SonicWall NSa and Sophos XGS are popular firewall solutions tailored for comprehensive network security. Sophos XGS seems to have an upper hand due to its advanced feature integration and real-time threat responsiveness.
Features: SonicWall NSa offers robust threat detection and prevention, efficient VPN support, and deep packet inspection. It also integrates SSL decryption and supports multi-gigabit speeds. Sophos XGS provides synchronized security, active threat response, and enhanced visibility across devices. Its centralized management and machine learning capabilities are highly regarded.
Room for Improvement: SonicWall NSa users note the need for a more intuitive configuration process, occasional firmware stability issues, and improved reporting tools. Sophos XGS users suggest enhancements in hardware appliance performance at the entry level and better logging features.
Ease of Deployment and Customer Service: SonicWall NSa deployment is generally straightforward with valuable customer support, though it may require technical expertise initially. Sophos XGS deployment is uncomplicated, with positive reviews for its responsive customer service.
Pricing and ROI: SonicWall NSa offers good value for its comprehensive features despite a higher initial setup cost, with effective threat management providing favorable ROI. Sophos XGS is slightly more expensive upfront, but users find its advanced features and security justify the higher cost, offering excellent ROI.
Clients are now comfortable and not wasting productive hours on IT support.
We have experienced a positive return on investment by utilizing Fortinet's products.
There's definitely an ROI. Having a centralized way of managing and applying policies across the entire organization always helps.
The costs have increased with Sophos XGS in the last few years, with license prices going up by 30%, doubling from $2,500 to about $5,000, which is a big challenge for us.
He explained that it required a command line configuration, as it couldn't be done through the graphical user interface.
I would rate their support for FortiGate a nine out of ten.
They offer very accurate solutions.
The support from SonicWall was excellent.
SonicWall support is very helpful and responsive.
Any issues are quickly addressed by their support team, which is not common among all OEM manufacturers.
The response time from Sophos technical support can be slow in most cases, which can be challenging.
Technical support from Sophos is always available.
They scale up really well from smaller models like the FortiGate 40 and 50 to bigger sites with the FortiGate 100 for more throughput - up to enterprise datacenters.
There are many options available, and we can choose the size of the box based on our requirements.
You can choose a cheaper model if you only have 20-30 users, but you will need to spend more money for a FortiGate solution that covers 5,000.
I would rate its scalability around eight out of ten, meaning there are no issues, and it is pretty easy to scale.
I can change what I want easily without interfering with other services or routines.
I would rate its scalability seven out of ten since modules can be added.
There are no bugs or glitches, and it doesn't crash or freeze.
Improper handling of these can lead to a memory surge, a well-known bug that can cause the entire system to freeze.
It is less stable than Palo Alto Networks and Check Point firewalls because there are lots of bugs in the latest firmware.
The stability of SonicWall NSA is quite good.
It is rated at nine out of ten for stability and is very reliable.
Sophos XGS is stable now, and I would rate its stability as a ten out of ten.
When Sophos introduced firmware version twenty, there was a bug in DCC.
If I have put 10 GBPS of throughput on a firewall and I enable all of these features available, such as IPS or UTM functionalities, the throughput comes down to 1 GBPS.
By providing an integrated solution, users would have access to all features and functionalities within a single window, eliminating the need to navigate through multiple windows.
Investing in a solution that can accommodate such growth would be more cost-effective than repeatedly purchasing new hardware.
More details in the analytical tools offered would be appreciated since it is not yet mature.
There are some aspects of the dashboard configuration or customization that could be improved.
It would be beneficial if Sophos XGS offered an end-to-end solution with competitive pricing.
After version 18.5, creating a NAT rule has become more complex, requiring the creation of a separate policy and an additional component.
I have experienced multiple hardware complaints, particularly during firmware updates that sometimes cause crashes.
Secure SD-WAN is free of charge.
The most expensive part is the renewal of the license subscription.
FortiGate is priced lower than Palo Alto.
SonicWall is much cheaper compared to Fortinet, particularly regarding renewal and licensing costs.
I would rate the price of the product as seven out of ten.
The last instance I purchased was for three years, around $3,700 for SDG 125.
pricing is rated eight out of ten, indicating that it may be relatively expensive.
