Smoothwall Filter (On Premise)

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Real World SSL Certificate Support for 802.1x

    There should a way of supporting a real world SSL Certificate within 802.1x.
    This is already possible in FreeRADIUS and has been requested by a number of customers who have been early adopters of our 802.1x functionality

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Comment field for user defined entries

    When adding an item to any user defined field - block or allow - it would be very useful to have a metafield allowing a comment to be added in relation, as info like "requested by AMc 10-02-12" or "blocked for chat" is often very useful when it comes to keeping a list tidy and no larger than necessary.

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
  3. IDex Agent exclude specific usernames

    Some desktop software uses it's own domain user account to authenticate and communicate with servers. This can cause that user to be logged-in on that workstation rather than the real user.

    Option to configure a list of usernames that IDex should ignore if seen by the Agent.

    Workaround: Change service usernames to include a $ symbol at the end and they will be ignored by IDex Agent.

    57 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    12 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
    under review  ·  Chris Humby responded

    We’re planning a small bug-fix update to IDex Agent soon.

    If there’s time I’d like to include this feature request too. For now this would likely be an additional configuration field where a list of usernames to exclude can be specified.

    Would this fulfil your requirements? Please add your comments to the discussion on uservoice.

  4. Firewall rule with timeslot.

    Add a time slot in the firewall rules. We have multiple customers who wants it. Some customers want to disable a part of the network at night. An other customer wants to block everything in the firewall at sunday.

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Firewall & Routing  ·  Flag idea as inappropriate…  ·  Admin →
    Chris Humby responded

    Unfortunately we couldn’t fit this into the firewall improvement work included in the Inverness release.

    It’s still on our radar though and we’ll consider it in our future firewall road map.

  5. Overblocking Remedy - Temporary Bypass Code

    A number of bypass methods to assist with temporary unblocking of content have already been suggested on the Smoothwall UserVoice sub-site.

    Here in Australia we have a competitor that provides the facility to generate a temporary bypass single use code from within the User Portal, that can be distributed to users experiencing over-blocking. When generating the code in the User Portal, the Power User/Teacher can set the duration of the bypass. It is expected that the bypass code will only be given to end-users who are being supervised (such as a class, training session).

    Selection of which categorise can be…

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
  6. Computer DNS Name to show in realtime logs

    Would there be a way to show the client's computer name in realtime logs as well as the IP address of the machine. It would be really helpful if this could be implemented.

    50 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  7. 48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Firewall & Routing  ·  Flag idea as inappropriate…  ·  Admin →
  8. Improve BYOD Roaming by Using Fast Reconnect Equivalent

    Improve BYOD Roaming by Using Fast Reconnect Equivalent
    Use the Linux equivalent by enabling TLS caching "use_tunneled_reply" so that roaming works seamlessly from one AP to the next, which it does not do reliably at the moment.

    48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    started  ·  3 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. HTTPS Softblock?

    For example, the MITM get no valid certificate from a webserver, therefor you got the block page and you cannot continue...

    We like to have an option like the softblock feature...something like: I know it is not safe but continue...

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
  10. Colors in realtime logs

    Inbound blocked rose, outbound blocked RED, forward light green, outbound allowed green, etc ..

    It would make looking @ the Realtime logs easier. Everything blends together otherwise.

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  User Experience  ·  Flag idea as inappropriate…  ·  Admin →
  11. Acceptable Usage Policy Prompt User First Access

    It would be useful if you could store and electronic version of organisations internet usage policy within Smoothwall and on first access to the internet from a user they are prompted to read and accept the version of the usage policy that is current in the system before being granted internet access.

    Smoothwall will then log that the policy has been read/ackknowledge by the user for reporting purposes.

    If the Administrator then updates the usage policy the next time a user attempts to access the internet they are presented with the revised policy to review and accept.

    46 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Allow logins to Smoothwall via LDAP server

    A simple LDAP login web page to allow staff to block and unblock websites - with the option of setting time limits - it would need to log who had blocked and unblocked sites by the LDAP username.

    46 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Set no. of concurrent logins by user or by group

    Allow the number of concurrent logins to be adjustable in a more fine grained manner so that different groups can use a different number of devices

    45 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Change HTTPS Inspection Warning Page Images to be the organisations logos like on the SSL Login Page and Block Page

    Change the HTTPS Inspection (MITM) Warning Page Images to be the organisations logos like on the SSL Login Page and Block Page.

    At current, the HTTPS Inspection warning page has a smoothwall logo and is currently not customisable.

    You should be able to adjust the Images like the Blockpage or SSL Login Page images, Preferably the Same as the Block Pages Images.

    43 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  3 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
  15. Smoothwall SAML Integration

    Smoothwall customers are increasingly using cloud based services and federating with external user repositories, such as Azure AD/Office 365.

    Most of these cloud based directories allow integarion with SAML.  Please considering implementing SAML integarion with Smoothwall

    43 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Copy a category / category group

    Isn't it good to be able to clone a category group ? this way you can make a copy modify and apply to a policy as a test. If it goes wrong at least you have the original to go back to.

    42 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →

    We’re beginning design on a new cloud-based management interface. Among lots of cool improvements for managing your Smoothwall(s), we’ll be redesigning the management of the filtering, and being able to copy things will be included. No timescales on it right now… but it’s on it’s way!

  17. Google Auth in RADIUS via PAM

    We would like to use Google Authentication in SW RADIUS.
    At the moment we have our Google domain synced as DIrectory but there is no PAM module configured in RADIUS to fetch auth credentials.
    This is a one stop shop solution to use SW without AD and separate RADIUS servers.
    The solution is available via 3rd parties like Jumpcloud and Cloudessa but we do want to cut out the middle man.
    So how this will work:
    SW is RADIUS and has Google directory synced, it fetches the authentication via the PAM module and forwards users to Guardian etc.

    42 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. comments for exclusion entries

    Under the guardian filtering exceptions there's currently no way, besides external documentation, to quickly see why a particular IP has been entered.

    It would be nice if each entry could have a comment alongside it so that i can quickly see why that IP is there/what device is on the other end of it.

    40 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Guardian Filtering  ·  Flag idea as inappropriate…  ·  Admin →
  19. Forward HTTPS error page to MITM download page

    I'm just thinking if a user hasn't installed the cert on any of our guest networks, the HTTPS error page could automatically forward to the user to the download page where they can install the cert?

    If we have multiple subnets and the smoothie is a the default gateway for each subnet, there would have to be an option to set the address of this page.

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Mobile Devices  ·  Flag idea as inappropriate…  ·  Admin →
  20. Option to show only blocked pages in real time logs

    On a busy device the real time logs scroll too fast. It would help to be able to select to view only blocked pages

    39 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Reporting  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base