Sophos XG Reviews

We use Sophos XG for a central firewall, with some branches making a VPN, but that's the normal deployment. Some clients use it as a proxy, but most of my clients use it as a gateway. We use Sophos to configure policies, work filters, application filters, and the SSL VPN and IPSec VPNs.

Because of the pandemic, the VPN is the most valuable feature. In Bolivia, the clients normally asked for an appliance with a web protection license or network protection and web protection license. These are the most common features demanded by our customers.

Some clients are also using the wireless solution and using XG firewall as a wireless controller. For those clients, this feature is a very important.

I used to work with Fortinet, and sometimes I see that the SD-WAN feature could be better because it's much easier in Fortinet. That area could be improved in Sophos XG as it's too complicated right now.

For example, I remember a case where the routers had to be configured by commands. It's not hard, but you have to read and investigate how to do that. The XG firewall works fine, but you have to read, and it takes some time to do it.

Sophos XG could also improve the floating area. I have more features in Fortinet, more visibility of the networking table, and the networking area. But in Sophos, you have to enter the CLA and display it. It'll also help if they offered more toll booths for VPN like Fortinet.

I've been working with Sophos XG for around five years.

I have no issues with the stability. No reboots are needed, and there hasn't been a problem with that.

The new enterprise models are scalable, and we don't have problems. I think it's fine.

I like their technical support. With Cyberoam, I remember the technical support used to work closely with us. They used to configure some features for us and help us resolve problems, but not just by email. They used to work with us and show us how to do it. I think that was nice, but in Sophos, they give us instructions and help us, but by email.

The initial setup and configuration was very easy for us. I think it's easier than the other options in the marketplace. The deployment time is relative. For example, if you're deploying for a client who has another firewall and have to integrate it, it'll take around two or three days. But if it's a new environment, you can deploy the firewall within two hours.

Normally, my clients look at Fortinet. Both have similar features, and sometimes Sophos is more expensive, or FortiGate is more expensive. It depends. But normally, I have clients that migrate from Fortinet to Sophos. They are used to working with FortiGate without a problem, but the main difference in our case is the support. Because as a company, SUPERNOVATEL, has more experience with Sophos to help our clients immediately. That makes the difference.

On a scale from one to ten, I would give Sophos XG a nine.

Overall, everything about the solution works well. We haven't had any issues at all.

The features on offer are great. It has pretty much everything we need.

The solution is very user-friendly.

The product is very easy to explore. It has a very good layout.

I need to do a bit more research on the product. I can't think of any features that are missing.

The solution is tied to the US dollar. You need to pay whatever the equivalent is in your own currency, and, if the exchange is bad, it can really add to the cost.

We've been using the solution for three years. It hasn't been an extremely long amount of time.

The stability is great. We don't have any issues. I haven't come across bugs or glitches. There isn't crashing or freezing. It's reliable.

Technical support is quite good. That said, we really haven't had any issues with the product itself.

I used to use Fortinet. That was at a different company, however.

The solution is very straightforward to set up. It's not too complex. Sophos Endpoint is similar in that respect. It's easy to implement.

The pricing is a bit expensive. That is mostly due to the US exchange. If the exchange is bad, it's quite an expensive option for us.

We are Sophos customers. We're just end-users.

We also use Sophos Intercept X and Sophos Endpoint as well.

It's a good option. It's easy to explore and to use. Everything is pretty straightforward, especially if you compare it to other firewalls.

Overall, I would rate it at a nine out of ten. We've been very happy with it in general.

We are using this product as the firewall for our head office, so any connections going outside of the office go through it. We are also using VPN clients and especially during the lockdown, it was very helpful.

The feature that we find most valuable is the VPN, which ensures that people working remotely have a secure connection.

The email security and other security-related features are useful.

We feel that the GUI can be improved a bit because it has a lot of information and looks a bit outdated.

Nowadays, you hear a lot about next-generation firewalls, so some additional features can be added from an EI perspective. Products like FortiGate, for example, have a lot of features apart from the basic firewall. 

We would like to see integration with existing IPAM and IDAM products.

In the future, I would like to see new kinds of automations, as well as the inclusion of artificial intelligence-related features. A lot of other firewalls already have these now.

I have been using Sophos XG for approximately three years.

We have not had many issues, perhaps two or three of them, when using Sophos XG.

Scalability-wise, they have different models. With the requirements that we have, this firewall did a good job. It's still doing a good job in terms of performance. For a larger enterprise with a higher number of users, they can recommend other models.

