A lot of us (at least with bigger environments) are using systems like Zabbix or Nagios to monitor their stuff.

An direct integration of the clients into Astaro would it make a lot easier to integrate the Astaro boxes into it. SNMP alone does not provide a lot of values which are interesting to monitor. Like:
- Packet filter violations
- IPS stats
- VPN Users online
- and much more

It should be possible to make the UTM the UPS master and other servers obtain notifications from UTM or UTM becomes a client of another UPS server offering informations.

Allow a user to create and restore backup files that contain only parts of the configuration.. users would be able to selectivly make use of various parts of the configuration in other firewalls, allowing for easier rollout of multi-site locations. As well, they can restore only parts of a backup file that are required, thus allowing for faster recovery and without affecting all areas of the box.

We would like to remove (or replace) the Sophos/Astaro branding on outward facing things like the UserPortal, Block Pages, Email Digest etc...

By scanning the local IP-space of connected/configured internal (non-gateway) interfaces, discovered IPs should be auto-added to the definitions list using their hostname as the title (if available) otherwise just fill in the IP for both the address and the name.

This saves admins having to define their objects from scratch, and they can always delete the object definitions they don't want/plan to use. This should be done either automatically, as part of the wizard, or on request.

I wanna see in Dashboard how many computers are online or different ip-addresses are active.

In the End User Portal I'm able to specify allowed users/ groups.

Therefor I'm able to define a group based on a Active Directory group, limited to backend group membership.

Now the limitation:
The User Portal only accepts AD Groups which are directy related to AD-Users. The use of nested AD groups (Users --> AD-Group1 --> AD-Group2) are accepted by User Portal, but without any action.

A needful enhancement would be the functionality of nested AD Groups, using in User Portal

UTM only supports automatic backups sent by email or to a UTM Manager repository.
It would be great to export them via SCP, FTP, Network Share like log files can.

Backup or export the quarantine folders and other data not included in the backup files on the UTM. For example a mail being held in quarantine could be extremely important. If a device fails that data would be lost. Allowing external storage even just to a single restorable backup file would be a big selling point

Hi,

If should be great to save an history of the configuration each time an administrator save something and maybe create a restore point to rollback to the initial configuration if something does not work after some modifications.

Thanks,

Expand granularity of WebAdmin roles. Current access gives an "Office Manager" too much control across too many areas under each "manager" or "auditor" level term. We have the need to let one person Release Spam and add URLs to control office traffic

It would be nice if there was a list of available areas and operations with the ability for us to make a role composed of our selections.

Please, provide a fixed grace period after the license expiration (5, 10 or more days).
This prevents to disable the features licensed if for any kind of reason the admin was not able to install the new license.

Astaro Command Center - Please Provide VMWare drivers and integration components for FUSION so Macintosh Users using VMWare can use this product. Currently you only support VMWare's esx and vsphere.

Use the same data for DNS static entries as for Network host definitions.
Like this we would not need to enter the same data twice.

The changelog in the main management tab is limited in it's length - and is also cluttered up by logins without changes and failed logins.

It would be a good thing to have a complete list of changes throughout the overall history of the ASG (on perhaps another place like "Support"->"Advanced" ) for a complete review of all changes.

Please start publishing complete change logs for new firmware releases. It is ridiculous to have to hunt for hours in the forums to find some answers. Complete change logs are a must have feature for production use -- I need to know what was changed across versions to a) judge impact on prod b) be able to quickly diagnose issues arising after upgrade (happens all too frequently)

Please make it possible to use HTTPS for WebCID updates of the product Sophos Endpoint Protection. Now only HTTP is possible, this is undesirable because authentication details (credentials) are being sent over the internet in plain text.