We are planning to procure UTM along with end point solution. Primarily we have selected the following brands and models by going thru different reviews.
SOPHOS XG 210 HW & SOPHOS XG 135 HW.
FORTIGATE FG 100E & FORTIGATE FG 60E.
Ours is a medium size organization with 100 desktops and 10 windows servers. We are using Exchange 2010 as our mailing solution.
Our major objective is to protect external and internal threats including RANSOMWARE which may come thru E-Mail, Internet , Pen Drive, External Hard Disk.
From the cost perspective, SOPHOS is cheaper.
Please help us to decide about the UTM .
We just entered our 3rd year with two Sophos XG 310's (active/passive) and we could not be happier. When these devices are paired up with Sophos Endpoint + Intercept X you will have a comprehensive security solution that is difficult to beat. And in a small to medium size business, their value proposition is second to none.
I just started my second DECADE using Sophos solutions and they never disappoint from start to finish. They make the initial purchase and deployment pain-free, the day to day "care and feeding" of their products is simple, and they are highly competitive when it comes time for subscription renewals. I am yet to experience the "now that we have you, here comes the pain" approach other vendors use on their long term customers - think Smartnet and other escalating services here.
No, they are not a household name and really have a greater presence in Europe and Asia, but they are a serious player and should not be underestimated. Flashy ads in US trade magazines are pretty, but I prefer their approach of putting more money into product development than marketing. Year upon year Sophos continues to make steady progress with Gartner and other tech info sources, and I caution those that depend on their upper right hand quadrant recommendations. Many that rise quickly, also seem to fall just as fast. Many of us that have been doing this for some time prefer bulldozers over bullets when it comes to security and "flavor of the week" product offerings. Sure bullets can cover ground fast, but the bulldozer always gets more done when when it makes the same trip.
So that's my two cents. Best of luck with what you finally choose.
Both Sophos and Fortigate offer end-point software. Depending on your needs, both have advantages over the other solution, but most people would conclude that the Sophos end-point solution is more feature rich.
That said, when it comes to security, while there is some advantage in having a one-stop shop, there are disadvantages to all/many of your protection layers coming from the same vendor. Any weakness that vendor has will likely be found in the other layers as well, undermining a great deal of your protection in a single shot.
I would be more inclined to evaluate each layer of the protection somewhat separately unless this results in a significant price disparity.
Fortinet's client is great for host-protection and easy VPN access, but I would either augment or replace with Cylance end-point, depending on the need for the VPN access.
Fortinet devices are more flexible from a management standpoint, especially as you grow, IMO.
I am concerned that if you truly want to enable a lot of security features that the Fortinet 100e maybe a little small, at least go up to the 200e. The Fortinet 5.4 OS has matured and is very stable, the 'e' generation has just been awesome for us and our customer deployments. We also fully manage and monitor our customer deployments, so we live with our sizing decision. We have a lot of 50e, 60e, 100e and 200e out replacing much larger/legacy C and D series FortiGates. We have a long history of deploying all the way back to the 200A series. If you are only worried about through put and not security, then the smaller units will do a really good job for you. If you are worried about security, then at a minimum for a small site look at the 100e, but with as many servers as you mentioned look at the 200e. Also, we heavily utilize our FortiAnalzyer for our managed customer firewalls. You should deploy a virtual FortiAnalzyer to help with security monitoring and reporting. However, I don't know what your VPN and other requirements look like, so hard to size for you. Sophos is trying to disrupt and doing a good job at it, I think they are a very series competitor to Fortinet. We have recently started to explore Sophos to see if it maybe a better solution for our customers and help us to scale our business. Both compare well against each other on paper, devil is in the details and vendor support services. I should add that my only experience with Sohos as a user was back in the day of Astaro Firewall software before Sophos' purchase.
As another user proposed, go for sophos SG series.
XG series is a hybrid of cyberoam and sg series that I did not like at all.I am using sophos from 2010.
As for the sizing if you go fullguard you must go in a higher model than XG210 in order for the firewall to function properly. If 100 user will be online and you need web protection and spam filtering to be performed by the firewall +IPS then yes go to a higher model. 230 or 310 or 330 if you have the budget.