Sophos XGS is quite expensive, potentially a nine out of ten in terms of cost.
It's easy to monitor the end-to-end network through the firewall.
The firewall, IPS, and VPN functions are the most valuable features.
FortiGate provides solid protection against viruses, malware, and other threats.
Real-time deep memory inspection is very helpful and has had a positive impact on our security posture.
SonicWall NSA's most valuable features are its SD-WAN and a system RTBI that blocks all attacks.
It's able to detect cloud applications like Zoom or Microsoft Teams and allows traffic shaping based on the application.
I find it much easier than others, like FortiGate, which is complicated in its installation, but Sophos XGS is really easy.
The threat detection capabilities are effective, especially against CNC and certain viruses not coming through emails.
Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.
Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.
What are the key features of Fortinet FortiGate?
What benefits should users expect from Fortinet FortiGate?
Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.
SonicWall NSa dispenses advanced threat protection using a high-performance security platform. The NSa series implements intuitive deep learning technologies in the SonicWall Capture Cloud Platform to dispatch the automated real-time threat detection and deterrence enterprise organizations need today. SonicWall Network Security appliance (NSa) series is best for mid-sized organizations to distributed enterprises and data centers.
SonicWall NSa series next-generation firewalls (NFGWS) combine two very robust security ideologies to deliver advanced threat protection to keep users’ networks safe. Boosting SonicWall’s multi-engine advanced threat protection (ATP) is their Real-time Deep Memory Inspection (RTDMI™). The RTDMI intuitively identifies and stops aggressive zero-day threats and vicious malware by investigating memory directly. This real-time process allows SonicWall RTDMI to be accurate, lessen false positives and discover and alleviate malicious threats and attacks. SonicWall’s single-pass Reassembly-Free Deep Packet Inspection (RFDPI) will audit every byte of each and every packet by investigating both outbound and inbound traffic on the firewall. By combining the SonicWall Capture Cloud Platform along with on-box offerings such as intrusion prevention, web/URL filtering, and anti-malware, the NSa series is able to block the most malicious and dangerous threats at the gateway.
Additionally, SonicWall firewalls supply absolute protection by executing complete inspection and decryption of SSH and TLS/SSL encryption connections - no matter the port or protocol. The firewall takes a deep dive into each and every packet (the header and data) routing out any anomalies, zero-day intrusions, threats, and protocol non-compliance. Users can also define unique criteria specific to their organization to ensure their networks remain safe. This aggressive deep packet inspection is able to identify and block malicious attacks, stop dangerous malware downloads, prevent the spread of infections, and defeat command and control (C&C) communications and data exfiltration. Protocols involving inclusion and exclusion allow users complete control to decide, based on specific governance policies, organizational policies, or government or legal compliance, which traffic is to be investigated for decryption or inspection.
SonicWall Nsa offers enterprise organizations the network control and fluid flexibility they desire using an intrusion prevention system (IPS), VPN, real-time visualization, and other advanced powerful security features, making it a popular firewall solution in today's marketplace.
Reviews from Real Users
“The features that I have found most valuable are the firewalling, which is very good, and the GUI which is very intuitive. It is easy to use and provides great security.” - Network Engineer at a maritime company
“What's valuable in SonicWall NSa is the ATP (advanced threat protection). It can protect users from malicious links. SonicWall NSa also has a Sandboxing service that is very helpful for us, especially when end users accidentally click on malicious links. Another valuable feature of this solution is that it is very useful for site-to-site VPN connectivity issues. SonicWall NSa has very good hardware. I also love that SonicWall has very good technical support, who are very knowledgeable, provide good suggestions, and they're easy to reach.” - Mohammed M., Network Administrator at Transgulf Readymix
Sophos XGS is a comprehensive network security solution designed to protect organizations from advanced threats. It combines next-generation firewall capabilities with advanced threat protection, web filtering, and application control.
XGS has powerful deep learning technology and can detect and block even the most sophisticated malware and ransomware attacks. It also offers granular control over web access, allowing organizations to enforce policies and prevent access to malicious or inappropriate websites. Additionally, XGS provides application control features, enabling organizations to manage and prioritize network traffic based on specific applications or user groups.
With its intuitive management interface and centralized reporting, XGS offers easy deployment and monitoring of network security.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.