Try our new research platform with insights from 80,000+ expert users

Sophos XG vs Zscaler Cloud Firewall comparison

Sophos and Zscaler are both solutions in the Firewalls category. Sophos is ranked #4 with an average rating of 8.3, while Zscaler is ranked #23 with an average rating of 8.6. Sophos holds a 11.2% mindshare in Firewalls, compared to Zscaler’s 0.3% mindshare. Additionally, 92% of Sophos users are willing to recommend the solution, compared to 100% of Zscaler users who would recommend it.
Sponsored
Fortinet FortiGate
Read 318 Fortinet FortiGate reviews
  • 87,778 Views
  • 64,686 Comparison Views
90% willing to recommend
Sophos XG
Read 198 Sophos XG reviews
  • 43,284 Views
  • 33,949 Comparison Views
92% willing to recommend
Zscaler Cloud Firewall
Read 17 Zscaler Cloud Firewall reviews
  • 1,455 Views
  • 1,086 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 5, 2025

Sophos XG and Zscaler Cloud Firewall are competitors in the network security category. Zscaler may have the upper hand due to its cloud-centric approach and in-depth threat protection.

Features: Sophos XG offers advanced web and application filtering, synchronized security, and a robust IPS and anti-malware protection. It also provides centralized management for high visibility. Zscaler Cloud Firewall features comprehensive threat protection, CASB, DLP, and strong integration capabilities.

Room for Improvement: Sophos XG needs improvements in VPN stability, load balancing, and documentation, along with more intuitive configuration processes. Zscaler Cloud Firewall could enhance its service customization, reporting, and integration with legacy systems.

Ease of Deployment and Customer Service: Sophos XG provides flexible deployment options: on-premises, cloud, and hybrid. Its support has been reported as variable. Zscaler Cloud Firewall offers straightforward cloud-focused deployment but lacks certain on-premises features. Users cite robust cloud solutions but request better customer service.