Sophos also has Wifi AP that are controlled by the firewall.
Unfortunately I dont have any experience on Fortigate.
Please consider the following. Whetever you buy dont go for a model that covers you capacity of users if you use fullguard . If you have the budget a go for 310 or 330.
See bellow this link for sophos sizing
www.google.gr
As I said sophos SG is better than XG in my experience.
If budget is your main rival consider also Watchguard they have also great security bundles.
Best Regards
Both solutions have a firewall and end-point security. I like the performance and flexibility of the Fortigate solution more than the Sophos.
Ransomware is prevented in the same way as other host-based malware. If it can run, you are doomed, so it has to be prevented from running.
The Gartner Magic Quadrant report for 2017 list the Fortigate much higher than the Sophos. The Fortigate is listed as a Leader with Palo Alto and Check Point. The Sophos is listed in Visonaries category which is third on the list.
With that being said, we have been very happy with our decision to buy Fortigates. We bought two in failover mode.
Can't tell about Sophos, but we have Fortinet firewall, and we are very pleased with the service and efficiency.I thinkt that it is worth the money we spent to put this in place. We tried Cisco firewall first , but service was just awful, the cisco partner could not even install the device and could not make it work with our network (took less than 2 hrs for Fortinet to install and configure everything we needed). With Fortinet you have great tech support, a LOT of "how to" videos so i can say that i am very happy with Fortinet.
Here I would suggest your to go with Fortigate, The model 60E or 100 E is based on your throughput. 100 E is capable of handle 100 Mbps in realtime UTM traffic and 60E is capable of handle 40 Mbps UTM traffic.
.
Hi guys,
Not familiar with the Sophos units but definitely am with the Fortigates.
For that size environment (100 users) – I’d recommend the 100E over the 60E especially if you’re looking at using the NGFW functionality (ie, UTM, Web Filtering, IPS and the like) – Additional head room in CPU and memory may not be important at the moment but it will be when the unit’s approaching end-of-life.
We’ve found 60E’s are good for upto about 70 medium-to-heavy users – 100D’s (and now the 100E’s) are good for 100-200 users.
Like all NGFW solutions – The total cost isn’t “the appliance” itself – Always look at the overall cost over the lifetime of the unit (3-5 years at most) inclusive of maintenance, bundling and the like.
Specifically, units like the Palo Alto’s have a cheap upfront price, but when your annual renewal is >50% of the cost of a replacement unit, it very quickly adds up over the lifetime of the unit (especially if you need to bundle individual components separately like Web Filtering and IPS. (I’m looking at you Cisco!)
Hope that helps,
-JT
FORTIGATE FG 100E & FORTIGATE FG 60E.
I went through a lengthy evaluation mid-late last year to evaluate different UTM solutions for my smaller company (65 employees, 6 locations, 60% road-warriors.) I ruled out Fortinet early in my evaluation based on support issues that I've had with them on other equipment and frankly due to lack of 'real-world' information I could use to evaluate them against the other vendors. My general impression of their sales team was that we were barely worth their time. I decided then that if I wasn't going to merit their time and effort pre-sale, then I would definitely not receive good support after the purchase.
Ultimately my decision was narrowed to WatchGuard and Sophos XG devices. Both were responsive, competitive and helpful. WatchGuard's feature set was more important to me in regard to our 'road warrior' group and they demonstrated that they could scale their VPN tunnels on the lower range models that I was looking to implement (T30, T50, and M300).
If I had to choose between Sophos and Fortinet, it's easy for me to recommend Sophos. My personal experience is that we selected WatchGuard and I haven't regretted that decision at all.
You can see detailed features for both the Sohpos 210 and Fortigate 100E at
www.techpillar.com
www.techpillar.com
You can also compare various other enterpise class firewalls including cisco, juniper, paloalto and checkpoint here-
www.techpillar.com
When it comes to security devices, the notion that “You get what you pay for” is more true than in many other markets. If the gateway is a commodity, required for nothing more than to fulfill a requirement on an audit, then it doesn’t really matter what you get.
