Do you recognize a good idea when you see one? We want to hear from you!
Header Image

UTM (Formerly ASG) Feature Requests

Do you have an idea for Sophos UTM? Do you recognize a good idea when you see one? We want to hear from you!

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. DHCP failover when Static WAN IP fails.

    If Static WAN IP fails, dhcp should be tried after a given amount of time. Would alow a offline RED to be reconfigured by using a separate network.

    21 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
    • MobileIP

      We're using the SOPHOS UTM for a lot of our customers (We deliver IT systems on private Yachts). Our customers have a lot of WAN connections (VSAT, 3/4G, Fleet, Shoreline). In order to access them from the outside a MobileIP sollution would be much appreciated.

      1 vote
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Networking  ·  Flag idea as inappropriate…  ·  Admin →
      • Make Firmware Version of APs and Red visible in the UI

        It would be great to see the current Firmware Version of our APs and Reds to ensure new Versions got installed or diagnose problems.

        8 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          1 comment  ·  Flag idea as inappropriate…  ·  Admin →
        • include FTP Proxy in authentication

          Our customer used this feature on his old Proxy to controll who and with which rights a user can use the ftp. For our customer it is an essential Feature.

          9 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
          • SMTP IPV6 Outbound support

            If UTM has IPv6 enabled, mail should also be delivered via IPv6 to the remove MX hosts. Currently IPv4 is prefered over IPv6.

            The solution is already posted in the forum:

            http://www.astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus/45573-9-004-34-email-protection-6to4-support-outbound.html#post228431

            The only one more thing needed, is on option in the GUI to enable/disable IPv6 outbound support for MX deliveries, for those who can not set IPv6 PTR record.

            19 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
            • 13 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
              • Red with simple Fw rules + NAT

                You have done a great job with adding Mac filter that you can simpley push out to the RED. Now can we add one (1) service group to push out so that the remote office that runds RED with Split mode can have som security and should be independed of a nother vendor for that. Also with that NAT out.

                4 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Remote Ethernet Device (RED)  ·  Flag idea as inappropriate…  ·  Admin →
                • Reset a device to factory settings using a paper clip

                  When a Sophos UTM device is rendered inoperable due to a software or configuration problem, provide a means to reset the device to factory settings by using a paperclip to press a reset button. Like a Airport express device or many other electronic devices, it should not be possible to press the reset button accidentally.

                  When the reset button is depressed, beep several times, format the internal hard disk, install the software from an internal flash drive, or hidden recovery partition and when done, beep several times to notify the user its done.

                  When the system is restored, permit the…

                  22 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    1 comment  ·  Appliance Hardware  ·  Flag idea as inappropriate…  ·  Admin →
                  • Hotspot, Voucher Ticket

                    under -Wireless Protection- Hotspots - Hotspots - Loginsite
                    i can change the picture for the login site. can we use this picture to print it on the voucher paper?
                    Second: the "Comment" on the User Portal to use it for the name of the guest. can it make as must have then we can search for the username and not only the MAC-address. We have on one day more then 50 guests and only the MAC adress from a mashine we can in germany not use it. The problem: witch guest have the mashine with the mac-adress?!?!

                    1 vote
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
                    • site-to-site SSL Vpn: routes pushed to client are limited to 100

                      the idea is to count the routes on server (let say 105) and put the number of router inside the apc file. When the file is imported on the client, client read the number of routes and set the variable "max-routes" to this number.

                      4 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  VPN  ·  Flag idea as inappropriate…  ·  Admin →
                      • allow to create support tickets from the UTM

                        It would be awesome if a myUTM account (or several if required) could be linked to a UTM.
                        It should then be possible to create a Support Ticket directly from the UTM.

                        At best it should be possible to generate a per-ticket user for UTM login for the Sophos supporter.
                        This should allow easier support for both sides since information about the related UTM, access and so forth can be automatically attached to the ticket.

                        6 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Usability/GUI  ·  Flag idea as inappropriate…  ·  Admin →
                        • Add Hardware Support for HP Microserver´s onboard RAID

                          HP Microserver´s work´s fine with the Astaro Software Appliance. Unfortunately, the onborad Raid controller is not recognized during the installation. RAID1 would be very important for such a gateway.

                          9 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                          • Status of services page

                            As we rely upon Web and Endpoint to have services at Sophos's end to be up, it would be a good idea to have a 'Status' page so we can see when there are issues and we don't pester Tech support. Some other vendors we deal with have such web pages for clients.

                            1 vote
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
                            • small access point to plug into network socket

                              I would like to have an access point similar to AP5, but equipped with an RJ45 connector rather than USB. It should be so small that you can plug it directly into the wall-mounted network socket in each office. If possible, it should be without (or with optional) antenna.
                              I need this to provide an unobtrusively wifi solution without big boxes, cables and installation. It's OK to service only 5 users like AP5.

                              0 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Appliance Hardware  ·  Flag idea as inappropriate…  ·  Admin →
                              • Enhance the current Web Protection reports

                                Enhance the current scheduled web reports to include at least the pie chart of the relevant data.(The pie chart is available when you manually run the report) The Sophos Web Appliance has a good variety of reports that can be emailed to various people based on different AD groups. Also, to setup departments for the reports is not easy when dealing with 3000 users so being able to use existing AD groups is essential.

                                6 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                                • quarantine age 30 days to 60 days in Email Appliance

                                  in email appliance, user would like to have quarantine age increased from 30 days to 60 days. at this stage, its possible to achieve this from the backend, but not through the GUI yet

                                  2 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    1 comment  ·  Mail Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Android Endpoint Monitoring / Control Sophos Security & Antivirus

                                    We have many Android phones and tablets running the Sophos Security & Antivirus App. We would like to view/control the configuration of this app via the UTM. to be clear: I am not asking for control of the separate Sophos MDM app/product, just Sophos Security & Antivirus for Android. Ideally if Android Endpoint Antivirus management and reporting can be centralized and added into the UTM as a managed Endpoint, it would be very helpful for managing (and auditing!) our corporate-wide security policies.

                                    29 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      1 comment  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Monitoring: add support for N-able

                                      Many MSPs use N-able for monitoring and management. Add integration to allow UTMs and SUM to have status and alerts visible in N-able

                                      21 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Access to the local console

                                        I would like to be able to access the local Sophos console from another machine. This would enable me to see what the machine owner sees. It would also allow me to modify settings or initiate a local ‘Update Now’. This facility has been available forever in McAfee!

                                        1 vote
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  UTM Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Web Based User Password and Certificate reset.

                                          One of the challenges in a very large environment is when a user has to reset their password and doesn't remember their old one. For our environment we have to go and manually delete the cert for the user and change their password in AD.

                                          What would be Nice is if there was a one stop shop for this though the Web Gui like the Recovery system. Where it allows a Tech to reset BOTH AD and Certificate passwords for the user. Or at least delete the Certificate so that when the user logs in after changing their password it…

                                          2 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Management  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base