I need, for example, to block exe files. however, the problem with ASG is that if files with blocked extensions are zipped - even without password protect the archive - they pass, because apparently Astaro only checks the zip file extension (rar, zip) and not the extensions of the files inside the archive, which means that you can bypass the blocking of any files by zipping them first. My only option now is to block zipped files which is not so practical as they may contain legitimate content that I don't want to block.

We are a voice reseller and frequently use SBC made by Ingate. these devices provide functinality to allow SIP devices to register automatically to the gateway. Ingate combines this functionality with a basic firewall. Can Astaro include SBC functionality into the VoIP module?

Add phrase weighting to the content filtration much like what is used in Dansguardian, this would much improve the current content filtration. When used right it would allow pages within an otherwise approved domain or url such as YouTube to be blocked if inappropriate content is present. As is the case with Dansguardian the aggressiveness of this type of filtering can be adjusted quite a bit.

Currently if a user is enabled for mail encryption and there is an existing certificate it will be used - there's no check if it's still valid (date).

PLEASE add a check that expired certificates are not longer used!

regards

Instead of using an email address to send the backups to, can you please add FTP functionality so that we can use a centralised location that can be backed up without an user input other than the original config.

It would be nice if we could create for the blocking a group of URLs, which may be analogous to the block "URL Filtering Categories" in the "Filter Actions". For example, the URL's to be blocked must not enter in every profile under blacklist.

The Quarantine Report should provide a 3rd option (besides release & whitelist), namely whitelist domain. This would trim the size of the user's whitelist considerably and cut down on false positives from the same domain.

It would be nice if it was possible to name an administrator for a domain and have the Mail Manager in Mail Security show quarantine and mail activity just to/from addresses in an individual domain

In addition to the "support for multiple remote syslog servers" it would be very nice if one could choose which log files to send to which remote syslog server.

There could be profiles that allow e.g. to only send Content Filter logs to an ARM server but send Packet Filter logs to another alerting system and maybe backup all log files on a third central syslog server.

There is the possibility to choose which log files to send, but not on a per-remote-syslog server level.

In large logs, is not necessary to search from 00:00:00 to 23:59:59 if I want to search in another hour interval, for example, from 09:00:00 to 12:00:00, and not waste time

It would be nice to choose a server group with more than 1 SSO Server to authenticate HTTP profiles.

It would be nice to backup and download the image of hard disk from web admin. In this way, In case of hard disk fail, you can boot from an external USB drive while you are waiting for RMA replacement of ASG unit.

It would be nice to have the possibility to send notifications not only with email and snmp, but also via Feed RSS. In this case admin should set the interfaces/ip address authorized to access to this feeds. It is a non invasive way (such as mail) to notificate important events to admins.

It would be great if the current FTP proxy can support FTPS traffic

In Mail Security/SMPT/Advanced, you can enter text that is appended as a footer to each outgoing email.
Please modify this feature to add a graphical file.
We want to use this footer for advertising an exhibition e.g. with the CeBit-Logo.

It should be possible to set a language of a user object. We have support for many languages. By having this feature for example a tech-support agent could login to a firewall which has it's WebAdmin set to Chinese and see it in english without having to change the setting.

There are many applications such as the UserPortal, Daily Spam Digest etc...

I would like to be able to hard drive mirroring in software as I'm able to do on other GNU/Linux distributions such that if either drive fails I can boot from the working drive and rebuild the mirror on a replacement.

Allow the content filter to have blacklisted and whitelisted categories at the same time, and allow us to decide which one "wins" if the site is designated as both.

For instance, if a user wants to blacklist Games, but allow Educational, they could. They could also allow Shopping, but block Intimate Apparel. We need a way to specify more complex content filter rules since the addition of multiple categories.

You could also allow multiple Actions per Filter Assignment, and apply them in order. This way we could combine whitelists and a blacklists in an order we choose.

Would it be possible to add a feature whereby admins can select which browsers are permitted to access the Internet i.e. Firefox, but no Internet Explorer?