GajShield Next Generation Firewall vs Sophos XG comparison

GajShield and Sophos are both solutions in the Firewalls category. GajShield is ranked #36 with an average rating of 7.7, while Sophos is ranked #4 with an average rating of 8.3. GajShield holds a 0.1% mindshare in Firewalls, compared to Sophos’s 11.2% mindshare. Additionally, 100% of GajShield users are willing to recommend the solution, compared to 92% of Sophos users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jan 5, 2025

Sophos XG and GajShield Next Generation Firewall are competitors in the network security industry. Based on user reviews, Sophos XG appears to lead in comprehensive security features and integration, while GajShield is recognized for its network threat management capabilities, particularly with data loss prevention.

Features: Sophos XG offers extensive security features including Web and Application Filtering, Sophos Sandstorm, integrated IPS, and Anti-malware engines. GajShield provides robust network security with features like DLP and network management tools, making it suitable for specific security applications beyond the depth offered by Sophos.

Room for Improvement: Sophos XG users frequently mention the need for improved support response times, more intuitive interfaces, and enhanced VPN functionalities. GajShield users highlight desires for better SD-WAN capabilities, easier configuration processes, and more responsive technical support. Both products could benefit from more intuitive interfaces and better support experiences.

Ease of Deployment and Customer Service: Sophos XG allows flexible deployment across Hybrid, Public, and Private Cloud environments, but users report delays in support and a need for more comprehensive documentation. GajShield focuses on on-premises and Private Cloud deployments, with users seeking easier deployment steps and improved support services for scalability and management.

Pricing and ROI: Sophos XG is competitively priced and provides high ROI by bundling multiple security features at various pricing tiers, often lower than high-end competitors like Check Point. GajShield stands out as a cost-effective choice with inclusive licensing covering a wide range of features, presenting itself as a cheaper alternative with notable ROI advantages.

To learn more, read our detailed GajShield Next Generation Firewall vs. Sophos XG Report (Updated: January 2025).

Buyer's Guide

GajShield Next Generation Firewall vs. Sophos XG

January 2025

Download the complete report

Helped 838,713 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of February 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.7%, up from 17.7% compared to the previous year. The mindshare of GajShield Next Generation Firewall is 0.1%, down from 0.1% compared to the previous year. The mindshare of Sophos XG is 11.2%, up from 9.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

AMBARISH PATKAR

Products &Service Head; Head of IT at Wahl India

User-friendly settings, frequent updates, and responsive support

The scalability of the GajShield Next Generation Firewall is good, but it depends on what model I have. There are many different models available. If I need to have more users I can purchase a model that can handle more. A physical device would allow me to have more users. We have approximately 150 users using this solution in my organization and out of the 150, 54 of them on sitting in the office.

Read full review

SherifFouad

ICT Manager at a mining and metals company with 1,001-5,000 employees

Gives us customizable policies, modifiable templates, and customized rules for single users

The major problem that I am facing, and I know that others are facing as well, is with the HTTPS classic, in general, or any classic that works on Secure Socket Layers. Let's say I set up a rule to block users from accessing YouTube or Facebook. The rule will only block the HTTP traffic, which is non-secure traffic. But most websites right now, most of the reputable web services providers, for extra security for their own web servers and for the user's security, provide a connection over Secure Socket Layer. The problem comes when you are trying to block, or allow, similar traffic that uses HTTPS. You have to create a certificate and import it into the users' web browsers, whatever they are using. Now, this is not a problem when you're dealing with users stationed and fixed in a specific site or location. They are using desktops, they will never take the desktops and go home with them, nor will they ever take the desktops and travel to another country, or another site with it. The problem occurs when you're dealing with roaming users who use laptops and have to move between different sites that have different types of policies applied to them. You have to import all sorts of certificates from each site into their browser. Doing so will most probably conflict with something else that is totally irrelevant and cause a problem. A way around this is if you are using authentication with Active Directory. But most of the time, especially if you're operating in a remote site with a very slow internet connection, if it's available in the first place, authentication with Active Directory is impossible. So it needs an easier way to apply HTTPS filters, without importing certificates into users' browsers and without the need for using an Active Directory. There must be a way around it. There are workarounds. But with applied workarounds, it will work out once, it won't work out properly 10 other times. That is my only request. Also, since Sophos took over Cyberoam, the online technical library and support library have become super messy. To get a piece of information is becoming a nightmare. They need to reorganize the online technical support and technical library. The easiest way to overcome this is to look at how the Cyberoam online technical library was structured and to build the Sophos technical library the same way. It is messy, totally unorganized, time-wasting. Instead of getting what you want in five minutes it takes half an hour.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The threat prevention is the solution's most valuable aspect."