Pricing and ROI: Sophos XG is competitively priced with flexible licensing and bundled deals, showing good ROI due to its feature set. Zscaler Cloud Firewall offers tiered pricing, potentially high for small businesses, but justified by the advanced features for cloud deployments, offering a premium solution with strong ROI potential.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Sophos XG vs. Zscaler Cloud Firewall Report (Updated: January 2025).
Buyer's Guide
Sophos XG vs. Zscaler Cloud Firewall
January 2025
Download the complete report
Helped 838,713 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
318
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Sophos XG
Ranking in Firewalls
4th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
198
Ranking in other categories
No ranking in other categories
Zscaler Cloud Firewall
Ranking in Firewalls
23rd
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
17
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of February 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.7%, up from 17.7% compared to the previous year. The mindshare of Sophos XG is 11.2%, up from 9.2% compared to the previous year. The mindshare of Zscaler Cloud Firewall is 0.3%, down from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Read full review
SherifFouad - PeerSpot reviewer
Gives us customizable policies, modifiable templates, and customized rules for single users
The major problem that I am facing, and I know that others are facing as well, is with the HTTPS classic, in general, or any classic that works on Secure Socket Layers. Let's say I set up a rule to block users from accessing YouTube or Facebook. The rule will only block the HTTP traffic, which is non-secure traffic. But most websites right now, most of the reputable web services providers, for extra security for their own web servers and for the user's security, provide a connection over Secure Socket Layer. The problem comes when you are trying to block, or allow, similar traffic that uses HTTPS. You have to create a certificate and import it into the users' web browsers, whatever they are using. Now, this is not a problem when you're dealing with users stationed and fixed in a specific site or location. They are using desktops, they will never take the desktops and go home with them, nor will they ever take the desktops and travel to another country, or another site with it. The problem occurs when you're dealing with roaming users who use laptops and have to move between different sites that have different types of policies applied to them. You have to import all sorts of certificates from each site into their browser. Doing so will most probably conflict with something else that is totally irrelevant and cause a problem. A way around this is if you are using authentication with Active Directory. But most of the time, especially if you're operating in a remote site with a very slow internet connection, if it's available in the first place, authentication with Active Directory is impossible. So it needs an easier way to apply HTTPS filters, without importing certificates into users' browsers and without the need for using an Active Directory. There must be a way around it. There are workarounds. But with applied workarounds, it will work out once, it won't work out properly 10 other times. That is my only request. Also, since Sophos took over Cyberoam, the online technical library and support library have become super messy. To get a piece of information is becoming a nightmare. They need to reorganize the online technical support and technical library. The easiest way to overcome this is to look at how the Cyberoam online technical library was structured and to build the Sophos technical library the same way. It is messy, totally unorganized, time-wasting. Instead of getting what you want in five minutes it takes half an hour.
Read full review
Bhaskar Rao - PeerSpot reviewer
Though it helps deal with web traffic or any malicious traffic, it needs to work on its DC performance issues
The product's initial setup phase is moderate in level, so it is neither very complex nor very easy. For the deployment, my company first needs to gather all the requirements of the users and the domain names and consider how many users there are in the company. In the implementation and planning part, my company needs to consider what kind of policies we will create while ensuring that the policies are created based on the requirements of the users. There is a need to segregate the users' requirements since there are separate departments in the company, like the HR department, sales department, IT department, and manufacturing department, so that our company can create policies depending on their requirements. On-site, if you want a GRE tunnel, our company can handle GRE tunnel traffic routing and Zscaler Cloud Firewall, after which Zscaler will take action based on the policies created by our organization. For the deployments and maintenance, a team of five members consisting of two managers and three engineers is required.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Fortinet FortiGate appears to be scalable."
"It can expand easily."
"The stability of the solution is excellent, as it is with other Fortinet products."
"SSL-VPN is very useful for us and has been very reliable."
"Security, SD-WAN, and Streetscape are valuable features."
"Fortinet FortiGate's reliability is valuable."
"The solution can scale well."
"It has a good UI and overall integration, including FortiGate Manager for controlling all firewalls from a single place."
More Fortinet FortiGate pros
"I like the fact that it can self remove malware and do updates on the cloud via Sophos Central."
"Easy to deploy and user friendly."
"Web publishing is important, as well as the importance of the antivirus patch."
"We've deployed quite a number for our users and our customers, and the feedback is quite positive in terms of management and also administration."
"They really work scalability into the solution at the outset."
"I like the tunneling part which we are using for the VOIP. We have various other sites where we connect via tunneling. The tunneling part is very fast and easy to implement."
"The most valuable feature is that it scans all of the data for any kind of malware."
"The most useful aspect of the solution is the concept of integrated security."
More Sophos XG pros
"Since it is really customizable, I can use it and avoid enabling access to the full network."
"If malicious traffic attacks our on-premises servers, then it gets blocked by Zscaler Cloud Firewall."
"The initial setup is straightforward."
"The solution is scalable."
"Zscaler is still a very good product."
"Zscaler provides effective protection against various cyber threats ensuring a safe environment"
"It helps a lot of companies to reduce their downtime. Also, It helps businesses in terms of being secured and protected from any threats."
"The solution offers good sandboxing."
More Zscaler Cloud Firewall pros
 

