Try our new research platform with insights from 80,000+ expert users

Sophos XG vs Zscaler Cloud Firewall comparison

Sophos and Zscaler are both solutions in the Firewalls category. Sophos is ranked #4 with an average rating of 8.4, while Zscaler is ranked #24 with an average rating of 8.6. Sophos holds a 11.4% mindshare in Firewalls, compared to Zscaler’s 0.3% mindshare. Additionally, 92% of Sophos users are willing to recommend the solution, compared to 100% of Zscaler users who would recommend it.
Sponsored
Fortinet FortiGate
Read 318 Fortinet FortiGate reviews
  • 83,899 Views
  • 61,950 Comparison Views
90% willing to recommend
Sophos XG
Read 200 Sophos XG reviews
  • 40,995 Views
  • 32,537 Comparison Views
92% willing to recommend
Zscaler Cloud Firewall
Read 17 Zscaler Cloud Firewall reviews
  • 1,409 Views
  • 1,027 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 5, 2025

Sophos XG and Zscaler Cloud Firewall are competitors in the network security category. Zscaler may have the upper hand due to its cloud-centric approach and in-depth threat protection.

Features: Sophos XG offers advanced web and application filtering, synchronized security, and a robust IPS and anti-malware protection. It also provides centralized management for high visibility. Zscaler Cloud Firewall features comprehensive threat protection, CASB, DLP, and strong integration capabilities.

Room for Improvement: Sophos XG needs improvements in VPN stability, load balancing, and documentation, along with more intuitive configuration processes. Zscaler Cloud Firewall could enhance its service customization, reporting, and integration with legacy systems.

Ease of Deployment and Customer Service: Sophos XG provides flexible deployment options: on-premises, cloud, and hybrid. Its support has been reported as variable. Zscaler Cloud Firewall offers straightforward cloud-focused deployment but lacks certain on-premises features. Users cite robust cloud solutions but request better customer service.

