Sophos XGS vs WatchGuard Firebox comparison

Sophos and WatchGuard are both solutions in the Firewalls category. Sophos is ranked #15 with an average rating of 8.4, while WatchGuard is ranked #12 with an average rating of 8.1. Sophos holds a 2.0% mindshare in Firewalls, compared to WatchGuard’s 3.0% mindshare. Additionally, 94% of Sophos users are willing to recommend the solution, compared to 95% of WatchGuard users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 16, 2024

WatchGuard Firebox and Sophos XGS are two leading network security solutions. Sophos XGS seems to have the upper hand with its advanced threat protection capabilities.

Features: WatchGuard Firebox includes firewall, VPN, and intrusion prevention. Sophos XGS integrates AI-driven threat analysis and a synchronized security approach. Both products offer extensive features with Sophos XGS having advanced threat detection.

Room for Improvement: WatchGuard Firebox could benefit from improved reporting capabilities and a more intuitive configuration process. Sophos XGS might enhance performance during high traffic and offer better scalability options.

Ease of Deployment and Customer Service: WatchGuard Firebox is noted for straightforward deployment and dependable customer service. Sophos XGS is also praised for deployment but has a steeper learning curve. Both have generally responsive customer service with WatchGuard Firebox having a slight edge in support satisfaction.

Pricing and ROI: WatchGuard Firebox is viewed as more budget-friendly with lower initial setup costs. Sophos XGS, while pricier, is considered worth the investment for its superior security features, offering higher ROI due to comprehensive protection.

To learn more, read our detailed Sophos XGS vs. WatchGuard Firebox Report (Updated: January 2025).

Buyer's Guide

Sophos XGS vs. WatchGuard Firebox

January 2025

Download the complete report

Helped 832,340 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of February 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.7%, up from 17.7% compared to the previous year. The mindshare of Sophos XGS is 2.0%, up from 0.9% compared to the previous year. The mindshare of WatchGuard Firebox is 3.0%, up from 2.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Jaffar Ali

Director Technical Services at TechnoBIZ

Has provided stability, security, ease of management, and better reporting options

People use Sophos XGS because the overall channel support is very good, so they don't face issues. Additionally, it is competitive in pricing against Fortinet in some cases, especially when considering high availability, email subscriptions, and gateways Sophos XGS has provided stability,…

Read full review

Ronald Lewis

IT Manager at Invest Barbados

Useful VPNs, effective web filtering, and cost effective

The VPN aspect of the WatchGuard Firebox is an area that could potentially benefit from improvement. We encountered difficulties while attempting to integrate Windows 11 laptops into the system, which resulted in unreliable connections. After some research, we discovered that this was primarily due to compatibility issues with Windows 11 and required a patch. However, it was still a challenge as it seemed that even when we tried to keep the laptops on Windows 10, they still exhibited the same issues as Windows 11 machines. Despite WatchGuard attributing the problem to Microsoft, we were eventually able to find a solution and all the machines are now functioning seamlessly. The solution comes with a web interface that facilitates configurations, but it doesn't have the same level of functionality as the installed client or system manager. The web UI could be further improved. In a future release, the detection of ransomware would be helpful. Ransomware is our biggest fear.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The integration with Active Directory is one of the good features. Most of the customers are now looking for the Single Sign-on feature. So, being able to integrate Active Directory with the firewall is useful. It is also easy."

"Their reliability and their policy of pre-shipping replacements when a unit has failed."

"The most valuable features are that it is very simple to configure and to manage."

"FortiGate SD-WAN facilitated a smooth transition for our customers between their two internet service providers, ensuring uninterrupted connectivity without any downtime."

"The base firewall features are quite valuable to us."

"Valuable features include the Web Application Firewall, and it even has DLP (data leak prevention)."

"The license management is very valuable. You can get a new license each year, or you can enroll every two to four years. You can get the logs, and you will get the information on the risk in your network and the entire organization. With this information, you can take action on your actives, computers, or devices. You can bring your own device as an SSE."

"The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy."

More Fortinet FortiGate pros

"The solution is very user-friendly, and the GUI is so good that I don't have to use the CLI. This eliminates the need for typing; clicking allows me to get to what I'm looking for."

"Easy to set up firewall product, that's also easy to manage and scale."

