Try our new research platform with insights from 80,000+ expert users
Director Of Information Technology at a hospitality company with 1,001-5,000 employees
Real User
We have never had to restart a firewall
Pros and Cons
  • "We have never had to restart a firewall. The firewalls have all worked perfectly fine."
  • "I would like to see a better content management pack and also the website searching should be better."

What is our primary use case?

I use it for security, web management, content management, VPN, and site-to-site VPN. I use many features of the firewalls, like intrusion prevention system, antivirus, anti-spam, etc. I use almost every aspect of the firewalls.

It has performed perfectly fine, so far.

How has it helped my organization?

The benefits are the firewall.

What is most valuable?

The performance and security are the best features.

The security options are great. We never had an attack, which is pretty good. We use it from a standard location, and they are connected to each other. 

What needs improvement?

I am not sure there will be a another release of Cyberoam because it will be Sophos going forward. What could be included going forward though? I would like to see a better content management pack and also the website searching should be better.

Buyer's Guide
Sophos Cyberoam UTM
November 2024
Learn what your peers think about Sophos Cyberoam UTM. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
823,875 professionals have used our research since 2012.

For how long have I used the solution?

More than five years.

What do I think about the stability of the solution?

We have never had to restart a firewall. The firewalls have all worked perfectly fine.

What do I think about the scalability of the solution?

Scalability is good, if you get good models. I have never had a problem with scalability.

How are customer service and support?

The technical support from Turkey is very good. I would rate them a 10 out of 10.

Cyberoam still supports their old product. Though, the NG theories are not supported anymore.

Which solution did I use previously and why did I switch?

We started with Cyberoam. We did not switch from anything else.

Before it was Linux machines, but for the service, we switched over to Cyberoam for performance purposes. 

How was the initial setup?

The initial setup was done before my time.

What about the implementation team?

After I started at the company, I have continue doing set ups with my assistants. Sometimes, we get external help. Mostly, we do the setup that we want, because previously it was straightforward and easy to use.

What's my experience with pricing, setup cost, and licensing?

Prices are very high.

Which other solutions did I evaluate?

There were quite a number of vendors in our original shortlist. We chose Cyberoam because it was the leading firewall brand in the world. It still is. We chose it because of its worldwide usage and wide knowledge base on the Internet, and also the positive reviews of its users.

Now, we are trying to evaluate the different brands because Cyberoam was acquired by Sophos, and we are not sure how Cyberoam will evolve in the next few years. Usually in five years, the acquiring company completely acquires their technology and adapts their technology into their own brand and keep on with their brand. So, it seems like Sophos will keep on providing the firewall solution instead of Cyberoam and the Cyberoam brand will eventually disappear.

This is why we are trying to find a proactive solution to get the most support, upgrades, product improvements, etc. This is why we are evaluating whether to migrate over to Sophos or Fortigate, and I have been having a hard time choosing whether to replace all of my Cyberoam products with Sophos or move them over to FortiGate.

What other advice do I have?

I am rating it a 10 out of 10 because it has never failed us.

Talk to people who are actually using it. Actual experience always differs from the product advertisement.

Most important criteria when selecting a vendor: 

  • Market share
  • Ease of use
  • Best practices
  • Comments of different users from different companies of the product.

Before I purchase anything, I go onto web and do thorough research about:

  • What the product can offer.
  • What are the challenges.
  • What are the properties of that product that makes our IT people's lives easier.
  • What happens if something goes wrong.
  • How fast I can get support.
  • What are its internet support options?

Sometimes, if a product is used widely, you do not even have to call anyone in support. The answers are all over the Internet. For example, if you are using a Microsoft product, you don't even have to call Microsoft, because the Internet is growing with Microsoft articles about how to do and what to do when there are issues. If you are using a very limited operating system, like a Mac operating system, Mac OS. It's not very common, so you need to get professional help.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Global sales head at MEPCSA
Real User
Facilitated bringing remote locations into one LAN, but lacks security features
Pros and Cons
  • "The best feature is the flexibility the product offers, in terms of remote access. What we had before was a decentralized mechanism in our organization, but after having this product we were able to get the remote locations into the same LAN. We were able to control the bandwidth and were able to take virtual access of those machines and give them the support, as and when required."
  • "There is a lot or room for improvement, because it is still not a fourth or fifth generation firewall. It lacks security features."

What is our primary use case?

Primary use is monitoring. Having a reporting console to monitor the usage of bandwidth. That's the prime concern.

How has it helped my organization?

