Menlo Secure vs Sophos UTM comparison

Menlo Security and Sophos are both solutions in the Firewalls category. Additionally, 100% of Menlo Security users are willing to recommend the solution, compared to 89% of Sophos users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Menlo Secure and Sophos UTM based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Menlo Secure vs. Sophos UTM Report (Updated: April 2025).

Buyer's Guide

Menlo Secure vs. Sophos UTM

April 2025

Download the complete report

Helped 850,028 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Olivier DALOY

Group Information Systems Security Director - CISO at Faurecia

Secures users wherever they are and enable us to inspect SSL traffic, but we encountered too many issues

The solution should have no impact but it does have a bit of impact on end-users. For example, we encountered some issues in the downloads that took longer than they did without using Menlo. That is clearly not transparent for users. We expected not to have any latency when downloading anything from the internet with Menlo compared to without Menlo. We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution. In other words, we hope to get the same level of protection, while reducing the number of visible bugs, issues, latencies, impacts on performance, et cetera, that we have today with Menlo. We already solved most of them, but we still have too many such instances of issues with Menlo, even though it is protecting us for sure. The weak point of the solution is that it has consumed far too much of my team's time, taking them away from operations and projects and design. It took far too much time to implement it and get rid of all of the live issues that we encountered when our users started using the solution. The good point is that I'm sure it is protecting us and it's probably protecting us more than any other solution, which is something I appreciate a lot as a CISO. But on the other hand, the number of issues reported by the users, and the amount of time that has been necessary for either my team or the infrastructure team to spend diagnosing, troubleshooting, and fixing the issues that we had with the solution was too much. And that doesn't include the need to still use our previous solution, Blue Coat, that we have kept active so that whatever is not compatible or doesn't work with Menlo, can be handled by that other solution. It is far too demanding in terms of effort and workload and even cost, at the end of the day. That is why we decided to transition to another solution. If we had known in the beginning that we would not be able to get rid of Blue Coat, we probably would not have chosen Menlo because we were planning to replace Blue Coat with something that was at least able to do the same and more. We discovered that it was able to do more but it was not able to replace it, which is an issue. It is not only a matter of cost but is also a matter of not being able to reduce the number of partners that you have to deal with. In addition, they could enhance the ability to troubleshoot. Whenever a connection going through Menlo fails for any reason, being able to troubleshoot what the configuration of Menlo should be to allow it through would help, as would knowing what level of additional risk we would be taking with that configuration.

Read full review

Samaila Yusuf

Associate Director - Management Support Services at CIHP

Network protection strengthens through effective threat management features and secure access control

The zero-day protection and firewall rules are some of the most effective features for threat management. I can set the rules and features, and also use IPsec to connect all my on-premises servers and link them to Sophos UTM so that they are protected even when in the cloud. Additionally, I use it to control access into the building through a captive portal integrated across all the PCs we have, ensuring secure access only for authenticated users.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We use a southern institution that's audited for IT security and the reporting that automatically comes off the unit makes it much easier to meet compliance standards and makes it easier as far as the amount of time that has to be spent to compile that information. If you get your reporting set up correctly when you initially set it up, you just select the one you want and hit print. The auditing trail on it is the best feature."

"The most valuable feature of this solution is Quota."

"The pipe filter application is an outstanding feature."

"Fortinet FortiGate is a stable solution."

"It is a one box solution, which covers most of the edge device’s requirements."

"The integration with Active Directory is one of the good features. Most of the customers are now looking for the Single Sign-on feature. So, being able to integrate Active Directory with the firewall is useful. It is also easy."

"This product is definitely scalable."

"FortiGate has a strong security topic which allows all of the Fortinet devices to communicate and share information which makes their security more powerful."

More Fortinet FortiGate pros

"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."

"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."

"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."

"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."

"The initial setup is easy."

"It does not take much effort or thinking to understand how it works."

