Try our new research platform with insights from 80,000+ expert users

GajShield Next Generation Firewall vs Sophos XG comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 5, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
318
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
GajShield Next Generation F...
Ranking in Firewalls
37th
Average Rating
7.8
Reviews Sentiment
5.7
Number of Reviews
7
Ranking in other categories
No ranking in other categories
Sophos XG
Ranking in Firewalls
4th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
201
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 21.1%, up from 17.7% compared to the previous year. The mindshare of GajShield Next Generation Firewall is 0.1%, down from 0.1% compared to the previous year. The mindshare of Sophos XG is 11.5%, up from 9.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
AMBARISH PATKAR - PeerSpot reviewer
User-friendly settings, frequent updates, and responsive support
The scalability of the GajShield Next Generation Firewall is good, but it depends on what model I have. There are many different models available. If I need to have more users I can purchase a model that can handle more. A physical device would allow me to have more users. We have approximately 150 users using this solution in my organization and out of the 150, 54 of them on sitting in the office.
SherifFouad - PeerSpot reviewer
Gives us customizable policies, modifiable templates, and customized rules for single users
The major problem that I am facing, and I know that others are facing as well, is with the HTTPS classic, in general, or any classic that works on Secure Socket Layers. Let's say I set up a rule to block users from accessing YouTube or Facebook. The rule will only block the HTTP traffic, which is non-secure traffic. But most websites right now, most of the reputable web services providers, for extra security for their own web servers and for the user's security, provide a connection over Secure Socket Layer. The problem comes when you are trying to block, or allow, similar traffic that uses HTTPS. You have to create a certificate and import it into the users' web browsers, whatever they are using. Now, this is not a problem when you're dealing with users stationed and fixed in a specific site or location. They are using desktops, they will never take the desktops and go home with them, nor will they ever take the desktops and travel to another country, or another site with it. The problem occurs when you're dealing with roaming users who use laptops and have to move between different sites that have different types of policies applied to them. You have to import all sorts of certificates from each site into their browser. Doing so will most probably conflict with something else that is totally irrelevant and cause a problem. A way around this is if you are using authentication with Active Directory. But most of the time, especially if you're operating in a remote site with a very slow internet connection, if it's available in the first place, authentication with Active Directory is impossible. So it needs an easier way to apply HTTPS filters, without importing certificates into users' browsers and without the need for using an Active Directory. There must be a way around it. There are workarounds. But with applied workarounds, it will work out once, it won't work out properly 10 other times. That is my only request. Also, since Sophos took over Cyberoam, the online technical library and support library have become super messy. To get a piece of information is becoming a nightmare. They need to reorganize the online technical support and technical library. The easiest way to overcome this is to look at how the Cyberoam online technical library was structured and to build the Sophos technical library the same way. It is messy, totally unorganized, time-wasting. Instead of getting what you want in five minutes it takes half an hour.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features of Fortinet FortiGate are the ease of use and the UI. It has always provided me with what I needed. I have no need for additional costs that other solutions have, such as Sophos."
"The virtual firewall feature is the most valuable. We have around 1,500 firewalls. We did not buy individual hardware, and the virtual firewalls made sense because we don't have to keep on buying the hardware. FortiGate is easier to use as compared to Checkpoint devices. It is user friendly and has a good UI. You don't need much expertise to work on this firewall. You don't need to worry much about DCLA, commands, and things like that."
"There are great templates, so you don't have to customize them if you don't want to. You do have the option to custom create some folders and some reports, however, with what is there, you don't really need to go through extra effort, as they already give you a lot of predefined views of reports and so forth."
"The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy."
"Fortinet FortiGate is a stable solution."
"The response is very quick and they can visually resolve our problems in a short period."
"All of the features of Fortinet FortiGate are useful and the security protection is good."
"The solution is easy to configure and maintain remotely."
"GajShield Next Generation Firewall's best feature is the network DLP."
"GajShield has improved our mobile device-based connectivity."
"Gajshiled's enterprise cloud and DLP-level features give it an advantage over other products."
"The solution's outcome is very high, and we often use it in a very high-traffic environment."
"The most valuable feature of the GajShield Next Generation Firewall is the user-friendly settings, dashboards, and anti-threat protection. Additionally, the solution upgrades frequently which is good because we receive new features."
"It is an easily scalable solution...The initial setup was very easy."
"It is a stable solution."
"I like the functionality and the user interface."
"The product's initial setup phase was straightforward."
"One of the most valuable features is the VPN."
"The stability of Sophos XG is good, it has good performance."
"The VPN access for users is also a great thing, especially nowadays when working from home."
"The most valuable features are its nice interfaces and configuration. The endpoint is also very good."
"Customer service and support for Sophos XG is excellent, and I would rate it as a ten."
"The interface is user-friendly and the product is easy to configure."
 

