Sophos UTM Reviews

I'm IT head at our company in India and we are customers of Sophos UTM.

The solution has many good features. There was a steep learning curve moving to version 18 but we're now at a point where the solution is more efficient and effective. When talking about VLANs the solution makes it easy to separate rules for everything. The solution is easy to use with simple implementation.  

The application server needs to be improved because currently, the classification segregation of applications needs to be more defined. Also, we used to be able to open the firewall using LAN IPS but that's no longer possible and needs to be solved. I'd like to see an improvement in central categorizing. These days with all the applications and threats, getting everything filtered down needs to be a finer, more granular process. There are times when you find that a website seems to be legit, but there is a code running behind it that can act as a proxy or some kind of a bot. The sites are always logged on, but at times we have to open for a few clients or a few sites and in that time they're open to attack.

We've been using this solution for at least six years. 

This solution is absolutely stable. 

The solution is scalable; we jumped from 135 to 230 users without any problems at all. 

Technical support used to be good but it's lagging a bit now. Support staff was better trained and more efficient than they are now. It could be because of Covid but it's a bit of a challenge at the moment. 

We worked with SonicWall many years ago. We then switched to Cyberoam and then we primarily used Cisco Firepower. There were support issues with Cisco and it wasn't easy to find the KB articles and training was lacking. Even the training personnel had problems when we had issues with implementation. The same thing happened when we used Palo Alto with the support being the biggest problem. It was so unstructured and I hope that has changed in the last 12 months. When it comes to firewalls we are happy with two products; Fortinet is our preference but when you take cost into account, we prefer Sophos. 

The initial setup was relatively straightforward. 

The licensing costs for Sophos are reasonable. It's clear to me that there are no full solutions, you can't win it all, and the cost is always an issue. We're on the winning side with Sophos in that respect. We renew our license every three years. 

I rate the solution eight out of 10. 

Every single Virtual Private Cloud (VPC) has Sophos in front of it. I also use it for Outbound Gateways in my WorkSpaces environment.

Our company trusts Sophos without even seeing it, as it provides us comfortability while allowing for flexibility.

Its scaling capability.

Sophos has a single pane of glass which allows me to manage all my VPCs from a single instance, managing all my firewall from one place, which is huge for me. When you have multiple VPCs and multiple accounts, it becomes too cumbersome to use a product that you have to look at individually. With Sophos, I can look at one place and see everything: my logs, filters, firewall rules, etc.

I would like them to move from the Classic Load Balancer to the Network Load Balancer. This would make it easier to do certain things with Amazon. They are able to do some enhancements with Network Load Balancer that they are unable to do with Classic Load Balancer.

I have never had a stability issue with Sophos. It self-heals.

I have not run into a scalability issue since it is scalable past my license.

I have had great technical support. The only issues that I have experienced with technical support are when I get a Tier 1 support person who knows about the on-premise product, not the AWS side of the product.

The implementation and configuration through AWS is easy. They have cloud configuration templates, which are easy to deploy.

We originally purchased the solution through the AWS Marketplace. I started my proof of concept doing pay-as-you-go, then moved to a VAR for a 'Bring Your Own Licence' (BYOL) licensing model. The BYOL license still requires you to accept the terms of the AWS Marketplace to deploy.

It is easy to purchase through the AWS Marketplace. In addition, if you have a budget for the AWS Marketplace, then your purchases will appear on your regular Amazon bill, which makes things even easier.

I went and looked at Check Point eight years ago, because back then, I loved Check Point. They also weren't many solutions like this back then. AWS Marketplace did not even exist eight years ago!

After comparing Check Point and Sophos pricing, I questioned whether the decimal for Sophos was in the wrong spot. Sophos's competitors were so much higher in price. 

Originally, cost sold me because Check Point and Sophos had the same features. Now, Sophos has surpassed Check Point's features.

If you haven't tried it, do so.

Amazon has their products (e.g., Amazon GuardDuty). However, when you are working in a multiple VPC environment along with digital enhancements and features, some of those enhancements and features are not always available with Amazon, but are with Sophos.