"I like the Sophos UI. It interface has a more comfortable feel than the competitors."

"The most valuable features in Sophos XGS are identity and VPN. It is a very good solution that is able to detect and prevent a lot of malicious activity."

"It's easy to use and user-friendly."

"The most valuable feature of Sophos is the VPN solution. I also value their threat management, IPS IDS features and login features with single sign-on."

"The most valuable features in Sophos XGS are bandwidth management, content filtering, and WAN link management failover. If one internet activity or one link would fail, automatically it will switch over to another one."

"The Sophos XGS product is highly versatile and well-suited for various companies, including small, medium, and large enterprises. Its effectiveness lies in its inspection firewall capabilities, making it a commonly chosen option in our country due to its reasonable pricing. Sophos Firewall's support for VPN encryption and thorough inspection makes it a suitable choice for many companies, and I recommend it accordingly. At the moment, I can't propose any new features. The primary concern is the traffic stability, which needs improvement. Although the traffic stability is generally good, it has been noted that it can impact RAM and CPU, affecting workflow and inspection."

More Sophos XGS pros

"It's pretty simple to use. It's pretty simple to understand, and there's plenty of documentation. It does a pretty good job of what it is meant to do."

"The main reason we went with it was the security protocols. They were more robust on this device."

"If there is any conflict, the reporting feature will kick out all types of information, which is great."

"After conducting several tests I found the antivirus is working very well. Additionally, they have a very interesting feature, DNS WatchGuard, which is checking DNS requests for phishing, among other things, and it has caught a lot of unwanted attempts and attacks."

"The most valuables feature of WatchGuard Firebox are the VPNs, and web filtering where we can stop users from going to malicious sites."

"The most valuable feature is the NAT-ing, the IP addresses... We can direct the traffic where it needs to go. We can control the traffic."

"The main features of the solution are the control of the site-to-site network access and the overall features."

"The set up of the VPN is pretty straightforward. Being able to build VPNs on the fly for certain users, if need be, is also valuable."

More WatchGuard Firebox pros

Cons

"When we cluster the two Fortinet FortiGate boxes together we have some issues."

"Regarding challenges, customers initially faced issues like internet dropping, but after firmware upgrades, everything worked well."

"It could use better throughput on some of the smaller boxes for the branch offices."

"Fortinet FortiGate should improve the VPN tokens."

"They should improve high CPU and memory usage that occurs."

"Technical support for this solution can be improved."

"Lacks training for new features."

"I would like to see more advanced developments of a wireless controller in the future."

More Fortinet FortiGate cons

"VPN setup could be improved."

"In future releases, this solution could have more graphical elements on the dashboard to make it easier to understand."

"There are a lot of false-positive cases."

"Compared to Fortinet, the cost is high."

"The SD-WAN feature isn't very good. It's there, but it doesn't work properly."

"There could be improvements for IPsec VPN setup."

"There are issues with some designs being able to work on high availability."

"The solution could improve by using fewer hardware resources compared to other products like Palo Alto, which has better performance."

More Sophos XGS cons

"There are a couple of things I wished that it would do, but I can't think of those off the top of my head."

"We were able to take from an older configuration, build a new one quickly, and get it up and running, which didn't take long, but there was some pain around it."

"Its documentation could be improved. Sometimes, you need to search a bit longer to find what you are looking for."

"The software in it could be a bit more friendly for an amateur user. I look at it and don't understand what half the stuff is. Looking at the interface, it is all mumbo-jumbo to me. It's not a simple interface. You have to be an IT guy to understand it. It is not for your average person to use, then walk away from it. It is much more entailed."

"In terms of what could be improved, I would say their web blocker feature. It is still quite a confusing setup, especially when you want to filter out a particular category for granularity. For example, you do not want to filter Facebook but you do want to filter Facebook games only. It can be done, but the process to do it is very confusing."

"The performance of the solution's processor needs to be faster."

"The only problem I have with Firebox is the grouping issue. When implementing a rule using a group of IPs, it is not possible to do that directly."

"When working with WatchGuard, specifically in configuring Panda Security on the portal for the first time, it was challenging for me."

More WatchGuard Firebox cons

Pricing and Cost Advice

"It has a competitive price."

"We have the full version of Fortinet FortiGate and we are on a three-year contract with a commitment of five years."