Cons

"The ease of use could be improved."
"If they had better integration with security products, such as Cisco ISE or Rapid Threat Containment, then it would be an improvement."
"The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware."
"The solution could be more secure and stable."
"It can be a little bit more user-friendly in terms of policy definition and implementation. It seems a little bit complicated, and it could be simplified."
"The support system could be improved."
"I use the FortiGate 60D model and realized the 300Mbps bandwidth limitation. Because it is a product that offers many services, I think it could have greater bandwidth capacity."
"It is stable, but its stability can be improved."
"We face issues with some configuration parts that we don't understand in the solution, and sometimes we face issues with the VPN connection."
"The firewall configuration and administration screens could use some improvement."
"GajShield Next Generation Firewall could improve the flow of the settings. If somebody's using a Cisco firewall or any other brand and they want to use GajShield Next Generation Firewall the platform's UI is a bit different. If it was more similar to the others it would be better."
"Gajshield can improve SD-WAN compatibility at an enterprise cloud level."
"GajShield Next Generation Firewall would be improved with the addition of a load-balancing feature."
"We raised a support ticket, and the project didn't get a proper response. There was a skill issue in TAC support."
"Sometimes, we have to use SD-WAN support for the solution, which can be improved by adapting some features that will help our approach to network services."
"One drawback I've noticed with Sophos XG is that sometimes, the platform can become unresponsive. I've observed that it occasionally hangs, causing traffic to get stuck. During these times, users cannot access the internet or any services routed through the Sophos Firewall. This issue happens randomly and isn't something we've encountered with other firewalls like FortiGate, which we used in the past."
"Inability to investigate incidents, there is no tracking."
"The user interface could be improved and more bandwidth management would be helpful."
"Their technical support needs improvement. I've been on hold with them for hours waiting for their support."
"The pricing has gotten much higher."
"The user interface could be better."
"We are facing some technical issues with Sophos XG right now. We have already escalated this issue with the Sophos technical support. They seem to be working on it. We are satisfied with the technical support. They reply quickly to our queries, but sometimes take time upgrading their systems."
"I would want the level of integration to have another device on your network that is also reliable."
 

Pricing and Cost Advice

"The cost of Fortinet FortiGate is competitive and not expensive compared to other enterprise- grade solutions. On average, the license cost per year is around seventy percent of the firewall's purchase price."
"There is a license to use Fortinet FortiGate."
"Its pricing is competitive with other solutions."
"The price of Fortinet FortiGate is reasonable for an SME."
"They need to be competitive with other solutions."
"Setup cost may be not so low, as you expect, because it depends on different factors, but TCO for 5 years may pleasantly surprise you."
"It is not a very costly product if you compare it with other products. The return on investment is also good. If you compare the return of investment and money that you are spending on this product with Palo Alto, Cisco, Check Point, and other solutions, the investment is very less. We are happy with this solution. The optional licenses are there, and you can choose which one you want and which one to avoid."
"Fortinet bundles FortiGate with other products and because of this, the price is a little expensive to some SMB enterprises."
"GajShield Next Generation Firewall is not that expensive, and its pricing is better than Palo Alto."
"GajShield is a cheaper solution as of now. The subscription is yearly."
"GajShield Next Generation Firewall is cheaper than the other products in the market. The licensing costs for the solution are on a yearly basis."
"GajShield Next Generation Firewall is reasonably priced."
"The price of the GajShield Next Generation Firewall is very attractive when compared to other solutions."
"It was about 15% cheaper compared to Sophos."
"It is not very expensive."
"I rate Sophos XG’s pricing a seven out of ten."
"The price of Sophos in PTR is significantly higher compared to Fortinet."
"Sophos XG is a reasonably priced solution."
"They have different options for the license."
"The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else."
"There is a license required to use this solution and my customers pay for it annually."
"We prepaid in advance to get the max discount."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Media Company
23%
Outsourcing Company
9%
Computer Software Company
9%
Manufacturing Company
7%
Computer Software Company
16%
Comms Service Provider
9%
Manufacturing Company
7%
Financial Services Firm
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
What do you like most about GajShield Next Generation Firewall?
The solution's outcome is very high, and we often use it in a very high-traffic environment.
What needs improvement with GajShield Next Generation Firewall?
Sometimes, we have to use SD-WAN support for the solution, which can be improved by adapting some features that will ...
What is your primary use case for GajShield Next Generation Firewall?
GajShield Next Generation Firewall helps us with security solutions and platforms. It helps us configure the network....
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
What are the main differences in features between Sophos XG and FortiGate 80F?
Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...
 

Comparisons

 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
GajShield NGFW
No data available
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Zodiac Clothing
Information Not Available
Find out what your peers are saying about GajShield Next Generation Firewall vs. Sophos XG and other solutions. Updated: March 2025.
844,944 professionals have used our research since 2012.