Let's talk about connecting the branches to the central headquarters. That has really improved our functioning, because we were really facing trouble with remote locations. What we had before was a decentralized mechanism in our organization, but after having this product we were able to get the remote locations into the same LAN. We were able to control the bandwidth and were able to take virtual access of those machines and give them the support, as and when required.

What is most valuable?

The best feature is the flexibility the product offers, in terms of remote access. We have bout 35 locations across the kingdom, and connecting those remote locations with the minimal bandwidth was a challenge. A few of my branches are connected via 3G. So that is the most advanced feature I like about Cyberoam, the flexibility the solution offers.

What needs improvement?

There is a lot or room for improvement, because it is still not a fourth or fifth generation firewall. It lacks security features. I would say security is something that is not that appealing in this product, so that's where they can improve.

For how long have I used the solution?

Three to five years.

What do I think about the stability of the solution?

There were no issues with stability.

What do I think about the scalability of the solution?

I'm not sure about scalability because the number of users I had was approximately 250 and the headquarters model, which is CR300iNG, supports about 350 users. The threshold was good, so I did not find any major issues with it.

How are customer service and technical support?

Average, average, average. Their customer service has to be improved a lot, especially the ticketing mechanism they have. First we do have to first raise a ticket, wait for their availability. And the people, I found they don't have much knowledge, so normally a lot of escalations after which the issue gets resolved.

Which solution did I use previously and why did I switch?

Earlier, I was using Cisco ICER. I switched because it's not a UTM box, and it requested a lot of add-ons, when it comes to flexibility of those devices. For example, if I needed to extend my user limit, every time I need to purchase a slot and increase the firmware. That was not so appealing. That is the reason I switched to the new, next-generation UTM firewall.

How was the initial setup?

It was very user friendly. It was a straightforward integration. We had no issues. In fact, no system integrator deployed it. We did it ourselves.

What's my experience with pricing, setup cost, and licensing?

It is worth the value. 

Which other solutions did I evaluate?

I did evaluate FortiGate.

What other advice do I have?

The first drawback is that Sophos has acquired Cyberoam. So, if I was a new customer who wanted to choose between Cyberoam and Sophos, I would definitely go for Cyberoam because it has additional features in it. I don't understand the strategy behind it, because the same owner has two different products under one umbrella. It's a bit confusing.

Six out of ten is the best I can rate Cyberoam at this moment. To get it to a 10, it's up to the manufacturer. They need to really upgrade their firmware to match up with the fourth or fifth generation firewalls that other vendors have to offer. My advice would be that the manufacturer needs to focus on security.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Sophos Cyberoam UTM
November 2024
Learn what your peers think about Sophos Cyberoam UTM. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
823,875 professionals have used our research since 2012.
PeerSpot user
Network Administrator at a non-profit with 201-500 employees
Real User
Top 20
I like the remote VOIP routing through the VPN.

What is most valuable?

Site to Site VPN, and local web filtering.

How has it helped my organization?

The ability to have a site to site VPN, yet have the users use their local internet rather than sending all traffic back to our main site is crucial to their day to day operations. Remote VOIP phone system routing through the VPN we have extension connections to those remote campuses.

What needs improvement?

We have issues with IPS and DoS attacks taking down a couple of our sites. I've changed the IPs of the external interfaces yet the attacks still happen and the Firewall will disconnect the VPN connection as well as stop all internal traffic from flowing externally. I am still able to HTTPS to the external interface, but it takes a full reboot of the appliance to get any traffic flowing again.

What was my experience with deployment of the solution?

Deployment only has one snag. Our VOIP system initially tried to communicate over the internet before the VPN connection is active. Once that happened, unsuccessfully, the phone switch stops trying. But support was able to diagnose the problem and come up with a solution to keep traffic blocked going to the internet, causing it to wait for the VPN to be active and traffic flow successfully.

What do I think about the stability of the solution?

Seems like the main instability I have found is with my Austin site and the DoS attacks that take down the VPN and internet ability for the local site. I have 7 remote sites and this is the only one that has these issues regularly.

What do I think about the scalability of the solution?

Yes, currently with the Sophos buy out of Cyberoam. My CR15iNG models show not to be upgradable to the new Sophos IOS. Meaning I have to purchase new equipment to get any of the new features and performance. Causing me to investigate other firewalls.

How are customer service and technical support?

Customer Service:

I have always had great luck with customer service. I have been with them for so long that they know me and are pretty responsive to any issues I've had. I have had hardware issues in the past and received a replacement the next day. I've also been on the phone for quite some time for them to diagnose an issue I have and come up with a good solution. While their support is not in the US, I have not had a problem getting someone on the phone when I call.