"I definitely recommend Sophos. I rate it a nine out of ten."

"Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

"Sophos integrates seamlessly, and we don't even feel it is running in the background."

"Good basic firewall functions with advanced firewall scanning."

"It is easy to manage."

"The most valuable features of the solution are application filtering and web filtering."

More Sophos UTM pros

Cons

"The UTM filtering needs improvement."

"The only issue that I have is with FortiNAC. The firewall is fine, but the FortiNAC interface is a little bit too jumbled or too complicated, not as straightforward as it is on the Fortinet FortiGate firewall and FortiAnalyzer."

"The reports are very basic."

"I could not configure sFlow from the FortiGate graphical user interface. I realized that the sFlow configuration is available only from the CLI, and discovered that sFlow is not supported on virtual interfaces, such as VDOM links, IPsec, or GRE."

"Due to its higher cost, Fortinet FortiGate can lead to increased operational expenses."

"The support costs and licensing are sometimes so expensive."

"We would like to see an upgrade to the VPN feature, we are using the VPN from outside of our office and there is a limitation to 10 connections, more connections would be suitable."

"The solution could be more user friendly."

More Fortinet FortiGate cons

"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."

"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."

"The user monitoring could still be improved."

"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."

"Updates come out agonizingly slowly, a trickle."

"There's an issue that when we deploy UTM on fiber, it automatically upgrades to the latest version without giving an option to stay on the current one."

"The solution could be improved by adding cloud soundboxing."

"The scalability of the product is an area with certain shortcomings where improvements are required."

"With Sophos UTM, there is a general rule in the firewall when the country blocking can block some countries from accessing your data. In the current version, you still need to add it by putting in the IP range. This feature would be helpful for administrators and it gives them the advantage to block stuff in less time."

"There needs to be some improvement in the IPsec VPN. There is implementation only support. I have version one. I'd be most interested in having IP version two from the protocol."

"The virus updates will always depend on new viruses that are discovered. Maybe they can send a notification or a reminder for update time."

"I would like to see the SD-WAN feature improved."

More Sophos UTM cons

Pricing and Cost Advice

"The price of the license and warranty can be better because it is very expensive."

"Fortinet has one or two license types, and the VPN numbers are only limited by the hardware chassis make."

"Our licensing costs are on a yearly basis."

"The support subscription for the solution is annual. You are paying for support and there are two levels of support, professional and advanced."

"Pricing is good. They offer a lot of things, the most important is the support. Every time you upgrade your license, you also get insurance for the equipment. If you have any problem with equipment, they send in new equipment."

"Before choosing a piece of equipment you have to take into account the cost-benefit offered by each one. Sometimes it is not worth paying a very cheap price to have a minimum level of security."

"I give the pricing a nine out of ten."

"On a scale of one being cheap and ten being expensive, I rate the tool's price as an eight."

More Fortinet FortiGate pricing and cost advice

"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."

"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."

"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."

"The solution is affordable compared to others, such as FortiGate. The price is important."

"The price of the solution is high. The price from USD to my currency is expensive."

"It's expensive. It has a yearly license."

"In the case of a software/virtual appliance subscription, you pay by protecting user/IP addresses. You can do this to as much hardware resources as you like."

"I think the pricing of Sophos is very fair."

"We pay for the service on a yearly basis. The last time we paid was in June, for a year. At the time, it was about $20,000."

"The solution's pricing is based on a licensing model and is competitive."

"Purchasing through the AWS Marketplace is pretty straightforward. Because were entirely on AWS and don't have anything anywhere else. It made the most sense for us as a one stop shop."

More Sophos UTM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

850,028 professionals have used our research since 2012.

Comparison Review

it_user216600

Senior Technical Consultant with 51-200 employees

Jan 3, 2016

Sophos UTM vs. Fortinet FortiGate

I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

20%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

19%

Financial Services Firm

16%

Manufacturing Company

Healthcare Company

Computer Software Company

18%

Comms Service Provider

Government

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Ask a question

Earn 20 points

What do you like most about Sophos UTM?