"It is useful for protecting and segregating the internal networks from the internet. Most of our customers also use the FortiGate client to connect to their offices by using the VPN client, and of course, they usually activate the antivirus, deep inspection, and intrusion prevention services. They are also using it for web filtering and implementing various policies dealing with forwardings, NAT, etc."

"You can purchase switches and you don't need to do anything with them. You just put in the firewall and the switches get all the policies and rules that you already have in the firewall. With Fortinet, you just connect the FortiSwitch to the Fortinet and that's it."

"The dashboard I have found the most valuable in Fortinet FortiGate."

"The base firewall features are quite valuable to us."

"FortiGate's web and URL filtering are unlike any other firewall I've used. The functionality of URL filtering in those solutions is problematic because everything is encrypted, and firewalls can't break that encryption protocol. Fortinet has an SSL proxy, so the encryption is done before the packet ever leaves the FortiGate. The URL filter is definitely one of the most helpful features."

"Centralized monitoring, policy management, and virtualized appliances allow us to take control over our public and private infrastructure."

"Some of the key features of the solution is that it has good reporting, you can receive many details from the connection, for example, clients and website information."

More Fortinet FortiGate pros

"GajShield Next Generation Firewall's best feature is the network DLP."

"The most valuable feature of the GajShield Next Generation Firewall is the user-friendly settings, dashboards, and anti-threat protection. Additionally, the solution upgrades frequently which is good because we receive new features."

"GajShield has improved our mobile device-based connectivity."

"It is an easily scalable solution...The initial setup was very easy."

"The solution's outcome is very high, and we often use it in a very high-traffic environment."

"Gajshiled's enterprise cloud and DLP-level features give it an advantage over other products."

"It is a stable solution."

"The stability of Sophos XG is very good. However, there have been some issues with other weaker models because they are limited in hardware in resources."

"Definitely, its usability is very good, and it's a very robust firewall."

"The filtering is very easy to do. You can segment and create profiles for usage very easily."

"The product is very easy to explore. It has a very good layout."

"The most valuable features of Sophos XG for our use cases are its firewall capabilities, its ability to connect to wide area and local networks, and its VPN functionality."

"It's a complete firewall solution that has everything."

"I like the fact that it can self remove malware and do updates on the cloud via Sophos Central."

"Valuable features include: the ease of setting up the VPN connection; the fact they have the cloud management option, so I can manage the firewall on a cloud platform from anywhere I am; the user interface is very user-friendly, so it's very easy for the administrator to make any policy changes."

More Sophos XG pros

Cons

"The solution is very expensive."

"The pricing could be a bit better, especially when you consider how they have the most basic offering priced."

"To some degree, it's almost a question as to why some of this stuff isn't simpler. For example, for an AP deployment, while it's integrated, the number of steps that you have to go through in order to get the AP up, seems like a lot."

"Though the tool's GUI is user-friendly, it can be considered as an area with certain shortcomings where improvements are required."

"Monitoring and reporting could be better."

"We sometimes have issues with FortiGate's routing table in the latest firmware update. We had to downgrade the device because our customers complained about bugs."

"The SD-WAN functionality is a bit overly complicated and not fully documented."

"The visibility of the network can be better. The GUI can be improved for better visibility of the network flow. Other solutions have better GUI in terms of network visibility."

More Fortinet FortiGate cons

"We raised a support ticket, and the project didn't get a proper response. There was a skill issue in TAC support."

"GajShield Next Generation Firewall would be improved with the addition of a load-balancing feature."

"Sometimes, we have to use SD-WAN support for the solution, which can be improved by adapting some features that will help our approach to network services."

