Netgate pfSense vs Sophos UTM comparison

Netgate and Sophos are both solutions in the Firewalls category. Additionally, 94% of Netgate users are willing to recommend the solution, compared to 89% of Sophos users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Netgate pfSense and Sophos UTM based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Netgate pfSense vs. Sophos UTM Report (Updated: October 2024).

Buyer's Guide

Netgate pfSense vs. Sophos UTM

October 2024

Download the complete report

Helped 815,854 peers since 2012

Categories and Ranking

Fortinet FortiGate

Q&A Highlights

it_user1093146

Regional Manager with 11-50 employees

Mar 31, 2020

What Is The Biggest Difference Between Sophos and pfSense?

I'd agree with Karl's comment above. PfSense is a great product but treat it like a firewall and the big bonus is it's free. It's great at what it does. Sophos UTM on the other hand can be a beast as it's an all in one solution and can get as complex as you would like it. We have failover clustering, load balancing and make use of all of their proxies. Very easy to make initial configuration errors until you know the product and how traffic flows etc. It can also be fairly expensive with the subscriptions eg AV, sandstorm etc If you can afford it, go for Sophos but pfSense can also play it's part too.

See all answers

Featured Reviews

DineshKumar28

Senior Manager at Cognizant

Sep 25, 2024

Effective threat prevention with responsive customer support

We are using Fortinet FortiGate as a firewall Fortinet FortiGate has been invaluable. It has helped save costs due to its various features, reliable performance, very good UI, low latency, and stability. The Threat Intel engine in Fortinet FortiGate is highly rated for its effectiveness in…

Read full review

Vincent Hamm

CIO and President at Aim High! Inc.

Jul 1, 2024

I appreciate the depth of what the solution can do and the simplicity of the initial setup

We do a lot of managed services and are currently trying to get people off of L2TP VPN. Apparently, we can download a mobile config file from a configured NetGate device, and we're primarily Apple. We've experimented with it on a device that's not a production device, and we can't seem to get the phase one IPSec set correctly so that the Apple config will accept it. We've tried looking at the documentation but haven't found anything. While it's not the highest priority, it is rather frustrating. We'd like to do this, and the feature is right there, but we can't get it configured. We certainly don't want to try it on a production machine because it will break the current VPN. I would like to download the Apple mobile config so that I can tell it to configure my VPN connection to do that. We have some cross-platform things. So there's also a Windows VPN. You can download a script or a PowerShell, put it on a Windows machine, and it can connect to the VPN. It would be nice if I could say I want Mac only, Windows only, or both. I wish it could configure the IPSec phase one and phase two, or at least give me solid instructions on how to configure that. It doesn't supply out-of-the-box visibility to drive decisions. You get 75 log lines, so if you're trying to troubleshoot something, you have to look at one log and then another. It integrates with SysLog systems, but our customers are not at the level where they want to pay for some third-party SysLog system. Usually, we can get things taken care of fairly quickly. I would like to have the ability to control all my devices from one place. With Ubiquiti, you can get a controller that allows you to control all of your Wi-Fi devices, switches, and routers. From one area, you can switch to that customer and see what's happening in their environment. That's not part of pfSense. I understand why it's not because pfSense is open source and community supported. That's something that someone in the community needs to pick up and run with. It's not something the pfSense can easily implement. If they could, that'd be great.

Read full review

SherifFouad

ICT Manager at a mining and metals company with 1,001-5,000 employees

Nov 30, 2022

Gives us the ability to manage our firewalls from the cloud and deploy a unified configuration onto them

From Cyberoam and the early builds of Sophos SG, they have developed higher integration between Sophos UTM and the computers' endpoint antiviruses. We can isolate the infected machine from the network, but an IT technician or cybersecurity professional can remove it from the machine and disinfect it. It has the capability of blocking HTTPS traffic, but you need the Sophos Central Intercept X subscription for that. It gives us the ability to manage our firewalls from the cloud and deploy a unified configuration onto them. Other competitors like Meraki have that ability, but they fail to optimize it in the way that Sophos has.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The stability and scalability of this solution are satisfactory. Its SD-WAN, VPN, and URL filtering features are very useful."

"Easy to implement, and it is also reliable."

