Smoothwall UTM/SWG

Any and all ideas and feedback for Smoothwall

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. raw firewall log

    The firewall log works perfectly for everyday use. But sometimes you need more information. Is it possible to include the name of the rule in the raw firewall log files. Now I have to first see what the uuid of a rule is and then I can get the information out of the log. But if the firewall rule has been modified, the uuid is also modified. It's very annoying if you want to know if there is a certain amount of traffic through the firewall over a long period of time.

    16 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Firewall & Routing  ·  Flag idea as inappropriate…  ·  Admin →
    • Bandwidth Reporting

      Is there a way to run a report on smoothwall to show our bandwidth usage. When i say bandwidth, i don't mean how much is downloaded from a domain, i mean how much of our pipe we are using, at say, 5 min internals over a given period. That way i can show the SLT that we are maxing out on our 30mb connection.

      It would also be nice to show which IPs were consuming the most of this 30mb connection and what URLs were been accessed.

      Also @ Smoothwall (if anyone is listening), the Realtime Traffic Graphs page needs…

      31 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
      • GDPR

        Are there plans for GDPR compliance with the right to be forgotten?

        It would be good to know that the log files for a Data Subject's could be removed from the data base.

        Perhaps something in the Dashboard under Reports\Settings\Datastore settings

        9 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          2 comments  ·  Flag idea as inappropriate…  ·  Admin →

          Yes. I am pleased to let you know that this will be a feature in the Leeds release, due in February. We have a GDPR and UTM/SWG white paper that explains our approach to GDPR. I’ll get this uploaded to our web site and post a link to it.

        • IDex Agent exclude specific usernames

          Some desktop software uses it's own domain user account to authenticate and communicate with servers. This can cause that user to be logged-in on that workstation rather than the real user.

          Option to configure a list of usernames that IDex should ignore if seen by the Agent.

          Workaround: Change service usernames to include a $ symbol at the end and they will be ignored by IDex Agent.

          48 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            9 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →

            We’re planning a small bug-fix update to IDex Agent soon.

            If there’s time I’d like to include this feature request too. For now this would likely be an additional configuration field where a list of usernames to exclude can be specified.

            Would this fulfil your requirements? Please add your comments to the discussion on uservoice.

          • User Activity - Current Active Session Count

            I would like a count of active users on the User Activity page. Eg;
            Current Active User Sessions = 550
            Current Disconnected Sessions = 40 <--------- not so important

            19 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
            • Ability to add notes to exception IP addresses

              Quite often when looking through our Smoothwall boxes we come across IP addresses in the exceptions list that we don't recognise. This may be due to settings being implemented a long time ago, or by another member of the team. Our main concern is that if there is an address that we can't identify we need to make sure that it hasn't been implemented as a quick fix solution to bypassing the firewall, therefore exposing a user to potentially inappropriate material.

              For example it may be an IP address of the schools boiler monitoring system phoning home, which is fine.…

              44 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                6 comments  ·  User Experience  ·  Flag idea as inappropriate…  ·  Admin →
              • Search by Username option in Authentication>UserActivity

                It would be nice if there was a search option feature on the Authentication>UserActivity screen to search for a specific user name to force a user log off. Currently, the logs are too large to "catch" an entry.

                9 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                • adding vlan hassle

                  If I want to add an VLAN (espesially on device with single ethernet port), it is a difficult to add a VLAN to an interface. Without edit directly config files it is impossible..

                  Can you make it possible to add VLAN's without first remove all settings for that interface?

                  With every firewall/router/network-thing I know is adding VLAN, nothing more that adding VLAN, no need to remove other settings first.
                  By example: plain linux:
                  ip link add link eth0 name eth0.8 type vlan id 8

                  13 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    1 comment  ·  Firewall & Routing  ·  Flag idea as inappropriate…  ·  Admin →
                  • Ability to stop email alerts for system updates

                    The frequency of email alerts for system updates is causing admin overhead. Can we have the ability to stop these alerts or change the frequency

                    4 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                    • Ability to restrict which interfaces (internal/external) that Guardian Web Proxy traffic can flow through

                      If you have multiple internal VLANs configured with IP addresses on Smoothwall, the web proxy can allow users to access web resources on these VLANs even if they are blocked by firewall rules.