Technical Support:

There is always another level. First level of support is very capable of helping with configuration issues. While when something more complicated is in need they have engineers to speak with and view your appliance to be sure they have all the information and diagnose appropriately.

Which solution did I use previously and why did I switch?

We used Cisco firewalls prior. They worked great, were more complicated to setup and cost significantly more initially and to renew each year.

How was the initial setup?

Very straightforward for setup. I had a few issues with my VOIP setup but once that was figured out setup for all other sites was a snap.

What about the implementation team?

In-House deployment.

What was our ROI?

Much less travel expense. Even when I have issues, as with my Austin site, I'm able to rectify them remotely in most cases. With the Cisco I had to travel if I was needing to change the configuration.

What's my experience with pricing, setup cost, and licensing?

These, CR15iNG remote/small office firewalls, units are pretty inexpensive and renewal pricing is well worth the support cost. They do not have a hardware replacement support agreement at this time with Cyberoam. I do believe Sophos is changing that portion of the support agreement though.

Which other solutions did I evaluate?

Not really, we had the Cisco in place. We had a vendor at the time that was really high on Cyberoam as they have done the evaluation of others for us.

What other advice do I have?

I liked the product so much I purchased one for my home as well.

Prior to Sophos taking over I had a great sales support staff and technical staff. Since that has lagged a bit. I'm hoping that with my upgrade to the Sophos OS that will change, if I stay with their product.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user326337 - PeerSpot reviewer
it_user326337Customer Success Manager at PeerSpot
Real User

Have you always had this access to multiple IPs? Do you have recommendations for users that don't have that option?

See all 9 comments
Network Administrator at Hass Petroleum
Real User
Good VPN and reporting capabilities with an easy initial setup
Pros and Cons
  • "The VPN is excellent on the solution."
  • "The policy is a bit too vague."

What is our primary use case?

I'm using Cyberoam in close to nine locations.

We are using, for example, IP sets from Kenya to Somalia, a place where we could not get MPLS connectivity. 

We have a secondary server in the Somalia office. I also use it from the Nairobi office to the Dubai office as the MPLS is very expensive and I need to do a backup daily. That is for the IP sec. 

For the VPN, we use it to access our ERP systems remotely from everywhere. Close to a hundred users use it and it has been stable.

What is most valuable?

The VPN is excellent on the solution. 

The reporting aspect of the solution is very good.

The initial setup is straightforward. A company should have any troubles setting it up in their organization.

What needs improvement?

The reports are not very detailed, or, at least, some aspects of it are not that detailed. They need to improve the reporting and to bring in greater detail.

The policy is a bit too vague. The solution needs to be much clearer when they go about making policies.

I'd like to see better documentation in the future.

For how long have I used the solution?

I've been using the solution for the last five years.

What do I think about the stability of the solution?

Overall, the stability has been excellent. I've only had an issue with one device which had a power surge that destroyed it and I replaced it. So far, so good. I've never had it with latency issues with the memory going down. It has been good. It has served me well.

What do I think about the scalability of the solution?

We have many offices. There may be 300 to 400. So far, it hasn't been an issue.

How are customer service and technical support?

The technical support is good. Our license is the eight to five, not 24/7. Once you raise a ticket through the chat, you open it with another ticket with the account. Anytime when you open a ticket, they're very efficient. I've never had an issue with them. We're quite satisfied with their level of service. 

How was the initial setup?

The initial setup is not complex. It's straightforward. I haven't had an issue with the process at all. It's been easy.

Basically, for most of the machines, we take a backup of it. Once I get a new machine, I install the backup with all my policies and everything set, and I only change the IP. 

Which other solutions did I evaluate?

We are thinking of getting another firewall. I'm currently comparing Cisco Meraki, Fortinet, and Sophos. We're trying to see the cost and comparing them on a few points.

Any past evaluation was a long time ago. Before I joined the organization, the organization evaluated Cisco. Nowadays, Cisco, Meraki, and other options came out, and they might not have as many features. 

What other advice do I have?

We are a customer and end-user.

We are using various versions, including 100iNG, 50iNG, and 25iNG.

I'd rate the solution at an eight out of ten. There's always room for improvement, although mostly we have been happy with it.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Diptendu Ghosh - PeerSpot reviewer
Group CIO at Doshi
Real User
Plenty of features, stable, and good for medium size businesses
Pros and Cons
  • "There are plenty of features available, such as Full Guard and WAN."
  • "The solution is at its end of life and some of the appliances are finishing."

