Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Sylvain

My feedback

  1. 290 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    61 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  2. 34 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  SG UTM » Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain commented  · 

    We scan for MAC adresses to do this, but some users will actually change their MAC address to spoof a desktop, killing the process. Then you'd wan't to detect the NAT used on that port, but that would also trigger on wanted NAT devices, then you'll want a whitelist for those, or have a strict corporate policy to restrict the amount of IP adresses that can be served on one switched port. But then those stations running VMs will trigger false positives and you'll have to maintain another whitelist for those. In an ideal scenario/world, you would perform internal network discovery on a regular basis, to detect what is being hooked up on your network and actually KNOW what's on your network. The most secure option is still a NAC, since unautorised devices simply won't work and that should kill your rogue Wifi router problem.

  3. 14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  SG UTM » Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →

    This is something we will look to address shortly as a bugfix (vs. a feature). It will likely be closed and tracked internally as a bug, but for now we’ll leave it as under review…

    Sylvain commented  · 

    Is it me or a dedicated Vlan should be used in this scenario so that all trafic could be isolated?

  4. 19 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  5. 7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  6. 8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » Application Control  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain commented  · 

    This would also make it easier to support firewall/unfriendly apps like Windows Remote Assistance (requiring outgoing ports TCP/UDP 49152:65535 open). This way, when the app is allowed for a specific user, it would trigger/autorise the "one" random TCP/UDP port used for that session, at that moment, instead of having to carve such a huge hole intro your firewall. And people would probably stop asking for UPnP support, since it wouldn't be required for that type of apps anymore. Also, when the application is not in use, no ports are opened and therefore can't be abused by other apps/users/malwares.

    Sylvain supported this idea  · 
  7. 201 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    14 comments  ·  SG UTM » Networking  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  8. 11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  9. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Management  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  10. 4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  11. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  12. 23 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  13. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  14. 2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Reporting  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  15. 4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  16. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  SG UTM » Networking  ·  Flag idea as inappropriate…  ·  Admin →
  17. 22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 
  18. 19 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Sylvain supported this idea  · 

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.