"We face issues with some configuration parts that we don't understand in the solution, and sometimes we face issues with the VPN connection."

"Gajshield can improve SD-WAN compatibility at an enterprise cloud level."

"The firewall configuration and administration screens could use some improvement."

"GajShield Next Generation Firewall could improve the flow of the settings. If somebody's using a Cisco firewall or any other brand and they want to use GajShield Next Generation Firewall the platform's UI is a bit different. If it was more similar to the others it would be better."

"The solution could be improved if it offered more documentation or at least provided more information about the products themselves."

"They can simplify its interface so that it is mostly drag-and-drop. There was an SQL injection attack on some Sophos devices. They just need to harden their devices a little bit so that they can't be hacked very easily."

"I would like to see the performance improved."

"I've had experience with Sophos XG's threat intelligence features, and they provide good coverage, although I wouldn't say they're the best in the industry. The sandbox feature is available with top-tier subscriptions, allowing you to test content in a cloud sandbox. One improvement I'd suggest for Sophos XG is to make certain functionalities, like CR functionality, part of the default firewalling rather than exclusive to premium subscriptions. Enhancing DLP capabilities at the gateway level could significantly boost security for organizations."

"They made some changes to the firmware update sometime last year, which moved some of the policies from where they were before. Some of the policies, such as NAS policies, were separated, which made it a bit hard for people to trace the policies they had configured."

"In Sophos XG, the throughput for larger networks is an area of concern where improvements are required."

"I'd like to see better reporting. While the logs are great, the reports are not."

"I would want the level of integration to have another device on your network that is also reliable."

More Sophos XG cons

Pricing and Cost Advice

"The price of Fortinet FortiGate is better than Cisco, Check Point, and Palo Alto. In terms of pricing, it's probably a better-priced firewall solution overall."

"The price range is quite acceptable and normal."

"The product pricing is reasonable."

"Easy to understand licensing requirements."

"Pricing for this product is comparatively lower than other products. It's an affordable solution, but when expanding the number of users, they'll ask you to replace the model, so that's an added cost."

"Fortinet FortiGate as a less expensive solution than Palo Alto."

"Its pricing is good. It's average or normal as compared to Palo Alto and Check Point firewalls."

"The price is high compared to some of the other solutions."

More Fortinet FortiGate pricing and cost advice

"GajShield Next Generation Firewall is cheaper than the other products in the market. The licensing costs for the solution are on a yearly basis."

"GajShield Next Generation Firewall is reasonably priced."

"GajShield is a cheaper solution as of now. The subscription is yearly."

"GajShield Next Generation Firewall is not that expensive, and its pricing is better than Palo Alto."

"The price of the GajShield Next Generation Firewall is very attractive when compared to other solutions."

"It was about 15% cheaper compared to Sophos."

"Support costs are approximately 50 percent."

"The price of Sophos XG is reasonable."

"Licensing fees are paid on a yearly basis."

"I paid approximately 57,000 Rupees ($750 USD) for three years."

"It is not that expensive compared to the other solutions. It is about the same price range as Fortigate, which we used previously. Licensing is on a yearly basis."

"A Sophos XG license costs approximately $45,000"

"Its price should be better. Initially, the clients have to pay for the appliance. Then, they have to pay for the software that is installed on the appliance. Depending on whether they have a one-year, two-year, or three-year license, they just have to renew the license of the software after it expires. They don't have to renew the appliance license. So, they have to pay for the appliance only once, and after that, they just renew the software license. That's all."

"The product is expensive."

More Sophos XG pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

838,713 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Media Company

22%

Outsourcing Company

Computer Software Company

Manufacturing Company

Computer Software Company

16%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

What do you like most about GajShield Next Generation Firewall?

The solution's outcome is very high, and we often use it in a very high-traffic environment.

See all answers

What needs improvement with GajShield Next Generation Firewall?

Sometimes, we have to use SD-WAN support for the solution, which can be improved by adapting some features that will ...

See all answers

What is your primary use case for GajShield Next Generation Firewall?

GajShield Next Generation Firewall helps us with security solutions and platforms. It helps us configure the network....

