Try our new research platform with insights from 80,000+ expert users

Sangfor NGAF vs Sophos UTM comparison

Sangfor and Sophos are both solutions in the Firewalls category. Additionally, 90% of Sangfor users are willing to recommend the solution, compared to 89% of Sophos users who would recommend it.
Sponsored
Fortinet FortiGate
Read 331 Fortinet FortiGate reviews
  • 74,539 Views
  • 56,128 Comparison Views
90% willing to recommend
Sangfor NGAF
Read 36 Sangfor NGAF reviews
  • 5,314 Views
  • 3,075 Comparison Views
90% willing to recommend
Sophos UTM
Read 113 Sophos UTM reviews
  • 1,929 Views
  • 1,458 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Sangfor NGAF and Sophos UTM based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Sangfor NGAF vs. Sophos UTM Report (Updated: April 2025).
Buyer's Guide
Sangfor NGAF vs. Sophos UTM
April 2025
Download the complete report
Helped 850,671 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
331
Ranking in other categories
Firewalls (2nd), Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Sangfor NGAF
Average Rating
8.0
Reviews Sentiment
6.5
Number of Reviews
36
Ranking in other categories
Firewalls (18th)
Sophos UTM
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
113
Ranking in other categories
Unified Threat Management (UTM) (4th)
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Read full review
Zaid Farooqui - PeerSpot reviewer
Enhanced threat detection with integrated security features and good support
We are using application firewalling, WAF, and SD-WAN. The capabilities are mostly within the box. For example, you will get web application firewall WAF as part and parcel of this. SD-WAN is also bundled. It integrates with their SIEM and SOAR solutions very nicely. Lastly, the pricing point is very cost-efficient as well.
Read full review
Samaila Yusuf - PeerSpot reviewer
Network protection strengthens through effective threat management features and secure access control
The zero-day protection and firewall rules are some of the most effective features for threat management. I can set the rules and features, and also use IPsec to connect all my on-premises servers and link them to Sophos UTM so that they are protected even when in the cloud. Additionally, I use it to control access into the building through a captive portal integrated across all the PCs we have, ensuring secure access only for authenticated users.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The web tutor and automatic rules by schedule are good features."
"Fortinet FortiGate positively provides my clients' organizations with a high return on investment."
"It's very good and very stable for businesses. It works very well."
"The initial setup of Fortinet FortiGate was straightforward."
"The tool is a nice product and easy to handle. The software's user interface is also good. You can easily implement remote access in the solution."
"Run Script is the best tool to use in Fortinet FortiGate with multiple environments."
"I like Fortinet's cloud management. It allows me to manage all my devices in different branches for three cloud accounts. Even though I use on-prem devices, I can manage everything on the cloud."
"LinkGreat firewall capabilities"
More Fortinet FortiGate pros
"Sangfor has the best capabilities for securing connections, securing web browsers, securing servers, and general threat protection."
"So far, the performance and reliability of the product have supported our company's critical network traffic."
"It's a very simple to use product."
"SSL VPN is the best feature."
"We've found the technical support to be helpful."
"In four steps one can configure the entire firewall."
"The stability of Sangfor NGAF is good."
"Sangfor's tech features and technologies are more powerful than those of the other solution providers in terms of security. They also have big solutions in terms of cybersecurity."
More Sangfor NGAF pros
"This is a very stable product."
"Stability-wise, I rate this solution a ten out of ten...Scalability-wise, I rate this solution a ten out of ten."
"The platform's most valuable features include the integrated multifactor authentication (OTP) for VPNs, which enhances security, and the flexible and intuitive firewall policy settings that simplify management."
"It helped to connect our satellite offices to the main Amazon infrastructure in a circular way."
"The solution is easy to handle and configure."
"The stability, overall, is excellent. I haven't had a problem in the last two years."
"Brings greater visibility into the network traffic coming inside and passing away from the company."
"We use Sophos UTM as our main firewall with all its features included. Mainly, it controls all of our network perimeter security: firewall, IDS/IPS, and web application firewall (including VoIP)."
More Sophos UTM pros
 