"The solution is scalable."

"The initial setup is very straightforward and easy, with wizards helping to configure the device efficiently."

"The features that I have found most valuable are that it is good to use, and most importantly, the pricing. The customer especially likes the discount when they trade up or something like that."

"The most valuable features are the policies, filtering, and configuration."

"Our security improved from being able to put in rules and close off unwanted traffic."

"The most valuable feature is the VDOM, which allows the customer to have multiple firewalls in a single campus."

More Fortinet FortiGate pros

"What I found most valuable is the cost of the platform, the flexibility of the platform, and the fact that the ongoing fees are not there as they are with the competitor. Some people may think you're taking a risk with using Opensource. I think it just provides the end user, specifically for us small, medium business providers of services, the flexibility we need at the right cost to provide them a higher end, almost enterprise type service."

"Firewall system for small, medium, and large data networks. It allows you to provide security to your environment: DMZ networks, LAN, WAN, etc."

"Centralized administration with multiple services, which allows for execution in several important functionalities of information security."

"The flexibility of adding new kinds of services without spending any money can't be beaten."

"The most valuable features are the VPN and the capture photo."

"Remote access with two-factor authentication was a big one for us. Pulling in things like Endpoint NG to monitor traffic has been quite helpful. The pfBocker has been good. It helps us limit who's trying to bash away at access to the systems."

"My company mainly works in the health and educational domain, schools and universities. I prevent the improper use of content from schools and universities. I defend the medical records for the patients in our hospitals. That is the main use case for me for the firewall."

"The interface and the integrated services are very useful."

More Netgate pfSense pros

"Installing Sophos UTM is straightforward. The deployment itself doesn't take long, but you have to spend some time planning and waiting for the hardware to be delivered."

"Sophos UTM's best feature is SIM in the cloud, which combines the gateway solution and endpoint solution to send telemetry data to the cloud and provides full contact visibility regarding security."

"Sophos UTM provides security for our network here and access through a VPN connection for our remote users. It also offers the flexibility to create different tools for accessibility."

"Sophos UTM is very user-friendly and has good integration with other solutions."

"Sophos is a unified solution. We have anti-virus protection, firewall rules, knotting, and DACC all in one box."

"It's easy to use."

"We find all of the features valuable because together they fit the needs of our customers."

"It does not take much effort or thinking to understand how it works."

More Sophos UTM pros

Cons

"The visibility of the network can be better. The GUI can be improved for better visibility of the network flow. Other solutions have better GUI in terms of network visibility."

"They should improve the interface to make it more user-friendly."

"Regarding challenges, customers initially faced issues like internet dropping, but after firmware upgrades, everything worked well."

"The initial setup is complex."

"WAN load-balancing could be a lot better at detecting when a link is poor or inconsistent, and not just flat out dead."

"It needs more available central management."

"There are some tiny bugs that sometimes affect the operations. In the past revision of it, there was a bug. Because of the bug, we had to downgrade the version. It happened only with the last revision."

"Vulnerability scanning could be improved."

More Fortinet FortiGate cons

"It could use a little bit of improvement in the reporting."

"The GUI. There are TONS of plugins for pfSense, as such, if a user wants to add quite a bit of functionality, the GUI will feel a little congested."

"It would be nice if the solution had a wizard for some of the complex functions."

"I would like to see pfSense integrate WireGuard. Currently, pfSense uses OpenVPN, and there's nothing wrong with it, but WireGuard is a lot leaner and meaner."

"They could always make pfSense slightly more user-friendly and modernize the interface a little."

"I've encountered persistent issues with the solid-state drives built into pfSense hardware devices."

"Some of the features I am looking for are still not there in pfSense, like, for example, content control. Because I have kids, I want to control the content or what they watch. There is a feature in pfSense called pfBlocker, but it is limited."

"Maybe Netgate needs to see if a medium-level Netgate pfSense Plus can be created for smaller organizations."

More Netgate pfSense cons

"Initially, there were issues with the wireless network as wireless access points were disappearing from the dashboard after some time."

"It is a pretty straightforward setup, but it should be some sort of documentation that takes you step-by-step to help set it up for your VPC."

"Anti-phishing functionality should be improved."

