For firewall rules that allows access to a sensitive system (host) and where access is usually not required all the time, it would be nice to have a feature to enable them manually when needed but with a timer that disables the rule after 60 minutes or one day etc. Then it would not happen that such a rule remains open when someone forgot to disable it again. We have several rules that have been created but are only enabled when requested for system updates or support access to sensitive hosts. SSH is one of such services.
Is such a feature request known to Sophos?
Hi emmosophos ,
thanks for your feedback - that one time schedule technically works for my need.
For the specific use-case of ours, the bad thing here (same with the competitors) is, that this requires the admin to first create the schedule outside the firewall rule in the profiles menu which is quite a lot of clicking. Only after that, you can add it to the firewall rule.
It would be much more convenient to have this available directly in the firewall rule like a timer toggle and a flexible option like "1 hour/minute(s) etc. upon save". Or even a "one time" schedule there.
Quote