Sophos XG and OPNsense compete in the network security category. OPNsense seems to have the upper hand due to its superior feature set justifying the cost.
Features: Sophos XG users mention advanced threat protection, integrated antivirus capabilities, and good support. OPNsense users prefer its open-source flexibility, extensive plugin options, and customizable features.
Room for Improvement: Sophos XG users note complex setup, frequent firmware issues, and a need for a simpler setup process. OPNsense users mention the need for better documentation, more intuitive management tools, and enhanced user documentation.
Ease of Deployment and Customer Service: Sophos XG users find the support team commendable but the deployment challenging. OPNsense users appreciate the smoother deployment due to its modular design but find customer service lacking compared to Sophos XG.
Pricing and ROI: Sophos XG has higher initial setup costs but offers good ROI, balanced by strong support. OPNsense provides a lower-cost setup and competitive ROI due to its open-source nature, offering value through economical, flexible solutions.
The response time for a critical priority one issue was over four hours and they only responded because we threatened legal action for them violating our support contract.
They say they will respond in 24 hours, but I have received responses in a maximum of one hour, which is impressive.
The technical support from Fortinet FortiGate is 24 hours a day seven days a week, and 365 days a year.
I know a couple of people on the forum that actually develop the tool, and they are helpful.
Within approximately an hour or two I was receiving a response, I was really impressed with the support.
The heavy part was the Azure part, and we are specialists there.
Sophos provides online documentation which is very user friendly.
We are also trying to keep up on how the hackers work because we are working with different associations of security worldwide.
On a scale from one to ten, I would give Sophos support a ten.
FortiWAN supports OSPF but does not support the BGP protocol.
Fortinet VPN and DDoS capabilities are great, yet we need to provide a solution that enables CASB and integration to the cloud.
The relationship between their accounts team and my leadership team seems to be the reason for phasing out FortiGate.
Our primary focus is to ensure the protection of customers' and consumers' data and critical IT/Dynamic infrastructure.
For high availability, it's crucial to have a method in place where a designated component oversees the entire process.
The problem is integration with a virtual server.
The developers should test everything after any update to ensure that bugs don't come through with the update.
There are times that I really want to know which user or which IP is causing a problem.
If they could incorporate some user profiling and present the analytics of the login user usage patterns, or a typical proper management dashboard to take a decision on the firewall rules, that would be useful.
The devices will usually fail way before reaching the capacity advertised in the data sheets, especially when you activate several of the features the device can handle.
The solution is working and it is still stable even across all of these devices and servers.
We have over 10,000 users behind it.
We only use OPNsense now. We migrated from FortiGate.
It is especially scalable if you use the VM version because you only have to provision more resources.
If a customer is starting in the cloud and has 100 or 200 users, I would always recommend OPNsense.
In other words it doesn't have that modularity feature.
We do have plans to increase usage because we are growing our projects around the world to countries like the US, Germany, Pakistan, India, UAE (Dubai) and Egypt.
You've got to define the criteria in terms of what you're trying to protect, the number of users, the bandwidth that is going through it, the speed, etc.
The cost of the original deployment fell below £5,000, and licenses are priced at around £3,000.
Every time you upgrade your license, you also get insurance for the equipment.
Overall, FortiGate is affordable.
There are no licensing costs for OPNsense.
The main cost is the hardware.
I believe that costs between $900 to $1000 a year.
One way they are doing this is by having an aggressive pricing policy.
There are no additional fees on top of this.
The option to get a combo with hardware means the software portion is mostly free, and then you pay upfront for the three-year license for everything.
All of these issues were resolved in v5.2.
Stability has dramatically improved over the previous main version branch of FortiOS; 5.2.x and 5.4.x are stable enough for critical environments.
Overall, the devices have been very stable.
When I check to see if the second one would take over, it failed.
There are no bugs or glitches.
It appears to be rather reliable, though, with the stated data points above, it is not yet ready for the enterprise yet.
Sophos' support is very good to correct quickly, ASAP.
There isn't crashing or freezing.
It may be possible to implement a second device in a fail-over cluster and this would avoid such a problem as then if one device fails in the updating process, the other device could take over.
The two most valuable features are VPN and firewalling.
WiFi network for visitors isolated from our corporate WiFi network using only one unit
Allows for firewall rules to be programmed and named in a way that makes it 'readable'
The most valuable thing about this product is that it is very easy to use.
With the visibility, you can see the data source, data destination, the source port, destination port, protocols, the most used, the malicious files that have been detected and blocked, the countries the customer has visited, and the IPs based on Suricata.
The VPN server feature is the most valuable.
Anti-malware: Sophos XG comes with two anti-malware engines: its own and Avira, making the UTM more effective at catching malicious code.
If my file is getting infected, I get to know from a single pane point of view.
The user interface is very user-friendly, so it's very easy for the administrator to make any policy changes.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
OPNsense is widely used for firewall functionalities, intrusion detection, VPN and IPSec, content filtering, securing network traffic, and remote access. It protects internal networks and manages servers securely, suitable for small to medium-sized businesses.
OPNsense is a comprehensive firewall solution leveraging open-source technology. It integrates with third-party modules like WireGuard and CrowdSec, enhancing its security capabilities. Offering on-premises and cloud deployment, it features an intuitive graphical interface, advanced reporting, VPN functionality, IDS/IPS features, and high scalability. Users find it ideal for small businesses and home networks due to its stability and ease of use. Frequent updates and an active community support its continuous improvement. However, it needs advancements in VPN selection, scalability, and technical documentation. Enhanced high availability, threat intelligence, and integration with virtualization platforms are required. User feedback suggests improvements in connectivity, alerting, traffic monitoring, and antivirus protection.
What are the key features of OPNsense?OPNsense is implemented across various industries to secure network infrastructure and ensure reliable connectivity. In fintech, it safeguards sensitive financial data while maintaining compliance. Educational institutions deploy it to protect student information and enable secure remote learning environments. Healthcare organizations use it to secure patient data and comply with HIPAA regulations. By integrating with tools like WireGuard and CrowdSec, businesses enhance their cybersecurity posture and streamline network management, making OPNsense a versatile choice for diverse operational needs.
Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.
Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.
What are the key features of Sophos XG?Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