"In Sophos UTM there is always a problem with the routing tables. If you want to see the routing table, you have to use the UI. You can't do it via a web browser. The routing table is better in Fortinet."

"The product could be simplified and made more self-explanatory."

"I would like to see Sophos UTM add support for all the new threat-detection technologies and the ability to respond to novel security threats that come along every day."

"The UI can be cumbersome and, sometimes, features are not where you think they should be."

"The reporting could be a lot better."

More Sophos UTM cons

Pricing and Cost Advice

"They need to be competitive with other solutions."

"The product pricing is reasonable."

"Fortigate's pricing is competitive."

"Fortinet is reasonable in pricing and licensing. Overall, FortiGate is affordable. The licensing fee can be a little high, depending on the budget for your project."

"The price for the device and software is high. However, the solution is of good quality and has a lot of features."

"The price of Fortinet FortiGate could improve, it is expensive."

"Compared to other firewall products, it's a little cheaper in terms of pricing."

"The price is highly competitive when compared to other brands that offer similar functionality."

More Fortinet FortiGate pricing and cost advice

"For what they charge for it, which is maybe $100 a year, it's still good. If you wanted to build your own router, pfSense is more than worth $100 a year to have all that flexibility and maybe your own piece of custom hardware that you want to run it on."

"PFSENSE turns out to be very economical, the license is free and for little money you get very good support"

"They are on the higher end, but you do not get stuck with spending thousands of dollars every year. You do not have recurring license costs to have people use a simple feature like VPN. That makes it more cost-effective in the long term."

"It is open source."

"I am using the community version of the solution and it is priced well. There is a cost of learning how to use the solution, if it was free it would be better."

"Compared to other business routers, pfSense's pricing is reasonable."

"I will not call it a cheap tool, but it is very cost-efficient."

"While pfSense hardware from Netgate might have a higher upfront cost, I've had very little trouble with it. Plus, buying from them directly helps fund the software's development, making it a worthwhile investment in my eyes."

More Netgate pfSense pricing and cost advice

"The solution's pricing is based on a licensing model and is competitive."

"Pricing for Sophos UTM is OK. Here in Egypt, many companies use the solution because of its price and features. My company pays the Sophos UTM license fee yearly."

"The solution is affordable compared to others, such as FortiGate. The price is important."

"Purchasing through the AWS Marketplace is pretty straightforward. Because were entirely on AWS and don't have anything anywhere else. It made the most sense for us as a one stop shop."

"There is a license for the device and for the software. We pay annually for the solution and the cost is competitive."

"There was an up-front charge of around $70,000, to purchase the hub and license. Beyond the initial cost, licenses are charged for annually, but they are good value for the service we receive."

"Go to a vendor and let them assess your needs so you can get a right-sized device."

"It will cost approximately $67 US per device. We have 300 devices in our organization."

More Sophos UTM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

815,854 professionals have used our research since 2012.

Comparison Review

it_user216600

Senior Technical Consultant with 51-200 employees

Jan 3, 2016

Sophos UTM vs. Fortinet FortiGate

I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…

Read full review

Answers from the Community

it_user1093146

Regional Manager with 11-50 employees

Mar 31, 2020

What Is The Biggest Difference Between Sophos and pfSense?

2 out of 9 answers

reviewer772704

IT Manager with 51-200 employees

May 16, 2019

I´m afraid I am not able to help in this matter. We´ve decided to for FortiGate as services, based on our relationship with our IT security provider and the FortiGate reviews available on the net. We used to use pfSence for one particular open network but let the full control on de FortiGate. During the investigation and analysis period we thought of Sophos but felt more comfortable going for FortiGate pretty much based on price and our relationship with our IT security provider. Hence my experience wouldn´t help in this case. My best advice would is to refer to the article available on: https://www.itcentralstation.com/products/comparisons/pfsense_vs_sophos-utm

Read full answer

it_user794232

CIO LATAM at i-Track Systems Development, S.A. de C.V.

