• Home
  • Check Point NGFW vs. Sophos XG

Check Point NGFW vs Sophos XG comparison

Cancel
You must select at least 2 products to compare!
Fortinet Logo

Fortinet FortiGate

Read 110 Fortinet FortiGate reviews
123,577 views|91,078 comparisons
Check Point Logo

Check Point NGFW

Read 104 Check Point NGFW reviews
31,114 views|19,130 comparisons
Sophos Logo

Sophos XG

Read 40 Sophos XG reviews
59,208 views|41,811 comparisons
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Check Point NGFW vs. Sophos XG
November 2023
Executive Summary
Updated on Jul 9, 2023

We performed a comparison between Check Point NGFW and Sophos XG based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

Features: Check Point NGFW is praised for its extensive security features, centralized management, and virtualization capabilities. It is highly regarded in terms of comprehensive protection and adaptability. Sophos XG is known for its usability, user-friendly interface, and straightforward installation process. Both options provide robust threat defense and the ability to expand as needed.

Check Point NGFW, needs to improve various aspects, including integration with other infrastructures, hardware upgrades, cost and pricing, stability and security, UI, complexity issues, redundancy options, and memory management. Sophos XG needs improvements in antivirus features, graphical interface and performance, bandwidth management and VPN capabilities, reporting and user management, support and response time, and specific issues and feature requests.

Service and Support: Some customers have found Check Point NGFW's customer service to be helpful and responsive, while others believe there is room for improvement. Sophos XG's support has received both positive and negative feedback. Some customers have found it to be good and helpful, while others have been dissatisfied with unhelpful and unresponsive support.

Ease of Deployment: The initial setup for Check Point NGFW can range in difficulty, with some users finding it simple while others find it more challenging. Knowledge and experience may be required for certain configurations and migrations. The initial setup for Sophos XG is generally seen as uncomplicated and straightforward, although some users may struggle if they are unfamiliar with the product.

Pricing: Check Point NGFW is known for its high setup cost, particularly when compared to other products. Users find it challenging to add new licensing to existing devices, especially for larger enterprise-level devices. Sophos XG provides flexible pricing options based on the required functionality, offering reasonable and competitive pricing, particularly for educational institutions.

ROI: Check Point NGFW stands out for its cost savings, simplicity, and effective security enforcement. Sophos XG offers a high ROI by reducing support expenses and enhancing security practices.

Comparison Results: Sophos XG is the favored product when compared to Check Point NGFW. Users find the initial setup of Sophos XG to be simple. They appreciate the functionality and user interface of Sophos XG, as well as its extensive protection against threats. The pricing for Sophos XG is considered fair and the technical support is satisfactory.

To learn more, read our detailed Check Point NGFW vs. Sophos XG Report (Updated: November 2023).
Download the complete report
745,341 professionals have used our research since 2012.
Featured Review
Costa Mitsios
Researched Check Point NGFW but chose Fortinet FortiGate: Useful URL filtering, scalable, and quick installation
Timur Kurbanbayev
Robust network security with advanced features, user-friendly management, and good scalability
Anonymous User
Is versatile and easy to install, and integrates well with other solutions
It has helped us because we have identified some of the loopholes in our assets that we did not know existed.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Fortinet FortiGate is stable. It's used across all the countries, this is the way most multinationals run their system.""It works very well. It has a lot of different functionalities. Its cost is also fine for our customers.""The most valuable features of Fortinet FortiGate are the different types of profiling. It has been the most effective for me. The WAF and the antivirus profile are the most effective in network protection.""The most valuable features of Fortinet FortiGate are the APIs. They are the most widely known.""The pricing is great and very reasonable.""FortiGate improved our security. It's one of the best hardware firewalls.""The signature database and zero-day detection are Fortinet FortiGate's most valuable features.""I'm pretty happy with its reliability. It is also very scalable."

More Fortinet FortiGate Pros →

"The solution offers very good central management, which saves time and is hassle-free.""The Check Point firewall features for Next Generation Firewalls are excellent.""Check Point is more expensive but easier to manage, and their presales and after-sale support are way better than Fortinet's.""We have not had any issues with the firewall.""The Smart Dashboard allows for rule creation and administration and management and is user-friendly.""Check Point NGFW has helped the company in the prevention of cyber attacks that could affect operations and slow down production.""I haven't had any data leaks or vulnerability situations.""It is always on the top of the list of best firewall solutions."

