Sophos UTM Reviews

We use this solution for IPsec & site-to-site SSL VPN.

My environment involves connecting all of our branches with the head office through one Sophos XG 210 device. This is done using IPsec and SSL VPN, after which we apply a web filter, as well as an application filter to ensure that we are getting a secure connection.

It allows me to easily connect with more than forty-five remote sites and more than fifty remote users between IPsec and SSL VPN, applying the web filter and application filter to ensure a secure connection.

This solution also gives me varieties of VPN policies for good data encryption.

The most valuable features of this solution are:

• High Availability between IPsec site tunnels provides a valid continuous connection and ensures we have no downtime affecting our business.
• Log Viewer allows me to monitor all incoming and outgoing traffic, as well as view and block vulnerabilities.

I would like to see the SD-WAN feature improved. I want to manage many lines and load-balance them, getting high availability by making SLA tests according to:

1. Check interval.
2. Failures before inactive.
3. Restore link after.
4. SD-WAN Rules to control bandwidth, download and upload stream.

I switched to Sophos as it is more reliable.

This solution is less expensive than FortiGate. 

We did not evaluate other solutions prior to choosing this one.

We use Sophos UTM for multi-site VPN, quarantine, sandboxing, and IPF. It blocks malware and other unauthorized apps. 

I've been using Sophos UTM for more than four years.

Sophos UTM is stable and ready for customization. 

Sophos UTM is scalable. We have around 100 users, including engineers, managers, and computer scientists. We plan to increase our usage in the future. 

Sophos customer support could use some improvement. 

We were using something else, but we switched to Sophos because it's politically neutral. 

Installing Sophos UTM is straightforward. The deployment itself doesn't take long, but you have to spend some time planning and waiting for the hardware to be delivered. 

Sophos UTM should be more open-source and reduce its license cost. 

I rate Sophos UTM 10 out of 10. If you're considering Sophos UTM, I would say go for it. 

I use this solution for my severs.

At some point in time, it seemed to be ravaging organizations around us and we couldn't definitely outrightly isolate ourselves from it. While we were attacked, I want to believe that it was solely because there was that in addition to the fact that there are triggers. 

We also know very well that Sophos is proactive in monitoring and protecting against malware and brute-force attacks.

It's one of the things that it is quite good for.

The most valuable feature is ransomware protection. It is known for ransomware protection.

In terms of additional features, I'm still getting to understand more about how it works.

I'm still exploring the features and I haven't used them in totality. 

I think that additional metrics features are needed to be able to monitor other areas or to monitor as much as you can, at a fine-grain resolution. This would be good. Somewhat similar to what Darktrace can do. 

Proactively understand and using AI intelligence to monitor and see activities that are away from the norm and then proactively see how they can either isolate the quarantine system and inject it back into the system upon validation.

They could explore most of the products in Symantec's and Fresh Services and run from the same file to see what additional feature one is offering.

I would also like it if they could work on the price because it is expensive.

I have been using Sophos UTM for approximately three years.

I understand that it's had a couple of releases too frequently but I want to believe that it's relatively stable. 

I still believe that in terms of stability, Symantec is better, so this can be improved.

Sophos UTM is quite scalable.

I haven't had any reason to contact support directly because I have MacBytes, which happens to be a local vendor that we have been using. It's been pretty good. 

They are very good at supporting us technically when the need arises.  

I am currently using Symantec for my own workstations and I use Sophos for my server Endpoint protection.

The initial setup is relatively straightforward.

The prices can be better, they could make it a lot cheaper.

You are on the right track with Sophos UTM, but you should keep up with the trends as they become available.

I would rate Sophos UTM a nine out of ten.

We use it as an internet firewall, and as our web application firewall.

I don't believe it has improved our organization; I don't actually like the product because of the features it is missing.

I would like this solution to support ICAP. Also, they no longer support on-premises management, and are forcing clients to use centralized management via the cloud, which I don't agree with.

We have been using this solution for seven years.

We don't find this to be fully stable; we have had to restart the firewall on a few occasions.

The customer support is not very good. They are quite slow, and there are delays in response to an issue being raised.

Negative

The initial setup was easy.

The implementation was carried out in-house, and the deployment took around eight hours to complete.

There was an up-front charge of around $70,000, to purchase the hub and license.  Beyond the initial cost, licenses are charged for annually, but they are good value for the service we receive.

I would only recommend this product to small businesses. I would rate this solution as a seven out of ten.

I use the solution in my home premises to protect my internal network. I am a customer of Sophos. 

Sophos has great security features and does a good job of protecting my network. The firewall feature is very, very good. 

