Fortinet FortiGate vs Sophos XG comparison

Cancel
You must select at least 2 products to compare!
Cisco Logo
98,383 views|65,159 comparisons
Fortinet Logo
164,508 views|128,317 comparisons
Sophos Logo
57,667 views|42,666 comparisons
Comparison Buyer's Guide
Executive Summary
Updated on Mar 21, 2022

We performed a comparison between Fortinet FortiGate and Sophos XG based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of both Fortinet FortiGate and Sophos XG agreed that deployment was quick and straightforward.
  • Features: Reviewers of Fortinet FortiGate felt the software has excellent stability, great features, and an excellent firewall and VPN solution. However, there were quite a few mixed reviews regarding the interface, with many feeling it was overly complex and numerous complaints on the reporting feature.

    Reviewers of Sophos XG liked that the software was a complete firewall solution, felt it was very scalable, that the VPN is very valuable for remote workers, and thought that the solution is great for small- to mid-sized companies. However, reviewers were unhappy that it doesn’t integrate well with other products, felt it needed better reporting, and thought the SD-WAN could be improved.
  • Pricing: Whereas users of Fortinet FortiGate felt that the software was costly, especially since each feature needs a separate license, reviewers of Sophos XG felt the software was reasonably priced, and a few remarked on the benefit of the flexible pricing offered.
  • Service and Support: Fortinet FortiGate users mentioned that the software needs better and quicker support. In comparison, Sophos XG users had mixed reviews on technical support. Some were very happy with the level of support, while others felt there was a significant delay in response time.
  • ROI: Users of both Fortinet FortiGate and Sophos XG saw a great ROI after implementing the software.

Comparison Results: Fortinet FortiGate and Sophos XG had a similar user rating regarding ease of deployment, service and support, and ROI. In terms of features, each software has its pros and cons. Fortinet FortiGate offers some great features, but it is a little more complex and needs better reporting. Sophos XG provides a stable, complete firewall solution, but it fails to integrate well with other products, and the SD-WAN needs improvement. Sophos XG was the better option for pricing, as they offer flexible pricing based on region.

To learn more, read our detailed Fortinet FortiGate vs. Sophos XG Report (Updated: January 2023).
670,080 professionals have used our research since 2012.
Featured Review
Costa Mitsios
Anonymous User
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"So far, it has been very stable.""This solution made our organization more secure and gave us better control.""Cisco tech is always good and helpful. I would rate them as 10 out of 10.""The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic.""The VPN feature is the most valuable to us because it accomplishes the task well. We're able to do everything we need to do.""Cybersecurity resilience has been paramount. Because there is a threat of losing everything if ransomware or another sort of attack were to happen, the cybersecurity resilience has been top-notch.""The most valuable feature would be the IP blocking. It gets rid of things that you don't need in your environment.""Cisco's technical support is the best and that's why everybody implements their products."

More Cisco Secure Firewall Pros →

"It can expand easily.""It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall. You don't need to pay some other company for another product to do that for you. The firewall can do that for you. So, it's an easy-to-use product for people to be independent. They don't need to rely on other vendors to do what the firewall can do. They can do everything.""Fortinet FortiGate is a stable solution.""The multi-tenancy feature is most valuable. It integrates very well with FortiManager and FortiAnalyzer.""The scalability is good in Fortinet FortiGate.""The management console is pretty simple, so anyone who understands networking can initially deploy the solution.""The Fortinet FortiGate local partners were good. I did not have direct contact with Fortinet support.""Overall, the pricing of the solution is very good. The product offers good value."

More Fortinet FortiGate Pros →

"Easy to deploy and user friendly.""Sophos began with a basic version and evolved into something more efficient in terms of performance.""The most valuable feature is the central dashboard""Content blocking for websites is the most valuable aspect of the solution.""I like the tunneling part which we are using for the VOIP. We have various other sites where we connect via tunneling. The tunneling part is very fast and easy to implement.""The most useful aspect of the solution is the concept of integrated security.""The initial setup is straightforward.""IPS and advanced threat protection (ATP) are the most valuable features. I am able to segment my network traffic and block incoming connections. It is also easy to use."

