I would like to be able to search and find messages based on the name of the attachment. This will help to figure out why threats get through.

Having the ability to block messages based on character sets in the body of the message would be a nice feature. For instance if a message had mandarin characters or Russian.

Please tool the email gateway to have the ability to login via the Office 365 API to pull a mailbox list. Right now we sync AD from our internal domain to Central. However this does not get all valid mailboxes in that we have a number of O365 groups and distribution lists that don't live in Active Directory. If the email gateway could simply pull the list of valid addresses from O365 like some competitor products it would save quite a bit of manual mailbox additions.

Please add the ability to geo block email sources. Some of your competitors allow you to block by country code from those areas you know you don't want mail from. While you can block top level domains like *.cn that is not always useful in that sometimes a message has a .com but originates in a place like Russia or China.

We have several "temporary" mail accounts which aren't configured in our Domain but are essential senders addresses from our ERP system which get rejected, when our mail server tries to relay these to Sophos Central.

It would be a lot better if this behavior could be configured to not reject these mails.

Every time then email delivery fails via Sophos Email Gateway, sender receives message from "MAILER-DAEMON@prod.hydra.sophos.com" including details, why delivery failed. Customers like to change this address to something related to customer email domain.

For example. Customer email domain "companyX.com". Mailer daemon address related to customer domain: "mailer-daemon@companyX.com".

A way to report an email that was Delivered Successfully as Spam. So that it can be analyzed and blocked in the future.

Need a feature to prevent impersonation attempts, we are getting flooded with spam and phishing attempts using the CEO and other VP's names in the sender address. These feature are offered by other venders so I know this can be done.

Extend the "Message Summary" with the filter, where you can see mails which getting rejected.

When entering an IP address or domain in the allow or block list it would be helpful if there was a description or notes field. It's a challenge to figure out why an IP address was added to the allow list months or years later.

Hello Team,

We have customer here requesting to have a connectivity check within the Sophos Central, as it would be useful to know why messages are banking up and also requesting to have connectivity check (or mail flow) which shows the error that Sophos is receiving from the email server to help in troubleshooting the issue

Link expire after 12 hours, during a deployment this is far from ideal.
Not all users can open a mass email in a couple hours.
These links should stay active for a configurable amount of time or have a standard expiration time of a week.

We have some companies we work with that require us to enable "Require TLS Encryption" and to fail if that can't be setup. Would be nice to have the option to do so like on the SEA.

One of the critical features that's missing in the Sophos Email Gateway is the ability to recover original links that were removed from an email message via the link rewriting feature. There are many times where an important link is re-written on an email that is not malicious and as customers, we have no way to retrieve it. This poses a major liability with regard to information assurance.

At this time the public folder and distribution lists can only have the base policy applied. You cannot apply a separate/different set of policies and assign it to public folders or DLs; currently only mailboxes have this capability.

Submitting on behalf of customer.

Currently email forwarding to an external email address is blocked by Sophos Central Email Gateway.

This means that email send to an internal email address, that this then forwarded to an external email account (Resent-From: header item) gets blocked by Sophos Central.

The only way to maintain this service currently is to bypass Sophos Central on outbound email to this forwarded domain (bypassing Sophos Central for this destination).

This is a standard SMTP feature that Sophos have not implemented in Sophos Central.

Users receive quarantine email and wants to block the emails that are in there without releasing first.

This obvious security vulnerability - allows bad actors free reign over our supposedly protected communities.