Sophos XG Reviews

We are using Sophos XG, but not the latest version. The solution works as the main gateway. We are a small company of 250 employees so we also use the solution as a router.

The hardware and VPN connections are slow so we are planning on upgrading the solution. Next month we will be replacing the Sophos XG we have as it is reaching the end of life next year. We will be purchasing the XG 3000 to gain more options in the VPN tunnels.

The two most valuable feature of Sophos XG is, one the option to filter according to different applications and two, the integration with the Active Directory.

Over the last six months, we have noticed that the hardware is slow, especially the VPN connections.

Sophos would benefit if they could improve the integration with Active Directory. It does not function consistently and we have to reconfigure it to make it function again. 

Integration with IPA, which is like Active Directory for Linux servers, would be a nice feature to include.

I have been using Sophos XG for three years.

This solution is very stable. We have not had any problems in the three years we have been using Sophos XG. We did have one infection that gained access to one server in the DMZ but it was because the rules were not well configured and not because of the product.

We haven't had to scale the solution. 

Support from Sophos XG has been fine for what we have required.

We had been using Astaro. We selected Sophos XG because we knew it would be easy to set up and configure as the two solutions are similar.

Previously we were working with Astaro, so the setup and configuration of Sophos XG was easy. The implementation took less than a month.

The company that sold the firewall solution provided support hours while we were migrating the rules of our old firewall. They provided us with advice on some of the rules, especially on the routing to connect to a branch office.

We purchase an annual standard license.

I recommend Sophos XG if you are coming from pfSense or Astaro as the migration will be really easy. The learning path will also be easy. If you are coming from Barracuda or Cisco it will be more difficult especially the web interface of the firewall is not intuitive.

I would rate Sophos XG an 8 out of 10.

My clients use Sophos XG for deploying firewalls at corporate office and branch offices. The branches connect via site-to-site VPN, allowing outbound traffic from the central location.

The firewall provides network visibility and reporting capabilities, constantly improving over time. It can be integrated with the cloud console, allowing centralized management of multiple firewalls. integration with endpoint security products ensures seamless traffic flow and rule enforcement, even when endpoints are not directly connected to the firewall.   

I've had experience with Sophos XG's threat intelligence features, and they provide good coverage, although I wouldn't say they're the best in the industry. The sandbox feature is available with top-tier subscriptions, allowing you to test content in a cloud sandbox.

One improvement I'd suggest for Sophos XG is to make certain functionalities, like CR functionality, part of the default firewalling rather than exclusive to premium subscriptions. Enhancing DLP capabilities at the gateway level could significantly boost security for organizations.

I have been using Sophos XG for the past 10 years. 

As for stability, I'd give it a high score, maybe a nine, because it keeps running without much downtime.

I'd rate them an eight for stablity It's not to say they're perfect, but generally, it's pretty good I'd recommend it for companies of all sizes.

Integrating Sophos XG into existing infrastructure was quite easy and straightforward. There were hardly any complexities involved in the process.you can use both options - cloud-based or hardware-based firewalls. When I mention hybrid, it means having both options available. While cloud-based firewalls offer convenience, they can be more expensive compared to hardware ones. Although I haven't personally worked with the cloud version, it seems similar in appearance but may have different features. Cloud-based firewalls may seem like an overkill in terms of price, especially when considering the cost of operation over time. They become more beneficial when additional security layers like zero trust, DLP, or secure web gateway functionalities are added. This expands security beyond physical location constraints, making it accessible from anywhere.

I'd rate Sophos XG an 8. It's my first preference and confidently recommend it to other users.

It has been a while since I have worked with the product in our company, and so I can't remember its most effective features.

The support service offered by Sophos is an area of concern where certain improvements are required. My company did not get enough support when, in our enterprise, we faced some issues with the product and needed support. For support, one has to go with the online community, and even then, it cannot be guaranteed that one will get the right support.

The support team's response time should be minimized. The support should be more available. I think that one has to wait for four or five days to get support. Business cannot stop just because of issues with support. The tool's renewal service was really good and straightforward.

Some of the working features of the product, like sandboxing functionalities, are complex for me to handle, especially since one has to buy them separately. You have to buy sandboxing features separately, but I believe that it needs to be given to a user along with the product. In my company, we couldn't find the detection features of the product. Though I did a remote code execution, and it stopped abruptly, it never showed where it actually stopped. In the area of reporting, there needs to be a lot of improvement in the tool.

Partner engagement is an area in which I feel there should be some improvements. Getting support or being able to deal with certain stuff when it comes to Sophos because of the OEM should be made possible. When an OEM is with you, you'll feel more comfortable doing business. My company started doing Fortinet a few days ago, but before that, we had Sophos. My company is moving away from Sophos because it is no longer needed. When it comes to the price or during some disconnection, my company doesn't get any support from Sophos.