Currently, we have approximately 100 users.

We have received good support. For the small number of issues that we have had, we received help from IT. This included assistance with configuring some additional policies. Whenever we reached out to them, they were very prompt in terms of responding to us.

Prior to Sophos XG, we were using a firewall by Palo Alto. The major reason we began looking for a different one was that the support was not very good. The firewall was pretty decent but whenever we wanted some help, it was a bit difficult to reach out to them. To summarize, it was not very prompt.

The initial setup was simple. Within one to two hours, we were done. This was not just the installation, but the complete configuration.

We performed the deployment with the Sophos team guiding us over the phone. It was not complex. There was one person from Sophos who was coordinating it, and it was done by our internal IT manager.

For the most part, I can say that we plan to continue using this product. However, we would like to see if they have come up with new models and what additional features have they been incorporating. With cybersecurity, I know there have been a lot of threats of late, so we would like to see some new technologies or new features being incorporated.

This is a product that I can recommend. My advice for anybody who is implementing it is to first try to understand what the major use cases are. People need to know that there are quite a few options, such as Fortinet, and all of them have different advantages. Sophos fits perfectly for a smaller group of users, with perhaps between a hundred and two hundred people. For larger enterprises, I recommend that they implement Fortinet or Check Point.

I would rate this solution a nine out of ten.

We are a managed service provider and the primary firewall that we sell and maintain is Sophos XG. It is also used in the company.

The most valuable feature is that it is a next-generation firewall.

The fact that it is integrated between endpoints and the firewall, and then the firewall and a central Sophos operation center, is very good.

The cloud-based interface makes it easy to manage.

The integration with the Intercept X approach means that Sophos XG can do things that none of the others are doing.

The main area that needs improvement is the documentation.

Sophos needs to be a little better at communicating with partners about changes, issues, patches, and so forth. 

The weakest point is the technical support because they are difficult to get into contact with.

We have been using the Sophos XG series for three years.

This solution has been very stable and it's a good product, otherwise, I wouldn't be using it.

The technical support team is knowledgeable and they are good, although it is very hard to get a hold of them. You sometimes have to wait in queue for over an hour to speak with somebody. To me, that is the most frustrating thing about Sophos.

We did not use another similar solution prior to Sophos XG. Since the MSP business started, it has been our primary firewall product because of the pricing and support.

The initial setup is complex, as is setting up any next-generation firewall today. You have to know what you're doing with firewalls in general, although beyond that, it isn't as bad as some of the firewalls that I have seen.

The deployment typically doesn't take longer than a few hours or a day, depending on the type of client and what it is that we have to do.

The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else. Because of the partner program, the pricing I get is extremely good compared to what I would get from any of the others.

I have evaluated several firewall products and I think that Sophos is better in terms of ease of use, performance, and pricing.

I would highly encourage others to evaluate Sophos and adopt it. I've discovered that compared to other products, it is easier to manage and I think that it operates better.

Overall, I think that they've got a pretty complete set of features and they seem to be on a really good path. My only complaints are about the documentation and the availability of technical support. 

I would rate this solution a nine out of ten.

The most valuable feature, according to the setup we have at our work place here, is the flexibility of the system or the firmware that's running the appliance. It's so flexible, performing multiple rules with different configurations. According to the set up here, we need to implement several firewalls with different access levels, because we have a variety of users. For this requirement, it's very flexible and very easy to use.

It is performing well. However, the only challenges that we are facing are the effectiveness with blocking the proxy and tuneling applications, aside from  proxy and similar applications. So the application filter on the product is not really performing 100%. Every now and then there are some updates that are happening on such applications, and it takes time until it gets the appropriate updates and becomes capable of capturing such applications and blocking them.

A new feature I would really like to see would be some sort of an enhanced application filter with greater efficiency when it comes to the applications that can bypass firewall policies. These applications are really a nightmare. Once they are on the network and not detected, or the appliance is not really successful in capturing them and unblocking them, the bandwidth gets wasted all the time.

It's stable. So far we haven't experienced any instability issues with. 

As for scalability, I think it is a bit limited. We did a sizing exercise before the purchase. But that was just to fit our current needs. There was no room for having an option to upgrade the device. The only option that we have if we are grow in the near future, is to go for another model with higher specs, which is actually more expensive. In other words it doesn't have that modularity feature. 

From time to time I use technical support provided by the seller and sometimes I use the online support, but not that much actually. It has only been for a very few issues. And the support I have received is not bad.