See all answers

Which is better - Palo Alto Networks NG Firewalls or Sophos XG?

Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...

See all answers

What are the main differences in features between Sophos XG and FortiGate 80F?

Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...

See all answers

What Is The Biggest Difference Between Sophos UTM and Sophos XG?

The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. ...

See all answers

Comparisons

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

WiJungle vs GajShield Next Generation Firewall

Compared 21% of the time

More GajShield Next Generation Firewall Competitors

Netgate pfSense vs Sophos XG

Compared 11% of the time

OPNsense vs Sophos XG

Compared 8% of the time

Sophos XGS vs Sophos XG

Compared 6% of the time

SonicWall TZ vs Sophos XG

Compared 4% of the time

Meraki MX vs Sophos XG

Compared 3% of the time

More Sophos XG Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

February 2025

Download Fortinet FortiGate product report

Buyer's Guide

GajShield Next Generation Firewall

February 2025

GajShield Next Generation Firewall report

Download GajShield Next Generation Firewall product report

Buyer's Guide

Sophos XG

January 2025

Download Sophos XG product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

GajShield NGFW

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

GajShield Next Generation Firewall (NGFW) is a cutting-edge cybersecurity solution designed to protect organizations from advanced threats and secure their network infrastructure. With its advanced features and robust capabilities, GajShield NGFW offers comprehensive security, high performance, and simplified management.

GajShield NGFW provides real-time visibility and control over network traffic, allowing organizations to monitor and manage their network effectively. It offers deep packet inspection (DPI) technology, which enables the identification and analysis of application-layer protocols, ensuring that only authorized applications are allowed to pass through the firewall.

This next-generation firewall also incorporates advanced threat intelligence and behavior-based analytics to detect and prevent sophisticated cyber threats. It uses machine learning algorithms to identify and block malicious activities, ensuring that organizations are protected against zero-day attacks and advanced persistent threats (APTs).

GajShield NGFW offers a wide range of security features, including an intrusion prevention system (IPS), virtual private network (VPN), web filtering, and data loss prevention (DLP). These features help organizations enforce security policies, prevent unauthorized access, and protect sensitive data from being leaked or compromised.

Furthermore, GajShield NGFW provides granular control over user access and application usage, allowing organizations to define and enforce policies based on user roles and responsibilities. It also offers bandwidth management capabilities, enabling organizations to prioritize critical applications and ensure optimal network performance.

With its intuitive and user-friendly interface, GajShield NGFW simplifies the management and administration of network security. It provides centralized control and monitoring, allowing administrators to configure policies, generate reports, and receive real-time alerts on security events.

GajShield Next Generation Firewall is a comprehensive cybersecurity solution that offers advanced threat protection, network visibility, and simplified management. With its powerful features and robust capabilities, it helps organizations safeguard their network infrastructure and protect against evolving cyber threats.

GajShield

Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.

Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.

What are the key features of Sophos XG?

Synchronized Security: Orchestrates threat intelligence sharing between endpoints and firewall.
Unlimited SSL VPN Clients: Provides extensive VPN client support for secure remote access.
Cloud-Based Management: Facilitates remote administration with a cloud-hosted platform.
Intrusion Prevention: Detects and blocks potential threats in real-time.
Centralized Dashboard: Offers a comprehensive view of network security status.

What benefits and ROI should users look for in reviews?

Scalability: Easily adapts to growing business needs.
User-Friendliness: Simplified setup and intuitive management.
Effective Threat Protection: Provides robust security against a wide range of threats.
Comprehensive Reporting: Delivers detailed insights and analytics.
Cost-Effectiveness: Competitive in pricing with flexible deployment options.

Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.

Sophos

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Zodiac Clothing

Information Not Available

Buyer's Guide

GajShield Next Generation Firewall vs. Sophos XG

January 2025

Free Report: GajShield Next Generation Firewall vs. Sophos XG

Find out what your peers are saying about GajShield Next Generation Firewall vs. Sophos XG and other solutions. Updated: January 2025.

DOWNLOAD NOW

838,713 professionals have used our research since 2012.

See our GajShield Next Generation Firewall vs. Sophos XG report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.