Cons

"When we cluster the two Fortinet FortiGate boxes together we have some issues."
"This product could be improved with Active directory integration and better handling in IPsec and GRE Tunnels."
"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."
"The solution could be more user friendly."
"Fortinet needs to overhaul its documentation."
"With FortiGate, the main complaint that I have heard is about the technical support."
"I need user-behavior analytics, to find threat scenarios from inside the organization, insider attacks. That would be very helpful for us. In addition, I would like next-generation features for small and medium businesses. These businesses require UTM, all in one product. Fortinet must include it."
"Fortinet FortiGate could improve by having more storage in the hardware for log data."
More Fortinet FortiGate cons
"I would be happy if Sangfor developed a firewall designed specifically for home use, as well as for small businesses such as clinics and so on. A household version of the Sangfor firewall for your personal computer or laptop would be ideal, in my opinion."
"The tool's support is an area of concern where improvements are required."
"The product must provide more IPS features."
"Occasional issues with breaches which are dealt with expediently."
"The tool is expensive."
"The cost of licensing is very high compared to other firewalls available here. There should be improvements in hardware scalability, allowing for more storage and memory capacity."
"Scalability for any network device is not very easy in terms of vertical scalability."
"The support for YouTube or the Internet is not enough."
More Sangfor NGAF cons
"Flexibility in pricing could be improved. It's more rigid in its pricing compared to its competitor: Kaspersky."
"Sophos UTM's internet security could be better."
"The only time we face a problem or issues is when we place a ticket. We have found that response is very slow."
"They could reduce the price."
"There is still room for improvement in wireless protection. I don't mean their WiFi device is bad, but there are still things to improve on, such as WiFi roaming."
"The application control is really bad. It needs a lot of enhancements. The traffic shaping and bandwidth control, and application control need a lot of work."
"The memory and processing were problematic. The interface could be better."
"The reporting could improve by providing information on where, or from which device attacks are coming from. We are already given the country where the attack is coming from but more information would be beneficial."
More Sophos UTM cons
 

Pricing and Cost Advice

"Before choosing a piece of equipment you have to take into account the cost-benefit offered by each one. Sometimes it is not worth paying a very cheap price to have a minimum level of security."
"Fortinet FortiGate allows you to purchase licenses for hardware and software."
"​We saved a bundle by not needing all the past appliances from an NGFW.​"
"Work through partners for the best pricing."
"The price of Fortinet FortiGate when compared to other solutions is high. However, my knowledge of the price is from third parties and I am not sure how accurate it is. I typically work in the technical area of my organization."
"It is too expensive for us. My organization is very small, and we have a total of ten users. We have three internal users and seven external users. The FortiGate 100D series is too expensive for renewing the licenses."
"The product pricing is reasonable."
"The pricing of the solution is very competitive."
More Fortinet FortiGate pricing and cost advice
"If one is very cheap and ten is very expensive, I rate the tool's price as three out of ten."
"Price-wise, I would not consider Sangfor NGAF to be a cheap product. It is an expensive firewall solution, though not as expensive as something like Palo Alto, which is costly. However, the higher price point is justifiable given the feature set the tool provides that other firewalls may not offer in a single dedicated appliance."
"The price falls in the mid-range, neither exceptionally low nor high."
"For four to five physical appliances for a licensed firewall, it costs approximately $4,000."
"The price is unmatcheable."
"If you know you have around 200+ computer users on your network, then the Sangfor NGAF 5200-F-I model would be the minimum recommended model for that amount of users. This model includes modules for packet filtering, deep packet inspection, malware scanning, DSCP filtration, and many other features."
"It is one of the cheapest tools in the market."
"Sangfor NGAF price is reasonable and there is an annual license. However, the maintenance cost can be a bit high."
More Sangfor NGAF pricing and cost advice
"We pay for the service on a yearly basis. The last time we paid was in June, for a year. At the time, it was about $20,000."
"I have no problem with the cost or licensing of this solution. This is a primary reason whay I wanted this solution. It does the same thing cheaper than other name brands."
"The pricing is pretty reasonable. I don't think that it is overly expensive."
"The licensing model is very straightforward, it's a bit pricey, but for what you get, it's well worth it."
"I would recommend to follow Sophos’ sizing guidelines for choosing which license and model to use. Sophos has their own way of going about this and supplies partners with all the information required. If you follow their documentation and guidelines, there should be zero questions about licensing and sizing."
"You cannot really say that the solution is expensive, given the protection it gives."
"If you can afford it, go for a small Check Point, as it is easier to manage."
"The product pricing and licensing are higher, but they offer good value for the features and stability provided."
More Sophos UTM pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
See recommendations
850,671 professionals have used our research since 2012.
 