More Check Point NGFW Pros →

"One of the standout features of Sophos XG is its proprietary VPN technology known as RID (Remote Internet Device). This unique technology provides efficient branch connectivity without the need to invest in additional firewalls for each branch. By utilizing an affordable device called RED, users can effectively control and establish connections in a cost-effective manner. Additionally, the solution is feature-rich.""The solution offers a good firewall endpoint and email encryption.""I like the tunneling part which we are using for the VOIP. We have various other sites where we connect via tunneling. The tunneling part is very fast and easy to implement.""Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping.""The stability of Sophos XG is good, it has good performance.""The security of the solution, thanks to the built-in unified threat management, is one of its most valuable features. Plus, one single pane of glass is all you need to manage the whole solution, and web management can be done from anywhere.""Everything is consolidated into a single box, offering comprehensive functionality, including Wi-Fi access and other features.""The security of Sophos XG is very good."

More Sophos XG Pros →

Cons
"Tunnel flapping was one of the major things I had seen wherein your internet link remains but your VPN tunnel is down. However, since I got a fix from the TAC team, I have not noticed it, but the customer complained a few times that they couldn't access the internet because of this problem.""The inability to scale the FortiAnalyzer to match our growth necessitates the purchase of new hardware.""Currently, without the additional reporting module, we only have access to basic reporting.""Their software support needs improvement. I would prefer to have better support for bug fixes. Sometimes, we open a ticket, and it is very difficult to get a solution. Specifically, we are not at all happy with their support for load balancing.""The non-error conserve mode has room for improvement.""It is very expensive, and their support is not very good. I hope that their technical support will be better in the future.""Its reporting can be improved. Sometimes, I don't get proper reports.""Pricing for it is a bit high. It could be cheaper."

More Fortinet FortiGate Cons →

"I would like to see Check Point add more cloud management features and better integration with LAN software-defined networking.""Initially, we faced a few challenges with firmware. Later this was addressed with jumbo hotfixes.""It's expensive, but its price is reasonable looking at its functionality and power""To enhance the user experience, Check Point should consider adopting an incremental upgrade approach, similar to competitors like Palo Alto or Fortinet, as it would help minimize downtime and streamline the upgrade process, making it more efficient and user-friendly.""The URL objects take significant time in processing compared to other products like Cisco FTD; it would be better if they could improve it.""The Check Point TAC support has, in recent years, deteriorated.""Check Point could improve the time for delivering requested features from customers.""At the moment it is not easy to configure some VPN S2S in Check Point."

More Check Point NGFW Cons →

"Sophos XG should improve on the GDPR features involving data protection and encryption. Security regarding data protection is important.""It would be better if they made their own hardware like Palo Alto and Fortinet. They use their own ASICs and claim it is more secure.""The support from the vendor needs to be improved.""The security of Sophos XG could be improved.""Lacks improved throughput performance in a box.""Sophos XG could improve the connectivity with Microsoft 365 or Azure Active Directory(AD). It doesn't work directly as other solutions do, such as Fortinet FortiGate. The client needs a separate AD server which is a problem.""Sophos XG could improve by being more stable and for it to be able to be used for large enterprises.""We are facing some problems on this firmware version, version 18, that require improvement. We want to improve the email security because it doesn't give proper security with the data protection. Also, our clients are facing some problems where most of the sites which they're accessing are getting blocked. I want to improve those sites, that email security, and the data protection on the Firmware version 18."

More Sophos XG Cons →

Pricing and Cost Advice
  • "I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."
  • "It is more expensive than Sophos. Fortinet is overall more expensive than Sophos. The small range of Fortinet, such as 60F and 80F, is more expensive than the small range of Sophos. Sophos is cheaper. In addition, if you jump from 80F Series to 100F Series, the price doubles."
  • "The license is yearly. We pay for the top end. It's called 360."
  • "Here in Brazil, we're going through difficult economic times and the tax on the dollar is high. All the solutions from minor competitors are growing in the market. The prices have come more competitive."
  • "Licensing for Fortinet FortiGate is on a yearly basis. Pricing for it is a bit high. It could be cheaper."
  • "The licensing scheme of Fortinet is better than Cisco. It is more logical."
  • "The solution requires a license annually, it is not a user license, you can have as many users as your want. I must renew the license regularly per device."
  • "It was probably about $2,500 per firewall. It was all included. It included support, services, threat management software, and 24/7 FortiCare on it. Cisco products are more expensive."

