Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Bob Alfson

My feedback

  1. 97 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson shared this idea  · 
  2. 547 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  76 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 
  3. 4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
  4. 64 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    25 comments  ·  SG UTM  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Not all PCI tests look for this, but enough are now, and it soon will be all of them.

    Cheers - Bob

  5. 151 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    48 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Great idea, Jerome!

    Bob Alfson supported this idea  · 
  6. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Guys, if you have your own DNS server, there is a workaround. Create a DNS Group definition for an internal FQDN like "upstream.domain.local" that has an A-record for each of the hosts. You can use the DNS Group in both tls and upstream relays.

  7. 60 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  SG UTM » Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    I'm not sure what your configurations look like, but see if you can't make things work with: https://www.astaro.org/gateway-products/management-networking-logging-reporting/38766-portal-login-fails-allowed-users-2.html#post277690

    Cheers - Bob

  8. 8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  SG UTM » HA/Clustering  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson supported this idea  · 
    An error occurred while saving the comment
    Bob Alfson commented  · 

    It's been under review for over 26 months, so it should either be upgraded to "Planned" or the notation deleted.

    This could be an automatic thing. Install a 2-node license and bring up a total of four nodes, HA creates a Master on the first unit, a ***** on the second, a Hot-Standby on the third and ignores the fourth. When Master or ***** goes down, the Hot-Standby takes over as the ***** and the fourth node becomes the Hot-Standby.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    I meant "RAID 6" style = RAID 5 + standby disk

    Bob Alfson shared this idea  · 
  9. 384 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    33 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In addition, it should be possible to indicate a different smart host if different than Global.

  10. 163 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  SG UTM » Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Interesting idea. I know every school of any size would appreciate this capability.

  11. 59 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  SG UTM » Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
  12. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson shared this idea  · 
  13. 4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    This hasn't been addressed in 9.109.

    Bob Alfson supported this idea  · 
    An error occurred while saving the comment
    Bob Alfson commented  · 

    Oh, d12fk, you're killin' me! If L2TP is in PSK mode (required for iOS), your fix also should work for it, shouldn't it?

    An error occurred while saving the comment
    Bob Alfson commented  · 

    It makes sense that it doesn't do that with SSL, Cisco and IPsec because the user's certificate must be available in the Astaro, and that's only there if the User has been created.

    Bob Alfson shared this idea  · 
  14. 2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  SG UTM » Logging  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    My 2011 Nov 25 complaint below has been addressed in V9.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    There are two related issues.

    - 1- I typed my username someplace else (not sure where), and then watched the keyboard to be sure I didn't make a mistake in my password. I looked up to see that I'd typed the password in the username field, and immediately got an email with my password in clear text. Obviously, I had to change that in several places. Frustrating.

    - 2- There's an active thread on the User BB started by Ismetoo9 wanting to know how to erase/prevent changed passwords appearing for the Up2Date Parent Proxy.

    An error occurred while saving the comment
    Bob Alfson commented  · 

    It seems easier to log "Correct Password" or "Bad Password" instead. Is there any other reason to want to erase debug info?

  15. 4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In fact, I guessed that this is possible using a different technique to create a DNAT: http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/51216-email-protection-incoming-port-other-then-25-a.html - and 'Any -> {10025} -> External (Address) : DNAT to SMTP on External (Address)' works perfectly!

    An error occurred while saving the comment
    Bob Alfson commented  · 
    Bob Alfson shared this idea  · 
  16. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Web Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    In fact, I guessed that this is possible using a different technique to create a DNAT: http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/51216-email-protection-incoming-port-other-then-25-a.html - and that works!

    An error occurred while saving the comment
    Bob Alfson commented  · 
    Bob Alfson shared this idea  · 
  17. 12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    This is how it works now except that the time in spool and retry intervals only can be set at the command line.

  18. 112 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    25 comments  ·  SG UTM » Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 

    The forum name changes broke wingman's link below from 3 years ago. The correct link now is http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/33295-gateway-encryption-between-asg-outlook-2010-a-2.html#post154973

    Cheers - Bob

  19. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  SG UTM » Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Bob Alfson shared this idea  · 
  20. 16 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  SG UTM » VPN  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    Bob Alfson commented  · 
    Bob Alfson shared this idea  · 

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.