What is our primary use case?

We are using Sophos Cyberoam UTM for network protection.

What is most valuable?

There are plenty of features available, such as Full Guard and WAN. 

What needs improvement?

The solution is at its end of life and some of the appliances are finishing.

For how long have I used the solution?

I have been using this solution for approximately 15 years.

What do I think about the stability of the solution?

The solution is stable, we have not had any bugs or issues.

What do I think about the scalability of the solution?

The solution is good for medium-sized businesses.

Which solution did I use previously and why did I switch?

I have used many other network protection solutions, such as Fortinet.

What other advice do I have?

I rate Sophos Cyberoam UTM an eight out of ten.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Assistant Engineer - Network Solutions at Sri Lanka Telecom Services
Real User
Useful data quota features, but scalability is an issue and the signature database could be enhanced
Pros and Cons
  • "Having a firewall solution with a data quota is very important when the bandwidth is limited, which really distinguishes it from other products."
  • "When it comes to web filtering and application filtering, it does not contain enough signatures to determine all of the sites that need to be blocked."

What is our primary use case?

We are a solution provider and Sophos Cyberoam UTM is the main product that we sell. We also use it as part of our own network security solution as well.

The primary use cases are setting data quotas on a per-user level, web filtering, and granting or denying access to resources. In Sri Lanka, the data is always limited, which is one of the biggest problems that we have.

How has it helped my organization?

In some companies, productivity is not as good because people are using sites like Facebook and YouTube. This can consume a lot of data without the organization being aware of it, and Cyberoam is really good in these kinds of cases.

What is most valuable?

Having a firewall solution with a data quota is very important when the bandwidth is limited, which really distinguishes it from other products. When it comes to small and medium-sized organizations, one of their main concerns is that their data quota is not exceeded. It is quite an advantage for the administrators.

There is training material available on the website for the administrators to learn how to set it up and use it. This is very helpful and can be done easily with a one or two day course.

What needs improvement?

When it comes to web filtering and application filtering, it does not contain enough signatures to determine all of the sites that need to be blocked. This is something that higher-end firewalls are better at.

For how long have I used the solution?

I have been working with Cyberoam for the past four years. My company has been using it for at least five or six.

What do I think about the stability of the solution?

Prior to the acquisition of Cyberoam by Sophos, the product was not very stable. Currently, it is really stable and we are happy with it.

What do I think about the scalability of the solution?

One of our clients has 200 employees and they are all relying on protection from Sophos Cyberoam UTM. Nonetheless, it is all on-premises and it does not work through the cloud, so I don't consider it to be a highly scalable product. I would say that it is better for a company with a single branch, rather than for one with multiple branches or with branches connected to a head office.

How are customer service and technical support?

Although we have people who are knowledgable about the product, if there is a level of configuration that we are not used to then we contact our distributor for help.

Which solution did I use previously and why did I switch?

I have also worked with similar products from Cisco and I find them quite difficult to set up compared to this. Cisco also has training available, but I think that you will need two weeks or a month to learn how to set it up and maintain it.

How was the initial setup?

The initial setup is between easy and intermediate. For a basic configuration, it is straightforward. I would say that compared to a Cisco product, it is easier.

What about the implementation team?

We have engineers who are qualified and we deploy Cyberoam for our clients.

For companies with approximately 200 employees, having two or three system administrators is enough to maintain it.

What's my experience with pricing, setup cost, and licensing?

This is a cost-effective solution compared to other vendors, such as Cisco.

Which other solutions did I evaluate?

Our customers look at many options but they normally choose Cyberoam because of the data quota, as well as the competitive pricing. After you buy the device, you can get subscriptions for different features. Companies normally buy it for one year or three years at a time.

There are also basic features that are available without purchasing a license. An example is that web filtering is not available without a license, but the data quota management is. That comes with the appliance itself.

What other advice do I have?

When we transitioned from Cyberoam to Sophos Cyberoam UTM, we were able to back up the rules and then upload them into the new solutions. It was easy to do and within a few hours, it was set up.

If your company does not have a network administrator then this is a good option because the training makes it very easy to use. For larger, enterprise-level organizations, people will look for different solutions.

If I were rating this product only for the Sri Lankan market then I would score it an eight out of ten. However, the majority of other countries do not have the issue of bandwidth limitations, and without the quota being important, I cannot rate it as high.