I have been using Sophos XG since 2021.

I rate the technical support a six out of ten.

Neutral

Our company uses Microsoft Defender, Kaspersky, and Trend Micro.

As my company has partnerships with Microsoft and Sophos, the best part we get is in the areas of support services and distributors as we are involved in the reselling business. My company also has to operate with some local resellers, so we get support from them at a good price from them, and even during deployment, we get some support from them. I worked with Microsoft in 2019 and stopped working with it in 2020 during COVID-19. I got familiar with many tools during COVID-19, so I can get the business prices of the solutions. If I keep Microsoft Defender aside, then my company does business with Trend Micro as well. Trend Micro provides whatever help my company needs, and the tool's team greatly engages with us and supports us. With Sophos, my company doesn't get any support. I think Sophos does not do direct business anymore. Sophos doesn't have any OEM office. If there is no OEM office for a product, the company can face a lot of trouble.

I did business with Sophos in 2021. I think that last year, we got a Sophos Firewall deployed in our organization. The product's initial setup phase was straightforward.

The solution can be deployed in two days.

Nowadays, my company recommends Palo Alto and Fortinet. With Fortinet, my company is comfortable because it looks after our needs, and it is really helpful.

The user interface of the product is good, especially since its customers are satisfied.

Sophos XG supports our customers' remote workflows well. As a customer-centric tool, they use it as part of their company.

The product can be recommended to SMBs. My company's people requested Sophos products for 450 people or endpoints, but we didn't get any response from Sophos. My company emailed an agent from Sophos, but we didn't get any response for 44 servers and 400 endpoints we wanted. I work at a hospital, so we didn't get any price quotation associated with the product.

The features of the product are good. It is not like Sophos told me something and its products were working in a different manner.

I rate the solution a ten out of ten.

Mainly as a firewall, and in some cases, as a firewall with camera surveillance integration. But primarily, it is used for firewall functionality.

I find the firewall functionality and unified threat management to be the most useful features.

The VPN has been a persistent problem for us. It's not straightforward to configure. We often encounter issues with setting up the VPN. Sometimes it works, sometimes it doesn't, and we haven't been able to determine the cause.

So the VPN configuration could be less cryptic. It should be easier and more straightforward to configure. A simplified installation process and clearer instructions would be helpful. The current VPN configuration is a bit convoluted.

In additional features, it would be beneficial if Sophos XG could have an enhanced feature for aggregating bandwidth. Currently, it supports load balancing to some extent, but it would be even better if it could aggregate the bandwidth. For example, if I have multiple links, say two or three, it would be great if the solution could aggregate the bandwidth from those links. 

Ever since Sophos acquired Cyberoam. I used to use Cyberoam, and then Sophos took over Cyberoam. So I would say it's been about five to seven years since that transition happened. 

I have various versions because I'm a network service provider. I offer the high-end enterprise edition as well as the mid-range and basic versions. There are several different models available.

I would rate the stability a ten out of ten. It is very stable. 

When deploying on-premises, if you need to scale, you have to purchase additional hardware. So, on-premises scalability would be around six out of ten. You have to size the solution for future needs.

The cloud version is much more scalable. However, when it comes to on-premises deployments, scaling can be challenging. If you need to upgrade to a higher level, you have to acquire another hardware box. So, it's not as straightforward as cloud scalability, but it's still possible, though not as easy. 

There are about 200 users. They are small and medium businesses. 

I would rate the initial setup an eight out of ten, where one is difficult, and ten is easy. It required some experience in designing networks. It's not a simple "click-click-click" process; it requires the expertise of a network professional. So, if you're not experienced, it can be challenging.

It can be difficult for inexperienced users, but with the right knowledge and experience, it is manageable.

The deployment process involved acquiring the device, planning the network design, configuring it according to the desired network setup, and then connecting the necessary cables. It's a relatively straightforward process.

It only took an hour to deploy the solution.

It is fairly priced. I would rate it an eight out of ten. Mostly, I only purchase the standard license because I don't usually require the other features. It would cost approximately $2,000 on an annual basis.

Overall, my experience has been positive. I haven't encountered any major issues with it. It's easy to use and not cryptic. It's also quite stable, and I rarely experience any hangs or similar problems.

I would rate this product an eight out of ten because there is still room for improvement in VPN. 

We are using the Sophos XG in a different manner than the typical use case. We have the physical box, and we are using Sophos XG on the cloud.

