"The content filtering is good."
"Another benefit has been user integration. We try to integrate our policies so that we can create policies based on active users. We can create policies based on who is accessing a resource instead of just IP addresses and ports."
"The most valuable features of this solution are the integrations and IPS throughput."
"The most valuable features of this solution are advanced malware protection, IPS, and IDS."
"The most valuable feature is stability."
"The main thing that I love the most is its policy and objects. Whenever I try to give access to a user, I can create an object via group creation in the object fields. This way, I am not able to enter a user in the policy repeatedly."
"A good intrusion prevention system and filtering."
"The integration of network and workload micro-segmentation helps a lot to provide unified segmentation policies across east-west and north-south traffic. One concrete example is with Cisco ACI for the data center. Not only are we doing what is called a service graph on the ACI to make sure that we can filter traffic east-west between two endpoints in the same network, but when we go north-south or east-west, we can then leverage what we have on the network with SGTs on Cisco ISE. Once you build your matrix, it is very easy to filter in and out on east-west or north-south traffic."
"The installation is easy, we have not had any complaints from our customers."
"Very reliable solution with good scalability and straightforward implementation."
"Five out of five ROI."
"Technical support is very responsive."
"It's a stable solution."
"Sophos is a unified solution. We have anti-virus protection, firewall rules, knotting, and DACC all in one box."
"What I like about the solution is the ease of use."
"The most valuable features of Sophos UTM are the ease of use, it is very user-friendly. You can understand what they implement in the new firmware, and it's easy to manage the firewalls."
"This is a very stable product."
"So far, the solution has been problem-free."
"Installing Sophos UTM is straightforward. The deployment itself doesn't take long, but you have to spend some time planning and waiting for the hardware to be delivered."
"One of my colleagues is using the firewall as an IPS, but he is worried about Firepower's performance... With the 10 Gb devices, when it gets to 5 Gbps, the CPU usage goes up a lot and he cannot manage the IPS."
"One of the few things that are brought up is that for the overall management, it would be great to have a cloud instance of that. And not only just a cloud instance, but one of the areas that we've looked at is using an HA type of cloud. To have the ability to have a device file within a cloud. If we had an issue with one, the other one would pick up automatically."
"Deploying configurations takes longer than it should."
"Web filtering needs improvement because sometimes the URL is miscategorized."
"There is limited data storage on the appliance itself. So, you need to ship it out elsewhere in order for you to store it. The only point of consideration is around that area, basically limited storage on the machine and appliance. Consider logging it elsewhere or pushing it out to a SIEM to get better controls and manipulation over the data to generate additional metrics and visibility."
"The ability to better integrate with other tools would be an improvement."
"When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance."
"The initial setup was a bit complex. It wasn't a major challenge, but due to our requirements and network, it was not very straightforward but still easy enough."
"SSL VPN license cost is not cheap."
"It would be nice if it had basic features, such as DLP (Data Loss Prevention)."
"The solution is not scalable."
"Sophos UTM could be simplified, and they can improve on the many other features, like SD-WAN and load balancing. Sophos UTM is missing a few features that their competitors have. For example, if you have multiple branches you would like to connect, the load balancing features aren't available on multilink. If we create a VPM for multiple LAN links, we cannot load balance the traffic."
"There were a lot of features and functionality in Sophos SG UTM but nothing was state of the art in terms of technology. You did not get the latest functions. It was very monolithic as it was based on an old Linux PuTTY system."
"We need to speed up the support."
"Sophos should improve its ability to check something like bandwidth consumption for users or something more real-time."
"Sophos customer support could use some improvement."
"There needs to be some improvement in the IPsec VPN. There is implementation only support. I have version one. I'd be most interested in having IP version two from the protocol."
More Cisco Firepower NGFW Firewall Pricing and Cost Advice →
Hillstone E-Series is ranked 27th in Firewalls with 2 reviews while Sophos UTM is ranked 1st in Unified Threat Management (UTM) with 33 reviews. Hillstone E-Series is rated 9.0, while Sophos UTM is rated 8.4. The top reviewer of Hillstone E-Series writes "Efficient call processor and overall amazing ROI". On the other hand, the top reviewer of Sophos UTM writes "Great web and email filtering with reasonable pricing". Hillstone E-Series is most compared with Fortinet FortiGate, Sophos XG, Hillstone T-Series, Palo Alto Networks NG Firewalls and Palo Alto Networks WildFire, whereas Sophos UTM is most compared with pfSense, Fortinet FortiGate, Untangle NG Firewall, Sophos XG and Palo Alto Networks NG Firewalls. See our Hillstone E-Series vs. Sophos UTM report.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.