I would rate this solution a six out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
it_user235446 - PeerSpot reviewer
Pre Sales Engineer at a manufacturing company with 501-1,000 employees
Vendor
The price is very competitive and the licensing is easy
Pros and Cons
  • "User and network policies to be managed on a single screen with powerful filtering and search options."
  • "On-box sandstorm should be available. As of now, it is from their cloud."

How has it helped my organization?

  • Easy to deploy.
  • Great IPS
  • Managing APs is now easy
  • Infected machines cannot connect the ERP until it is clean, so my internal servers are protected. 
  • Great reporting tool
  • User, app, and protocol all are in control.

What is most valuable?

It has many features that no other competition has in single box so far, such as:

  • Dual AV engine for web and email.
  • Optimized three-clicks-to-anywhere navigation.
  • New unified policy model enabling all business.
  • User and network policies to be managed on a single screen with powerful filtering and search options.
  • Policy Templates for common business applications, like Microsoft Exchange, SharePoint, Lync, and many more defined in XML enabling customization and sharing.
  • Custom IPS, Web, App, and Traffic Shaping (QoS) settings per user or network policy on a single screen.
  • Sophos Security Heartbeat connecting Sophos endpoints with the Firewall to share health status and telemetry to enable instant identification of unhealthy or compromised endpoints
  • Policy support for Sophos Security Heartbeat to automatically isolate or limit network access to compromised endpoints
  • Application Risk Meter provides and overall risk factor based on the risk level of applications on the network
  • FastPath Packet Optimization
  • Hotspot support for (custom) vouchers
  • Password of the day
  • T&C acceptance

Other valuable features include:

  • Wireless guest Internet access with walled garden options
  • Time-based wireless network access
  • Wireless repeating and bridging meshed network mode with supported APs
  • Advanced Threat Protection (detect and block network traffic attempting to contact command and control servers using multi-layered DNS, AFC, and firewall).
  • Sandstorm Cloud Sandbox Protection
  • Patent-pending SPX encryption for one-way message encryption
  • Recipient self-registration SPX password management
  • Hundreds of on-box reports with custom report options: Dashboards (Traffic, Security, and User Threat Quotient).
  • Applications (App Risk, Blocked Apps, Search Engines, Web Servers, and FTP)
  • Network and Threats (IPS, ATP, Wireless, and Security Heartbeat)
  • VPN
  • Email
  • Compliance (HIPAA, GLBA, SOX, FISMA, PCI, NERC CIP v3, and CIPA)
  • Robust hardware
  • Huge RAM
  • SSD

What needs improvement?

On-box sandstorm should be available. As of now, it is from their cloud.

What do I think about the stability of the solution?

No issues.

What do I think about the scalability of the solution?

No issues.

How are customer service and technical support?

Customer Service:

Very nice.

Technical Support:

Very good.

Which solution did I use previously and why did I switch?

Used cyberoam iNG firewall/UTM. 

The new model is Sophos XG and I am upgraded to that, which is a great solution.

How was the initial setup?

The initial setup is very easy.

What about the implementation team?

Very good.

What was our ROI?

Almost 100%. It saves a lot of man hours and bandwidth. Management loves its reporting.

What's my experience with pricing, setup cost, and licensing?

The price is very competitive and the licensing is easy.

Which other solutions did I evaluate?

Cyberoam iNG.

What other advice do I have?

  • Value for money
  • Easy deployment
  • Sophos has a great vision, works on information security, products are available like endpoint, mobile mgmt., encryption, WiFi, server protection, email gateway, web gateway, and many more. 
  • Sophos Cloud is great.
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
reviewer2248428 - PeerSpot reviewer
Senior System Engineer at a computer software company with 11-50 employees
Reseller
Top 5Leaderboard
Needs to enable security features and rules for firewall
Pros and Cons
  • "The tool is stable."
  • "The solution had a feature to import users from a CSV file. However, the latest version does not have that option."

What needs improvement?

The solution had a feature to import users from a CSV file. However, the latest version does not have that option. 

What do I think about the stability of the solution?

The tool is stable. 

What do I think about the scalability of the solution?

Sophos Cyberoam UTM is scalable. 

How are customer service and support?

The tool's technical support is good. 

How would you rate customer service and support?

Positive

How was the initial setup?

Sophos Cyberoam UTM's setup is easy and takes around two to three days to complete. 

What's my experience with pricing, setup cost, and licensing?

Sophos Cyberoam UTM has many price schemes. 

What other advice do I have?

I would rate the solution a ten out of ten. You need to enable security features and rules with the firewall. 

Disclosure: My company has a business relationship with this vendor other than being a customer: partner
PeerSpot user