We performed a comparison between Palo Alto Networks NG Firewalls and Sophos XGS based on real PeerSpot user reviews.
Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Easy to implement, and it is also reliable."
"It is a safe product."
"The SD-WAN function is very developed. It has SD-WAN functionality with security features in one device. We can manage from one single console SD-WAN and the security policy."
"The most valuable features of Fortinet FortiGate are the APIs. They are the most widely known."
"The next-generation firewall is great."
"The solution is stable."
"We are a visual effects company, and there have been a number of high profile security issues in our industry. This has brought us to a higher standard of security, which our clients are very keen on these days."
"The most valuable feature is the web filter."
"Provision of quality training material and the reporting is very good."
"The most valuable features are web filtering and application filtering."
"Palo Alto Networks NG Firewalls enable efficient application search, viewing, and configuration access across various services for different user groups within our company."
"One of the most valuable features of Palo Alto Networks NG Firewalls is application symmetries."
"It's quite nice. It's very user-friendly, powerful, and there are barely any bugs."
"The application IDs, application controls, URL filtering, visibility, monitoring, and reporting are the most valuable features."
"The WildFire reporting and Cortex XDR platform have huge infrastructures in the cloud that secures the network against threats. So, we have the potential on the system, specifically for users, where we take care of this since the user is the most dangerous. We get reports back from WildFire on a minute-by-minute basis, rather than a daily or weekly update like I used to with different AV vendors. These features can detect viruses and malware more quickly, which is super important."
"The trackability is most valuable. When a port is open for a protocol, such as port 443 for HTTPS, it can look inside the traffic and identify or verify the applications that are using the port, which was previously not possible with traditional firewalls."
"Sophos XGS's most valuable feature is content filtering."
"Sophos XGS' most valuable features are protection and intrusion prevention detection."
"The solution is stable."
"The policies are the greatest feature. They allow us to configure granular control over our network traffic."
"It is scalable."
"The solution is cost-effective and easy to manage."
"The most valuable features in Sophos XGS are identity and VPN. It is a very good solution that is able to detect and prevent a lot of malicious activity."
"The solution offers more antimalware and antivirus feeds than others."
"They are doing good, but they can improve the distributor assignment. The availability of the product and the timeline of delivery are the main things. The distribution should be swift, and the distributor should not reach out to end customers directly. They should work as a distributor. There should also be one more local distributor. Currently, there is only one distributor in Pakistan, and the rest of them are in UAE. It is difficult to work with only one distributor. Sometimes, you don't get along with the same distributor, and that's why they should have one more distributor. Their licensing should also be improved. The activation or renewal of the product should be done from the date of renewal, not from the date on which the license expired."
"The customization could be improved. Cisco, for example, is much better at this. They need to work to be at least as good as they are."
"When we cluster the two Fortinet FortiGate boxes together we have some issues."
"At first glance, the interface for the device is very confusing."
"It would be good if they had fewer updates."
"The solution could be more user friendly."
"It should have a better pricing plan. It is too expensive. It should also have a more granular view of the attack. I don't have FortiAnalyzer, and it is difficult for me to have a complete view when there is an attack on my server."
"It's my understanding that more of the current generation features could be brought in. There could be more integration with EDRs, for example."
"The level of control and granularity in terms of rule customization could be enhanced. However, compared to our previous solution, Palo Alto provides much better drill-down capabilities."
"I think automation and machine learning can be improved to make bulk configurations simpler, easier, and faster"
"The stability, scalability for enterprise-level organizations, and technical documentation have room for improvement."
"In the cloud, the HA could be a lot better. Its price could also be better. It is very expensive."
"The analytics could be improved."
"The cloud could be improved. I would like to have more visibility of the vulnerabilities of the network as well."
"Palo Alto needs to provide more support during the design phase and with proposals. They need to be more proactive, try to anticipate issues, and then help us to implement the transformation quickly."
"There is a web-based GUI to do management, but you need to know how the machine or firewall operates. There are hundreds of different menus and options. I have used other firewalls before. Just implementing or designing a policy with Palo Alto, if you want a certain port to be open to different IP addresses, then that could take 20 to 25 clicks. That is just testing it out. It is quite complex to do. Whereas, with other places, you tell it, "Okay, I want this specific port open and this IP address to have access to it." That was it. However, not with Palo Alto, which is definitely more complex."
"I would like to see a history of the monthly bandwidth utilization, the bandwidth consumption for a period of time."
"The reporting could be better."
"What could be improved in Sophos XGS is its connectivity with Azure AD. It's best if it could work directly without using any servers locally, or in the data center, and this functionality should be made available in this product."
"There are some bugs relating to the product that allow VPN users to bypass the firewall."
"Sophos XGS could improve by having a Network Access Control(NAC). This feature is a basic function in other firewalls and should be added, such as Palo Alto."
"There can be lag time when updating an operating policy."
"The solution could improve inspection processes and troubleshooting for VPNs because this area is very weak."
"Sophos XGS could improve the price."
More Palo Alto Networks NG Firewalls Pricing and Cost Advice →
Palo Alto Networks NG Firewalls is ranked 6th in Firewalls with 163 reviews while Sophos XGS is ranked 17th in Firewalls with 60 reviews. Palo Alto Networks NG Firewalls is rated 8.6, while Sophos XGS is rated 7.8. The top reviewer of Palo Alto Networks NG Firewalls writes "We get reports back from WildFire on a minute-by-minute basis". On the other hand, the top reviewer of Sophos XGS writes "Easy to use, simple to learn, and offers great reporting". Palo Alto Networks NG Firewalls is most compared with Check Point NGFW, Azure Firewall, Meraki MX, Sophos XG and Sangfor NGAF, whereas Sophos XGS is most compared with Sophos XG, OPNsense, Netgate pfSense, WatchGuard Firebox and Meraki MX. See our Palo Alto Networks NG Firewalls vs. Sophos XGS report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
