Nov 26, 2020
Both have some unique features and per my experience with both the vendors, Sophos has more features, functionalities, and support. For more info, drop me an email to pranavjyoti@outlook.com
SonicWall NSa and Sophos XG compete in the UTM solutions category, with each offering unique strengths. Based on the data, SonicWall NSa holds an advantage in site-to-site VPN capabilities and extensive administrative options. Sophos XG has an edge with synchronized security and extensive web filtering offering high customization.
Features: SonicWall NSa offers valuable features such as robust site-to-site VPN options, deep packet inspection, and application control. It also integrates seamlessly with AD, providing packet capture tools for detailed troubleshooting. On the other hand, Sophos XG provides synchronized security with endpoint integration, broad web filtering capabilities, and cloud-based management through RED technology to facilitate easy remote site setups.
Room for Improvement: SonicWall NSa users face challenges with its complex configuration GUI, reliability of cloud services and VPN solutions, and the responsiveness of support particularly during firmware updates. Improvements in system stability are also needed. In contrast, Sophos XG could enhance its SD-WAN capability, increase VPN capacity, refine its management interface, and improve support quality. Navigation issues in the GUI and user management also need addressing.
Ease of Deployment and Customer Service: SonicWall NSa is largely on-premises, necessitating a notable learning curve. While technical support is commendable, responsiveness, especially in partnership with Dell, requires improvement. Sophos XG excels with hybrid cloud deployment options and typically faster customer service, though some users criticize the lack of intuitive guidance for newcomers. The effectiveness of support varies, requiring enhanced engagement from the technical team.
Pricing and ROI: SonicWall NSa is economically attractive with competitive pricing, especially due to savings on VPN licensing for HA-pair setups, but additional resources can raise costs significantly. Sophos XG generally offers more aggressive pricing with lower costs, although recent changes might affect user satisfaction. Both offer a strong ROI, with SonicWall focusing on reducing operational costs through efficient resource usage and Sophos appealing to small to medium-sized businesses with cost-effective security improvements.
Clients are now comfortable and not wasting productive hours on IT support.
We have experienced a positive return on investment by utilizing Fortinet's products.
There's definitely an ROI. Having a centralized way of managing and applying policies across the entire organization always helps.
The graphical interface of Sophos XG simplifies configurations, saving time in support and troubleshooting compared to the Linux-based solution I previously used.
It's good, but I would still say it's higher by about 10-15 percent compared to other market products with similar configurations.
Having a Unified Threat Management system like Sophos XG has helped us spend less on network security, thus providing a good return on investment by managing our income effectively.
He explained that it required a command line configuration, as it couldn't be done through the graphical user interface.
I would rate their support for FortiGate a nine out of ten.
They offer very accurate solutions.
The support from SonicWall was excellent.
SonicWall support is very helpful and responsive.
Users are reluctant to open support cases and would rather reinstall an appliance themselves than go through the support process.
I would rate the technical support a nine out of ten.
Microsoft's protection has received positive feedback and strong on-site support from both customers and partners.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
The variation comes in terms of the interfaces and throughputs, but from a security perspective, you get the same benefit, irrespective of whether you have an entry-level unit or an enterprise.
You can choose a cheaper model if you only have 20-30 users, but you will need to spend more money for a FortiGate solution that covers 5,000.
I would rate its scalability around eight out of ten, meaning there are no issues, and it is pretty easy to scale.
You can scale up to multiple firewalls with centralized management.
You can't upgrade memory or storage on a specific model, which limits scalability.
The scalability of the solution is limited to three nodes and may not be sufficient for extensive scaling.
Improper handling of these can lead to a memory surge, a well-known bug that can cause the entire system to freeze.
It is less stable than Palo Alto Networks and Check Point firewalls because there are lots of bugs in the latest firmware.
We have not had any problems with the operating systems or maintenance of subscriptions.
The stability of SonicWall NSA is quite good.
I would rate the stability of Sophos XG a ten out of ten.
Sophos XG is very stable, even when serving as a DHCP server.
Sophos XG is resource-greedy, affecting performance even on newer computers.
If I have put 10 GBPS of throughput on a firewall and I enable all of these features available, such as IPS or UTM functionalities, the throughput comes down to 1 GBPS.
By providing an integrated solution, users would have access to all features and functionalities within a single window, eliminating the need to navigate through multiple windows.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
More details in the analytical tools offered would be appreciated since it is not yet mature.