Choose the device based on it’s capabilities, knowing what your requirements are, and the vendor will most likely meet your price needs. Negotiate the discount after you prove the technology.
Invest in a copy of the NSS Labs report on NGFW or read the Gartner report on the topic. You may expand your list of options a bit based on effective protection.
Between these 2 specific devices, generally you get more performance per dollar with a Fortigate than a Sophos. The Fortigate is also a more robust protection option.
Nether of these will do much to protect against ransomware, that will have to fall to either an endpoint sandbox or a network sandbox or clean content delivery solution. Check Point, ZoneAlarm, Cylance, and Palo Alto seem to be market leaders in that area.
~John Bloomer, CISSP
Hi. Have you guys considered pfsense?
Just try it out before deciding.
You can try it for free and you can also buy pfsense support if you need.
I will suggest Fortigate.
I have evaluated both firewall. Sophos better in price with end point protection, Fortigate better in managing bigger environment (That why we chose Fortigate).
If you are passion in technology and like to play different features, Fortigate will be more suitable to you. Sophos give me an impression that not much configuration can play around.
You could download a virtual firewall or request a POC unit from vendor, then mirror the traffic to firewall and see what is the different between 2 firewalls.
If you are looking other brand below are my comments:
Checkpoint and Palo Alto also very good firewall, but very pricey. (Checkpoint can low upfront cost but next year licencing will be shock you; Palo alto can be very high upfront cost. Both are very nice reporting and easier to present to management)
Cisco is also a good product. If you are consider it, make sure using new image "FTD".
We are using FirePOWER series and ASA with FirePOWER series. Too bad some deployment using ASA with FirePOWER with old image (before FTD launch), it gave me a lot of problems.
If you are passion in technology can you try this, if not Cisco product will be very hard to you (at least some of my junior engineer really cannot pick up and they are certified in some firewall brand)
In my experience, the more resources the Sophos has, the better. I’ve only used the SG 105 and SG 115, but the 115 has double the memory and a faster CPU and you can definitely tell.
I would go for the newest CPU and/or most cores possible, and as much memory as makes sense with your budget. I assume the XG 210 is newer and better than the 135.
I don’t have experience with the Fortigate.
Best,
Brian
Hello,
I thought I posted a response yesterday but can't see it so I'll repost (and include some other points)
I would recommend the Sophos solution, key benefits I would say would be
Sophos EndPoint integrates very well with Sophos XG, currently heart beat helps with quarantining devices going between zones (LAN to WAN, LAN to DMZ etc). The next version will actually help improve application reporting. I also don't believe Fortigate endpoint provides very detailed management and I'm unsure if they provide the cryptoguard protection at the endpoint.
Sophos security features, in particular email protection, web server protection and Sandstorm are fully functional productions on the device. I find Fortigate will have those functions but they are limited, encouraging you to upgrade to a dedicated appliance for that functionality.
For the ransomware (cryptoguard protection), I would strongly recommend you consider Sophos EndPoint (ideally Advanced edition as this will help with device control) + Intercept X for desktops/laptops and Sophos EndPoint Advanced for Server Protection, on the firewall front I would purchase the Sandstorm add on on the XG and ensure its been enabled for Web protection and email security.
Depending on your network setup, you could consider using Sophos RED devices at your branch offices, this at least could help with price/budget as you only need to license the head office device for all the security features. This is assuming you have the bandwidth to send both network and internet traffic.
In the Sophos SG (UTM 9.x) Vs Sophos XG (SFWOS 16.5) I agree their were issues with XG in its first release (v15) but v16 and the upcoming v17 have dealt with everything that people had issues with features or interface, plus UTM application filtering is now falling behind XG (eg, its very difficult to block google drive traffic on the UTM while its very simple to do that on the XG). Saying that I understand you can still purchase SG hardware with UTM licensing and then migrate the software to XG. Just understand their is currently no "migration", you rebuild the firewall with the new software and the licenses get migrated to XG.
Hope that helps
Greetings.