Pricing and ROI: Sophos XG is competitively priced with flexible licensing and bundled deals, showing good ROI due to its feature set. Zscaler Cloud Firewall offers tiered pricing, potentially high for small businesses, but justified by the advanced features for cloud deployments, offering a premium solution with strong ROI potential.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Sophos XG vs. Zscaler Cloud Firewall Report (Updated: March 2025).
Buyer's Guide
Sophos XG vs. Zscaler Cloud Firewall
March 2025
Download the complete report
Helped 842,388 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
318
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Sophos XG
Ranking in Firewalls
4th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
200
Ranking in other categories
No ranking in other categories
Zscaler Cloud Firewall
Ranking in Firewalls
24th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
17
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.8%, up from 17.8% compared to the previous year. The mindshare of Sophos XG is 11.4%, up from 9.1% compared to the previous year. The mindshare of Zscaler Cloud Firewall is 0.3%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
Read full review
SherifFouad - PeerSpot reviewer
Gives us customizable policies, modifiable templates, and customized rules for single users
The major problem that I am facing, and I know that others are facing as well, is with the HTTPS classic, in general, or any classic that works on Secure Socket Layers. Let's say I set up a rule to block users from accessing YouTube or Facebook. The rule will only block the HTTP traffic, which is non-secure traffic. But most websites right now, most of the reputable web services providers, for extra security for their own web servers and for the user's security, provide a connection over Secure Socket Layer. The problem comes when you are trying to block, or allow, similar traffic that uses HTTPS. You have to create a certificate and import it into the users' web browsers, whatever they are using. Now, this is not a problem when you're dealing with users stationed and fixed in a specific site or location. They are using desktops, they will never take the desktops and go home with them, nor will they ever take the desktops and travel to another country, or another site with it. The problem occurs when you're dealing with roaming users who use laptops and have to move between different sites that have different types of policies applied to them. You have to import all sorts of certificates from each site into their browser. Doing so will most probably conflict with something else that is totally irrelevant and cause a problem. A way around this is if you are using authentication with Active Directory. But most of the time, especially if you're operating in a remote site with a very slow internet connection, if it's available in the first place, authentication with Active Directory is impossible. So it needs an easier way to apply HTTPS filters, without importing certificates into users' browsers and without the need for using an Active Directory. There must be a way around it. There are workarounds. But with applied workarounds, it will work out once, it won't work out properly 10 other times. That is my only request. Also, since Sophos took over Cyberoam, the online technical library and support library have become super messy. To get a piece of information is becoming a nightmare. They need to reorganize the online technical support and technical library. The easiest way to overcome this is to look at how the Cyberoam online technical library was structured and to build the Sophos technical library the same way. It is messy, totally unorganized, time-wasting. Instead of getting what you want in five minutes it takes half an hour.
Read full review
Bhaskar Rao - PeerSpot reviewer
Though it helps deal with web traffic or any malicious traffic, it needs to work on its DC performance issues
The product's initial setup phase is moderate in level, so it is neither very complex nor very easy. For the deployment, my company first needs to gather all the requirements of the users and the domain names and consider how many users there are in the company. In the implementation and planning part, my company needs to consider what kind of policies we will create while ensuring that the policies are created based on the requirements of the users. There is a need to segregate the users' requirements since there are separate departments in the company, like the HR department, sales department, IT department, and manufacturing department, so that our company can create policies depending on their requirements. On-site, if you want a GRE tunnel, our company can handle GRE tunnel traffic routing and Zscaler Cloud Firewall, after which Zscaler will take action based on the policies created by our organization. For the deployments and maintenance, a team of five members consisting of two managers and three engineers is required.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The scalability of Fortinet FortiGate is good."
"The initial installation is very straightforward."
"The initial setup of Fortinet FortiGate was straightforward."
"I think that the UTM features are the most value, as it truly protects my infrastructure."
"The most valuable features of Fortinet FortiGate are it is one of the most mature firewalls in the UTM bundle."
"We purchased Fortinet because of the pricing, its functionality, because it met our requirements, and the total cost of ownership over five years was quite reasonable. In the market, Fortinet is rated quite well."
"The customization potential is quite impressive."
"Virtual Domains (VDOMs) are a feature that we found valuable."
More Fortinet FortiGate pros
"The most valuable feature is that it scans all of the data for any kind of malware."
"Sophos offers great disk encryption, anti protection, and the interface is very user-friendly."
"The most valuable feature of Sophos XG is the VBM."
"There are many valuable features."
"We find it easy to use. Its internal configuration is very easy. It is not complicated in terms of use and configuration. It has been fairly stable, and it is also scalable."
"We get good usage out of the features. It has enabled us to gain popularity. It has great features."
"Good security and a good interface."
"Reporting is the most valuable feature."
More Sophos XG pros
"The solution offers good sandboxing."
"The product’s firewall and VPN package are fantastic compared to any other solution."
"Zscaler provides effective protection against various cyber threats ensuring a safe environment"
"It provides in-depth visibility into your network, ensuring that traffic flowing into your organization, be it from offices or individual users, is effectively filtered and secured through multiple layers of protection."
"The scalability is okay. We have around 2200 people using this solution."
"The solution is scalable."
"Includes advanced tech protection."
"It is a stable solution."
More Zscaler Cloud Firewall pros
 

Cons

"There are some tiny bugs that sometimes affect the operations. In the past revision of it, there was a bug. Because of the bug, we had to downgrade the version. It happened only with the last revision."
"The command line is complicated, and the interface could be better."
"I haven't had a single issue since using Fortinet."
"Fortinet FortiGate can improve the integration with Active Directory. Additionally, I would like to have a Cloud Controller, such as they do in the Cisco Meraki solution."
"Fortinet should focus on enhancing the capabilities of FortiGate by consolidating its various products, such as FortiGate Cloud, FortiManager, and FortiAnalyzer."
"Fortinet doesn't provide multiple virtual firewalls which would facilitate end users and customers."
"We had some issues in the beginning while setting it up, but after doing the firmware update, it is working fine."
"The platform's interface could improve."
More Fortinet FortiGate cons
"The support from the vendor needs to be improved."
"I've had experience with Sophos XG's threat intelligence features, and they provide good coverage, although I wouldn't say they're the best in the industry. The sandbox feature is available with top-tier subscriptions, allowing you to test content in a cloud sandbox. One improvement I'd suggest for Sophos XG is to make certain functionalities, like CR functionality, part of the default firewalling rather than exclusive to premium subscriptions. Enhancing DLP capabilities at the gateway level could significantly boost security for organizations."
"Some businesses require Dynamic IP. This feature would be useful if it worked."
"The main problem with Sophos XG today is that it doesn't have a feature where you actually know the quality of an international link, which would allow us to we know if the link is operational or not. We need more information. It's losing packets on the network. It's high latency. So, we need more information to know if the link is really bad or really good, and today, we will only know if it's working and this just isn't enough."
"The interface of Sophos XG could be improved. I would prefer the Sophos XG to have an interface for the technician who is setting it up similar to the Sophos SG. I felt the Sophos SG user interface was superior. however, in terms of the functionality of the product, Sophos XG is in many ways more powerful than the Sophos SG. I have no complaints about the quality of the product or the end result. For someone who has used both, I preferred the old interface to the new one."
"There should be web caching to improve bandwidth utilization. It should have a very good caching feature. That's because we are in a very poor continent, and the connectivity cost is very high. We have low bandwidth, and the intensive usage of bandwidth is not easy here in Africa. If they improve services for web caching, it would be better."
"They need to allow their solution to integrate with other products and not just other Sophos solutions."
"Lacks improved throughput performance in a box."
More Sophos XG cons
"We are having some issues with internet access being denied when organizational ID-based policies change. For example, a lower level employee ends up getting the same level of access as that of a higher level employee."
"When it comes to customer support, there is room for improvement in Zscaler's service."
"I don't have the visibility of a control dashboard or a network management system."
"The product could improve its integration with some legacy systems."
"Zscaler Cloud Firewall should have a better understanding of all dynamic cloud applications."
"Because it's on cloud, it doesn't allow application of extra settings."
"Certain criteria need to be met if you want to scale this solution."
"They do not provide a few components that are fundamental to differentiate the products"
More Zscaler Cloud Firewall cons
 

