Regular Expression using ^& on the same rule1 vote
I would appreciate if it's possibile to block the upload of file to webmail using the Web Filtering.
I would permit to the users to open a webmail (like gmail.com or other public webmail) but i don't want to permit to attach file/upload file in a new mail on the webmail. In this way i can block a possible disclosure of corporate data. Thanks26 votes
please create a proxy.pac-file as hardlink of wpad.dat. So both files are same an d both can be used1 vote
Possibility to disable second antenna or MiMo on AP 50 to use inhouse installed antennas1 vote
It would be nice if we have a local (cached) log function in the RED.
On the UTM we only have the opportunity to see RED online or disconnected, but not why.
Therefore, a local RED logging would be great, which sends the information to the UTM when the RED is available again. For example: RED WAN port down, RED get no DHCP address, no connection to Sophos on port 3400 or something like this - to increase the possibilities of analysis.36 votes
In case of having a lot of ip adresses on the outgoing side of the UTM it would be very nice to define the sending IP Adress of the Email-Protection Service.
here's a good documentation howto to this with exim.
It would be an idea to add crashplan into the application control to give future a transparent control over this cloud based service.
I know they have not been around as long as Dropbox but it should be considered as they have a large user base1 vote
IP range is now available on UTM9 but impossible to use in Webfiltering menu.
actually the only way to filter machines is to use sub network or group network (mean create machine each time inside group...)
Please add this improvement to be able to filter with most flexiblility than now IP range definition in webfiltering.1 vote
When the internet connection drops at the main site (UTM location) the RED restarts to get the tunnel up again. When (for some reason) the internet connection stays down at the main site all internet activities at the remote location are down due to continuous restarts of the RED. If the RED only tries to pick up the tunnel, the internet at the remote location can still be used.92 votes
SPX encryption Plugin Outlook for Mac
It would be nice to have an SPX plugin for Outlook for Mac, or comprehensive documentation for using SPX encryption with email clients other than Outlook for Windows and thunderbird.3 votes
Everywhere else that the UTM uses AD authentication, it uses Backend groups based on AD Security Groups. If a larger, sophisticated customer already has a differently-structured AD, it's not possible to use the current option - an alternative Base DN.1 vote
It would be nice if the UTM9 would have an option so that the footer "This email was Virus checked by Sophos UTM 9." is only added to unsigned emails. I like the footer, but since it alters the email content, it also invalidates the signature of incomming emails.1 vote
The UTM lacks, from my point of view, the ability to check computers running ENDPOINT PROTECTION with the following new features (Notifications):
- New computer added / installed endpoint client
- Client has out-of-date definitions
- Endpoint Protection updates from Sophos has Failed
- Endpoint Protection updates from Sophos has been updated
- Client is not policy compliant.
- Any other error that the STATUS page can show for a COMPUTER would be great to choose :-)
Only thing that can be selected now is:
- Endpoint Virus Detected
Br. Martin3 votes
Having hotspots enabled it will be good to have reports (based on a time period) showing number of users using vouchers (connecting to hotspots). As this information is in logs it should be easy to count and show that in graphical report.6 votes
We need a way to configure the server destination ports differents from the outside port!
We should be able to do things like:
This can be used when for example we use more than one cache/proxy (varnish) on a same box in between the firewall and the real server (with 1 varnish instance per customer) instead of having to declare bunch of IPs if this feature can be implemented we can bind always to same IP but different ports...3 votes
This feature request http://feature.astaro.com/forums/17359-utm-formerly-asg-feature-requests/suggestions/188819-support-drivers-for-hyper-v notes that drivers have been developed for hyper-v but hyper-v is not yet a fully supported platform for Sophos. Hyper-v is now a main stream hypervisor used by 90% of our SMB clients therefore it should be a supported platform. I submitted a support request with tech support for ongoing NIC issues i'm having with UTM on Hyper-v and was just directed to the link above with the note that it is not yet supported.18 votes
In some security systems there is a Customer Support Report (CSR) - archive file, which contain all internal information:
all, what need for troubleshooting.
Because UTM is a security device, remote access to the system not possible in most cases.
So support of Sophos can just say - pls attach a CSR report.1 vote
Currently the OSPF Priority setting can only be set between 1 - 255
It would be useful to have the ability to set the priority on an OSPF interface to 0 (Zero). This will then ensure the UTM does not participate in the DR or BDR election process.
In a well designed ospf network (On Cisco and Brocade equipment), it is better practice to remove nodes which you know should never be DR or BDR devices, thus reducing election traffic and the time it takes for an election process to complete.6 votes
This will be very helpfull to detect access points on a network.
> Finding these devices for maintenance ( reboot with POE off / on ) without following the cabeling or looking for mac-adress-tables would be great.
Maybe LLDP/CDP would also suite the UTM ethernet ports.3 votes
It would be nive if it qould be possible to send the voucher directly to a bon/lable printer, like Brother QL-710W/QL-720W.
A limited support of printer models would be acceptable.3 votes
- Don't see your idea?