"Fortinet is the least expensive solution."

"Its price is normal. If I compare it with other vendors, such as Palo Alto, it's normal. Palo Alto is expensive."

"The cost of Fortinet FortiGate is competitive and not expensive compared to other enterprise- grade solutions. On average, the license cost per year is around seventy percent of the firewall's purchase price."

"It is quite affordable for our customers. There is a separate cost for IPS, antivirus, web filtering, and other features. They have a great choice of licenses. You can go for the license that you want, which is quite useful."

"The price of Fortinet FortiGate is better than Cisco, Check Point, and Palo Alto. In terms of pricing, it's probably a better-priced firewall solution overall."

"We saved a bundle by not needing all the past appliances from an NGFW."

More Fortinet FortiGate pricing and cost advice

"The licensing is reasonable. Comparing the cost of Sophos XGS with that of Fortinet or Palto Alto firewalls, for instance, it's not that expensive. However, the overall cost depends on the hardware you're using in addition to the licensing cost."

"The price of the solution is reasonable and their target market is small to medium-sized companies."

"I would like to see them reduce the price."

"Sophos XGS is a cost-effective solution."

"The pricing for Sophos is much better compared to that of Fortinet and Check Point. On a scale from one to five with one being expensive and five being competitive, I would rate Sophos' pricing at four. The pricing can be for the hardware appliance and the license, or it can be subscription-based. It can be around 3000 USD up to 25,000 USD per year depending on the model or series of the hardware you choose to buy."

"We pay about $150."

"The price of Sophos XGS depends on the type of license. However, the licensing cost is approximately 60 percent of the total cost."

"The cost of Sophos XGS is based on per unit, per appliance, and capacity."

More Sophos XGS pricing and cost advice

"The licensing costs are comparatively lower than other providers, and I would rate the pricing as five out of five."

"We had a trade-in offer at the end of our first three-year term. As a result, we pretty much got a free device by buying the three-year subscription. It was around $3,000 for the three-years."

"It's fair pricing, but it could always be reduced."

"We paid $4000 in AUD for WatchGuard Firebox per year. There were no additional costs."

"It costs me about $800 a year."

"WatchGuard had a very competitive price. It was only 10 to 20 percent more than a single instance device but with that extra cost it provided a second load balancing device... unlike other brands whose method of hardware and software licensing would have doubled our cost."

"It is an entry-level product, so the price is cheap."

"I buy a three-year renewal on the main device, which is usually around $3,000 to $4,000. They usually upgrade the device when I do it. You get a big discount when you do three years."

More WatchGuard Firebox pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

832,340 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

17%

Manufacturing Company

Comms Service Provider

Educational Organization

Computer Software Company

17%

Comms Service Provider

10%

Hospitality Company

Retailer

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

What do you like most about Sophos XGS?

The policies are the greatest feature. They allow us to configure granular control over our network traffic.

See all answers

What is your experience regarding pricing and costs for Sophos XGS?

The pricing is justified, and the solution is considered budget-friendly compared to other vendors.

See all answers

What needs improvement with Sophos XGS?

Hardware stability needs improvement. I have experienced multiple hardware complaints, particularly during firmware u...

See all answers

What is your primary use case for WatchGuard Firebox?

We are providing our services to all WatchGuard customers in the region.

See all answers

What is your primary use case for WatchGuard Firebox?

We just use it as a secondary WiFi device. We're a small office and we needed to set up a WiFi device for a few of ou...

See all answers

What is your primary use case for WatchGuard Firebox?

We're a hospital and we use it for developing our incoming and outgoing policies, and we also use it for VPN.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 23% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 14% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

Meraki MX vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Sophos XG vs Sophos XGS

Compared 30% of the time

OPNsense vs Sophos XGS

Compared 16% of the time

Netgate pfSense vs Sophos XGS

Compared 7% of the time

Check Point NGFW vs Sophos XGS

Compared 5% of the time

Palo Alto Networks NG Firewalls vs Sophos XGS

Compared 5% of the time

More Sophos XGS Competitors

Netgate pfSense vs WatchGuard Firebox

Compared 8% of the time

Sophos XG vs WatchGuard Firebox

Compared 7% of the time

OPNsense vs WatchGuard Firebox

Compared 6% of the time

SonicWall TZ vs WatchGuard Firebox

Compared 6% of the time

Sophos UTM vs WatchGuard Firebox

Compared 4% of the time

More WatchGuard Firebox Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

February 2025

Download Fortinet FortiGate product report

Buyer's Guide

Sophos XGS

January 2025

Download Sophos XGS product report

Buyer's Guide

WatchGuard Firebox

January 2025

Download WatchGuard Firebox product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sophos XGS is a comprehensive network security solution designed to protect organizations from advanced threats. It combines next-generation firewall capabilities with advanced threat protection, web filtering, and application control.

