Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Bob Alfson

My feedback

  1. 101 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson shared this idea  · 
  2. 561 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  77 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 
  3. 4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
  4. 64 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    25 comments  ·  SG UTM  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Not all PCI tests look for this, but enough are now, and it soon will be all of them.

    Cheers - Bob

  5. 157 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    51 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Great idea, Jerome!

    Bob Alfson supported this idea  · 
  6. 6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Guys, if you have your own DNS server, there is a workaround. Create a DNS Group definition for an internal FQDN like "upstream.domain.local" that has an A-record for each of the hosts. You can use the DNS Group in both tls and upstream relays.

  7. 62 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  SG UTM » Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    I'm not sure what your configurations look like, but see if you can't make things work with: https://www.astaro.org/gateway-products/management-networking-logging-reporting/38766-portal-login-fails-allowed-users-2.html#post277690

    Cheers - Bob

  8. 8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  SG UTM » HA/Clustering  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson supported this idea  · 
    An error occurred while saving the comment
    Bob Alfson commented  · 

    It's been under review for over 26 months, so it should either be upgraded to "Planned" or the notation deleted.

    This could be an automatic thing. Install a 2-node license and bring up a total of four nodes, HA creates a Master on the first unit, a ***** on the second, a Hot-Standby on the third and ignores the fourth. When Master or ***** goes down, the Hot-Standby takes over as the ***** and the fourth node becomes the Hot-Standby.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    I meant "RAID 6" style = RAID 5 + standby disk

    Bob Alfson shared this idea  · 
  9. 387 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    33 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In addition, it should be possible to indicate a different smart host if different than Global.

  10. 163 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  SG UTM » Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Interesting idea. I know every school of any size would appreciate this capability.

  11. 60 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  SG UTM » Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
  12. 1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson shared this idea  · 
  13. 4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    This hasn't been addressed in 9.109.

    Bob Alfson supported this idea  · 
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Oh, d12fk, you're killin' me! If L2TP is in PSK mode (required for iOS), your fix also should work for it, shouldn't it?

    An error occurred while saving the comment
    Bob Alfson commented  · 

    It makes sense that it doesn't do that with SSL, Cisco and IPsec because the user's certificate must be available in the Astaro, and that's only there if the User has been created.

    Bob Alfson shared this idea  · 
  14. 2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » Logging  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    My 2011 Nov 25 complaint below has been addressed in V9.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    There are two related issues.

    - 1- I typed my username someplace else (not sure where), and then watched the keyboard to be sure I didn't make a mistake in my password. I looked up to see that I'd typed the password in the username field, and immediately got an email with my password in clear text. Obviously, I had to change that in several places. Frustrating.

    - 2- There's an active thread on the User BB started by Ismetoo9 wanting to know how to erase/prevent changed passwords appearing for the Up2Date Parent Proxy.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    It seems easier to log "Correct Password" or "Bad Password" instead. Is there any other reason to want to erase debug info?

  15. 4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In fact, I guessed that this is possible using a different technique to create a DNAT: http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/51216-email-protection-incoming-port-other-then-25-a.html - and 'Any -> {10025} -> External (Address) : DNAT to SMTP on External (Address)' works perfectly!

    An error occurred while saving the comment
    Bob Alfson shared this idea  · 
  16. 1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In fact, I guessed that this is possible using a different technique to create a DNAT: http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/51216-email-protection-incoming-port-other-then-25-a.html - and that works!

    An error occurred while saving the comment
    Bob Alfson commented  · 
    Bob Alfson shared this idea  · 
  17. 12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    This is how it works now except that the time in spool and retry intervals only can be set at the command line.

  18. 113 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    25 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    The forum name changes broke wingman's link below from 3 years ago. The correct link now is http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/33295-gateway-encryption-between-asg-outlook-2010-a-2.html#post154973

    Cheers - Bob

  19. 16 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 
    Bob Alfson shared this idea  · 
  20. 188 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    26 comments  ·  SG UTM » Management  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    I thought I would refer folks to Marcus' post on the User BB, but he's already copied it here. Thanks, Marcus!

    Cheers - Bob

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.