"It has a good security level. It is a next-generation firewall. It can protect from different types of attacks. We have enabled IPS and IDS."
"The most valuable feature is stability."
"Provides good integrations and reporting."
"The solution offers very easy configurations."
"We get the Security Intelligence Feeds refreshed every hour from Talos, which from my understanding is that they're the largest intelligence Security Intelligence Group outside of the government."
"I like the firewall features, Snort, and the Intrusion Prevention System (IPS)."
"I have experience with URL filtering, and it is very good for URL filtering. You can filter URLs based on the categories, and it does a good job. It can also do deep packet inspection."
"The customer service/technical support is very good with this solution."
"The installation is easy, we have not had any complaints from our customers."
"Very reliable solution with good scalability and straightforward implementation."
"Five out of five ROI."
"This solution does everything and anything a firewall can do."
"The cloud-based interface makes it easy to manage."
"We created and configured a VPN for connecting our remote sites and also to make it more secure and reliable. We also like its two-factor authentication features."
"They really work scalability into the solution at the outset."
"There are many features. VPN, firewalling, and intrusion detection are the main features that are most useful for us at this time."
"The most valuable features are the central management, the user VPN, and communications."
"I like their firewall and the intrusion detection feature"
"The most valuable feature is the Intercept X. It is the advanced features that are used for malware detection, and antivirus."
"The price and SD-WAN capabilities are the areas that need improvement."
"One of the few things that are brought up is that for the overall management, it would be great to have a cloud instance of that. And not only just a cloud instance, but one of the areas that we've looked at is using an HA type of cloud. To have the ability to have a device file within a cloud. If we had an issue with one, the other one would pick up automatically."
"They need a VTI. I know it's going to be available in the next software version, which is the 6.7 version. However, the problem with that is that the 6.7 is going to deprecate all the older IKEv1 deployment tunnels. Therefore, the problem is that we have a lot of customers which are using older encryptions. If I do that, update it, it's not going to work for me."
"An area of improvement for this solution is the console visualization."
"There is limited data storage on the appliance itself. So, you need to ship it out elsewhere in order for you to store it. The only point of consideration is around that area, basically limited storage on the machine and appliance. Consider logging it elsewhere or pushing it out to a SIEM to get better controls and manipulation over the data to generate additional metrics and visibility."
"The initial setup was a bit complex. It wasn't a major challenge, but due to our requirements and network, it was not very straightforward but still easy enough."
"I would like to see improvement when you create policies on Snort 3 IPS on Cisco Firepower. On Snort 2, it was more like a UI page where you had some multiple choices where you could tweak your config. On Snort 3, the idea is more to build some rules on the text file or JSON file, then push it. So, I would like to see a lot of improvements here."
"Cisco Firepower NGFW Firewall can be more secure."
"SSL VPN license cost is not cheap."
"Technical support could be improved. They aren't as responsive as they could be."
"The reaction time of the GUI is terrible when compared to other manufacturers."
"For the moment, managing the Sophos interface is a little bit challenging."
"It would be better if they made their own hardware like Palo Alto and Fortinet. They use their own ASICs and claim it is more secure."
"Content filtering could be more effective and efficient."
"I used to work with Fortinet, and sometimes I see that the SD-WAN feature could be better because it's much easier in Fortinet."
"I do prefer when updates come out a bit quicker."
"It is complicated to get the reports if you are not experienced with Sophos."
Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
small/branch offices to high performance data centers and service providers. Available in a wide
range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
for increased performance, high availability configurations, and more.
Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your
environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
greater simplicity, visibility, and efficiency.
Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.
Hillstone E-Series next generation firewalls provide visibility and control of web applications regardless of port, protocol, or evasive action. It can identify and prevent potential threats associated with high-risk applications while providing policy-based control over applications, users, and user-groups. Policies can be defined that guarantee bandwidth to mission-critical applications while restricting or blocking inappropriate or malicious applications. Hillstone E-Series firewalls incorporate comprehensive network security and advanced firewall features. They provide superior price performance, excellent energy efficiency, and a smaller size when compared to competing products.
Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.
Hillstone E-Series is ranked 32nd in Firewalls with 2 reviews while Sophos XG is ranked 5th in Firewalls with 130 reviews. Hillstone E-Series is rated 9.0, while Sophos XG is rated 8.2. The top reviewer of Hillstone E-Series writes "Efficient call processor and overall amazing ROI". On the other hand, the top reviewer of Sophos XG writes "Light and stable with excellent real-time control ". Hillstone E-Series is most compared with Fortinet FortiGate, Hillstone T-Series, Palo Alto Networks NG Firewalls, OpenVPN Access Server and Palo Alto Networks WildFire, whereas Sophos XG is most compared with Fortinet FortiGate, pfSense, Meraki MX, Palo Alto Networks NG Firewalls and SonicWall NSa. See our Hillstone E-Series vs. Sophos XG report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.