I think the interface configuration could be improved. It's very complex for now. They need to provide more videos and have more documentation. I think that's missing at the moment. By chance, I found something on a video that wasn't in the documentation and it was a lifesaver. I upgraded my hardware from 100 megabytes to 1,000 megabytes and had many problems. I had to start from scratch and get someone to help me with it.

I've been using this solution for seven years. 

The solution is stable. 

I only use the community support.

The initial setup is very, very difficult. When I installed the new Sophos and tried to restore the backups, the restore process did not work. I tried more than 20 times, and in the end, implemented a fresh install which required a lot of work. It was too difficult. It took me a long couple of days. It's worth checking the YouTube videos, they really saved me. 

I'm using the free version. 

I rate this solution eight out of 10. 

Our datacenter cloud services such as email, and web services for internal and external use, had to be protected with different systems and the web services where left really unprotected, since we used an standard IPS/IDS to protect ourselves from web attacks (from the outside) which nowadays are really sophisticated. Also, we had to employ many work hours to have a protected, standardized network. With Sophos EndPoint and Sophos UTM, we simplified and also protected our network at the same time, with less work force.

The web filter and the ATP (Advanced Threat Protection) are great and easy to manage, and the integrated WAF (Web Application Firewall) allows the administrator to seamlessly protect HTTP/S services without having to pay thousands of dollars. The just introduced Sandstorm system for protection, is awesome as well.

Sophos UTM has many improvements that I would suggest, but the main one is for the Application Control to be managed with users as well, and with timeframes (schedules) for the administrator to allow certain apps outside an specific timeframe, or vice versa.

No issues encountered.

The scalability is awesome as when you need the network protection systems to grow immediately, you just activate and license the exact same box, and configure it in cluster mode for Active-Active mode in Cluster/High Availability.

This is where Sophos vendor outclasses every other vendor. They have grown so much throughout the last four to five years, but they have grown as well in their capability to attend support cases. We've had some really advanced cases, and we have never been forgotten or left behind.

We used a commercial product, Untangle, with our own brand called Rhino Box. Untangle did not invest in the development of features as we expected, such as the adoption of IPSec VPNs (they had it but very limited), and IPv6. This was what made us do research for our SMB/Enterprise market offering. We tried out Sophos UTM (recently purchased as Astaro UTM) and it was really easy to deploy and came with Sophos Support, which is awesome.

The initial setup is straightforward. Sophos brand is well known in the market for being a unique and powerful tool that is simple to deploy and manage. This is what makes it different from any other vendors. The Sophos UTM, comes with a deployment "Wizard for Dummies" since it show the wizard at the initial setup, and in less than three minutes, you can have your box up and running. Also for Policies deployment, you are clicks away to customize your security settings.

We always deploy by ourselves, so that way we can test how the customer will see the initial implementation. Our main advice, is to read the manual, and follow the wizards that comes with each tool. Also, it is strongly recommended to have a professional firm contracted for the initial setup, and support, as we are, to can design, and help with any kind of implementation issues.

The ROI is in 12-16 months, since with this kind of tool, we deliver the best of breed protection, and increment the focus of the end user, in being productive.

I recommend you get the three year licenses, since Sophos offers three years for the price of two. I would also recommend that you acquire any Sophos Licensing with Professional Services added, that way, you'll have the best experience possible.

They have supported our business venture since 2010, and will do for many years. We have studied closely the different product portfolio, and each one of them, are carefully developed.

We are using as a firewall product.

It helped to connect our satellite offices to the main Amazon infrastructure in a circular way.

It provides a solid firewall.

We had some problems with the configuration. They had provided a CloudFormation template, and we had to go several rounds to make it work. 

It's pretty stable. For our usage, it has been pretty good.

We are a small company with a small infrastructure. For our infrastructure, it is perfectly solid. I don't have experience using it on a larger scale.

They could definitely improve on the support, especially in other countries. Right now, it is just average. For example, we have a team in India. When they face issues, they have to go to Australia or talk to somebody in the US to receive support. They should be more responsive and have more local offices.

AWS has been pretty good. It is well integrated and pretty user-friendly. Initially, we experienced issues with the configuration because Sophos provided us a CloudFormation template, which caused us some back and forth. By now, the process may have improved.

Purchasing it through the AWS Marketplace went smoothly. We did not have any issues and the pricing was decent.

We decided to purchase through the AWS Marketplace because of the integration with the AWS infrastructure, firing it up and configuring it was very seamless.

We originally considered Barracuda and another solution.

We chose Sophos because we thought that it provided superior service. Also, they have a long history in the market, and I received a recommendation from one of my consultants.

I would recommend to take a look a product, as it is a good product apart from the improvements that I mentioned. We are very happy with the product so far.

It is used as a standalone. We don't integrate it with other systems.

We are using the AWS version of this product.