The first step in the decision is verify if the proposed UTMs are certified at www.icsalabs.com
The second step considers to work in the hardware capacity comparing the throughput of each equipment considering the amount of Internet traffic with security a margin of 25% at least. Consider in the capacity calculation the IPS rules and VPN connections and sessions per second, for example. Are the proposed equipments prepared to support the traffic in stress situations ?
For better protection the UTM needs a complimentary solution for ransomware considering a AntiSpam/Antimalware service. Fortinet and Symantec provides this kind of solution on cloud. I don´t know if Sophos has this kind of service.
My opinion considers not to buy security a solution only considering the price and the best way to decide is to execute a Proof of Concept considering the business environmet and prepare a decison matrix with the higher values attached to the security characteristics (not price).
If you don´t have enough time for a POC I would recommend Fortinet because of my experience using this technology with satisfactory results.
________________________________
I use a Sophos XG at home and I think this product is best suited for this arena.
Its lack of proper tools and utilities; like being able to import/export network object and services in bulk from ‘csv’ files etc I found very frustrating and time consuming.
I also have some experience of the Fortigate product line, whose family tree starts with Netscreens and progresses through Juniper SSGs and I’m not a great fan either, except as very small office units.
It is my opinion; and one that I would recommend to my clients, to use Checkpoint for this solution.
Yes its relatively expensive BUT
1. It does the job
2. Its relatively easy to train staff to use the management tools and to cover at least 75% of the main functions.
You could start with a 2200 series unit, with the combined gateway and management server installation, But it will be £3000= not £500
But thats £30/head and reassurance
Happy to talk about it
I do not have personal experience with Sophos, but of course every vendor brings something to the table. That said, most third party reviews will rank Fortinet firewalls over Sophos. I have found they offer a lot of bang for the buck. If price is a factor for you, look especially at the performance/price ratio. My experience is you will usually find the Fortinets outperform a comparably priced competitor in terms of throughput, sessions, etc.
I have been using and recommending SOPHOS UTM, before it was Sophos, (ASTARO).
To me the great thing about Sophos is that is is very Intuitive and user friendly.
Currently using 2 UTM 330's in active passive for a company similar to yours.
When you purchase a Sophos UTM sg, you pay for the hardware appliance, and the license for how long you want licensed functionality. I recommend the 3 year as this is the best value.
You pay NOTHING extra for VPN functionality.
For endpoint protection I also recommend and use Sophos Cloud Endpoint Protection.
MSG ME if you need Sophos licensees / hardware.
Thanks,
Jason
If you are going with XG 210 then for Fortigate you need 200E and not 100 E.
I have questions regarding the below
Number of users in the company that needs to be monitored
Security needed is just for Email filter or Web filter as well?
Do you have antivirus on the computers? if yes what is the brand used?
Based on the above I can assist in the model VS solution needed.
When it comes to security, cost is not a playing point. Fortinet 100E as considered is a good choice to secure your external and internal assets against today's ever evolving threat landscape as its multilayered security approach for comprehensive protection against advanced threats and prevention of any single point introducing vulnerability in the network.
On endpoint security, you'll have 10 free FortiClient Next-Generation Endpoint Security which integrates with the Fortinet Security Fabric to provide real-time actionable visibility to stop threats across various vectors on endpoints, end-end threat visibility and control by natively integrating all endpoints into the security architecture.
Go with Sophos
Fortinet/fortigate has somes bugs with SSL/DeepSpection/flow, a hard problems.
Has the user considered CISCO Advanced Malware Protection (AMP)? It is a great solution that not only minimizes the time to uncover a breach but also builds strondefense paramentrs esepcailly when activated on CISCO Next Gen Firewalls (NGFW)
Hope this helps
Ed
Has the user considered CISCO Advanced Malware Protection (AMP)? It is a great solution that not only minimizes the time to uncover a breach but also builds strondefense paramentrs esepcailly when activated on CISCO Next Gen Firewalls (NGFW)
Hope this helps
Ed
If you want to protect your organization from ransomware, maybe you can have a different approach.
Have you considered using cloud delivered Security as a Service?
For example, you can have a subscription to integrated cloud services that may deliver the desired results turning around from on premise devices that usually have unseen costs of ownership.
