When viewing messages in the message log we can currently block an IP address with a single click. It would save tons of time as an admin if you had the same option to block or allow a sender or a whole domain with one click from that screen. Currently you have to go to the settings page to make those changes which is time consuming in a busy environment.

We would like the ability to have a toggle for Email Gateway to respond to blacklisted emails telling them their email could not be sent. We have noticed that blacklisted senders do not receive a bounce-back, giving them the impression that their email made it through.

We would like the ability to add notes to entries in the whitelisted / blacklisted list.

We would like the ability to block a whole list of email domains instead of doing them one at a time. This would save a lot of time.

I submitted a ticket previous regarding message functionality where the email tags from v1 of Phish training was not included in v2 of Phish training. I would like to have that included so I can tailor my message to my audience.

Also, I would like the option of an auto enrollment group for mandatory training for new contacts that have been enrolled into our Active Directory.

Adding S/MIME functionality as in the Sophos SG series

I have a few clients that are coming over from Proofpoint Essentials - on that platform (even at the basic), it is easily possible to block bulk email (subscriptions or not) and have them show up in quarantine. It is also easier to block subsequent emails from a sender with a link the email, or a way to whitelist an email address that shows up in a quarantine.

I think it would be very helpful to have the ability to export a report for Email Security showing which mailboxes are actually consuming a license, or have that as a field in the Central console. I ran into a situation where a bunch of distribution lists got created as mailboxes and were consuming licenses. This put me over my purchased limit. It would have been nice to know that information as I hunted them down. Better sorting and filter options in that view would be nice also. This is under mailboxes by the way.

Be able to free an email from an alias of a user from the Sophos Email Appliance user interface (not admin), which is linked to an active directory.

when configuring the email gateway spam and action categories, each category should have the tag and deliver option, and should include ability to customize the subject line tag. Otherwise, this is a very narrow solution and definitely does not work for my company.

quiero dar de baja la cuenta

I would like to be able to search and find messages based on the name of the attachment. This will help to figure out why threats get through.

Having the ability to block messages based on character sets in the body of the message would be a nice feature. For instance if a message had mandarin characters or Russian.

Please tool the email gateway to have the ability to login via the Office 365 API to pull a mailbox list. Right now we sync AD from our internal domain to Central. However this does not get all valid mailboxes in that we have a number of O365 groups and distribution lists that don't live in Active Directory. If the email gateway could simply pull the list of valid addresses from O365 like some competitor products it would save quite a bit of manual mailbox additions.

Please add the ability to geo block email sources. Some of your competitors allow you to block by country code from those areas you know you don't want mail from. While you can block top level domains like *.cn that is not always useful in that sometimes a message has a .com but originates in a place like Russia or China.

We have several "temporary" mail accounts which aren't configured in our Domain but are essential senders addresses from our ERP system which get rejected, when our mail server tries to relay these to Sophos Central.

It would be a lot better if this behavior could be configured to not reject these mails.

Every time then email delivery fails via Sophos Email Gateway, sender receives message from "MAILER-DAEMON@prod.hydra.sophos.com" including details, why delivery failed. Customers like to change this address to something related to customer email domain.

For example. Customer email domain "companyX.com". Mailer daemon address related to customer domain: "mailer-daemon@companyX.com".

A way to report an email that was Delivered Successfully as Spam. So that it can be analyzed and blocked in the future.