It is used to protect the servers. It is a very transparent solution. 

Sophos integrates seamlessly and we don't even feel it is running in the background. 

I found just one instance of a virus on somebody's email, and Sophos cut it off immediately. Then the admin said, "Oh, this is a virus. That's a new one." They found out that I hadn't updated some virus information.

The virus updates will always depend on new viruses that are discovered. Maybe they can send a notification or a reminder for update time. 

We have been using Sophos UTM for two years. 

It is absolutely stable. 

We have over 200 users in my company. We are planning on increasing the usage. We never faced any issue with scalability. 

We have local support and go through our company's tech support. 

The initial setup is straightforward. It was implemented within five minutes. 

The central admin team deployed the solution. There were around three to four members of the team. 

It is easy to install and transparent solution. I would recommend using the solution. I would rate it a ten out of ten. 

We use all features of Sophos UTM, for example, application control and URL filtering.

What I like about Sophos UTM is that it improves my company's security. The solution is easy to set up, which I like, and it's very stable.

An area for improvement in Sophos UTM is load balancing because my company cannot use it currently. If Sophos could release a new configuration for the load balancing feature to work for my company, that would be great. My team has requested this through the Sophos portal.

Another issue with Sophos UTM is that I cannot monitor YouTube or WhatsApp. I need to block videos and images, but I cannot do that over Sophos UTM.

I've been using Sophos UTM for four years.

Sophos UTM is very stable. It's an eight for me, stability-wise, on a scale of one to ten.

Sophos UTM offers excellent support, so it's an eight out of ten, support-wise.

Positive

Before Sophos UTM, my company used Cyberoam. Sophos UTM has more than one feature, such as VPN, application access, NAT, and SSL inspection. It has more features than Cyberoam, and I can find all that I need in Sophos UTM compared to Cyberoam.

Setting up Sophos UTM was very simple. I configured the solution more than once and found the process very simple.

Pricing for Sophos UTM is OK. Here in Egypt, many companies use the solution because of its price and features.

My company pays the Sophos UTM license fee yearly.

I have experience with Sophos UTM and all its versions within my company.

My rating for Sophos UTM is eight out of ten. I'm not giving the solution a perfect score because of load balancing and social media scanning issues.

My company is a Sophos customer.

We use Sophos UTM for endpoint antivirus.

The management suite is easy and the agent is easy to develop.

At the very least, keep existing. I will continue to use Sophos. If Sophos maintains its current ease of management, I believe I will continue to use it.

I would like them to keep the features as they are.

The GUI can be improved. It is not as good as Trend Micro, but I still like it.

The GUI could be more user-friendly.

Now, they offer a SaaS product in comparison to XDR and, TRM, which stands for automatic analysis of virus behavior or deadline. Currently, for example, when there is a threat, we analyze it ourselves, but now they offer automatic analysis because Sophos' XDR is based on cloud PCS.

I would like them to include automatic analysis for virus behavior and also cloud PCS.

I started using Sophos UTM in 2005.

Sophos UTM is a stable solution.

Sophos UTM is scalable.

The endpoint will be decommissioned next year, but we intend to continue using the Sophos XDR.

Because it is in Indonesia, technical support is only available via email and on the website. There does not appear to be enough technical advice available from support.

The support does not appear to be developed, and they lack expertise.

We are able to manage ourselves.

We have documentation available online

I would rate the technical support a two out of five. Technical support could be improved.

When compared to Trend Micro has a compact and bundle layer, whereas Sophos allows us to select the module. The module layer can be separated. For Trend Micro, we buy as a bundle purchase and they will give us everything.

The initial setup is straightforward. It is easy to set up and configure.

I would rate the initial setup a four out of five.

When compared to Trend Micro, the price is currently competitive.

The pricing is nearly the same. Implying that each endpoint costs approximately one million rupees.

It will cost approximately $67 US per device. We have 300 devices in our organization.

I would rate the pricing a three out of five.

The price could be improved. In my opinion, we could get a discount. We have already contacted Asia Pacific sellers, and they have agreed to keep the reduced price if we upgrade in March 2023.