But if you already made up your mind and what you want to prevent or mitigate is ransomware I would suggest Sophos. Fortinet is an excellent UTM, maybe the best, but Sophos has a solid file reputation database.
Sophos is what I would go for, given the choice proposed in this scenario. As a UTM and endpoint management utility, Sophos is pretty good. You can also use Sophos cloud to protect and filter URLs when users are outside your network.
Honestly, though, as a medium business I would recommend that you go 3 years with Sophos, then spend the 3 years developing your team to become a true Cyber Security team that can use Microsoft’s innate security features (many in Windows 10 Professional/Enterprise and Windows Server 2012/2016). Ransomware is mitigated by AppLocker, Endpoint protection, asset management, patch management. SCCM/SCSM/SCOM if you have Enterprise CAL is FREE!! Ok, endpoint is a small add on fee, but still good. If you keep Sophos after that, it will be for value added, which is still pretty considerable and reasonably priced.
VPN can be persistent through Windows/Cisco/Palo Alto/whatever FW solution you have. Hopefully licensed to handle L2L, SSL, and all that fun stuff.
PM me if you want a roadmap. I’ve worked this model a couple of times now and would be happy to advise.
Edit: I have experienced both solutions >4 months in production. Fortinet offers great security solutions as well. Defense in depth, but buy in layers. At this layer, I’d start with Sophos.
Tim
If you were going with Sophos SG I would go with Sophos. But from what I have seen so far I don't really care for XG. Unfortunately I don't have much experience with Fortigate other than they are considered to be pretty reliable.
Use Sophos because they have expertise in Antiviruses.
To Scan correctly the mail you will need Forti Mail as smart host for Exchange2010. I use Fortigate 60 D and 90D and they have the worst bandwidth when you put antivurse module. They slowing down all the functions when you have Antivirus installed.
Also cloud in fortigate is a mess if you activate.
I would advise the customers to check the battle sheets that are available on the Sophos partner portal
At
partnerportal.sophos.com
Customer can always download trials of Sophos on cloud.sophos.com
Hi:
Have you thought about using Watchguard?
I think it is a good option the M370 model, has good performance and good price.
I would choose between Sophos and the Watchguard, leaning a little further towards Watchguard.
Check these links:
www.watchguard.com
www.watchguard.com
www.watchguard.com
Sophos and Fortinet share many similarities, but I will try to highlight some differences:
1.) Gartner defines the unified threat management (UTM) market as multifunction network security products used by small or midsize businesses (SMBs) (< 1000 employees).
[cid:image003.png@01D33D1E.763D7A10]
Fortinet is placed relatively higher in our ability to execute. What does this mean? Read more here: www.gartner.com
2.) If the customer wishes to do internal segmentation in a later timeframe. Because internal segmentation requires backbone speed. Fortinet are superior in performance due to our patented chip technology – the price point for high performance is much better with Fortinet compared to other leading brands.
3.) Our endpoint protection is free www.forticlient.com . Although a management server is needed to manage them. List price is approx. $950 for 100 clients pr. year.
4.) In some regions, it might be prudent to check how many Sophos partners can help the customer, if they wish to change partner. In most regions there is an ample amount of reliable Fortinet partners.
I hope that this helps ☺
I would go with Sophos XG for both models, since this system has far better capabilities than Fortigate. We as Sophos supplier lean on their support which is world class. If people say that they are cheaper, you can even find them at a better price online on Amazon.
If you need a complete protection such as described above, but need Email Protection and Webserver Protection, I would suggest the following:
For XG 210: Sophos XG 210 TotalProtect, 1-Year (US Power Cord) www.amazon.com
XG 210 with Sandstorm Protection: Sophos XG 210 TotalProtect Plus, 1-Year (US Power Cord) www.amazon.com
XG 135: Sophos XG 135 TotalProtect, 1-Year (US Power Cord) www.amazon.com
XG 135 with Sandstorm: Sophos XG 135 TotalProtect Plus, 1-Year (US Power Cord) www.amazon.com
All of this options I’ve given, are Hardware + Software/Subscription Included along with Support.
