We performed a comparison between Check Point NGFW and Sophos XG based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Check Point NGFW is praised for its extensive security features, centralized management, and virtualization capabilities. It is highly regarded in terms of comprehensive protection and adaptability. Sophos XG is known for its usability, user-friendly interface, and straightforward installation process. Both options provide robust threat defense and the ability to expand as needed.
Check Point NGFW, needs to improve various aspects, including integration with other infrastructures, hardware upgrades, cost and pricing, stability and security, UI, complexity issues, redundancy options, and memory management. Sophos XG needs improvements in antivirus features, graphical interface and performance, bandwidth management and VPN capabilities, reporting and user management, support and response time, and specific issues and feature requests.
Service and Support: Some customers have found Check Point NGFW's customer service to be helpful and responsive, while others believe there is room for improvement. Sophos XG's support has received both positive and negative feedback. Some customers have found it to be good and helpful, while others have been dissatisfied with unhelpful and unresponsive support.
Ease of Deployment: The initial setup for Check Point NGFW can range in difficulty, with some users finding it simple while others find it more challenging. Knowledge and experience may be required for certain configurations and migrations. The initial setup for Sophos XG is generally seen as uncomplicated and straightforward, although some users may struggle if they are unfamiliar with the product.
Pricing: Check Point NGFW is known for its high setup cost, particularly when compared to other products. Users find it challenging to add new licensing to existing devices, especially for larger enterprise-level devices. Sophos XG provides flexible pricing options based on the required functionality, offering reasonable and competitive pricing, particularly for educational institutions.
ROI: Check Point NGFW stands out for its cost savings, simplicity, and effective security enforcement. Sophos XG offers a high ROI by reducing support expenses and enhancing security practices.
Comparison Results: Sophos XG is the favored product when compared to Check Point NGFW. Users find the initial setup of Sophos XG to be simple. They appreciate the functionality and user interface of Sophos XG, as well as its extensive protection against threats. The pricing for Sophos XG is considered fair and the technical support is satisfactory.
"Fortinet FortiGate is stable. It's used across all the countries, this is the way most multinationals run their system."
"It works very well. It has a lot of different functionalities. Its cost is also fine for our customers."
"The most valuable features of Fortinet FortiGate are the different types of profiling. It has been the most effective for me. The WAF and the antivirus profile are the most effective in network protection."
"The most valuable features of Fortinet FortiGate are the APIs. They are the most widely known."
"The pricing is great and very reasonable."
"FortiGate improved our security. It's one of the best hardware firewalls."
"The signature database and zero-day detection are Fortinet FortiGate's most valuable features."
"I'm pretty happy with its reliability. It is also very scalable."
"The solution offers very good central management, which saves time and is hassle-free."
"The Check Point firewall features for Next Generation Firewalls are excellent."
"Check Point is more expensive but easier to manage, and their presales and after-sale support are way better than Fortinet's."
"We have not had any issues with the firewall."
"The Smart Dashboard allows for rule creation and administration and management and is user-friendly."
"Check Point NGFW has helped the company in the prevention of cyber attacks that could affect operations and slow down production."
"I haven't had any data leaks or vulnerability situations."
"It is always on the top of the list of best firewall solutions."
"One of the standout features of Sophos XG is its proprietary VPN technology known as RID (Remote Internet Device). This unique technology provides efficient branch connectivity without the need to invest in additional firewalls for each branch. By utilizing an affordable device called RED, users can effectively control and establish connections in a cost-effective manner. Additionally, the solution is feature-rich."
"The solution offers a good firewall endpoint and email encryption."
"I like the tunneling part which we are using for the VOIP. We have various other sites where we connect via tunneling. The tunneling part is very fast and easy to implement."
"Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping."
"The stability of Sophos XG is good, it has good performance."
"The security of the solution, thanks to the built-in unified threat management, is one of its most valuable features. Plus, one single pane of glass is all you need to manage the whole solution, and web management can be done from anywhere."
"Everything is consolidated into a single box, offering comprehensive functionality, including Wi-Fi access and other features."
"The security of Sophos XG is very good."
"Tunnel flapping was one of the major things I had seen wherein your internet link remains but your VPN tunnel is down. However, since I got a fix from the TAC team, I have not noticed it, but the customer complained a few times that they couldn't access the internet because of this problem."
"The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware."
"Currently, without the additional reporting module, we only have access to basic reporting."
"Their software support needs improvement. I would prefer to have better support for bug fixes. Sometimes, we open a ticket, and it is very difficult to get a solution. Specifically, we are not at all happy with their support for load balancing."
"The non-error conserve mode has room for improvement."
"It is very expensive, and their support is not very good. I hope that their technical support will be better in the future."
"Its reporting can be improved. Sometimes, I don't get proper reports."
"Pricing for it is a bit high. It could be cheaper."
"I would like to see Check Point add more cloud management features and better integration with LAN software-defined networking."
"Initially, we faced a few challenges with firmware. Later this was addressed with jumbo hotfixes."
"It's expensive, but its price is reasonable looking at its functionality and power"
"To enhance the user experience, Check Point should consider adopting an incremental upgrade approach, similar to competitors like Palo Alto or Fortinet, as it would help minimize downtime and streamline the upgrade process, making it more efficient and user-friendly."
"The URL objects take significant time in processing compared to other products like Cisco FTD; it would be better if they could improve it."
"The Check Point TAC support has, in recent years, deteriorated."
"Check Point could improve the time for delivering requested features from customers."
"At the moment it is not easy to configure some VPN S2S in Check Point."
"Sophos XG should improve on the GDPR features involving data protection and encryption. Security regarding data protection is important."
