We performed a comparison between Fortinet FortiGate, Sophos UTM, and Sophos XG based on real PeerSpot user reviews.
Find out what your peers are saying about Netgate, Fortinet, OPNsense and others in Firewalls."I have found Fortinet FortiGate to be scalable."
"FortiGate has a very strong unified threat management system."
"FortiGate is on the cheaper end, and it offers good value."
"It is simple to manage, and there are a lot of functionalities in the same box."
"The main benefit is the grouping of our security monitoring."
"The most valuable features are the policies, filtering, and configuration."
"The most important features with FortiGate are the web filter and application controls. We can control our internet usage and use the web filter for application purposes."
"The response is very quick and they can visually resolve our problems in a short period."
"Configuration troubleshooting is eased by the use of the color-coded, live firewall log."
"It meets our compliance needs in an elastic computer environment."
"We use Sophos UTM as our main firewall with all its features included. Mainly, it controls all of our network perimeter security: firewall, IDS/IPS, and web application firewall (including VoIP)."
"The most valuable feature is ransomware protection."
"The most valuable feature is the price. I've been requesting prices all over these years between different solutions like Fortinet, Palo Alto, and Check Point and Sophos has been the cheapest and the best of all of them that I have tried. I have been working with Fortinet, it's a fact that the price is surprisingly better."
"Sophos has a single pane of glass which allows me to manage all my VPCs from a single instance, managing all my firewall from one place."
"We've found the technical support to be helpful."
"The solution's sandboxing, application center, and database engine are good."
"We find it easy to use. Its internal configuration is very easy. It is not complicated in terms of use and configuration. It has been fairly stable, and it is also scalable."
"The most valuable features are the central management, the user VPN, and communications."
"I particularly like the visibility it provides into network traffic, allowing us to identify and address issues efficiently."
"The stability of Sophos XG is good, it has good performance."
"It has a very friendly interface like the Cyberoam iNG units, it has customizable policies, it has proper templates that you can even modify, and you can customize the rules, down to each single user."
"The interface is user-friendly and the product is easy to configure."
"It's a good security tool and it aligns with the rest of our security stack."
"One of the standout features of Sophos XG is its proprietary VPN technology known as RID (Remote Internet Device). This unique technology provides efficient branch connectivity without the need to invest in additional firewalls for each branch. By utilizing an affordable device called RED, users can effectively control and establish connections in a cost-effective manner. Additionally, the solution is feature-rich."
"Bandwidth usage in reporting could be improved for Fortinet FortiGate."
"The price of FortiGate should be reduced because there are some other leading products that are cheaper."
"Currently, FortiGate is providing SSL VPN. But they're missing some features that are available in Palo Alto's SSL VPN."
"Its reporting and pricing need improvement."
"Fortinet FortiGate is not very easy to use. The navigation could be improved to make it easier to use."
"The support structure needs to be improved because every time we contact them, there is a delay in the response."
"Its reporting capabilities can be improved. It should have some out-of-the-box reporting capabilities and some degree of customization. The basic reporting that it currently has is not sufficient to create more usable reports. It needs some sort of out-of-the-box reporting. They try to make customers purchase FortiAnalyzer for this kind of reporting, which is an additional cost. Other firewall vendors, such as SonicWall and Sophos, provide this sort of reporting without any additional cost."
"The pricing could be reduced or include the first year warranty."
"Stay away from the wireless models, since you cannot put them in HA. They start to give you some weird issues once you start getting into multiple SSIDs and networks."
"The UI can be cumbersome and, sometimes, features are not where you think they should be."
"Sophos UTM could improve if there was no limitation on users."
"Sophos UTM sometimes falls short in high-availability environments. They used to launch firmware that didn't work very well in a high-availability environment."
"I think that additional metrics features are needed to be able to monitor other areas or to monitor as much as you can, at a fine-grain resolution."
"Sophos UTM could improve the way the configuration has to be done. I have to do the configuration through the command line interface but if it could be done through the graphical user interface it would be much better."
"In Sophos UTM there is always a problem with the routing tables. If you want to see the routing table, you have to use the UI. You can't do it via a web browser. The routing table is better in Fortinet."
"Reporting: We have had to work manually in many of our reports."
"I would like the update process to be easier, to update the firmware of the boxes. I think it's much better automatically than having to do it manually: Download the file, do network discovery. I they can make the update process much more automatic that would help."
"It is complicated to get the reports if you are not experienced with Sophos."
"When it comes to improvements that the vendor can make, we see that the cloud integration for managing all the firewalls is essentially a replacement of the on-prem version we had and is not sufficiently mature."
"The VPN is in need of improvement."
"Could have a more simplified functionality for users."
"In the next release, I would like to see improvements made to the policy and simplify the policy-making, as the complexity of it makes it really tough."
"They made some changes to the firmware update sometime last year, which moved some of the policies from where they were before. Some of the policies, such as NAS policies, were separated, which made it a bit hard for people to trace the policies they had configured."
"The initial setup is not straightforward."