Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

  • Blocking Email Attacks

    Hello, We need a way to "effectively" block the Internet Attacks to the email system from things like "YLMF-PC" and other well known Internet Threats. We are currently seeing huge numbers of garbage emails tying up the processing power of the firewalls…
  • Non Delivery Reporting

    Hello, URGENT! Due to recent issues involving Sophos Support. I have noticed that the new XG Series doesn't have any method to report non delivery for email. I just lets them sit and doesn't report back. We seriously need to get this into the firmware…
  • Assigning services to IP and not to zone - Feature request marked as "already possible"?

    https://ideas.sophos.com/forums/330219-xg-firewall/suggestions/16593775-assign-the-built-in-services-vpns-admin-etc-to AlanT you marked this idea as "already possible" but did you read what the customers are asking for? How can you bind PPTP, L2TP…
  • QOS - Bandwidth equalization between LAN device.

    We're trying to setup the QoS with this scenario: 1- Basic rule to equalize the bandwidth for each device of a given network. 2- Traffic shaping rule to slow down high volume, not realtime traffic (like windows update, zip file download, etc). …
  • Feature Request: Use McAfee databases for Webfiltering

    FormerMember
    FormerMember
    Hi all, as i read today, sophos XG don't uses McAfee website databases anymore, as UTM does. I would be happy if the McAfee databases could be used in future. I've just raised a feature request on Sophos Ideas: https://ideas.sophos.com/forums…
  • Download progress in Batch mode

    FormerMember
    FormerMember
    Hi, the Sophos SG UTM displays the download progress when downloading huge files. How to enable this feature in Sophos XG? Regards Meghan
  • What would you recommend? XG or UTM?

    FormerMember
    FormerMember
    Hi everybody, wich one would you recommend? XG or UTM, and why would you recommend it?
  • Drag and Drop Firewall Rules on XG works poorly.

    I've started to build a few firewall rules in Sophos XG. The drag and drop function seems to be very hit-and-miss. I can click on the icon and get the mouse cursor to change to a 4-way arrow but then when I click to drag it just starts highlighting text…
  • Remove Advanced shell access. XG should use only console commands like other Vendors

    Hi Sophos, many of us do like the Cli. Please make sure you remove the advanced shell as soon logging and all the commands can be executed from Console/GUI. Leaving the advanced shell open is unsafe and unprofessional. Many of us come from Cisco School…
  • Feature Request : Replace IP Address with subdomain in Captive Portal URL

    Hello, I have configured my firewall with Subdomain and SSL. I am able to access Admin portal and User portal using SSL without any issues. Now we have 2 new requirements Track the usage based on Users. Enable Authentication for Internet Access…
  • Device specific authentication - Feature request

    Hi All, enabling HTTPS scanning on XG is almost mandatory if you need micro-app scanning and you need to filter https but managing mobile devices can be very challenging. I completely agree to enable HTTPS on Computers and mobile too, but in some…
  • 50 IP limit Sophos XG Home

    Anyone can please guide me about the IP's limit 50 in sophos XG Home (SFVH (SFOS 16.05.0 RC-1) ? Is that mean we only can use 50 Host devices with Sophos SFVH (SFOS 16.05.0 RC-1) ?
  • Sophos FirewallOS and OpenStack Support

    Hello there, Does Sophos XG offer any integration to OpenStack like RestfulAPI or any other mechanism ? What information do we have about OpenStack or orchestration regarting Sophos NGFW ? I'm gathering information, any link, info or threat you have…
  • List of IPS rules, their description and understand if a patch or misconfiguration is in place

    UTM9 used to have a html page like this one: https://lists.astaro.com/ASGV9-IPS-rules-2970.html not reachable anymore where filtering per rule id, we were able to find signature details, CVE and other additional information in order to help administrators…
  • Feature Request: Ability to use AD/LDAP/Radius account on XG Console and SSH Session

    Hello, I want to file a feature request for the ability to use AD/LDAP/Radius authentication on XG Console and SSH Session. Support has confirmed this is currently not an option. The reason for this feature request is for compliancy reasons, in other…
  • Any plan to add 40GE QSFP+ slots on XG650/XG750 ?

    On some public tender, datacenter are requiring 40 GE connections and of course virtual firewall concept (there is already a feature request for it: http://ideas.sophos.com/forums/330219-sophos-xg-firewall/suggestions/11262702-virtual-firewall) Any…
  • Possibility to have WAN Group for load balancing Web surfing

    Many of my customer have multiple diffrent WAN links (2x ADSL, 1x SDSL). I want to load balancing over Adsl connexions. But not on SDSL who is use to established remote or site-to-site VPN, DNAT, ... I think it would be possible if WAN Interface could…
  • Possibility to change Primary Gateway in Hotspot

    My customer have a Wan link to comunnicate with another site and another one dedicated for Wireless Users. In hotpost settings, i can't select any Primary Gateway, so i set it in firewall policy but when i change hotspot settings, i could do it again…
  • Know bridge limitation - Any plan to have all the features like UTM9

    Currently, XG loses some features when is working into bridge mode as described by this article: https://community.sophos.com/kb/en-us/123276 Can we have a plan when these features will be available for bridge mode? Virtual Host, Dynamic DNS,…
  • Disconnect users from Live Connections TAB - feature request

    We are missing the Flow Monitor window (from UTM9) where traffic shaping, bandwidth usage and block application was possible on real time traffic, now on XG you have to use a combination of TAB to achive that, loosing a lot of time and taking note of…
  • Feature Request :Log file format [Customize Reports view]

    hello; xg firewall log format is as follows: Is it possible to adjust? DATE, TIME, COMPUTER NAME, IP, MacAddress, HOST, URL
  • Clientless Users - Improve Reporting

    Using Clientless users is a nice step forward but Reporting does not respect the effectiveness of the Clientless connection and bandwidth used. Clientless users are automatically logged in everyday by XG so how much they are live does not reflect the…
  • Apply Web and Application Filtering to User or User Group, instead of Policy (aka CyberoamOS implementation)

    In Cyberoam OS you could apply specific web and application filtering policies to a specific user or user group. It appears that this feature is missing from Sophos XG (SFOS), and you instead must create a policy which matches certain users (or groups…
  • RE: How to schedule a script (crontab)

    Sachin, Thanks for your response. What does the XG use for scheduling shell scritps? Cron, LaunchD? Are there any plans or roadmap to allow for scheduled scripts? Would be great if this could be configured from the WebGUI. -Mahdi
  • Firewall Rules and UTQ - Feature Request

    http://feature.astaro.com/forums/330219-sophos-xg-firewall/suggestions/14223513-firewall-rules-and-utq I think that having Policy rules where UTQ can be used and considered can increase dynamic controls for bad users and stimulate them to improve navigation…