Why the customisation could not be the same as UTM user Portal?
Within XG most good features could be used from UTM as base for implementing.
As it is in UTM, we need to download SSL Configuration for multiple Users. We deply the configruation by DSM Tool. We don't want to allow user to install SSL Client on any client device. Only company owned devices should have the SSL-VPN Configuration to connect to our environment. Customisation of User Portal is also needed (hide client download). This features are available at Sophos UTM for many years and versions. It should be easy to implement this features also in XG firewall.
This feature is under consideration for a future release, though a target version or timeframe is not yet set.
Webadmin Access is only able to set IP address not DNS Name. If customer admin want access from home, with dynamic IP address, we are not able to set this value. Within Local Service ACL Exception Rule we are not able to use DNS values.
This is a must have!!!
For device access we can use IP address only for exception. For Access from home (dnymic IPs) or Cellphone etc. it is necessary to be able to use DNS names (dyndns) for exceptions.
Today we are only able to set IP, IP-List, Network, IP Range, Host Group and Country Group. This is not enough.
21 votesGunter Hauser shared this idea ·
While already possible by disabling the built-in ICMP handlers and creating your own packet filter rules for explicitly allowing such traffic, we will review the operation of this behavior and if we can refine the GUI here.