We have two different types. We have two different Sophos XG we're running. We're running one on the Microsoft Azure cloud which mostly all security on the cloud goes through the Sophos XG. The second Sophos XG is running on our own physical local data center.

We are doing something similar to an IPsec between Azure and the local data center. So we are doing an IPsec between the two. We connected all our resources and we mostly run the applications on Microsoft Azure. Were now are doing IPsec between the two data centers.

Most of the features Sophos XG has are valuable. However, if I have two different  ISP, I'm able to create an automatic switch between the two ISPs. I can do the same thing for the cloud as well. If I have two subnets coming from the cloud, I'm able to create a type of switch between both of them where if there is traffic on one and has the traffic drop, I'm able to switch to the other ISP without any problems. It's a normal feature and I get to enjoy the ability to switch between services with no issues.

Security is one of the major reasons we are deploying Sophos XG in our process.

We recently did an upgrade on the Sophos XG firmware and we were surprised that after the upgrade,  the automatic switch actually we were using did not work anymore.

We try to understand exactly why it wasn't working with the new 18.5 firmware, but we could not figure it out. I realized that I was stuck with the main ISP. If there's an outage, it was not reliable on the network any longer.

We had to reverse, back to the old firmware even though we were still trying to fix the new version. It is a very efficient feature for our operation. If it was not there, it could make the workings of our operation inefficient. It is one of the best features of Sophos XG. It makes operations very efficient. You don't have to worry about anything at all. We are using the entire Sophos package, such as Sophos endpoint, Sophos XGR, Sophos ZGR.

The documentation can improve with Sophos XG. This will allow our network engineer to work better with the solution. Additionally, they can improve the ability to filter down devices. Recently we were faced with a challenge where we needed to restrict mobile phone users on the network but we realized that we couldn't do this with the solution. 

Recently I was looking at the Cisco Meraki solution, to see what it can do in terms of capacity. There's one feature that stood out to me, and that feature has the ability to implement some policies. Organizations need to have security policies in place. I would like the ability to create policies.

I have been using Sophos XG for approximately two and a half years.

We have approximately 60 people that are working on Sophos XG. However, the number is higher because Microsoft Azure routes every customer through the firewall. We have multiple layers and the traffic passes through Cloudflare and then gets directed to the Sophos XG on Microsoft Azure. The Sophos XG on Azure does all the filtering and routing to the private IP, allowing us not to use the public IP.

The DMs are private, and approximately 14,000 customers  pass through the Sophos XG and Microsoft Azure

The support from Sophos XG is very good. We can easily relate to the support.

I would rate the support from Sophos XG a two out of five. You cannot have good support without good documentation.

If you look at the software environment now, anywhere you go, you see the documentation for everything that has been done. Sophos XG has documentation, however, you should not need to have a certification to be able to understand it.

I have used Sophos Cyberoam previously.

If we had better documentation we would be able to implement Sophos XG better for the organization's exact specifications. When you have already come up with your networking strategy, presented it to the company, then you find out the new framework doesn't conform with the organizational strategy. You have to start going back and receiving approval for a new strategy. However, you are not even sure what the strategy is going to be with the new framework, because everything has changed. Most of the automatic resources stop working.

There is a high chance I do not even know why it is not working or what the major issue is. We have realized the package wasn't switching and we did a lot of troubleshooting for almost a week to understand why. We switch over to our old firewall, then we finally understood that it was something that has to do with the new 18.5 firmware in Sophos XG. Immediately we switch back to the old firmware, this fixed out problems we were having at that point.

I would rate the implementation of Sophos XG a two out of five.

The initial deployment was done approximately three years ago and it was done by a third party because of some complex considerations, such as the VOIP Gateway.

However, since the initial implementation, we have been managing it by our own in-house network engineers and every modification to the network has been done in-house.

We have three network engineers, that work on the solution and the network. They can manage all the features and securities. The amount of people needed to maintain the solution depends on the organization's architecture. 

In information security, the only way you rate ROI is by the level of information you're securing. I will ask myself how much is the information I'm securing is worth? The worth of what I'm securing will determine the amount of cost that I'm spending on the information secured. If I were to judge it that way, the ROI is high. 

I would rate the ROI of Sophos XG a five out of five.

We pay for two licenses for the use of Sophos XG annually and it is a flat fee. We do not have everyone going through both of the Sophos XG firewalls a the same time and the Sophos XG on Microsoft Azure is only accessible from the VPN.

Sophos XG has changed its pricing model for extreme protection.

I rate the price of Sophos XG a two out of five.

When we were evaluating other solutions we looked at Barracuda and it had an old GUI. This was an issue when we were making decisions between Barracuda and Sophos XG.