More Sophos XG Pros →

Cons
"Third-party integrations could be improved.""I would like more features in conjunction with other solutions, like Fortinet.""Most of the features don't work well, and some features are missing as well.""The ability to better integrate with other tools would be an improvement.""The reporting and other features are nice, but there is an issue with applying the configuration. That part needs some improvement.""The operation of the ASA is good but the problem is that whenever you require an upgrade, there are multiple pieces of software that you have to upgrade. Extensive planning is required, because if you upgrade one piece of the software it has to be compatible with the others as well. You always need to check the compatibility metrics.""A feature that would allow me to load balance among multiple ISPs, especially since we have deployed it as a perimeter firewall, would be a great addition.""We wanted to integrate Firepower with our solution, but it didn't have the capability to accommodate our bandwidth since they only had two 10 gig interfaces on the box. We run way more than that through our network because we are a service provider, providing Internet to our customers."

More Cisco Secure Firewall Cons →

"The reporting in Fortinet FortiGate could improve. Customers are having to purchase additional reporting components. When I have used the Sophos solution it is a complete solution, in Fortinet FortiGate you have to use additional tools to have the features needed.""Fortinet FortiGate is not very easy to use. The navigation could be improved to make it easier to use.""Fortinet FortiGate should improve the VPN tokens.""The solution's framework needs to be frequently updated in order to have a stable solution.""You do need some IT knowledge in order to effectively work with the solution.""There aren't really any negative aspects to discuss.""In the balance between links feature normally you can just choose one option to balance. It would be better for the solution to have more than one option, preferably three.""The cloud features can be improved."

More Fortinet FortiGate Cons →

"The support service level agreement in regard to the amount of time needed to upgrade things is too low. It should be higher.""Its user interface is a little bit slow.""The initial setup, specifically when activating the license, is a nightmare and is quite difficult.""I would like to have a more efficient login process.""I'd like to see better reporting. While the logs are great, the reports are not.""It would be better if they made their own hardware like Palo Alto and Fortinet. They use their own ASICs and claim it is more secure.""I used to work with Fortinet, and sometimes I see that the SD-WAN feature could be better because it's much easier in Fortinet.""Support could be improved."

More Sophos XG Cons →

Pricing and Cost Advice
  • "The price is comparable."
  • "We sell Cisco ASA Firewall as a bundle — the price is very cheap. If a customer were to go for renewal direct from Cisco, then the price would be quite high."
  • "It definitely competes with the other vendors in the market."
  • "The price for Firepower is more expensive than FortiGate. The licensing is very complex. We usually ask for help from Solutel because of its complexity. I have a Cisco account where I can download the VPN client, then connect. Instead, I create an issue with Solutel, then Solutel solves the case."
  • "I know that licensing for some of the advanced solutions, like Intrusion Prevention and Secure Malware Analytics, are nominal costs."
  • "It is affordable. The hardware is not that expensive anymore. It is a matter of licensing these days."
  • "Cisco is not for a small mom-and-pop shop because of the cost, but if you're in a regulated industry where a breach could cost you a million dollars, it's a bargain."
  • "I like the Smart Licensing, because it is more dynamic and easier to keep track of where you are at. If we have a high availability firewall pair and they are deployed in active/standby rather than active/active, I would expect that we would only pay for one set of licenses because you are using only one firewall at any one time. The other is there just for resiliency. The licensing, from a Firepower perspective, still requires you to have two licenses, even if the firewalls are in active/standby, which means that you pay for the two licenses, even though you might only be using one firewall any one time. This is probably not the best way to do it and doesn't represent the best value for money. This could be looked at to see if it could be done in a fairer way."
  • More Cisco Secure Firewall Pricing and Cost Advice →

