Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Christian Rost

My feedback

  1. 50 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Christian Rost commented  · 

    Hi Brett,

    sure, you can use the Exchange POP3 connector. But it depends on your setup and your security policy. If you don't want your exchange to directly connect to the internet, you need a POP3/ IMAP proxy. In addition, if you want to use POP3s and IMAPs, than you need to break up the SSL-connections in the same way as HTTPs connections. Otherwise the UTM will not be able to scan the POP3s/ IMAPs traffic.

    Christian Rost supported this idea  · 
    An error occurred while saving the comment
    Christian Rost commented  · 

    I really appreciate this feature. In my experience many customers with up to 50-60 users still rely on POP3/ IMAP based Email retrieval. They do not want to maintain their own MX because of the obligatory implications like a relailable internet connection, a secured mail-server or even bigger/ faster hardware for the mail-server.

    What Gert Hansen describes sounds much like "fetchmail" or something similar. It is bullet-proof and even behaves like an MTA - e.g. fetched Email will only be deleted from the mailbox if it is successfully delivered to the local MTA. Therefor all existing Email-Security features can be applied, because fetched Email will be injected locally using SMTP.

    BTW, I'm sure you won't forget POP3s and IMAPs.

  2. 20 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Christian Rost commented  · 

    Hi Bob,

    thank you for your reply. Yes it should be possible right now. You need to log into the shell, create a another set of configuration files and edit the appropriate startup-scripts. But the disadvantage is that those settings will not be included into the backup or the replication between two or more ASGs (Active-Passive/ Active-Active), ....

    Christian Rost shared this idea  · 
  3. 50 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  SG UTM » Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Rost supported this idea  · 
    An error occurred while saving the comment
    Christian Rost commented  · 

    That's a good idea. A compromise for the proposed marketing and usabilty requests could be, to display all features to the "admin" user but only display licensed/ permitted features to other users who have access to WebAdmin. Additionaly, everything could still be displayed on the dashboard.

  4. 1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Christian Rost shared this idea  · 
  5. 2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.