Also when you License for your network the Sophos Central Advanced EndPoint Protection, you will have the option (already included) that no other vendor offers that is the Heartbeat between your UTM/Firewall and your EndPoint Protected Devices (Windows Only) for them to communicate against possible threats and even quarantine an EndPoint when the UTM detects something is wrong (from the threat perspective) with it. Also Sophos has Intercept X for this EndPoints (Windows Only and sold as an Add On) for you to have REAL AntiRansomware protection.
This answer and link suggestion is not only because we sell them, several experts here suggest Sophos since their support is far better and product management is easier as any other product.
We can also sell the directly instead of Amazon and give you better prices, if you write us at sales@acgofamericas.com.
Also please keep in mind that you can save even more buying more han 1 year since the vendor offers discounted price for 2 and 3 years (on the XG 210 for TotalProtect or TotalProtect Plus the vendor gives for free a second XG 210 Appliance for you to be able to have High Availability without any other charge or hidden cost, just plug it to the one you are buying and that’s it).
Hope you find what you like and need!
Kind regards
Sophos all the way ;-)
In my experience Sophos are very reliable and easy to use, way better than the Fortigate.
Sophos 210 is sg series not xg series
How ever let me know exactly your specific needs and questions cause there is a lot of factors in this comparison
And I'll help you as much as I can
One more thing: The Fortinet FortiGate 100E and Sophos XG 210 cannot inspect HTTPS traffic via their baseline firewalls. Fortinet requires either AV or IPS service. In the case of Sophos, decryption requires AV to be enabled.
Hi,
My choice is sophos. In the firewalling both are great but if you a complete solution that takes endpoint in to account please go for SOPHOS. Because sophos has a great endpoint solution with protection against ransomware data lost prevention. With Sophos your endpoint will communicate with the UTM address internal issues. VPN is free (SSL and IPSEC).
Hi,
My choice is sophos. In the firewalling both are great but if you a complete solution that takes endpoint in to account please go for SOPHOS. Because sophos has a great endpoint solution with protection against ransomware data lost prevention. With Sophos your endpoint will communicate with the UTM address internal issues. VPN is free (SSL and IPSEC).
Hi,
I would go with Sophos. It has consistent protection for the perimeter as for the endpoint and they are integrated. You can enforce firewall rules that can force the endpoint to have antivirus protection to go through the firewall.
The way Sophos manage rules are very nice. After all the polices are defined, they are applied in one firewall rule, and this could be applied to all traffic or limited by computer or group of computers.
Another nice feature, you don´t have to setup proxy server to control traffic from endpoints and there are SSL inspection, very important nowdays.
After all Sophos is very well positioned on Gartner.
I´ve used it, Sophos Firewall and endpoint Protection, and I’m very happy and peaceful with results. No surprises until now.
Unfortunately we don’t do Sophos or Fortigate
Can I suggest we quote on the CheckPoint alternative?
Hi,
From my point of view any NGFW solution mentioned by the customer (with NGIPS and AMP features activated) will protect the customer's network.
My advice is to implement (additional):
- a host based protection solution against this kind of attacks;
- an internal penetration testing solution for periodically vulnerability check (such Qualys, Nessus, Skybox, etc.);
Hi,
My institution recently implemented Checkpoint firewalls in our enterprise datacenter as well as at our edge. Implementation went relatively smooth and we are pretty happy. While I recognize Sophos as a very capable Web Security firm with well respected anti-malware capabilities, they are relatively untested in the NGFW space. I would recommend looking at the smaller Checkpoint solutions as their management interface is excellent and easy to understand. We have evaluated Fortigate and found their management interface to be a bit cumbersome, but their price point in the enterprise space is definitely attractive.
Feature wise Fortigate is good but if you are looking for good logging and reporting experience than Sophos is recommended.
Hi
For this scenario a Sophos XG 135 and also the XG 210 are too small (and I think also the Fortigates)
Accoording to the Sophos Sizing Guide you will need for at least 100 Users the XG 310, if you are using
the Sophos extended features such as ATP (Advanced Threat Protection), E-Mail Protection and Sandstorm.