  • "The pricing of the solution is very competitive."
  • "Pricing and licensing is a little bit complicated in FortiGate. They are always on the higher side. This is one issue that we always raise with the company that they should reduce the price according to Indian market requirements. There are no costs in addition to the standard licensing fees."
  • "The price of the license and warranty can be better because it is very expensive."
  • "It's expensive, but compared to the competition it's okay."
  • "In terms of the market, it's not a cheap product, but it's cost-effective."
  • "Fortinet Secure SD-WAN delivered the lowest total cost of ownership (TCO) per Mbps among all other vendors."
  • "I had to pay for the license for the firewall, but it is guaranteed to have updates. I expect a good service for it. It was about €1000 for a year, and there was no additional cost."
  • "It is more expensive than Sophos. Fortinet is overall more expensive than Sophos. The small range of Fortinet, such as 60F and 80F, is more expensive than the small range of Sophos. Sophos is cheaper. In addition, if you jump from 80F Series to 100F Series, the price doubles."
  • More Fortinet FortiGate Pricing and Cost Advice →

  • "The price is reasonable."
  • "The hardware is inexpensive but the license is expensive."
  • "In terms of price, it is a mid-range product."
  • "At first, I thought the price was very high. But when I read about the machine's features, we decided to go with it."
  • "When comparing with Palo Alto and Cisco, Sophos is cheaper."
  • "I paid for a license for the solution for three years costing approximately $11,000. Additionally, I received the Web Appliance fee for paying for the full licencing."
  • "The price for the firewall is reasonable."
  • "Its licensing cost is around 700 bucks a year or something like that. It is 100 bucks a month at the most. It seems to be standard licensing with no additional costs."
  • More Sophos XG Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    670,080 professionals have used our research since 2012.
    Answers from the Community
    Mohammad Fawwaz
    fdiazm - PeerSpot reviewerfdiazm
    Real User

    Hi, 


    If I look at it only from the point of view of analytics and performance, I lean towards Fortinet, but if I look at it at the service level and with the possibility of being part of an even larger project, this is when I don't see competitors for Fortinet and I mean the component. of after-sales services, the local presence in my country has come from less to more, which makes the difference when choosing a partner to work with.

    Michael Velasco - PeerSpot reviewerMichael Velasco
    Consultant

    FortiGate. Fortinet is in Gartner Leader Magic Quadrant (MQ). 


    Sophos is in Niche Player Quadrant if I remember right. 


    You can never go wrong picking a vendor in the Gartner Leader MQ. Show the Gartner MQ to your leadership to get them on board too.

    Questions from the Community
    Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer:One of our favorite things about Fortinet Fortigate is that you can deploy on the cloud or on premises. Fortinet… more »
    Top Answer:It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite… more »
    Top Answer:We have Meraki Mx devices now, we are looking to replace them. But that is because the Meraki MX platform lacks SSL… more »
    Top Answer:Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat… more »
    Top Answer:Hi Arvind P ,  The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form… more »
    Top Answer:Sophos UTM is no longer being developed, according to our reseller. All the development effort is going into XG. So XG… more »
    Comparisons
    Also Known As
    Cisco ASA Firewall, Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv, Cisco Firepower NGFW Firewall
    FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
    Learn More
    Overview

    The Cisco Secure Firewall portfolio delivers greater protections for your network against an increasingly evolving and complex set of threats. With Cisco, you’re investing in a foundation for security that is both agile and integrated- leading to the strongest security posture available today and tomorrow.

      From your data center, branch offices, cloud environments, and everywhere in between, you can leverage the power of Cisco to turn your existing network infrastructure into an extension of your firewall solution, resulting in world class security controls everywhere you need them.

      Investing in a Secure Firewall appliance today gives you robust protections against even the most sophisticated threats without compromising performance when inspecting encrypted traffic. Further, integrations with other Cisco and 3rd party solutions provides you with a broad and deep portfolio of security products, all working together to correlate previously disconnected events, eliminate noise, and stop threats faster.

      Fortinet FortiGate is an innovative line of firewalls that aim to protect organizations from all types of web-based network threats. They come in a wide variety of product types. Fortinet FortiGate’s solutions are available in a large range of sizes and form factors and are key components of the Fortinet Security Fabric, which enables immediate, intelligent defense against known and new threats throughout the entire network.

