Do you recognize a good idea when you see one? We want to hear from you!
Header Image

UTM (Formerly ASG) Feature Requests

Do you have an idea for Sophos UTM? Do you recognize a good idea when you see one? We want to hear from you!

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can vote and comment on it.

If it doesn't exist, you can post your idea so others can vote on it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  1. Report on which users have downloaded what files (executable files etc.)

    I would like a report that shows which users have download what file types (e.g. executables, videos etc.). Showing from where they were downloaded would be good to have as well.

    4 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
    • Make the notification editable and fix the typo in the "Notification of potentional leak of data"

      I just setup a new UTM and enabled SPX encryption. The sender receives a notification with a subject of "Notification of potentional leak of data". First off, the word in the subject is misspelled. Users are slamming my department for this "mistake". Secondly, the title of the notification sounds so ominous and negative to the end user. Everyone is worried they are doing something wrong when the action is completely legitimate. I would love to have the ability to customize this notification or just simply turn it off. With the notification turned off the sender still receives the email that…

      1 vote
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        1 comment  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
      • Active Directory backed groups to be usable in the Firewall configuration

        We require the Active Directory backed groups to be usable in the Firewall configuration. In our environment we have a secure data centre housing our customers servers. Our support manager or IT team assign rights to individual members of staff on a ticket by ticket basis for access to various parts of the hosted environments. For example one support ticket may require Remote Desktop access, whereas another may
        require SQL server access.

        We have configured the relevant rules in the UTM to allow people in a specific AD group to connect to the Remote Desktop ports over the VPN. The…

        2 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          1 comment  ·  Flag idea as inappropriate…  ·  Admin →
        • Enhance Web Antivirus Configuration

          Currently we only have the option of selecting one, two or both antivirus engines (Sophos/Avira/Both). There does not appear to be anywhere to edit the settings of these scanning engines. I know from using both Sophos and Avira on desktops that they have numerous settings. Avira in particular allows the user to change heuristic sensitivity (high/medium/low) and also enable macro heuristics. With Avira you can also select what you want to include in detection (eg dialers/jokes/phishing, as well as traditional malware). Sophos Anti-Virus has the option of enabling detection of 'suspicious files' also, which I should imagine is Sophos' heuristic…

          9 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            1 comment  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
          • Display Web Protection Usage Reports by Hour or Minute

            Currently web usage reports in Web Protection are only searchable on a daily basis, the only way to get reports for specific hour of traffic or 10 minute periods is by utilising "Search Log File" function which is not displayed in a management friendly report even when utilising "Display in Report Format". Having the web usage reports selectable by time not just date would allow for much more management friendly reporting.

            8 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
            • add the ability to receive an email notification whenever a user connects via SSL VPN for Remote Access.

              add the ability to receive an email notification whenever a user connects via SSL VPN for Remote Access. It would be nice to also have the option for a disconnect notification.

              4 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
              • Mobile Control

                Fully integrate Sophos Mobile Control into the UTM WebAdmin console.

                13 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                • Endpoint Protection via MSI

                  Can't believe that an 'Enterprise' grade product doesn't have the ability to push install the Endpoint client via MSI.

                  Definitely a big issue.

                  Please can we have this?

                  10 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • Devices based firewall rules

                    In Present Era of BYOD,would be great to have device based firewall rules & UTM controls..eg: Android devices in network could be blocked,Windows devices to be allowed etc

                    4 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
                    • Command & Control summary

                      Need log of bottom percentage of traffic to evaluate its potential as C&C residing on the network.

                      4 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                      • SPX Encryption > Receiver Password Portal Setup & Reset

                        A way to remove the need for Password Notifications send to User, Administator or Other. An external facing portal page that allows a notice to be sent to the receiver for them to register w/ e-mail verification to setup to access their password for the SPX attachment. Basically allowing a local service similar to Cisco RES for messages sent from your Sophos UTM. Obviously, this could be limited in that if a per-email password is used by the sender it would not be able to work. Also a password reset would only work for future e-mails as the PDF is…

                        61 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          5 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                        • Sort Domains in various fields

                          It would be nice if we would be able to Sort the Domain-Lists in fields like Webserver Protection - virtuell Webserver
                          Web Protection - Filtering Options
                          etc.

                          5 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                          • Data control for Office 2013

                            Log and/or Block attachments in Outlook 2013 (re: data control policy). Worked in Outlook 2010 which is one of the reasons we selected your product for our needs. Disappointed
                            that it’s stopped working in Outlook 2013 as we now have to select a product replacement that will provide us this protection.

                            2 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                            • Sophos should develop an account with permission of audit for sophos web appliance

                              Our have problem, the accounts with level down of administrator, can't display configuration done.
                              Is necessary a profile with role of audit.

                              1 vote
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Appliance Hardware  ·  Flag idea as inappropriate…  ·  Admin →
                              • List-Unsubscribe header in smtp

                                I need List-Unsubscribe header to avoid been listed.

                                1 vote
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                • Proxy Destination list

                                  Please add an option to the proxy for defining outgoing destinations,

                                  Because everyone who is allowed to use the proxy can not only connect to the Internet (normally the network everyone needs a proxy for) but to other webinterface in different networks connected to the UTM.

                                  So, if you only define firewall rules which restrict access to those interface, everyone can circumvent this by using the proxy ... that's very bad!

                                  1 vote
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Web Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Sophos RED 19" rack mount

                                    It would be nice if we could buy an additional 19" rack mount kit for the RED devices. Looks cleaner and more professional.

                                    1 vote
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Appliance Hardware  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Server Load Balancing: Alternate internal port than external

                                      Just like NAT allows, let us choose an alternate port to redirect traffic to on the internal servers. Right now, whatever is external is internal, and it forces us to use NAT which kills any option to have high-availability and load balancing.

                                      70 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        4 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Wildcard support for NoIP service

                                        Please add support for wildcard domain in NoIP services.

                                        3 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
                                        • SPX

                                          Now that UTM 9.2 supports outgoing SPX email encryption i'd like it to also offer the same recipient self registration portal for password management based on user similar if not exactly the same as the existing Sophos Email Appliance.

                                          I think this would get many of my clients with existing firewall/vpn infrastructure who are also looking for email encryption off the fence and buy into the UTM. Unfortunately the encryption piece as it stands now is a bit tedius and isn't as user friendly as it could be

                                          29 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base