"It would be better if they made their own hardware like Palo Alto and Fortinet. They use their own ASICs and claim it is more secure."
"The support from the vendor needs to be improved."
"The security of Sophos XG could be improved."
"Lacks improved throughput performance in a box."
"Sophos XG could improve the connectivity with Microsoft 365 or Azure Active Directory(AD). It doesn't work directly as other solutions do, such as Fortinet FortiGate. The client needs a separate AD server which is a problem."
"Sophos XG could improve by being more stable and for it to be able to be used for large enterprises."
"We are facing some problems on this firmware version, version 18, that require improvement. We want to improve the email security because it doesn't give proper security with the data protection. Also, our clients are facing some problems where most of the sites which they're accessing are getting blocked. I want to improve those sites, that email security, and the data protection on the Firmware version 18."
Fortinet FortiGate is an innovative line of firewalls that aim to protect organizations from all types of web-based network threats. They come in a wide variety of product types. Fortinet FortiGate’s solutions are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.
Fortinet FortiGate provides users with next-generation firewall solutions that provide proven protection with unmatched performance across the network, from internal segments to data centers to cloud environments. You can protect every part of your network without exception. Additionally, your protections can be managed from a single central location. This ensures that the task of protecting your network is infinitely easier to accomplish.
Benefits of Fortinet FortiGate
Some of the benefits of using Fortinet FortiGate include:
Reviews from Real Users
Fortinet FortiGate’s firewall solutions are cutting edge. They stand out from competitors for a number of reasons. Two major ones are the robustness and power of their firewalls. Fortinet FortiGate’s firewall provides users with many valuable features that allow them to maximize what they can do with the solution. These firewalls enable users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software.
PeerSpot user Eric S., a Solutions Engineer and Consultant at a tech-services company, notes the robustness of this solution when he writes, "One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface.”
PeerSpot user Jim M., a network admin at Penobscot Valley Hospital, notes the power of Fortinet FortiGate’s security software when he writes, "It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall.”
Check Point NGFW is a next generation firewall that enables safe usage of internet applications by blocking malicious applications and unblocking safe applications. Check Point NGFW, which uses deep packet inspection to identify and control applications, has features such as application and user control and integrated intrusion prevention (IPS), as well as more advanced malware prevention capabilities like sandboxing.
Check Point NGFW includes 23 firewall models optimized for running all threat prevention technologies simultaneously, including full SSL traffic inspection, without compromising on security or performance.
Benefits of Check Point's Next Generation Firewall
Check Point NGFW is suitable for organizations of all sizes, from small businesses to larger enterprises.
Reviews from Real Users
Check Point NGFW stands out among its competitors for a number of reasons. Two major ones are its intrusion prevention feature as well as its centralized management, which makes it very easy to deploy firewall policies to many firewalls with one click.
Shivani J., a network security administrator, writes, "Check Point has a lot of features. The ones I love are the antivirus, intrusion prevention, and data loss prevention."
G., a network administrator at Secretaría de Finanzas de Aguascalientes, writes, “Within the organization, the inspection of packages has given us great help in detecting traffic that may be a threat to the institution. The configuration of policies has allowed us to maintain control of access and users for each institution that is incorporated into our headquarters.”
Arun J., a senior network engineer, notes, “The nicest feature is the centralized management of multiple firewalls. With the centralized management, we can easily use and operate multiple firewalls as well as create a diagram of them.”
Sophos XG Firewall is a complete firewall solution that provides all the real-time security and insights you need to protect your network from ransomware and advanced threats. Sophos XG Firewall provides visibility into suspicious users, unknown and unwanted apps, encrypted traffic, and other threats. With its advanced artificial intelligence capabilities, Sophos XG Firewall immediately identifies potential risks and intrusions on web servers and networks.
Sophos XG Firewall Features
Sophos XG Firewall offers a wide range of security features, including:
Reviews from Real Users
Sophos XG Firewall stands out among its competitors, among other reasons, for its intrusion detection capabilities, its user-friendly management platform, and in general, for being a complete and robust firewall solution.
Niranjan P., a network & system support engineer, writes, “Sophos is a comprehensive solution which allows me to configure all the attendant products, such as Sophos's firewall, endpoint, and encryption features. A nice feature of Sophos is that it offers in sync and heartbeat security. When my clients have a perimeter involving Sophos firewall and endpoints with Sophos Endpoint, they can communicate with each other.”
Antonio D., sales manager at INFOSEC, notes, “The product has a console that is based in the cloud for all their products. In this console, they have email security, firewall security, endpoint security, et cetera. All of the products on offer in the console are very useful for us. The solution is stable. The solution works well for enterprises and large-scale organizations.”
Antony M., ICT/HMIS supervisor at a healthcare company, writes, “The VPN feature is the most valuable. It has come in handy during this period when people are working from home. The filtering feature is also valuable because you can easily filter the sites that you don't want to visit. You can also set timely surfing quotas”
Check Point NGFW is ranked 5th in Firewalls with 104 reviews while Sophos XG is ranked 7th in Firewalls with 40 reviews. Check Point NGFW is rated 8.8, while Sophos XG is rated 8.2. The top reviewer of Check Point NGFW writes "Robust control and security that enables a comprehensive application management". On the other hand, the top reviewer of Sophos XG writes "Secure, duel switch capabilities, and good support". Check Point NGFW is most compared with Palo Alto Networks NG Firewalls, Netgate pfSense, Azure Firewall, Cisco Secure Firewall and OPNsense, whereas Sophos XG is most compared with Netgate pfSense, OPNsense, Sophos XGS, Palo Alto Networks NG Firewalls and Untangle NG Firewall. See our Check Point NGFW vs. Sophos XG report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.