Before Sophos there was mix of various legacy solutions that were not really considered firewall grade. The only specific thing that was used was a software-based firewall, but it was used on a very limited scale and only temporarily.

It was very straightforward. 

The other vendors on the list were Fortinet and Palo Alto. Although it was really great with outstanding features, Palo Alto was far beyond our budget. And as for Fortinet, I was not really happy with the ease of use of the firewall and the features that were coming with it. Sophos was better compared to Fortinet.

When it comes to selecting a vendor I think the most important thing would be the level of support and how fast they can respond in critical cases.

I would rate Sophos at eight out of 10. I cannot give it the best rating because there are the issues that I mentioned, and I believe there are other products on the market that are much better, like Palo Alto. And there is another product that I've come across recently, which is called Clavister. It's a Swedish product, if I'm not mistaken. They are current with features and have more stability. So for Sophos, it would be the appropriate rating for the time being, unless they come up with some new features and add some enhancements.

There is no straightforward advice in this case because there are many factors that may limit the person who wants the solution. Budget is an issue. If you don't have any budget limitations I would recommend going for Palo Alto. If not, consider Sophos or Clavister.

This product is our perimeter firewall with web filtering and application filtering, as well as also providing site-to-site VPN and SSL VPN. We are end-users and customers of Sophos. I'm a network administrator. 

Sophos XG enabled our organization to establish site-to-site connectivity with our Branch offices and enabled work from home during pandemic through very easy to deploy SSL VPN solution for our employees. 

Reporting is the most valuable feature. They also recently provided the SDWAN solution and we're currently working on implementing that. 

I'd like to see improved throughput performance in a box. It's already a cost effective solution but I'd like to see the cost further reduced for annual renewals.

I've been using this solution for four years. 

Sophos has the same issue as all firewalls where it's scalable for virtualization and for cloud deployment, but it's not so scalable when it comes to the hardware. 

Customer service is good but has room for improvement like all others. 

Positive

The initial setup was very straight forward. 

Vendor team has very good level of expertise, transfer of knowledge was excellent and we are managing firewalls at our own. 

I believe there are better products on the market so I rate this solution seven out of 10. 

We use Sophos XG with medical institutions and corporate banks that we work with. There are approximately 20 employees working with this product in our company.

Being centralized, Sophos provides us threat protection there. Even with standalone, we are able to provide the Sophos firewall. Having an internal dashboard and a single dashboard with some endpoints is also valuable. By using Sophos endpoint and the firewall, synchronized security is easy.

I would like to see improvement with service and support. LAN inbound and outbound traffic requires more control and an additional stop. 

We have been using Sophos XG for almost 10 years. We are partners with Sophos.

Stability and performance is good.

The solution is easy to scale.

There is no maintenance required with Sophos XG because it is a cloud product.

Previously I was using Cyberoam and Fortinet. We switched because there was a lot of hardware, and the performance was not satisfactory. We were experiencing space concerns with the hardware, the dual processor, and even the single processor. This also meant that synchronized security was not there as well.

The initial set up of the solution was simple. It took about 20 minutes.

We implemented the software on our own.

The price is cheaper compared to others.

I would recommend Sophos XG because it is easy to deploy at customer locations and it is priced well. I would rate this product a 10 out of 10.

We use Sophos XG for network security as a firewall for our company.

I have found configuring the ports to be easier in Sophos XG compared to the other devices.

Sophos XG could improve the policies, they are a bit confusing when creating them. There are many options that make it confusing and it could be simplified.

I have been using Sophos XG for approximately two years.

The Stability and performance are quite good. We haven't seen any problems.

The solution is scalable.

I would rate the scalability of Sophos XG an eight out of ten.

We have approximately 10 people using this solution in my organization.

My customers are using this solution on a daily basis.

I have contacted support once or twice to receive some clarification. I had a good experience.

I have used other solutions preciously and FortiGate's user interface is much easier to use when compared to Palo Alto and Sophos. Additionally, in Palo Alto, assigning the ports are more user-friendly.

The installation is straightforward.

I did the implementation of Sophos XG myself and it took approximately 20 minutes.

There is no maintenance is required for this solution.

Our networking team is approximately 10 people that use the solution.

The Palo Alto solution is expensive and the FortiGate is less expensive than Palo Alto. The Sophos XG would be priced in the middle of the two.

There are some fees but you can purchase a bundle package.

My advice to those wanting to use this solution is if you don't have experience, don't use it.

I would recommend this solution to others.

I rate Sophos XG a seven out of ten.