XGS has powerful deep learning technology and can detect and block even the most sophisticated malware and ransomware attacks. It also offers granular control over web access, allowing organizations to enforce policies and prevent access to malicious or inappropriate websites. Additionally, XGS provides application control features, enabling organizations to manage and prioritize network traffic based on specific applications or user groups.

With its intuitive management interface and centralized reporting, XGS offers easy deployment and monitoring of network security.

Sophos

WatchGuard Firebox is a versatile security solution primarily used for security purposes such as firewalling, VPN, and protecting networks from outside and inside threats. It is also used for routing, multi-factor authentication, vulnerability management, and segregating industrial networks from corporate networks.

The product is praised for scalability, stability, user-friendliness, reasonable pricing, and good technical support. Some users use it for web filtering and hosting web pages, while others – for remote access connections and mobile VPNs. Firebox offers great protection, good performance, and flexibility without licensing limitations.

WatchGuard Firebox Features

WatchGuard Firebox has many valuable key features, including:

Policy management
Strong security
High performance
Network configuration for multiple clients
Built-in SD-WAN
Application control
Threat detection and response
Network discovery
Intuitive interface

WatchGuard Firebox Benefits

Some of the benefits of using WatchGuard Firebox include:

IT administrators can create and implement policies for content filtering, VPNs, and network inspections.
The solution is easy to set up, manage, and maintain.

Reviews from Real Users

Below are some reviews and helpful feedback written by WatchGuard Firebox users.

PeerSpot user Kelly C., IT Manager at a hospitality company, mentions, “One of the most valuable features is the Gateway AntiVirus. We scan all traffic as it's coming through. We also use spamBlocker to scrub spam. We use content filtering, which is critical in any corporate environment to make sure that people don't surf things they're not supposed to. WatchGuard has a very easy VPN and branch office VPN setup, so we use those pretty extensively too.It's very easy to use. In terms of performance, WatchGuard has always worked well for us. Regarding the reporting, I was in the Dimension server earlier today. It's very powerful. I like it. And the management features are easy to use. I like the fact that I can open up the System Manager client or I can just do it through the web if I'm making a quick change.”

A Director of Information Technology at a retailer says, “Among the most valuable features is the ease of use — love the interface — of both the web interface and of the WatchGuard System Manager. It's a stable platform. The devices are pretty rock-solid.”

Jason M., IT Director at a healthcare company, explains, “The policy monitoring and allowing different traffic flows are the most useful features for us; regulating which traffic comes in and out. In terms of the throughput and performance, we don't have a problem or any bottleneck there. We downgraded the size of our appliance because we're a small facility, and what we had before was actually too big. The one we are now going with seems to be doing a great job.” He also adds, “The management feature is pretty nice.”

Steve R., President and Owner at Peak Communication Systems, Inc., comments, "It saves us time in the respect that we now have the template built for it so we can get in and get it done. We've had much less problems supporting Voice over IP technologies from different companies. Because our client base has grown over the years, we're probably saving 20 to 30 man-hours a month now that we've got this on a good stable level."

WatchGuard

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Information Not Available

Ellips, Diecutstickers.com, Clarke Energy, NCR, Wrest Park, Homeslice Pizza, Fortessa Tableware Solutions, The Phoenix Residence

Buyer's Guide

Sophos XGS vs. WatchGuard Firebox

January 2025

Free Report: Sophos XGS vs. WatchGuard Firebox

Find out what your peers are saying about Sophos XGS vs. WatchGuard Firebox and other solutions. Updated: January 2025.

DOWNLOAD NOW

832,340 professionals have used our research since 2012.

See our Sophos XGS vs. WatchGuard Firebox report.

See our list of best Firewalls vendors and best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.