The solution has served its purpose in my organization.

I rate Sophos XG a nine out of ten.

We are primarily using Sophos XG for the identity base, policies, load balancing, and SD-WAN. Right now we have separate, different branches, therefore, we need to integrate it with SD-WAN. Of course, with SD-WAN, we need to do the load balancing, the VPN failovers, and also watch the connectivity. We are more particular on the link, and also the implementation of user policies.

The Multi-Link, or the Multi-Wan, SD-WAN, is extremely valuable to our organization.

The Anti-Spam and the Gateway Anti-Virus capabilities have been very useful.

The solution offers a very good Network Ring, QRS, and landing management. 

We've found that the reporting is very good overall.

They really work scalability into the solution at the outset.

The SD-WAN could be improved. It is not yet full-blown; it's only basic, really. They need to move on with the algorithm on how the SD-WAN works, and how it works in comparison to other brands of SD-WAN. Sophos should study those algorithms on how they do the SD-WAN to learn a few things that may help them build out their own solution.

I've been using the solution and various other Sophos solutions for a while.

If you do the right planning, most of the time Sophos is good for five years. It depends on the recommendations as well. Sometimes the Sophos team or supplier will show you the number of users or number of networks and they'll illustrate to you a plan most suited to what you have and what you might have. They assess everything and give you a five-year plan. That way, if you need to expand, they've already taken that into consideration at the outset and there's room to scale.

We have about 100 users.

Due to the pandemic, we don't really have any plans to expand. We may be downsizing a bit. We'll see.

We've been satisfied with Sophos' technical support. They are very helpful and responsive. Their staff is quite knowledgeable.

I've worked with Sophos previously and we had a different setup. In terms of implementation, sometimes there are complex setups and sometimes the setup s are more basic. Right now, we have a complex setup. We need to ensure interconnectivity between our branches. We'll have different networks, different sites, and a lot of complexity. 

It doesn't really take too long to deploy, however. The support from the supplier is good. They're always available to assist. They are well-trained and they are already familiar with the setups and configuration so they're doing a pretty good job in terms of helping us.

The supplier, the reseller, the partner of Sophos, is doing the change for the end-users. Most of the basic configuration has already been already done by us, however, for more complex areas, we could ask them, and they could come to us to configure it for us.

The pricing is based on the acquisition cost.

We have evaluated a few different solutions. We've looked at Palo Alto and FortiGate products. In terms of our end-point security, we've also looked at Trend Micro and a few others.

We are just a customer and an end-user.

We are using the latest version of the solution.

ON a scale from one to ten, I would rate this solution at an eight.

We are using it for our VPN and firewall. It acts as our firewall for the external portal into our network.

It is very easy to configure and straightforward. The firewall rules are straightforward.

It works great out of the box. It has been working as advertised, and I haven't had any issues with it.

Its user interface is a little bit slow.

I have been using this solution for a couple of weeks.

It has been up and running for probably three weeks and hasn't had any issues. I didn't have a lot of time on it yet to make a good call about that, but so far, so good.

It scales for our purposes. We're a very small office. We have 25 users on the system. We're an engineering consulting company, so all remote users are accessing our network

It is being used quite heavily, and I don't see any need to increase its usage at all at this point.

I didn't have any direct interaction with Sophos. Their online documentation is very good. It is much better than Cisco.

It was a replacement for Cisco ASA Firewall. Our Cisco licensing had expired, and it was very expensive. Sophos XG is a lower-cost solution for the same thing. It was also easier to configure.

It was very simple. It took a couple of hours.

We had a partner, and they did the initial setup and walked us through it. Our experience was very good.

Its maintenance is very simple. You need less than one administrator for its maintenance.

I expect to see ROI in a year or two.

Its licensing cost is around 700 bucks a year or something like that. It is 100 bucks a month at the most. It seems to be standard licensing with no additional costs.

I would advise others to go through the Sophos demos. They are very good, and they walk you through configuration and use cases. Their online documentation is very helpful in not only configuring it but also selecting a proper model to deploy.

I would rate Sophos XG an eight out of ten for ease of use and cost.

I'm using the solution mainly for its firewall application and to prevent intrusion in the system. The XG platform is very powerful from the perspective of identification and to prevent potential attacks on the system due to its the capacity to predict and to anticipate the potential damage on the system.

It's integrated inside the system, meaning that it can control all the endpoints in the system and talk with them and identify any potential situation. It can also isolate one area inside the system without compromising the entire system. This allows you to isolate the initial problem without involving the entire infrastructure. 

You have real-time control of all your infrastructure. It is integrated with the hardware and offers good performance alongside the hardware and by the firmware, and these work together to control the entire infrastructure.