    • More Fortinet FortiGate Pricing and Cost Advice →

  • "I don't see that Check Point is very high, but it is geared more towards enterprises."
  • "Its cost is a little higher than other products."
  • "Check Point NGFW can be expensive compared to other competitors, but the price matches the functionality and efficiency of the solution."
  • "Before you buy, check which features you need, and if possible, I recommend signing up for at least a three-year license."
  • "Check Point needs to lower its price drastically, and the licensing model is very complex."
  • "There are competitors that have more expensive solutions than Check Point NGFW, such as Palo Alto. There are times when Check Point NGFW can have good offerings with a three-year license. The presence of Palo Alto has been heavily invested in marketing."
  • "It's expensive."
  • "It may be considered relatively expensive, but the investment is justified when compared to other competitors."

    • More Check Point NGFW Pricing and Cost Advice →

  • "The Palo Alto solution is expensive and the FortiGate is less expensive than Palo Alto. The Sophos XG would be priced in the middle of the two."
  • "The price is less expensive compared to others."
  • "For every firewall, you will need to pay the license for the following year. If they don't pay for the license renewal, they basically won't get the support from Sophos."
  • "There is no need to get one edition, just the licensing, as we are talking about a common bundle which encompasses all the features."
  • "The licensing for Sophos XG is based on the number of users, so I get the module from the sizing of the customer."
  • "A Sophos XG license costs approximately $45,000"
  • "We pay licensing fees of approximately $2,000. We have a contract for three years."
  • "Sophos XG is a very good solution, and it's cheaper than most of the other vendors. It is really affordable."

    • More Sophos XG Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    See Recommendations
    745,341 professionals have used our research since 2012.
    Questions from the Community
    Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and usage at… more »
    Read all 3 answers   →
    What is the biggest difference between Sophos XG and FortiGate?
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Read all 13 answers   →
    What are the biggest technical differences between Sophos UTM and Fortine...
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Read all 11 answers   →
    How does Check Point NGFW compare with Fortinet Fortigate?
    Top Answer:I have experience on both from Disti and channel experience. Please find below my comments (nothing new as such)… more »
    Read all 5 answers   →
    Which would you recommend - Azure Firewall or Check Point NGFW?
    Top Answer:Azure Firewall is easy to use and provides excellent support. Valuable features include integration into the overall… more »
    Read all 2 answers   →
    What do you like most about Check Point NGFW?
    Top Answer:I rate the tool's stability a ten out of ten.
    Read all 159 answers   →
    Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
    Top Answer:Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat… more »
    Read all 2 answers   →
    What are the main differences in features between Sophos XG and FortiGate...
    Top Answer:Hi Arvind P ,  The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form… more »
    Read all 6 answers   →
    What Is The Biggest Difference Between Sophos UTM and Sophos XG?
    Top Answer:The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW… more »
    Read all 18 answers   →
    Comparisons
    Also Known As
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Check Point NG Firewall, Check Point Next Generation Firewall
    Learn More
    Fortinet
    Check Point
    Sophos
    Overview

    Fortinet FortiGate is an innovative line of firewalls that aim to protect organizations from all types of web-based network threats. They come in a wide variety of product types. Fortinet FortiGate’s solutions are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

    Fortinet FortiGate provides users with next-generation firewall solutions that provide proven protection with unmatched performance across the network, from internal segments to data centers to cloud environments. You can protect every part of your network without exception. Additionally, your protections can be managed from a single central location. This ensures that the task of protecting your network is infinitely easier to accomplish.

    Benefits of Fortinet FortiGate

    Some of the benefits of using Fortinet FortiGate include:

    • The ability to manage your firewalls from a centralized automated control console. Fortinet FortiGate’s FortiManager enables administrators to exercise control of their firewalls in a streamlined manner. Administrators have full visibility and control over their system from a single location. It utilizes automation that collects information in real time, which greatly simplifies and reduces the cost of running various types of workflows. Administrators can free up resources by automating the most basic tasks.
    • The ability to produce uniform, appropriate, and coordinated responses to threats across networks. Fortinet FortiGate’s FortiGuard feature generates system protections in near real time. This allows administrators to address threats to the system with custom-made solutions that can be uniformly enforced.
    • The ability to scale up your security to fit your changing security needs. Fortinet FortiGate’s design allows users to accelerate the transfer of data between users and escalate the number of users that are covered without compromising security of performance. This means that users can grow their networks and continue to collaborate without worrying about the system slowing down or coming under attack.