The Sophos Firewall is cheaper and it has the better (more user friendly) Web-Interface as well as more
features (like Sandstorm Protection, Remote Ethernet Devices (RED) for easy branch integration and so on ..)
Hi,
My suggestion is Sophos, It can better protect you from Ransomware, Sophos has Firewall & End Point solution, through synchronized security, It can detect and isolate compromised system automatically, Moreover you can protect your sub office through Sophos RED box. Simple Dashboard system, which is very user friendly. Reporting line is much better than any other firewall
Hello,
I would recommend the Sophos solution, key benefits I would say would be
Sophos EndPoint integrates very well with Sophos XG, currently heart beat helps with quarantining devices going between zones (LAN to WAN, LAN to DMZ etc). The next version will actually help improve application reporting. I also don't believe Fortigate endpoint provides very detailed management and I'm unsure if they provide the cryptoguard protection at the endpoint.
Sophos security features, in particular email protection, web server protection and Sandstorm are fully functional productions on the device. I find Fortigate will have those functions but they are limited, encouraging you to upgrade to a dedicated appliance for that functionality.
For the ransomware (cryptoguard protection), I would strongly recommend you consider Sophos EndPoint (ideally Advanced edition as this will help with device control) + Intercept X for desktops/laptops and Sophos EndPoint Advanced for Server Protection, on the firewall front I would purchase the Sandstorm add on on the XG and ensure its been enabled for Web protection and email security.
Depending on your network setup, you could consider using Sophos RED devices at your branch offices, this at least could help with price/budget as you only need to license the head office device for all the security features. This is assuming you have the bandwidth to send both network and internet traffic.
Hope that helps
Just reading the email............"cheap"? What is the definition of
cheap?
So price fixes all the problems? With that in mind.......
Fortigate is a good product. Sophos is an end point solution and I would
go for Symantec Endopoint Security.
Two different things, the combination of Fortigate as the perimeter
defence (entry of the WAN link) and then Fortigate client on the PC and
server is a good combination.
By default, Fortigate has 10 licences included in their appliances.
A disaster is not cheap, and cheap is not the answer, the answer is what
really works !
Hello,
I have already using SOPHOS XG230 Firewall since 2 years.
For best security Solutions you have to get Sophos XG 230 with license full guard plus it contains ( network protection, web protection, mail and server protection,
Also regarding the end user. Protection you can get also Sophos central end point advanced + Sophos intercept x) it will help you more control over users especially with unique feature (synchronized security) between Sophos XG and the end point,
Also with intercept x you have protection against ransomware and zero day vulnerable
Name: Khurram Shahzad
Job Function: Sr. System Administrator
Industry: Manufacturing
Experience: 10 Years
My recommendation is below
For best security Solutions you have to get sophos XG 210 with license full gaurd plus it contains ( network protection, web protection, mail and server protection, sand box protection and enhanced support 24/7 )
Also regarding the end user. Protection you can get also sophos central end point advanced + sophos intercept x) it will help you more control over users especially with unique feature (synchronized security) between sophos XG and the end point,
Also with intercept x you have protection against ronsomware and zero day vulnerable
Hi, from the firewall perspective both are very suiteable for your environment. From the endpoint perspective, Sophos is the solution known as an endpoint expert. They are pretty innovative in the endpoint section. Fortunes is a follower in endpoint security. Additional the acquisition of invincea by Sophos will enhance their strength to fight ransomeware. Sophos platform story is pretty good, communication between firewall and endpoint and the GUI is kept really simple to be managed by one or two admins. I would recommend Sophos XG with InterceptX on the Endpoint.
Regards
Manuel
For me, I suggest Sophos ,as a UTM solution .accoording to your needs you Listed in your e-mail , and using engineering thinking . Sophos is the best Suitable UTM solution for your organization needs. I tested Sophos in real work before for more than one year and i found it is a perfect UTM solution for external threats , but for internal threats fighting I sugest you have to use Kasparisky end point .
For me, I suggest Sophos ,as a UTM solution .accoording to your needs you Listed in your e-mail , and using engineering thinking . Sophos is the best Suitable UTM solution for your organization needs. I tested Sophos in real work before for more than one year and i found it is a perfect UTM solution for external threats , but for internal threats fighting I sugest you have to use Kasparisky end point .
