
    - VPN/RED connection lost (Connection lost, Connection reestablisht)

    I would like to change the behavior of how alerts work in central. From my perspective it would be better, if an alert is archived, when the initial incident is resolved. In an example for VPN/RED alerts this would mean: An alert is raised, if any RED disconnects from the XG (current behavior). When the RED is reconnected, central should close the initial alert with an…

    13 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  2. Visibly show when an XG backup circuit is in use in Central Admin

    When working with firewall management for Sophos XG firewalls within Sophos Central Admin there should be an alert or at least a dashboard visible icon showing that an XG is running on its backup link. This should be for cellular or any other link set to backup in the XG configuration.

    8 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  3. sophos central

    The Sophos Central Dashboard runs full with Warnings on IPsec Connections. Message codes 17801 and 17802. I already went through the los files of the XG (The XG does not show these Messages as warnings in the Dashboard) and found out that these messages correlate with the rekey margin. Since that does not mean that the connection is terminated or means an irregular event I do not want to see those warnings on the central Dashboard.

    The result is, that critical warnings are not beeing recognized...

    How can I make shure that the rekeying is not permanently combined with a…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  4. Centrally Change Admin Passwords

    With the recently disclosed firmware vulnerabilities requiring us to change the admin password on every appliance (twice in the last few months!), it would be extremely helpful to be able to select each firewall from the list, click a "reset admin password" link, and set the new password from Sophos Central. While we only have a small deployment of about 30 devices, it still takes a significant investment in time to remote into each device to change the password, apply firmware updates, etc. Central Administration should allow us to do simple tasks such as this without requiring us to log…

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  5. MSP

    When you pull an MSP report from Sophos Central XG Firewall Dashboard for MSP XG License usage, It would be an idea that the report also pulls through the company name and company contact details on the report, instead of just the rest of the address and XG Serial number. Sophos support advised that Sophos does not currently support this feature.

    I think company name and company contact would be useful, so resellers easily know who your billing, instead of looking up the serial number every time to see who the XG firewall belongs to.

    This was suggested as a…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  6. Sophos XG Cluster

    it would be important so be able to identify (and modify) a XG-Cluster and its state in Central.
    Actually a cluster-member is marked as not available, which, in fact, is not quite the correct system state of a A-P-Cluster Member (for the backup-device)

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →

    We are working on improvements to support of HA firewalls, and will release this in two stages. Stage one will be available in a amatter of days, allowing both members of an HA pair to be registered to Central, and placed in the same management group.

    Phase 2 will follow in a matter of months, and will make joining both devices to Central easier, and will show members of an HA pair as a single logical device in Central, reflecting the HA state, current primary device, etc..

  7. Be able to disconnect VPN users

    To have the ability in Remote Access management to disconnect vpn users that have gone idle.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  8. VPN connections indicators

    When customer has a lot of users working remotely via VPN to the XG it'd be nice to have some report indicating for a chosen period of time, the time of 1st connection started, time of last connection ended and total amount of time conected. When remote access is the only way to work this can serve as a kind of audit of working time for some professional profiles. So far I guess reports include amount of times and number of times. Log can show active connections and starting time of the active connections. This is complementary info

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  9. VPN Orchestration

    I would like to automate creation of VPN tunnels between firewalls managed in my Sophos Central account.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Customer dashboard features  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.