    Reviews from Real Users

    Fortinet FortiGate’s firewall solutions are cutting edge. They stand out from competitors for a number of reasons. Two major ones are the robustness and power of their firewalls. Fortinet FortiGate’s firewall provides users with many valuable features that allow them to maximize what they can do with the solution. These firewalls enable users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software.

    PeerSpot user Eric S., a Solutions Engineer and Consultant at a tech-services company, notes the robustness of this solution when he writes, "One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface.”

    PeerSpot user Jim M., a network admin at Penobscot Valley Hospital, notes the power of Fortinet FortiGate’s security software when he writes, "It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall.”

    Check Point NGFW is a next generation firewall that enables safe usage of internet applications by blocking malicious applications and unblocking safe applications. Check Point NGFW, which uses deep packet inspection to identify and control applications, has features such as application and user control and integrated intrusion prevention (IPS), as well as more advanced malware prevention capabilities like sandboxing.

    Check Point NGFW includes 23 firewall models optimized for running all threat prevention technologies simultaneously, including full SSL traffic inspection, without compromising on security or performance.

    Benefits of Check Point's Next Generation Firewall

    • Robust security: Check Point NGFW delivers the best possible threat prevention with SandBlast Zero Day protection. The SandBlast protection agent constantly inspects passing network traffic for exploits and vulnerabilities. Suspicious files are then emulated in a virtual sandbox in order to detect and report malicious behavior.

    • Security at hyperscale: On-demand hyperscale threat prevention performance provides cloud level expansion and resiliency on premises.

    • Unified management: Check Point's SmartConsole makes it easy to manage and configure network security environments and policies. With the SmartConsole, users can manage all the firewall gateways and access logs and install databases from one location. Unified management control across the network increases the efficiency of security operations and reduces IT costs.
    • Continuous logging: Check Point NGFW’s Threat Management feature detects vulnerabilities and logs them. Using the logged data, users can easily create and implement efficient security policies.

    • Remote access: The remote access VPN provides a seamless connection for remote users.

    Check Point NGFW is suitable for organizations of all sizes, from small businesses to larger enterprises.

    Reviews from Real Users

    Check Point NGFW stands out among its competitors for a number of reasons. Two major ones are its intrusion prevention feature as well as its centralized management, which makes it very easy to deploy firewall policies to many firewalls with one click.

    Shivani J., a network security administrator, writes, "Check Point has a lot of features. The ones I love are the antivirus, intrusion prevention, and data loss prevention."

    G., a network administrator at Secretaría de Finanzas de Aguascalientes, writes, “Within the organization, the inspection of packages has given us great help in detecting traffic that may be a threat to the institution. The configuration of policies has allowed us to maintain control of access and users for each institution that is incorporated into our headquarters.”

    Arun J., a senior network engineer, notes, “The nicest feature is the centralized management of multiple firewalls. With the centralized management, we can easily use and operate multiple firewalls as well as create a diagram of them.”

    Sophos XG Firewall is a complete firewall solution that provides all the real-time security and insights you need to protect your network from ransomware and advanced threats. Sophos XG Firewall provides visibility into suspicious users, unknown and unwanted apps, encrypted traffic, and other threats. With its advanced artificial intelligence capabilities, Sophos XG Firewall immediately identifies potential risks and intrusions on web servers and networks.

    Sophos XG Firewall Features

    Sophos XG Firewall offers a wide range of security features, including:

    • Application control: Prevent widespread infections with XG’s Security Heartbeat. XG Firewall automatically identifies the source of an infection on a network and automatically prevents it from accessing other network resources.

    • Synchronized user ID: Eliminate the need for client or server authentication agents by sharing user identification between the endpoint and the firewall through Security Heartbeat.

    • Centralized management: Easily manage all activities with Sophos Central. The XG cloud management platform allows users to easily set up, manage, and monitor XG firewalls along with other Sophos products. Some of Sophos Central’s features include alerting, backup management, one-click firmware updates, and rapid deployments of new firewalls.

    • Lateral movement protection: Automatically isolate compromised systems at every point in the network to stop attacks dead in their tracks.

    • Network protection: Protect networks from attacks and threats while providing secure network access.