The real-time control on offer is excellent.

We really appreciate that you can segment and quarantine certain sections of your system without having to shut down the entire operation.

The product has artificial intelligence that has the capability to quickly identify which could be the potential risk mainly for intrusions like ransomware or a new kind of typology of attacks that are in place right now. 

The idea is to mainly prevent the condition and not to manage the situation, as, if that happens, in many ways, it's already too late. It's to identify the condition that can help the company to prevent or mainly to reduce the risk of an intrusion. In that sense, its performance is excellent. 

The product is doing it job without affecting the system with a heavy load. The activity on offer is very light in terms of resources that are required by the system. It does not require a lot of resources in terms of memory, et cetera. There is no performance impact on the system. The customer doesn't detect its presence on the system when it's working, and yet they still get all of the great benefits of protection.

The solution has been quite stable. 

It's a product that is in continuous improvement and is following what the customer is asking. They are taking inputs and designing new releases specifically according to the client and their needs.

It's one of the best products on the market as it really understands where the market is moving and iterates based on the future. It's constantly improving. It does a great job at keeping confidentiality while guaranteeing security.

The solution doesn't just offer theoretical security, it really does offer very good, real-time security and delivers on its promise to the client.

There is no specific features request right now really. I see that all the features that Sophos is implementing and is proposing on the market follow exactly what the market is asking. It's difficult to identify something that is missing compared with what the market can ask as one of the most important things that Sophos does is have the capability to anticipate in a certain way what the market expects. As a leader on the market, they tend to have the solution just before the market is asking them for it. 

The solution could offer a bit more integration with other systems, with other platforms - just to be able to extend the capability and to interface with other kinds of platforms or systems that I can find on the market as it gives the possibility to improve the level of integration.

The solution is very stable. There are no bugs or glitches. It doesn't crash or freeze. It's very reliable.

The solution is quite scalable. You have to consider that all Sophos products are scalable. This is one of the main characteristics of the system. It means that you can start with a base solution that is very simple and improve this step by step without losing what you have done in the past. It's scalable in the sense that you have a different layout that you can cover, however, you don't have to dismiss what you have done in the past. You have just to integrate. In this way, if you consider the cost of implementation for the company, it has the possibility to optimize the cost because the company has the possibility to appreciate the system initially, and then improve the system step by step without losing what has been done in the past.

This means the company has the possibility to distribute the cost if you're in a certain period of growth. Normally some companies start to say, "I want to guarantee to control to the outside with a certificate and give the possibility to access my data in a controlled way. After that, I want to extend the security on the email that is managed by the company. I want to encrypt the data on the server and so on." All these features can be approached in a step-by-step manner instead of all at once, and you can implement them on the system in different ways and at different times.

We normally have about 50 users and around five technicians.

I also currently use Cisco products alongside Sophos.

However, we did not previously use a solution that was different from Sophos.

The initial setup is not so complicated. The system is not complicated to understand and also in can be installed without a very high level of expertise. Of course, if you have this kind of expertise, you can obtain from the system the maximum performance that the system can do, however, it means that you are not obliged to be a guru to be able to use these kinds of products. You can use these kinds of products just as an IT manager inside the company without having or needing special knowledge. 

Otherwise, you can leave to Sophos with the capability of doing something like a close box. You are sure that Sophos is able to guarantee the level of security that you are expecting. You can have it be automatic, or you can choose to go more manual in its operations. For example, if you were a professional photographer, you'd probably like a manual experience, as it would allow you more leeway with your craft, and if you were an amateur, you 'ld likely prefer an automatic camera that handles the heavy lifting for you. Sophos, in that sense, is the same. If you want, you can configure single parameters, or you can leave it to Sophos to give you something out-of-the-box.

In any case, if you stay on the automatic configuration, you are guaranteed that the system can provide the correct level of service that you want. It means that it's not required to have an expert. That said, you need of course to have a minimum level of knowledge, as it's clear that you need to know what you are managing. Starting from that, you can obtain what you need without moving into an advanced configuration.

Typically, a configuration takes about half a day or so, if you go that route. It doesn't take long, as those who would handle it would know what they are doing.

We handled the implementation ourselves, in-house. We did not need the assistance of an implementor or consultant. I have enough knowledge on the solution to manage it myself.

I'm mainly a user. Sometimes I handle installations.

I'm using the latest version of the solution. I don't have the version number on-hand.

We do plan on continuing to use the solution. I've been quite please with it overall.

I would recommend the solution to others. It's worked quite well so far and really leads the market.

I would rate the solution at a ten out of ten.