For the time being, it is enough for us. As I previously stated, some companies that use Sophos may be unfamiliar with the full range of Sophos protocol offerings.

Before you start implementing Sophos UTM  be aware of the protocols.

I would rate Sophos UTM an eight out of ten.

We use Sophos UTM for firewall management and for some of the other modules it provides, such as email and firewall proxies.

The most valuable feature of Sophos UTM is the efficiency and mail filtering module.

Sophos UTM could improve the way the configuration has to be done. I have to do the configuration through the command line interface but if it could be done through the graphical user interface it would be much better.

I have been using Sophos UTM for approximately three years.

Sophos UTM is a highly stable solution. It has high availability.

We have approximately more than 1,000 employees in my company using the solution.

I have used Fortinet previously and I found it to be easier to deploy and maintain than Sophos UTM

The initial setup of Sophos UTM is straightforward. Additionally, the configuration is simple. When we first did the deployment it took approximately two days.

The configuration of this solution is easier than some of the competitors. In some of the other solutions, when there is synchronization between two firewalls there are times you need to break all the configurations and start from the beginning.

When we did the first installation of the solution we used a third party to assist. However, we now do the full implementation of the solution using our team.

The price of the license for Sophos UTM is approximately $5,500. The solution is less expensive than competitors.

The maintenance of the solution is easy, the documentation is very rich in content, and the report information is good. 

I rate Sophos UTM an eight out of ten.

We use Sophos UTM as an on-premise firewall.

All of Sophos UTM's features are valuable. The intrusion prevention is great, and I like dual virus scanning on the network layer because we scan it through Avira and Sophos. Web filtering is also a fantastic option for clients who want to really lock down internet access. And of course, it has the basic firewall features like port blocking and all of the stuff that most standard firewalls include.

I've been using Sophos UTM for over 12 years. I started using the solution before it became Sophos. It was originally called the Astaro Security Gateway, and then Sophos acquired Astaro and renamed it Sophos UTM.

Very stable. Very good.

I have Sophos UTM deployed for all my IT clients. There are 40 of them in the field serving about 500 users total.

We get put on hold for a long time. Otherwise, I'm not unhappy with their support at all. 

If you have a networking background and understand how to configure it, it's very straightforward. Somebody off the street can't just come in and do it, but yeah, it's pretty straightforward.

I would rate Sophos UTM a strong eight. I'm not giving it a ten because they're putting all their efforts into the XG model, so the UTM model will probably be phased out before long. I love the security of the XG. It's better with artificial intelligence and all of this type of stuff, and you can manage it from the Sophos Central Cloud. But Astaro ASG, now Sophos UTM, was the first unified threat management system and everybody else was copycatted it. I think its web filtering's great. If there are any security vulnerabilities, it's the fault of the administrator configuring the product, not the solution itself. You can lock networks down tight with this if you know what you're doing.

As we are a solution provider and not product oriented, we give the best solution for our customers, with a good price. We are the number one company in the region, BTC, and operate in Egypt, Iraq, Jordan, Lebanon, and Saudi Arabia.

As both a firewall and UTM it's perfect.

No issues encountered.

For me, the customer satisfaction, and awareness, is the most important thing. I usually train all my clients on their chosen system.

10/10.

As we are a service provider, we offer various other products to our customer:

• Astaro ASG
• Avaya/Netscreen
• Fortinet
• HP Switches & WiFi
• Juniper SSG
• Juniper SRX 210 & 240
• Juniper WXC
• Sophos next generation SG, including RED, SG, and WiFi
• Telindus Crocus E1Q

For me, the installation and setup is simple. I work hard to do the simulation for the customer, and discuss all the requirements before implementation with the client.

In one project I implemented Sophos for was a bank. I had to involve the Sophos team as the client was asking for WAF in transparent mode with HTTPS inspection. They were 10/10.

Prior to Sophos, it was mainly Juniper and Fortinet.

Give us 10 minutes of your time, and we will show you the differences. When I do presentations, I give potential clients demo access to the solution(s) I am presenting.