                      For example, we have our switches and other networking equipment on a separate "management" VLAN that has routing disabled (e.g. you shouldn't be able to access anything in the VLAN without being in the VLAN).

                      Smoothwall has an interface on this VLAN to provide NTP services to our networking equipment, as well as Internet access (for HPE Intelligent Provisioning, etc). Traffic is not allowed to flow through…

                      6 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
                      • Automatically put excessive Access' to an IP in a temporary blocked for x minutes

                        We can receive alerts of an excessive of connections to a particular ip. It would be nice if we could do a temporary block on the offending attackers ip. And then have the ability to also whitelist a known IP for good traffic.

                        3 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Firewall & Routing  ·  Flag idea as inappropriate…  ·  Admin →
                        • Report specific list item blocked

                          It would be great if we could see which item from a category has triggered a block. For example, we have a list of blocked filetypes in a custom category and when one gets blocked, the firewall log only tells which category is blocked and not which specific filetype.

                          This can make it very tricky to narrow down an offending list item if the URL doesn't advertise it obviously.

                          For example, some part of consent.google.com was being blocked under "Archive Filetype" today, we put together a custom list of archive file types and removed half the list of a time…

                          1 vote
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
                          • needs a better search to kick users off user activity page

                            currently we have 97 pages of 20, if we ask all to load it takes ages and IE thinks its crashed

                            2 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
                            • Add additional granularity to feature delegation

                              When delegating rights to GUI / Portal users it would be useful to be able to have more granular control over what features were available. For example, if access to "Realtime logs" is enabled, that user does not have access to view the web filter logs, as this is granted by access to the reporting system which we wouldn't want to delegate out to all support staff. Additionally, granting access to the "Guardian" system allows access to policies, block pages, authentication policies etc. where it would be useful to have the option to only delegate access to categories/category groups/custom allow/block…

                              1 vote
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Central Management, Clustering & HA  ·  Flag idea as inappropriate…  ·  Admin →
                              • In Guardian/Webfilter/Exceptions it would be useful to be able to put a little explanation or name to each exception to explain to other tec

                                In Guardian/Webfilter/Exceptions it would be useful to be able to put a little explanation or name to each exception to explain to other techies in my organisation what each exception is in the list for. I think this is done on rival platforms (Cyberoam) by having IP address (and range) ‘named objects’ which are then assigned to the list.

                                1 vote
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
                                • Microsoft Office 365 category blocks Windows Updates

                                  Microsoft Office 365 category blocks Windows Updates. Maybe split the Windows updates URLs into a separate category?

                                  1 vote
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Automatic LetsEncrypt SSL certificate generation/renewal for local domains on reverse proxy.

                                    Why can't Smoothwall just generate unique SSL certs requests for each domain it reverse proxies, submit them to LetsEncrypt and handle the 90-day automatic renewal (it is, after all, proxying all requests anyway, so it could handle the ACME protocol renewal).

                                    Then we can just tick a "SSL this site" box for each reverse proxy entry, and we're done.

                                    4 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      3 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Brief "Sites Visited" History for Users

                                      Any chance of a "sites visited" history summary, rather than 200+ entries over a minute of every ad, link, picture and piece of content on a page?

                                      Cheers,

                                      J

                                      1 vote
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Limit Safeguarding portal reporting to student groups

                                        Kenilworth has added the "Groups" dropdown to the Safeguarding portal that our DSL will have access to. We need to remove or tweak this so that they can only run the report against students rather than potentially any group. We do not want them running this report against staff, for example.

                                        19 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          2 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Top domain report groupomg

                                          Better grouping for Top Domains example lastpass.com is in my report multiple times: lp-push-server-20.lastpass.com
                                          lp-push-server-19.lastpass.com
                                          lp-push-server-592.lastpass.com
                                          lp-push-server-658.lastpass.com
                                          and
                                          akamaihd.net is a office365 domain

                                          3 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 51 52
                                          • Don't see your idea?

                                          Feedback and Knowledge Base