There are some aspects of the dashboard configuration or customization that could be improved.
The solution should have the ability to be up to date with the most recent threats.
This suggests a vulnerability that needs addressing to ensure administrators can update patches without losing access.
Business cannot stop just because of issues with support.
Secure SD-WAN is free of charge.
The most expensive part is the renewal of the license subscription.
FortiGate is priced lower than Palo Alto.
SonicWall is much cheaper compared to Fortinet, particularly regarding renewal and licensing costs.
I would rate the price of the product as seven out of ten.
I would rate the pricing a ten out of ten as high.
The licensing cost in the final currency amount, is 163,080, with three years of support.
I rate the pricing a ten out of ten.
The firewall, IPS, and VPN functions are the most valuable features.
FortiGate provides solid protection against viruses, malware, and other threats.
Within the same dashboard, you get to see the security profiles, the type of traffic that's passing through, the top applications that are being consumed, etc.
Real-time deep memory inspection is very helpful and has had a positive impact on our security posture.
SonicWall NSA's most valuable features are its SD-WAN and a system RTBI that blocks all attacks.
This unique technology provides efficient branch connectivity without the need to invest in additional firewalls for each branch.
I particularly like the visibility it provides into network traffic, allowing us to identify and address issues efficiently.
The firewall feature of Sophos XG has been the most effective for threat prevention.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?
What benefits should users expect from Fortinet FortiGate?
Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
SonicWall NSa dispenses advanced threat protection using a high-performance security platform. The NSa series implements intuitive deep learning technologies in the SonicWall Capture Cloud Platform to dispatch the automated real-time threat detection and deterrence enterprise organizations need today. SonicWall Network Security appliance (NSa) series is best for mid-sized organizations to distributed enterprises and data centers.
SonicWall NSa series next-generation firewalls (NFGWS) combine two very robust security ideologies to deliver advanced threat protection to keep users’ networks safe. Boosting SonicWall’s multi-engine advanced threat protection (ATP) is their Real-time Deep Memory Inspection (RTDMI™). The RTDMI intuitively identifies and stops aggressive zero-day threats and vicious malware by investigating memory directly. This real-time process allows SonicWall RTDMI to be accurate, lessen false positives and discover and alleviate malicious threats and attacks. SonicWall’s single-pass Reassembly-Free Deep Packet Inspection (RFDPI) will audit every byte of each and every packet by investigating both outbound and inbound traffic on the firewall. By combining the SonicWall Capture Cloud Platform along with on-box offerings such as intrusion prevention, web/URL filtering, and anti-malware, the NSa series is able to block the most malicious and dangerous threats at the gateway.
Additionally, SonicWall firewalls supply absolute protection by executing complete inspection and decryption of SSH and TLS/SSL encryption connections - no matter the port or protocol. The firewall takes a deep dive into each and every packet (the header and data) routing out any anomalies, zero-day intrusions, threats, and protocol non-compliance. Users can also define unique criteria specific to their organization to ensure their networks remain safe. This aggressive deep packet inspection is able to identify and block malicious attacks, stop dangerous malware downloads, prevent the spread of infections, and defeat command and control (C&C) communications and data exfiltration. Protocols involving inclusion and exclusion allow users complete control to decide, based on specific governance policies, organizational policies, or government or legal compliance, which traffic is to be investigated for decryption or inspection.
SonicWall Nsa offers enterprise organizations the network control and fluid flexibility they desire using an intrusion prevention system (IPS), VPN, real-time visualization, and other advanced powerful security features, making it a popular firewall solution in today's marketplace.
Reviews from Real Users
“The features that I have found most valuable are the firewalling, which is very good, and the GUI which is very intuitive. It is easy to use and provides great security.” - Network Engineer at a maritime company
“What's valuable in SonicWall NSa is the ATP (advanced threat protection). It can protect users from malicious links. SonicWall NSa also has a Sandboxing service that is very helpful for us, especially when end users accidentally click on malicious links. Another valuable feature of this solution is that it is very useful for site-to-site VPN connectivity issues. SonicWall NSa has very good hardware. I also love that SonicWall has very good technical support, who are very knowledgeable, provide good suggestions, and they're easy to reach.” - Mohammed M., Network Administrator at Transgulf Readymix
Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.
Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.
What are the key features of Sophos XG?Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