Cons

"It should be more stable. There should be full integration within Fortinet products themselves as well as with other third-party products. Especially when you're not dealing with SIEM and the correlation of the security box, we want Fortinet to be able to share that information with as many other products as it can."
"Regarding challenges, customers initially faced issues like internet dropping, but after firmware upgrades, everything worked well."
"Difficult to add or define, and not that easy to configure and manage."
"There are just some services that aren't available. For example, the Ethernet or point-to-point protocols. They could add these services to their product offering - especially services for ISPs."
"It can be a little bit more user-friendly in terms of policy definition and implementation. It seems a little bit complicated, and it could be simplified."
"It's my understanding that more of the current generation features could be brought in. There could be more integration with EDRs, for example."
"It needs more available central management."
"The command line is complicated, and the interface could be better."
More Fortinet FortiGate cons
"It's easy to use, but it's hard to configure exact settings. They need to make it easier to access advanced features."
"It would be helpful if the solution offered some tutorial videos to help new users learn the system quickly."
"I wish to see an antivirus feature added to the solution."
"For the standard end user, self-based training is necessary. When you get into the Sophos XG firewall and try to start creating NAT rules, it can be a little cumbersome for a novice. It's pretty easy once you know how to do it, but it will be hard for anybody who doesn't have experience."
"One drawback I've noticed with Sophos XG is that sometimes, the platform can become unresponsive. I've observed that it occasionally hangs, causing traffic to get stuck. During these times, users cannot access the internet or any services routed through the Sophos Firewall. This issue happens randomly and isn't something we've encountered with other firewalls like FortiGate, which we used in the past."
"There should be web caching to improve bandwidth utilization. It should have a very good caching feature. That's because we are in a very poor continent, and the connectivity cost is very high. We have low bandwidth, and the intensive usage of bandwidth is not easy here in Africa. If they improve services for web caching, it would be better."
"I would like to have a more efficient login process."
"SD-WAN would benefit from further improvement, particularly in terms of incorporating optimization techniques that are not typically found in traditional firewalls. Nowadays, WAN optimization features are being integrated into many firewalls, and implementing similar capabilities in SD-WAN would enhance its performance and functionality."
More Sophos XG cons
"Its technical support services could be better."
"Pricing is a challenge."
"The issue right now is probably that Zscaler is not providing web browser isolation. Another solution, Menlo, offers this. For one customer, we had to send traffic to Menlo to do the isolation for us. It was requested by the customer so that they could integrate any iframe. Zscaler needs to add this type of feature in their next release."
"The product could improve its integration with some legacy systems."
"If I can get rid of Jetscaler, I will use Twingate for sure."
"It would be better if they improved their policy, package visibility, and flexibility while we're creating rules for inspection. It could also be cheaper or more things could be included in the basic package. In the next release, I would like better coverage in the Asia Pacific region and better quality of service."
"It would be nice to have some sort of a form factor, a physical form factor perhaps, or virtual machine that you could install on devices or on a cloud, and have some cloud computing."
"Apart from the issues associated with the product in areas like the DC performance issues and DC failover, Zscaler Cloud Firewall's IP should not have a proxy IP."
More Zscaler Cloud Firewall cons
 

Pricing and Cost Advice

"The price of the license and warranty can be better because it is very expensive."
"If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."
"The price depends on the size of the company. From the beginning, you just want to know the internet bandwidths, speed, and the number of users to be able to offer the right product and model. They have a lot of products in FortiGate according to the size of the company, like 200D and 300D."
"Fortinet FortiGate gives you most of the features in one license."
"The Indian market is different than the European and American markets. When you compare they need to be a bit more aggressive on pricing."
"It scales well if you know what to buy from a physical box standpoint. They seem to offer something for every level."
"Fortinet FortiGate has different licensing models, depending on what you're going to do. Services included would depend on the license model. Licenses can be renewed annually."
"Fortinet FortiGate is reasonably priced."
More Fortinet FortiGate pricing and cost advice
"It is fairly priced."
"Currently, we have a contract for three years. It would be good if its price is reduced before we renew the contract. We will buy the equipment if it is cheaper."
"Sophos is very good when it comes to pricing."
"It's a suitable price and license."
"The price of the solution is reasonable when compared to the market."
"The price is reasonable in my opinion."
"The price of Sophos is reasonable. It's not too expensive — I think it's worth it."
"The product is more expensive than one of its competitors."
More Sophos XG pricing and cost advice
"The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization."
"Zscaler is priced too high compared to the cost of Fortinet."
"It is not the most budget-friendly solution, but it's important to consider its overall value."
"It comes at a significantly reduced cost while ensuring control and effectiveness."
"The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need to make yearly payments towards the license in charges associated with the product."
"There is an annual license required for the use of the Zscaler Cloud Firewall."
"There are licensing costs, and I would not say that it's a cheap vendor."
"It is expensive for small businesses."
More Zscaler Cloud Firewall pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
See recommendations
838,713 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Comms Service Provider
6%
Manufacturing Company
6%
Computer Software Company
16%
Comms Service Provider
9%
Manufacturing Company
7%
Financial Services Firm
6%
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
See all answers
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
See all answers
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
See all answers
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
See all answers
What are the main differences in features between Sophos XG and FortiGate 80F?
Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...
See all answers
What Is The Biggest Difference Between Sophos UTM and Sophos XG?
The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. ...
See all answers
Which lesser known firewall product has the best chance at unseating the market leaders?
Netscope, Zscaler if they continue route they are on now. FIrewalls needs great deal of automation on each end, datac...
See all answers
What do you like most about Zscaler Cloud Firewall?
The product’s firewall and VPN package are fantastic compared to any other solution.
See all answers
What is your experience regarding pricing and costs for Zscaler Cloud Firewall?
The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need ...
See all answers
 