      Fortinet FortiGate provides users with next-generation firewall solutions that provide proven protection with unmatched performance across the network, from internal segments to data centers to cloud environments. You can protect every part of your network without exception. Additionally, your protections can be managed from a single central location. This ensures that the task of protecting your network is infinitely easier to accomplish.

      Benefits of Fortinet FortiGate

      Some of the benefits of using Fortinet FortiGate include:

      • The ability to manage your firewalls from a centralized automated control console. Fortinet FortiGate’s FortiManager enables administrators to exercise control of their firewalls in a streamlined manner. Administrators have full visibility and control over their system from a single location. It utilizes automation that collects information in real time, which greatly simplifies and reduces the cost of running various types of workflows. Administrators can free up resources by automating the most basic tasks.
      • The ability to produce uniform, appropriate, and coordinated responses to threats across networks. Fortinet FortiGate’s FortiGuard feature generates system protections in near real time. This allows administrators to address threats to the system with custom-made solutions that can be uniformly enforced.
      • The ability to scale up your security to fit your changing security needs. Fortinet FortiGate’s design allows users to accelerate the transfer of data between users and escalate the number of users that are covered without compromising security of performance. This means that users can grow their networks and continue to collaborate without worrying about the system slowing down or coming under attack.

      Reviews from Real Users

      Fortinet FortiGate’s firewall solutions are cutting edge. They stand out from competitors for a number of reasons. Two major ones are the robustness and power of their firewalls. Fortinet FortiGate’s firewall provides users with many valuable features that allow them to maximize what they can do with the solution. These firewalls enable users to use a single piece of software to accomplish tasks that often require the use of multiple pieces of software.

      PeerSpot user Eric S., a Solutions Engineer and Consultant at a tech-services company, notes the robustness of this solution when he writes, "One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface.”

      PeerSpot user Jim M., a network admin at Penobscot Valley Hospital, notes the power of Fortinet FortiGate’s security software when he writes, "It does a lot for you for intrusion protection and as an antivirus. The threat management bundle is worth the money. You don't need another company to monitor your web traffic for you. You can do everything yourself on the firewall. You restrict your own black list for people on the firewall.”

      Sophos XG Firewall is a complete firewall solution that provides all the real-time security and insights you need to protect your network from ransomware and advanced threats. Sophos XG Firewall provides visibility into suspicious users, unknown and unwanted apps, encrypted traffic, and other threats. With its advanced artificial intelligence capabilities, Sophos XG Firewall immediately identifies potential risks and intrusions on web servers and networks.

      Sophos XG Firewall Features

      Sophos XG Firewall offers a wide range of security features, including:

      • Application control: Prevent widespread infections with XG’s Security Heartbeat. XG Firewall automatically identifies the source of an infection on a network and automatically prevents it from accessing other network resources.

      • Synchronized user ID: Eliminate the need for client or server authentication agents by sharing user identification between the endpoint and the firewall through Security Heartbeat.

      • Centralized management: Easily manage all activities with Sophos Central. The XG cloud management platform allows users to easily set up, manage, and monitor XG firewalls along with other Sophos products. Some of Sophos Central’s features include alerting, backup management, one-click firmware updates, and rapid deployments of new firewalls.

      • Lateral movement protection: Automatically isolate compromised systems at every point in the network to stop attacks dead in their tracks.

      • Network protection: Protect networks from attacks and threats while providing secure network access.

      • Web protection: Gain clear visibility and control over all users’ web and application activity.

      • Web server protection: Solidify web servers and applications against hacking attacks while providing secure web access.

      • Email protection: Consolidate email protection with anti-spam, DLP, and encryption. XG’s Live Anti-Spam provides protection from the most recent spam campaigns, phishing attacks, and malicious attachments. Data Loss Prevention automatically triggers encryption on sensitive data in outgoing emails.