    • Web protection: Gain clear visibility and control over all users’ web and application activity.

    • Web server protection: Solidify web servers and applications against hacking attacks while providing secure web access.

    • Email protection: Consolidate email protection with anti-spam, DLP, and encryption. XG’s Live Anti-Spam provides protection from the most recent spam campaigns, phishing attacks, and malicious attachments. Data Loss Prevention automatically triggers encryption on sensitive data in outgoing emails.

    Reviews from Real Users

    Sophos XG Firewall stands out among its competitors, among other reasons, for its intrusion detection capabilities, its user-friendly management platform, and in general, for being a complete and robust firewall solution.

    Niranjan P., a network & system support engineer, writes, “Sophos is a comprehensive solution which allows me to configure all the attendant products, such as Sophos's firewall, endpoint, and encryption features. A nice feature of Sophos is that it offers in sync and heartbeat security. When my clients have a perimeter involving Sophos firewall and endpoints with Sophos Endpoint, they can communicate with each other.”

    Antonio D., sales manager at INFOSEC, notes, “The product has a console that is based in the cloud for all their products. In this console, they have email security, firewall security, endpoint security, et cetera. All of the products on offer in the console are very useful for us. The solution is stable. The solution works well for enterprises and large-scale organizations.”

    Antony M., ICT/HMIS supervisor at a healthcare company, writes, “The VPN feature is the most valuable. It has come in handy during this period when people are working from home. The filtering feature is also valuable because you can easily filter the sites that you don't want to visit. You can also set timely surfing quotas”

    Offer
    Learn more about Fortinet FortiGate
    Learn More
    Learn more about Check Point NGFW
    Learn More
    Learn more about Sophos XG
    Learn More
    Sample Customers
    Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
    Control Southern, Optimal Media
    Information Not Available
    Top Industries
    REVIEWERS
    Comms Service Provider16%
    Computer Software Company9%
    Financial Services Firm8%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Educational Organization21%
    Computer Software Company15%
    Comms Service Provider8%
    Manufacturing Company5%
    REVIEWERS
    Financial Services Firm23%
    Computer Software Company14%
    Comms Service Provider7%
    Manufacturing Company6%
    VISITORS READING REVIEWS
    Educational Organization48%
    Computer Software Company8%
    Financial Services Firm5%
    Comms Service Provider5%
    REVIEWERS
    Manufacturing Company12%
    Financial Services Firm11%
    Healthcare Company9%
    Comms Service Provider7%
    VISITORS READING REVIEWS
    Computer Software Company18%
    Comms Service Provider12%
    Government6%
    Manufacturing Company5%
    Company Size
    REVIEWERS
    Small Business48%
    Midsize Enterprise23%
    Large Enterprise30%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise32%
    Large Enterprise41%
    REVIEWERS
    Small Business31%
    Midsize Enterprise19%
    Large Enterprise50%
    VISITORS READING REVIEWS
    Small Business14%
    Midsize Enterprise56%
    Large Enterprise29%
    REVIEWERS
    Small Business62%
    Midsize Enterprise23%
    Large Enterprise15%
    VISITORS READING REVIEWS
    Small Business38%
    Midsize Enterprise19%
    Large Enterprise43%
    Buyer's Guide
    Check Point NGFW vs. Sophos XG
    November 2023
    Free Report: Check Point NGFW vs. Sophos XG
    Find out what your peers are saying about Check Point NGFW vs. Sophos XG and other solutions. Updated: November 2023.
    DOWNLOAD NOW
    745,341 professionals have used our research since 2012.

    Check Point NGFW is ranked 5th in Firewalls with 104 reviews while Sophos XG is ranked 7th in Firewalls with 40 reviews. Check Point NGFW is rated 8.8, while Sophos XG is rated 8.2. The top reviewer of Check Point NGFW writes "Robust control and security that enables a comprehensive application management". On the other hand, the top reviewer of Sophos XG writes "Secure, duel switch capabilities, and good support". Check Point NGFW is most compared with Palo Alto Networks NG Firewalls, Netgate pfSense, Azure Firewall, Cisco Secure Firewall and OPNsense, whereas Sophos XG is most compared with Netgate pfSense, OPNsense, Sophos XGS, Palo Alto Networks NG Firewalls and Untangle NG Firewall. See our Check Point NGFW vs. Sophos XG report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.