Comparison Review

it_user216600 - PeerSpot reviewer
Jan 3, 2016
Sophos UTM vs. Fortinet FortiGate
I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…
Read full review
 

Top Industries

By visitors reading reviews
Educational Organization
20%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Computer Software Company
13%
Manufacturing Company
10%
Financial Services Firm
9%
Educational Organization
7%
Computer Software Company
18%
Comms Service Provider
8%
Government
7%
Educational Organization
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
See all answers
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
See all answers
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
See all answers
What do you like most about Sangfor NGAF?
I think Sangfor NGAF is more valuable than Cisco products because of its simplicity and ease of management. If I comp...
See all answers
What is your experience regarding pricing and costs for Sangfor NGAF?
The licensing cost is quite high compared to other available firewalls in the market.
See all answers
What needs improvement with Sangfor NGAF?
The cost of licensing is very high compared to other firewalls available here. There should be improvements in hardwa...
See all answers
What do you like most about Sophos UTM?
The most valuable feature of Sophos UTM is the endpoint protection feature.
See all answers
What is your experience regarding pricing and costs for Sophos UTM?
The value between what I receive and what I pay is the best in the industry.
See all answers
What needs improvement with Sophos UTM?
With artificial intelligence, there is room for improvement in all antivirus and security software. However, the bad ...
See all answers
 

Comparisons

Sophos XG vs Fortinet FortiGate Logo
Sophos XG vs Fortinet FortiGate
Compared 22% of the time
Netgate pfSense vs Fortinet FortiGate Logo
Netgate pfSense vs Fortinet FortiGate
Compared 13% of the time
Cisco Secure Firewall vs Fortinet FortiGate Logo
Cisco Secure Firewall vs Fortinet FortiGate
Compared 11% of the time
WatchGuard Firebox vs Fortinet FortiGate Logo
WatchGuard Firebox vs Fortinet FortiGate
Compared 5% of the time
More Fortinet FortiGate Competitors
Sophos XG vs Sangfor NGAF Logo
Sophos XG vs Sangfor NGAF
Compared 16% of the time
Netgate pfSense vs Sangfor NGAF Logo
Netgate pfSense vs Sangfor NGAF
Compared 4% of the time
Palo Alto Networks NG Firewalls vs Sangfor NGAF Logo
Palo Alto Networks NG Firewalls vs Sangfor NGAF
Compared 4% of the time
Sophos XGS vs Sangfor NGAF Logo
Sophos XGS vs Sangfor NGAF
Compared 4% of the time
Check Point NGFW vs Sangfor NGAF Logo
Check Point NGFW vs Sangfor NGAF
Compared 3% of the time
More Sangfor NGAF Competitors
Netgate pfSense vs Sophos UTM Logo
Netgate pfSense vs Sophos UTM
Compared 13% of the time
OPNsense vs Sophos UTM Logo
OPNsense vs Sophos UTM
Compared 12% of the time
Sophos XG vs Sophos UTM Logo
Sophos XG vs Sophos UTM
Compared 10% of the time
Palo Alto Networks NG Firewalls vs Sophos UTM Logo
Palo Alto Networks NG Firewalls vs Sophos UTM
Compared 7% of the time
Cisco Secure Firewall vs Sophos UTM Logo
Cisco Secure Firewall vs Sophos UTM
Compared 6% of the time
More Sophos UTM Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiGate
May 2025
Fortinet FortiGate reportDownload Fortinet FortiGate product report
Buyer's Guide
Sangfor NGAF
April 2025
Sangfor NGAF reportDownload Sangfor NGAF product report
Buyer's Guide
Sophos UTM
April 2025
Sophos UTM reportDownload Sophos UTM product report
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
Sangfor NGAF Firewall Platform
Astaro
 

