OPNsense and Sophos XGS compete in the firewall solutions category. Sophos XGS seems to have the upper hand due to its advanced security features, although OPNsense offers greater affordability and flexibility.
Features: OPNsense offers customizable firewall rules, excellent traffic management, and valuable open-source adaptability. Sophos XGS includes advanced threat protection, zero-day attack defense, and a comprehensive security suite.
Room for Improvement: OPNsense could benefit from improved documentation, better integration with third-party tools, and enhanced usability. Sophos XGS users indicate a need for streamlined updates, lower hardware costs, and less complexity during initial setup.
Ease of Deployment and Customer Service: OPNsense is easier to deploy with its straightforward setup process and active community support. Sophos XGS provides extensive professional support and managed services, beneficial but potentially complex for initial deployment.
Pricing and ROI: OPNsense has low setup costs and a favorable ROI due to its open-source model. Sophos XGS is more expensive upfront but offers long-term value through enhanced security features.
The response time for a critical priority one issue was over four hours and they only responded because we threatened legal action for them violating our support contract.
They say they will respond in 24 hours, but I have received responses in a maximum of one hour, which is impressive.
The technical support from Fortinet FortiGate is 24 hours a day seven days a week, and 365 days a year.
I know a couple of people on the forum that actually develop the tool, and they are helpful.
Within approximately an hour or two I was receiving a response, I was really impressed with the support.
The heavy part was the Azure part, and we are specialists there.
Technical support from Sophos is always available.
FortiWAN supports OSPF but does not support the BGP protocol.
Fortinet VPN and DDoS capabilities are great, yet we need to provide a solution that enables CASB and integration to the cloud.
The relationship between their accounts team and my leadership team seems to be the reason for phasing out FortiGate.
Our primary focus is to ensure the protection of customers' and consumers' data and critical IT/Dynamic infrastructure.
For high availability, it's crucial to have a method in place where a designated component oversees the entire process.
The problem is integration with a virtual server.
It would be beneficial if Sophos XGS offered an end-to-end solution with competitive pricing.
The devices will usually fail way before reaching the capacity advertised in the data sheets, especially when you activate several of the features the device can handle.
The solution is working and it is still stable even across all of these devices and servers.
We have over 10,000 users behind it.
We only use OPNsense now. We migrated from FortiGate.
It is especially scalable if you use the VM version because you only have to provision more resources.
If a customer is starting in the cloud and has 100 or 200 users, I would always recommend OPNsense.
The cost of the original deployment fell below £5,000, and licenses are priced at around £3,000.
Every time you upgrade your license, you also get insurance for the equipment.
Overall, FortiGate is affordable.
There are no licensing costs for OPNsense.
The main cost is the hardware.
I believe that costs between $900 to $1000 a year.
If the pricing model is more flexible or lower, it would be highly preferable, making it a more competitive option for users.
The pricing of Sophos XGS is not very high or very low; it's medium.
All of these issues were resolved in v5.2.
Stability has dramatically improved over the previous main version branch of FortiOS; 5.2.x and 5.4.x are stable enough for critical environments.
Overall, the devices have been very stable.
When I check to see if the second one would take over, it failed.
There are no bugs or glitches.
It appears to be rather reliable, though, with the stated data points above, it is not yet ready for the enterprise yet.
The two most valuable features are VPN and firewalling.
WiFi network for visitors isolated from our corporate WiFi network using only one unit
Allows for firewall rules to be programmed and named in a way that makes it 'readable'
The most valuable thing about this product is that it is very easy to use.
With the visibility, you can see the data source, data destination, the source port, destination port, protocols, the most used, the malicious files that have been detected and blocked, the countries the customer has visited, and the IPs based on Suricata.
The VPN server feature is the most valuable.
Sophos XGS is cost effective and provides all necessary security features and throughput.
I find DLP, API, IP, SDK, and web control to be valuable features.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
OPNsense is widely used for firewall functionalities, intrusion detection, VPN and IPSec, content filtering, securing network traffic, and remote access. It protects internal networks and manages servers securely, suitable for small to medium-sized businesses.
OPNsense is a comprehensive firewall solution leveraging open-source technology. It integrates with third-party modules like WireGuard and CrowdSec, enhancing its security capabilities. Offering on-premises and cloud deployment, it features an intuitive graphical interface, advanced reporting, VPN functionality, IDS/IPS features, and high scalability. Users find it ideal for small businesses and home networks due to its stability and ease of use. Frequent updates and an active community support its continuous improvement. However, it needs advancements in VPN selection, scalability, and technical documentation. Enhanced high availability, threat intelligence, and integration with virtualization platforms are required. User feedback suggests improvements in connectivity, alerting, traffic monitoring, and antivirus protection.
What are the key features of OPNsense?OPNsense is implemented across various industries to secure network infrastructure and ensure reliable connectivity. In fintech, it safeguards sensitive financial data while maintaining compliance. Educational institutions deploy it to protect student information and enable secure remote learning environments. Healthcare organizations use it to secure patient data and comply with HIPAA regulations. By integrating with tools like WireGuard and CrowdSec, businesses enhance their cybersecurity posture and streamline network management, making OPNsense a versatile choice for diverse operational needs.
Sophos XGS is a comprehensive network security solution designed to protect organizations from advanced threats. It combines next-generation firewall capabilities with advanced threat protection, web filtering, and application control.
XGS has powerful deep learning technology and can detect and block even the most sophisticated malware and ransomware attacks. It also offers granular control over web access, allowing organizations to enforce policies and prevent access to malicious or inappropriate websites. Additionally, XGS provides application control features, enabling organizations to manage and prioritize network traffic based on specific applications or user groups.
With its intuitive management interface and centralized reporting, XGS offers easy deployment and monitoring of network security.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