Pricing and Cost Advice

"I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."
"The pricing is flexible."
"The Indian market is different than the European and American markets. When you compare they need to be a bit more aggressive on pricing."
"The price of FortiGate is average and I would say that based on the top five products available on the market, it is in the affordable range."
"The price for the device and software is high. However, the solution is of good quality and has a lot of features."
"Fortinet bundles FortiGate with other products and because of this, the price is a little expensive to some SMB enterprises."
"Fortinet is the least expensive solution."
"If you purchase a one-year subscription with the hardware and then you want to renew for the second year, it is very costly."
More Fortinet FortiGate pricing and cost advice
"Sophos XG can be considered as an averagely-priced tool in the market."
"The price is reasonable in my opinion."
"We pay licensing fees of approximately $2,000. We have a contract for three years."
"The price is good and licensing fees are billed on a yearly basis."
"This is a budget-friendly product with reasonable pricing."
"We have our license for three years."
"I rate Sophos XG’s pricing a seven out of ten."
"My customers pay a license for one or three years to use Sophos XG."
More Sophos XG pricing and cost advice
"The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need to make yearly payments towards the license in charges associated with the product."
"It comes at a significantly reduced cost while ensuring control and effectiveness."
"There are different subscription models available."
"There is an annual license required for the use of the Zscaler Cloud Firewall."
"The licensing is on a yearly basis. It is somewhere around 30 or 40 pounds per user for our organization."
"On a scale from one to ten, where one is cheap, and ten is expensive, I rate the solution's pricing an eight out of ten."
"There are licensing costs, and I would not say that it's a cheap vendor."
"It is not the most budget-friendly solution, but it's important to consider its overall value."
More Zscaler Cloud Firewall pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
See recommendations
842,388 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Comms Service Provider
7%
Manufacturing Company
6%
Computer Software Company
16%
Comms Service Provider
9%
Manufacturing Company
7%
Financial Services Firm
6%
Computer Software Company
12%
Financial Services Firm
11%
Manufacturing Company
9%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
See all answers
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
See all answers
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
See all answers
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
See all answers
What are the main differences in features between Sophos XG and FortiGate 80F?
Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...
See all answers
What do you like most about Sophos XG?
IPS works smoothly.
See all answers
Which lesser known firewall product has the best chance at unseating the market leaders?
Netscope, Zscaler if they continue route they are on now. FIrewalls needs great deal of automation on each end, datac...
See all answers
What do you like most about Zscaler Cloud Firewall?
The product’s firewall and VPN package are fantastic compared to any other solution.
See all answers
What is your experience regarding pricing and costs for Zscaler Cloud Firewall?
The product is a bit expensive compared to the solutions offered by its competitors, like Palo Alto. There is a need ...
See all answers
 