May 16, 2019

Hello Nick, we are Sophos’ silver partner. Sure we will. When do you need it back? Israel Caravantes. El 16 may 2019, a la(s) 7:22, Nick Regan from IT Central Station > escribió: Hi Israel, Can you help out a colleague with the following question about Sophos UTM: ----- What Is The Biggest Difference Between Sophos and pfSense? I am trying to compare Sophos and pfSense for my company. Which one is best and why? What is the biggest difference between Sophos and pfSense? Thanks for helping me with this important decision. ----- Please reply to this email with your response or post your answer here. User's background: Regional Manager with 11-50 employees You've been a member of IT Central Station since December 2017. In a market full of vendor hype, we provide free connections between real users of Sophos UTM to share advice and make better buying decisions. Thanks for being part of the community. Nick Regan Community Director, IT Central Station IT Central Station 244 Fifth Avenue New York, NY 10001 (646) 328-1944 um-nqn 264744 To change notifications, please visit your subscription page or unsubscribe completely. gitbdelaGVkbHpranQ4TlNueHhtaTIwOWRXdFhDV0xMRGtaNGlxQjRnRmo4dUs5NjlvSmNwSURiZGNrcGxBczBET1h4dS0tTzdTYUFzM291OG9iV1ZpbzZkcENqQT09--1a3146227d771b2ce6a16a5909980aa6859c7a9agitbdel

Read full answer

See all 9 answers

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

15%

Manufacturing Company

Comms Service Provider

Computer Software Company

15%

Comms Service Provider

Government

Educational Organization

Computer Software Company

18%

Government

Educational Organization

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Help me find the best open source router

You don't really specify what type of router you are looking for but if you are talking about a gateway router I reco...

See all answers

How do I choose between Fortinet FortiGate and pfSense?

Fortinet’s Fortigate is a firewall solution we use and are very much satisfied with its performance. We find Fortigat...

See all answers

What is the difference between PfSense and OPNsense?

Two of the most common and well recognized firewalls, PfSense and OPNsense both support site-to-site IPsec VPN and cl...

See all answers

What Is The Biggest Difference Between Sophos UTM and Sophos XG?

The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. ...

See all answers

What do you like most about Sophos UTM?

The most valuable feature of Sophos UTM is the endpoint protection feature.

See all answers

What is your experience regarding pricing and costs for Sophos UTM?

The product pricing and licensing are higher, but they offer good value for the features and stability provided.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 12% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

OPNsense vs Netgate pfSense

Compared 49% of the time

Sophos XG vs Netgate pfSense

Compared 8% of the time

KerioControl vs Netgate pfSense

Compared 3% of the time

Cisco Secure Firewall vs Netgate pfSense

Compared 2% of the time

Palo Alto Networks NG Firewalls vs Netgate pfSense

Compared 2% of the time

More Netgate pfSense Competitors

OPNsense vs Sophos UTM

Compared 14% of the time

Sophos XG vs Sophos UTM

Compared 12% of the time

Palo Alto Networks NG Firewalls vs Sophos UTM

Compared 7% of the time

WatchGuard Firebox vs Sophos UTM

Compared 5% of the time

Cisco Secure Firewall vs Sophos UTM

Compared 5% of the time

More Sophos UTM Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

November 2024

Download Fortinet FortiGate product report

Buyer's Guide

Netgate pfSense

November 2024

Download Netgate pfSense product report

Buyer's Guide

Sophos UTM

October 2024

Download Sophos UTM product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate

No data available

Astaro

Learn More

Fortinet

Video not available

Netgate

Sophos

Overview

Fortinet FortiGate enhances network security, prevents unauthorized access, and offers robust firewall protection. Valued features include advanced threat protection, reliable performance, and a user-friendly interface. It improves efficiency, streamlines processes, and boosts collaboration, providing valuable insights for informed decision-making and growth.

pfSense is a powerful and reliable network security appliance primarily used for security purposes such as firewall and VPN or traffic shaping, network management, and web filtering. It is commonly used by small businesses and managed service providers to protect their customers' networks and enable remote access through VPNs.