      Reviews from Real Users

      Sophos XG Firewall stands out among its competitors, among other reasons, for its intrusion detection capabilities, its user-friendly management platform, and in general, for being a complete and robust firewall solution.

      Niranjan P., a network & system support engineer, writes, “Sophos is a comprehensive solution which allows me to configure all the attendant products, such as Sophos's firewall, endpoint, and encryption features. A nice feature of Sophos is that it offers in sync and heartbeat security. When my clients have a perimeter involving Sophos firewall and endpoints with Sophos Endpoint, they can communicate with each other.”

      Antonio D., sales manager at INFOSEC, notes, “The product has a console that is based in the cloud for all their products. In this console, they have email security, firewall security, endpoint security, et cetera. All of the products on offer in the console are very useful for us. The solution is stable. The solution works well for enterprises and large-scale organizations.”

      Antony M., ICT/HMIS supervisor at a healthcare company, writes, “The VPN feature is the most valuable. It has come in handy during this period when people are working from home. The filtering feature is also valuable because you can easily filter the sites that you don't want to visit. You can also set timely surfing quotas”

      Offer
      Learn more about Cisco Secure Firewall
      Learn more about Fortinet FortiGate
      Learn more about Sophos XG
      Sample Customers
      There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.
      Pittsburgh Steelers, LUSH Cosmetics, NASDAQ, Verizon, Arizona State University, Levi Strauss & Co. Whitepaper and case studies here
      Information Not Available
      Top Industries
      REVIEWERS
      Financial Services Firm16%
      Comms Service Provider13%
      Computer Software Company9%
      Government8%
      VISITORS READING REVIEWS
      Computer Software Company19%
      Comms Service Provider18%
      Government7%
      Educational Organization5%
      REVIEWERS
      Comms Service Provider17%
      Financial Services Firm10%
      Computer Software Company9%
      Manufacturing Company7%
      VISITORS READING REVIEWS
      Comms Service Provider20%
      Computer Software Company19%
      Government6%
      Educational Organization5%
      REVIEWERS
      Financial Services Firm11%
      Manufacturing Company11%
      Healthcare Company9%
      Comms Service Provider8%
      VISITORS READING REVIEWS
      Comms Service Provider21%
      Computer Software Company19%
      Government7%
      Educational Organization5%
      Company Size
      REVIEWERS
      Small Business35%
      Midsize Enterprise25%
      Large Enterprise40%
      VISITORS READING REVIEWS
      Small Business28%
      Midsize Enterprise18%
      Large Enterprise53%
      REVIEWERS
      Small Business47%
      Midsize Enterprise24%
      Large Enterprise29%
      VISITORS READING REVIEWS
      Small Business30%
      Midsize Enterprise20%
      Large Enterprise50%
      REVIEWERS
      Small Business62%
      Midsize Enterprise25%
      Large Enterprise14%
      VISITORS READING REVIEWS
      Small Business35%
      Midsize Enterprise21%
      Large Enterprise44%
      Buyer's Guide
      Fortinet FortiGate vs. Sophos XG
      January 2023
      Find out what your peers are saying about Fortinet FortiGate vs. Sophos XG and other solutions. Updated: January 2023.
      670,080 professionals have used our research since 2012.

      Fortinet FortiGate is ranked 1st in Firewalls with 92 reviews while Sophos XG is ranked 6th in Firewalls with 112 reviews. Fortinet FortiGate is rated 8.4, while Sophos XG is rated 8.2. The top reviewer of Fortinet FortiGate writes "SSL proxy makes URL filtering easier because the encryption is done before the packet ever leaves ". On the other hand, the top reviewer of Sophos XG writes "Light and stable with excellent real-time control ". Fortinet FortiGate is most compared with pfSense, Check Point NGFW, Meraki MX, WatchGuard Firebox and SonicWall TZ, whereas Sophos XG is most compared with pfSense, OPNsense, Palo Alto Networks NG Firewalls, WatchGuard Firebox and Meraki MX. See our Fortinet FortiGate vs. Sophos XG report.

      See our list of best Firewalls vendors.

      We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.