Comparisons

Netgate pfSense vs Fortinet FortiGate Logo
Netgate pfSense vs Fortinet FortiGate
Compared 13% of the time
Cisco Secure Firewall vs Fortinet FortiGate Logo
Cisco Secure Firewall vs Fortinet FortiGate
Compared 11% of the time
WatchGuard Firebox vs Fortinet FortiGate Logo
WatchGuard Firebox vs Fortinet FortiGate
Compared 5% of the time
SonicWall TZ vs Fortinet FortiGate Logo
SonicWall TZ vs Fortinet FortiGate
Compared 5% of the time
Meraki MX vs Fortinet FortiGate Logo
Meraki MX vs Fortinet FortiGate
Compared 5% of the time
More Fortinet FortiGate Competitors
Netgate pfSense vs Sophos XG Logo
Netgate pfSense vs Sophos XG
Compared 10% of the time
OPNsense vs Sophos XG Logo
OPNsense vs Sophos XG
Compared 8% of the time
Sophos XGS vs Sophos XG Logo
Sophos XGS vs Sophos XG
Compared 6% of the time
SonicWall TZ vs Sophos XG Logo
SonicWall TZ vs Sophos XG
Compared 4% of the time
Palo Alto Networks NG Firewalls vs Sophos XG Logo
Palo Alto Networks NG Firewalls vs Sophos XG
Compared 3% of the time
More Sophos XG Competitors
Azure Firewall vs Zscaler Cloud Firewall Logo
Azure Firewall vs Zscaler Cloud Firewall
Compared 19% of the time
OPNsense vs Zscaler Cloud Firewall Logo
OPNsense vs Zscaler Cloud Firewall
Compared 10% of the time
Check Point NGFW vs Zscaler Cloud Firewall Logo
Check Point NGFW vs Zscaler Cloud Firewall
Compared 9% of the time
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall Logo
Palo Alto Networks NG Firewalls vs Zscaler Cloud Firewall
Compared 7% of the time
Cisco Multicloud Defense vs Zscaler Cloud Firewall Logo
Cisco Multicloud Defense vs Zscaler Cloud Firewall
Compared 6% of the time
More Zscaler Cloud Firewall Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiGate
March 2025
Fortinet FortiGate reportDownload Fortinet FortiGate product report
Buyer's Guide
Sophos XG
March 2025
Sophos XG reportDownload Sophos XG product report
Buyer's Guide
Zscaler Cloud Firewall
March 2025
Zscaler Cloud Firewall reportDownload Zscaler Cloud Firewall product report
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
No data available
No data available
 

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

  • VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
  • Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
  • Advanced Firewall: Offers robust firewalling with application control and web filtering.
  • SD-WAN: Optimizes application performance and enhances bandwidth management.
  • SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

  • High-performance Security: Delivers effective threat mitigation with high availability.
  • Centralized Management: Simplifies network operations with cloud-based management tools.
  • Detailed Analytics: Provides comprehensive insights into network activity and security threats.
  • Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.

Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.

What are the key features of Sophos XG?
  • Synchronized Security: Orchestrates threat intelligence sharing between endpoints and firewall.
  • Unlimited SSL VPN Clients: Provides extensive VPN client support for secure remote access.
  • Cloud-Based Management: Facilitates remote administration with a cloud-hosted platform.
  • Intrusion Prevention: Detects and blocks potential threats in real-time.
  • Centralized Dashboard: Offers a comprehensive view of network security status.
What benefits and ROI should users look for in reviews?
  • Scalability: Easily adapts to growing business needs.
  • User-Friendliness: Simplified setup and intuitive management.
  • Effective Threat Protection: Provides robust security against a wide range of threats.
  • Comprehensive Reporting: Delivers detailed insights and analytics.
  • Cost-Effectiveness: Competitive in pricing with flexible deployment options.

Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.

Sophos

Zscaler enables the world’s leading organizations to securely transform their networks and applications for a mobile and cloud first world. Its flagship services, Zscaler Internet Access and Zscaler Private Access, create fast, secure connections between users and applications, regardless of device, location, or network. Zscaler services are 100% cloud-delivered and offer the simplicity, enhanced security, and improved user experience that traditional appliances or hybrid solutions are unable to match. Used in more than 185 countries, Zscaler operates the world’s largest cloud security platform, protecting thousands of enterprises and government agencies from cyberattacks and data loss.

Check more details: https://www.zscaler.com/produc...

Zscaler
 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Information Not Available
Zenith Live, Azure, Carlsberg Group
Buyer's Guide
Sophos XG vs. Zscaler Cloud Firewall
March 2025
Free Report: Sophos XG vs. Zscaler Cloud Firewall
Find out what your peers are saying about Sophos XG vs. Zscaler Cloud Firewall and other solutions. Updated: March 2025.
DOWNLOAD NOW
842,388 professionals have used our research since 2012.
See our Sophos XG vs. Zscaler Cloud Firewall report.
See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.