Comparisons

Netgate pfSense vs Fortinet FortiGate Logo
Netgate pfSense vs Fortinet FortiGate
Compared 13% of the time
Cisco Secure Firewall vs Fortinet FortiGate Logo
Cisco Secure Firewall vs Fortinet FortiGate
Compared 11% of the time
WatchGuard Firebox vs Fortinet FortiGate Logo
WatchGuard Firebox vs Fortinet FortiGate
Compared 5% of the time
Meraki MX vs Fortinet FortiGate Logo
Meraki MX vs Fortinet FortiGate
Compared 5% of the time
SonicWall TZ vs Fortinet FortiGate Logo
SonicWall TZ vs Fortinet FortiGate
Compared 5% of the time
More Fortinet FortiGate Competitors
Netgate pfSense vs Sophos XG Logo
Netgate pfSense vs Sophos XG
Compared 11% of the time
OPNsense vs Sophos XG Logo
OPNsense vs Sophos XG
Compared 8% of the time
Sophos XGS vs Sophos XG Logo
Sophos XGS vs Sophos XG
Compared 6% of the time
SonicWall TZ vs Sophos XG Logo
SonicWall TZ vs Sophos XG
Compared 4% of the time
Meraki MX vs Sophos XG Logo
Meraki MX vs Sophos XG
Compared 3% of the time
More Sophos XG Competitors
Azure Firewall vs Zscaler Cloud Firewall Logo
Azure Firewall vs Zscaler Cloud Firewall
Compared 21% of the time
OPNsense vs Zscaler Cloud Firewall Logo
OPNsense vs Zscaler Cloud Firewall
Compared 11% of the time
Check Point NGFW vs Zscaler Cloud Firewall Logo
Check Point NGFW vs Zscaler Cloud Firewall
Compared 9% of the time
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall Logo
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall
Compared 7% of the time
Cisco Multicloud Defense vs Zscaler Cloud Firewall Logo
Cisco Multicloud Defense vs Zscaler Cloud Firewall
Compared 6% of the time
More Zscaler Cloud Firewall Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiGate
February 2025
Fortinet FortiGate reportDownload Fortinet FortiGate product report
Buyer's Guide
Sophos XG
January 2025
Sophos XG reportDownload Sophos XG product report
Buyer's Guide
Zscaler Cloud Firewall
January 2025
Zscaler Cloud Firewall reportDownload Zscaler Cloud Firewall product report
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
No data available
No data available
 

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

  • VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
  • Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
  • Advanced Firewall: Offers robust firewalling with application control and web filtering.
  • SD-WAN: Optimizes application performance and enhances bandwidth management.
  • SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

  • High-performance Security: Delivers effective threat mitigation with high availability.
  • Centralized Management: Simplifies network operations with cloud-based management tools.
  • Detailed Analytics: Provides comprehensive insights into network activity and security threats.
  • Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.

Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.

What are the key features of Sophos XG?
  • Synchronized Security: Orchestrates threat intelligence sharing between endpoints and firewall.
  • Unlimited SSL VPN Clients: Provides extensive VPN client support for secure remote access.
  • Cloud-Based Management: Facilitates remote administration with a cloud-hosted platform.
  • Intrusion Prevention: Detects and blocks potential threats in real-time.
  • Centralized Dashboard: Offers a comprehensive view of network security status.
What benefits and ROI should users look for in reviews?
  • Scalability: Easily adapts to growing business needs.
  • User-Friendliness: Simplified setup and intuitive management.
  • Effective Threat Protection: Provides robust security against a wide range of threats.
  • Comprehensive Reporting: Delivers detailed insights and analytics.
  • Cost-Effectiveness: Competitive in pricing with flexible deployment options.

Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.

Sophos

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.

Check more details: https://www.zscaler.com/produc...

Zscaler
 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Information Not Available
Zenith Live, Azure, Carlsberg Group
Buyer's Guide
Sophos XG vs. Zscaler Cloud Firewall
January 2025
Free Report: Sophos XG vs. Zscaler Cloud Firewall
Find out what your peers are saying about Sophos XG vs. Zscaler Cloud Firewall and other solutions. Updated: January 2025.
DOWNLOAD NOW
838,713 professionals have used our research since 2012.
See our Sophos XG vs. Zscaler Cloud Firewall report.
See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.