The solution is praised for its stability, user-friendly interface, scalability potential, open-source nature, free cost, easy installation, firewall capabilities, security features, flexibility, and simplicity. Overall, pfSense is a cost-effective solution for enterprises that need a VPN for their employees.

pfSense Key Features

pfSense has many key features and capabilities, including:

Strength and accuracy: pfSense is able to always follow either default or custom rules, making it a stronger firewall than some of its competitors. It also filters traffic separately, whether it’s coming from your internal network of devices or the open internet, allowing you to set different rules and policies for each.
Flexibility: pfSense can work both as a basic firewall and as a complete security system because it gives you the flexibility to integrate additional features as code where necessary.
Open-source: Because it is open-source, not only is pfSense free to use, but community members can contribute to the code to make it a better software.
User-friendly: Usually firewall products are not user-friendly because they often include complex settings, options, and features that require fine-tuning. pfSense’s interface is simple, direct, and easy to use.
WireGuard Support: Instead of building your own VPN using pfSense, or settling for a commercial VPN provider, you can directly integrate WireGuard with the pfSense firewall.
Speed Management and Fault Tolerance: pfSense’s multi-WAN feature allows your system to continue operating in case components fail.
Well-supported: pfSense regularly has security and feature updates. It also has a documentation site and a well-informed and knowledgeable support forum.

Reviews from Real Users

Below is some feedback from PeerSpot Users who are currently using the solution.

Bojan O., CEO at In.sist d.o.o., says, “The classic features, such as content inspection, content protection, and the application-level firewall, are the most important."

Another PeerSpot user, a chef at a media company, explains what he finds most valuable about pfSense: "T he plugins or add-ons are most valuable. Sometimes, they are free of charge, and sometimes, you have to pay for them, but you can purchase or download very valuable plugins or add-ons to perform internal testing of your network and simulate a denial-of-service attack or whichever attack you want to simulate. You can also remote and monitor your network and see where the gap is."

T.O., a VP of Business Development at a tech services company, mentions, "What I found most valuable is the cost of the platform, the flexibility of the platform, and the fact that the ongoing fees are not there as they are with the competitor."

Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.

Sophos UTM Features

Sophos UTM has many valuable key features. Some of the most useful ones include:

Web and Email Filtering
General Management
Network Protection
Network Routing and Services
Advanced Threat Protection
Authentication
Email Encryption and DLP
Web Policy
End-User Portal
VPN IPsec Client, VPN SSL Client, and Clientless VPN
Web Application Firewall Protection
UTM Endpoint Protection and Management
SEC Endpoint Integration
Logging and Reporting

Sophos UTM Benefits

There are many benefits to implementing Sophos UTM. Some of the biggest advantages the solution offers include:

Simplifies your IT security without the complexity of multiple point solutions
Intuitive interface to help you quickly create policies to control security risks
Provides clear, detailed reports to give you the insight you need to improve your network performance and protection
Complete control to block, allow, shape and prioritize applications
Two-factor authentication with one-time password (OTP)
Integrated wireless controller
Allows you to connect remote offices with easy VPN and Wi-Fi

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Sophos UTM solution.

PeerSpot user Dana B., Network Administrator at a manufacturing company, says “The web and email filtering are the two biggest and most valuable aspects of the solution for us. The solution overall has just been a good, cost-effective solution for us. The solution offers a lot of functionality. The solution scales well. We've found the technical support to be helpful. The stability and performance are quite good.”

A Technical Director at a security firm mentions, "Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

Marek M., Senior Network Engineer at a computer software company, comments, “Sophos UTM is the simplest of these products to set up. If you follow the instructions using the wizard, which is just a few steps, then you will have a firewall to protect you and your customer.”

A Software Sales Manager at a tech services company explains, “The overall visibility of the console is what I find most valuable, plus it's very user-friendly. It can be integrated with other solutions such as SOAR, SIEM, etc., even when you have an existing firewall. I really like that the console can be integrated. You'll see everything on the same window, and the single window feature of the machine is so good. These are the features I really like.”

James D., IT Manager at Manual Workers Union, states, “The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money. The solution has many great features. From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. The initial setup is simple. We enjoy its general stability. The solution can scale. So far, the solution has been problem-free.”

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring

One Housing Group

Buyer's Guide

Netgate pfSense vs. Sophos UTM

October 2024

Free Report: Netgate pfSense vs. Sophos UTM

Find out what your peers are saying about Netgate pfSense vs. Sophos UTM and other solutions. Updated: October 2024.

DOWNLOAD NOW

815,854 professionals have used our research since 2012.

See our Netgate pfSense vs. Sophos UTM report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.