In tthis case I suggest products of WatchGuard Technologies - Firebox M370 plus TDR Service. See "Unified Threat Management Comparative Throughput Performance" by Miercom (www.miercom.com)
You should also look at Intercept X license along with licenses of Sophos Antivirus, as this will protect you from encryption based ransomware.
For other Zero day attacks look at adding APT license to the Sophos UTM.
Sophos will also provide in built analyser whereas you will have to buy a separate box call forti analyser in case of Fortinet to get detailed reports/logs.
Fortigate FG 100E
hi MY SUGGESTION IS GO WITH FORTIGTE FIREWALL, LICENSE WITH WITH BUNDLE AND AS PER THE USERS 100E IS MORTHAN ENOUGH , IT SUPPORTS 120 CONSURRENT USERS IN RELIABLE, GIVES BETTER SECURITY AND FASTEST TRAFFIC FLOW
Any UTMs can take care of perimeter security and traffic flowing between the LAN and Internet. and hence can potentially take care of threat from email/internet traffic. You will still need some kind of endpoint security solution on the end user devices to take care of threats from pen drives and external HDD. Sohpos has an endpoint solution as an additional offering and could integrate better with the UTM and if you need a single console then sophos could be a better choice.
Hello,
for what you described Sophos with Full Guard+ Subscription is your solution. It contains cloud sandboxing for better protection against ransomware at acceptable cost.
Otherwise both devices should have enough protection and performance for you size of organization.
Can you specify how you expect those firewalls to help dealing with external hdd/pen drives?
Regads!
The case is every time the same: The termnation to the Internet needs a real whitelist and a deep package control, all other is nonsense.
To protect against ransonware effectly, you need other solutions. A normal Firewall is good but not secure at all. Remember Wannacry crashed NHS though they used SOPHOS.
i believe the cheaper option if the if the equipment does what you want
XG 210 is higher than the XG 135 depend on the size of your network you can take the system
you can use this ling for sizing :
www.virtualsecurity.nl
fortigate same thing
after my experience 12 years in both , both are good but Sophos is more user friendly and you can for example test policy before creating it live
Maroun Abboud
mabboud@btclebanon.com
From your message I understand your requirement as "protect external and internal threats including RANSOMWARE which may come thru E-Mail, Internet , Pen Drive, External Hard Disk.", I would recommend Sophos cloud based next generation protection. As per Gartner Magic Quadrant (MQ) for Endpoint Protection Platforms (EPP) Report, Sophos is a leader. Sophos intercept X is an advanced protection against the ransomware.
solutionsreview.com
Below URLs will provide the required technical information on the protection offered;
www.sophos.com
www.sophos.com
www.sophos.com
www.sophos.com
www.infinigate.se
media.zones.com
Reference : Sophos – Technical demonstrations
www.youtube.com
www.youtube.com
www.youtube.com
www.youtube.com
www.youtube.com
Thanks
Best Regards
Syed F Albeez
Hii,
For medium i think sophos is a wildcard. I think sophos is UTM plus, for ransomware. But please consider that sophos will charge per user for VPN, for fortigate is free i guess.
So the final result i choose sophos XG series
My recommendation is below
For best security Solutions you have to get sophos XG 210 with license full gaurd plus it contains ( network protection, web protection, mail and server protection, sand box protection and enhanced support 24/7 )
Also regarding the end user. Protection you can get also sophos central end point advanced + sophos intercept x) it will help you more control over users especially with unique feature (synchronized security) between sophos XG and the end point,
Also with intercept x you have protection against ronsomware and zero day vulnerable
Hi,
As per my experience, I’ll opt for Sophos over Fortigate.
Hi,
Kindly go for Fortinet 100. And for ransomware you can use Symantec Endpoint Protection or Sophos X. In SEPM you can use templates for protecting from ransomware.
Have you ever considered using a cloud based security solution. I would recommend that you discuss your options with Zscaler first and ask for Matt Pearcy who is the VP of sales for EMEA. He knows me and would be very happy for me to introduce you to him. Let me know what you want to do.