Hello peers,
I am a Manager of Information Technology at a large manufacturing company.
We have multiple sites and each one has more than 150 users. We need to secure the network from attacks, viruses, etc., especially for all users who make outgoing traffic to the cloud the whole day. Which solution would be best for this: Fortinet FortiGate or Sophos XG?
Thank you for your help.
Choosing between Fortinet FortiGate and Sophos XG depends on specific needs and context. FortiGate is often preferred for its robust security features, extensive integration capabilities, and high-performance hardware. Sophos XG stands out for its user-friendly interface, strong endpoint integration, and advanced threat protection.
If I had to choose, I would lean towards FortiGate for its comprehensive security suite and scalability, making it ideal for larger, complex networks. However, for organizations prioritizing ease of use and seamless integration with endpoint protection, Sophos XG might be more suitable.
I evaluated both for a multi-site environment, and eventually chose FortiGate, based on the centralized management and reputation of Fortinet. Eventually we plan to move to FortiSwitches and maybe even Fortinet access points, so it makes sense to use Fortimanager to manage all the Fortinet devices. Sophos also have a good solution, but reading reviews of the XG I got the impression they were not as reliable or had as many features as Fortigate.
Go with Sophos XG or if you have tight budget and technical expertise then can move with pFsense.
Dear Sharif.
For 150 users any firewall will work perfectly. You can choose as per your convenience, availability, price, and better implementation partner in your region. Keep a bigger box at the central location and configure SD-WAN. SOPHOS has by default SD WAN. Make sure you have secure access to the cloud and all endpoints should have endpoint protection else only firewall will not help.
Most of the cloud service providers work on any-any rule because their responsibility is network uptime and availability. Security of your setup is your responsibility.
Manageability is better in Fortinet however features are better in SOPHOS. License bundle & ATP functions are are good in SOPHOS. Support response is good in SOPHOS but you will find less tickets in FORTINET once it is implemented as per your setup.
Overall both are good for your setup. You can choose as per convenience.
Hope this will help.. Greetings .. Ravi
In my opinion, the first point of strength is the support, and FortiGate is doing a great job in terms of support. It has numerous reference guides for configuration. The other advantage is ease of management in both the UI and CLI levels. You can use FortiGate modules to protect against web and virus attacks.
Hello Sharif,
I prefer FortiGate SDWAN Devices (FortiGate) even though we also deliver Sophos to our clients.
The decentralized FortiGate devices work as firewalls with an excellent security ecosystem. FortiGate and most other items work as Hardware units or on virtual machines.
As a Telco company we have a lot of companies working in different industries with various requirements. We can support them all with FortiGate.
Our customers prefer the security features, the stable ecosystem for life cycle management, for device/user/policy management, thread detection & prevention, intrusion prevention, sandboxing, ... the low operation effort to build a stable company network that supports the need of any customer size.
In our business, we also like that the architecture of a company network can be easily changed if the customer requirements change. From single-line sites to Data Centers with high availability and Cloud integration FortiGate can be used in any design.
The different security features that can be added by the license are powerful and integrated into the management dashboard. Updates of protection mechanisms against new threads happen automatically as soon as a new protection mechanism is available when new threads occur. The security team at Fortinet is excellent.
Greetings
Andre
Hi, XG is EOL the new series is XGS, both are excellent equipment but I prefer Fortigate, why ??? DHCP slection, leader SD-WAN, many IPSEC dynamics is possible on SOPHOS but is limit the are conflicts with many IP's dynamics you need to use DDNS, SSL tunnel for remote clients, VRF, advanced routing with OSPF and BGP ("as path"). Greetings