Do you recognize a good idea when you see one? We want to hear from you!
Header Image

UTM (Formerly ASG) Feature Requests

Do you have an idea for Sophos UTM? Do you recognize a good idea when you see one? We want to hear from you!

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can vote and comment on it.

If it doesn't exist, you can post your idea so others can vote on it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  1. Licensing: Free Home-Use License on ASG Appliances

    Currently it is not possible to use a hardware appliance with a home use license, meaning it is necessary to wipe the device's hard drive and reinstall from the software appliance ISO. I've never been sure of the reason for this restriction - used Astaro hardware is available from sources such as eBay and so is a viable option for home use. It would be great to be able to make full use of the additional hardware appliance features (LCD display on 220s and up, graphic of appliance port activity on dashboard) when running as a home user.

    388 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      10 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
    • AstaroOS: Remote Configuration / Scripting Configuration API

      Add the ability to Remotely Configure some of the dynamic settings in the Astaro Gateway.

      For instance a dynamic setting would be SMTP allowed domains.

      We as a hosting organization have automatic signup to email, and the customers SMTP domain and MX records are moved to our servers. our internal mail servers have the ability to be configured by scripting remotely. But the Astaro must always be configured manually to accept the customers SMTP domain.

      implement a SOAP/XML webservice or something like it. That would allow Remote Configuration. Would be cool to be able to request logfile data and retrive…

      132 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        12 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
      • AstaroOS: Support intermediate CAs

        in Webadmin, Userportal and Web Application Security.
        The intermediate CAs will not be sent by the UTM to the client, so the CA path is broken and then some Browsers will not accept the cert.

        74 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          Under Review  ·  5 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
        • AstaroOS: One touch upgrades for software appliances

          At the moment you have to do a full reinstall from ISO on software appliances when a new major version (like UTM 9) comes out. This means you loose all your logs, reporting data, quarantine mails, etc.
          Though I understand the problems with unknown or unsupported hardware in new versions It would be great to have the same one-touch experience like hardware appliance users.

          Offer a "real" one-touch upgrade as on hardware appliances and warn the user that this process is on his own risk. If it fails because of the hardware he can still do a fresh ISO-install.

          62 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            9 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
          • AstaroOS: More Supported UPS Devices

            Add support for more UPS. We currently use a HP UPS which is not recognized by the ASG.

            55 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              8 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
            • AstaroOS: WAN Optimization

              have some kind of packet caching and optimization like the same what Riverbed or BlueCoat does. Instead of my corporate site contains 2 boxes for firewall and packet optimization appliance in each site, this can turn into all in one UTM with ability to have a packet caching mechanism. It will be speed up overall WAN usage and using bandwidth efficiency.

              52 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                5 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
              • AstaroOS: Software RAID1 support (Drive mirroring via MD)

                I would like to be able to hard drive mirroring in software as I'm able to do on other GNU/Linux distributions such that if either drive fails I can boot from the working drive and rebuild the mirror on a replacement.

                49 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  5 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                • AstaroOS: Builds appliances for XEN/HyperV

                  Create a prebuilt XEN and/or HyperV appliance as per what has been done for the VMWARE appliance.

                  I am looking for .VHD formats.

                  42 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    1 comment  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                  • AstaroOS: D-Link 580TX Support

                    Support for the below NIC please
                    Device Name: DFE-580TXDFE-580TX
                    Device ID: 0x10120x1012
                    Device UID: 0x11860x10020x11860x
                    Class Name: Network controllerNetwork controller
                    OEM Device Name: DL10050 Sundance EthernetDL10050 Sundance Ethernet
                    OEM Device ID: 0x10020x1002
                    OEM Device UID: 0x11860x10020x11860x

                    39 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      5 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                    • Support for HUAWEI E3531 3G USB UMTS Stick

                      Add Huawei E3531 USB 3G Dongle to the compatible list

                      32 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        5 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                      • Management: Connectwise Integration

                        This would be helpful to the thousands of Managed IT Service Organizations using ConnectWise as a PSA who are basically looking for a great security device that we can roll out to clients and manage centrally, with reporting and metrics available through ConnectWise

                        32 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          4 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                        • Notifications: Android-based UTM Monitoring Tool

                          monitor tool for android platform (mobile phone) to monitor your servers.

                          23 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            1 comment  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                          • WebAdmin: Display User License Counts on Appliances/Unlimited

                            Currently, there is a functionality in Management->Licensing->Active IP Addresses that enables only (ASG software appliances) to get current IP address usage.

                            If you are using an Appliance with unlimited licensing, this info is not being shown. It could be good to monitor usage for current and past values for this.

                            Regards.

                            19 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              Under Review  ·  2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                            • Stunnel Wrapper Encryption Support

                              Implement the stunnel-proxy (http://www.stunnel.org) for secure data-exchange. Proxy-port and certificate can configured by WebAdmin.

                              17 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                              • add Atheros gigE NIC drivers

                                The Atheros AR8161 and/or AR8161B gigE NICs do not seem to be supported in 9.105.

                                See
                                http://www.astaro.org/gateway-products/hardware-installation-up2date-licensing/49174-new-nic-support-intel-i210-i211-i217-atheros-ar8161b.html
                                for lspci info (more on page 2)

                                16 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                • Downgrade Version

                                  You can select an image version would be interesting, or can perform downgrade versions ... as snapshots ...

                                  15 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Add SSL support to V.9 of Sophos-UTM's HotSpot support. This is needed to protect transmission of the passwords.

                                    Add SSL support to V.9 of Sophos-UTM's HotSpot support. This is needed to protect transmission of the passwords

                                    14 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Configuration Best-Practices Auditor

                                      I have seen a lot of ASG systems out there, which have use a insecure or not (possible) optimal configuration in ASG. Some other manufacturers will bring up while configuration already a warning, when a setting may affect system security.

                                      It would be nice to have a possibility to start a basic system configuration checker, which will check the configuration against some "best practice" recommendations and generate a little audit report with found issues, a small explanation and a recommendation to make it better.

                                      Issues could be (to list some...)
                                      - inappropriate configured proxies with access from ANY networks
                                      -…

                                      14 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        4 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Firmware Update via USB Stick

                                        Copy the up2date-release on a usb-stick, plugin into the usb-port of the asg-device and then press at webmin-gui the (new) button "import update from usb-device".
                                        This will give you the option to make a update on an asg without download / upload the firmware-release. In some reasons you don't want to make an automatic systemupdate.

                                        12 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          2 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Support virtual machines under Oracle Virtualbox

                                          Virtualbox fills the void left by the eol of Vmware Server. It is available for free and allows for the creation of test environments under various operating systems. It seems to be gaining in popularity and most linux version offer Virtualbox Guest Additions either on the installation media or within their update channels.

                                          11 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Operating System  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4
                                          • Don't see your idea?

                                          Feedback and Knowledge Base