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

  • VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
  • Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
  • Advanced Firewall: Offers robust firewalling with application control and web filtering.
  • SD-WAN: Optimizes application performance and enhances bandwidth management.
  • SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

  • High-performance Security: Delivers effective threat mitigation with high availability.
  • Centralized Management: Simplifies network operations with cloud-based management tools.
  • Detailed Analytics: Provides comprehensive insights into network activity and security threats.
  • Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sangfor Next Generation Firewall (also known as NGAF) is a converged security solution providing protection against advanced threat, malware, viruses, ransomware and web-based attacks using integrated security features like firewall, IPS, anti-virus, anti-malware, APT, URL filtering, Cloud Sandbox, and WAF. As the world's first AI-enabled and fully integrated Next Generation Firewall & Web Application Firewall (WAF), NGAF offering the security visibility, real-time detection and response, simplified operation and maintenance and high-performance application layer security needed to operate an enterprise network in total security. Tested and proven to provide cutting-edge network security by ICSA Labs and endorsed by Gartner Inc., NGAF harnesses the power of Sangfor’s Neural-X threat intelligence and analytics platform and Engine Zero’s innovative malware detection to provide next-generation protection for today’s enterprise.

Sangfor

Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.

Sophos UTM Features

Sophos UTM has many valuable key features. Some of the most useful ones include:

  • Web and Email Filtering
  • General Management
  • Network Protection
  • Network Routing and Services
  • Advanced Threat Protection
  • Authentication
  • Email Encryption and DLP
  • Web Policy
  • End-User Portal
  • VPN IPsec Client, VPN SSL Client, and Clientless VPN
  • Web Application Firewall Protection
  • UTM Endpoint Protection and Management
  • SEC Endpoint Integration
  • Logging and Reporting

Sophos UTM Benefits

There are many benefits to implementing Sophos UTM. Some of the biggest advantages the solution offers include:

  • Simplifies your IT security without the complexity of multiple point solutions
  • Intuitive interface to help you quickly create policies to control security risks
  • Provides clear, detailed reports to give you the insight you need to improve your network performance and protection
  • Complete control to block, allow, shape and prioritize applications
  • Two-factor authentication with one-time password (OTP)
  • Integrated wireless controller
  • Allows you to connect remote offices with easy VPN and Wi-Fi

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Sophos UTM solution.

PeerSpot user Dana B., Network Administrator at a manufacturing company, says “The web and email filtering are the two biggest and most valuable aspects of the solution for us. The solution overall has just been a good, cost-effective solution for us. The solution offers a lot of functionality. The solution scales well. We've found the technical support to be helpful. The stability and performance are quite good.”

A Technical Director at a security firm mentions, "Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

Marek M., Senior Network Engineer at a computer software company, comments, “Sophos UTM is the simplest of these products to set up. If you follow the instructions using the wizard, which is just a few steps, then you will have a firewall to protect you and your customer.”

A Software Sales Manager at a tech services company explains, “The overall visibility of the console is what I find most valuable, plus it's very user-friendly. It can be integrated with other solutions such as SOAR, SIEM, etc., even when you have an existing firewall. I really like that the console can be integrated. You'll see everything on the same window, and the single window feature of the machine is so good. These are the features I really like.”

James D., IT Manager at Manual Workers Union, states, “The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money. The solution has many great features. From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. The initial setup is simple. We enjoy its general stability. The solution can scale. So far, the solution has been problem-free.”

Sophos
 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
The Ministry of Science, Technology, and Innovation (Indonesia), Lawson, Inc. (Philippines), Universiti Sultan Zainal Abidin (Indonesia), TEK Automotive (Italy), etc.
One Housing Group
Buyer's Guide
Sangfor NGAF vs. Sophos UTM
April 2025
Free Report: Sangfor NGAF vs. Sophos UTM
Find out what your peers are saying about Sangfor NGAF vs. Sophos UTM and other solutions. Updated: April 2025.
DOWNLOAD NOW
850,671 professionals have used our research since 2012.
See our Sangfor NGAF vs. Sophos UTM report.
See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.