The most valuable feature of Sophos UTM is the endpoint protection feature.

See all answers

What is your experience regarding pricing and costs for Sophos UTM?

The value between what I receive and what I pay is the best in the industry.

See all answers

What needs improvement with Sophos UTM?

With artificial intelligence, there is room for improvement in all antivirus and security software. However, the bad ...

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 11% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

Palo Alto Networks WildFire vs Fortinet FortiGate

Compared 2% of the time

More Fortinet FortiGate Competitors

Cisco Umbrella vs Menlo Secure

Compared 23% of the time

Prisma Access by Palo Alto Networks vs Menlo Secure

Compared 15% of the time

Prisma Access Browser vs Menlo Secure

Compared 15% of the time

Zscaler Internet Access vs Menlo Secure

Compared 12% of the time

Cisco Web Security Appliance vs Menlo Secure

Compared 12% of the time

More Menlo Secure Competitors

Netgate pfSense vs Sophos UTM

Compared 13% of the time

OPNsense vs Sophos UTM

Compared 12% of the time

Sophos XG vs Sophos UTM

Compared 10% of the time

Palo Alto Networks NG Firewalls vs Sophos UTM

Compared 7% of the time

Cisco Secure Firewall vs Sophos UTM

Compared 6% of the time

More Sophos UTM Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

April 2025

Download Fortinet FortiGate product report

Buyer's Guide

Menlo Secure

April 2025

Download Menlo Secure product report

Buyer's Guide

Sophos UTM

April 2025

Download Sophos UTM product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Menlo Security Web Security, Menlo Web Security

Astaro

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Menlo Security Secure Application Access

Menlo Security Secure Application Access makes zero trust access easy, giving users secure connectivity to private applications, including web and legacy applications. At the core of Secure Application Access is the Menlo Secure Cloud Browser, which fetches, secures and delivers the content for users.

In addition to providing simple-to-deploy, clientless ZTA, Secure Application Access and the Menlo Secure Cloud Browser protect applications from attacks such as session hijacking, cookie manipulation, and other tactics that employ protocol manipulation.

Secure Application Access protects applications from Internet threats and provides granular controls for added protection of the application and associated data. These security controls include Read-only/Read-write, Upload/download, Copy/paste, AV scanning, Sandboxing, and Data Loss Prevention.

Last Mile Data Protection

Menlo Last-Mile Data Protection identifies and prevents sensitive data from leaving your company by meticulously inspecting all file uploads and user input across browsing sessions. Leveraging the Secure Cloud Browser, users are protected from the internet and you can protect your organization from data loss with comprehensive traffic monitoring and controls. This approach addresses the growing concerns surrounding data leakage in the age of AI tools like ChatGPT.

By identifying sensitive data through file types, regular expressions, or predefined libraries, Menlo Last-Mile Data Protection empowers security teams to regulate data input into AI platforms and prevent unauthorized uploads. This capability provides crucial protection for intellectual property, PII, and other confidential information.

The solution leverages the Menlo Cloud Security Platform's visibility and control over traffic to reliably detect and prevent data leaks originating from both browser submission forms and non-browser traffic. With the ability to inspect encrypted web traffic, Menlo Last-Mile Data Protection enforces DLP policies consistently across all users and devices, ensuring comprehensive data protection.

Menlo Security

Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.

Sophos UTM Features

Sophos UTM has many valuable key features. Some of the most useful ones include:

Web and Email Filtering
General Management
Network Protection
Network Routing and Services
Advanced Threat Protection
Authentication
Email Encryption and DLP
Web Policy
End-User Portal
VPN IPsec Client, VPN SSL Client, and Clientless VPN
Web Application Firewall Protection
UTM Endpoint Protection and Management
SEC Endpoint Integration
Logging and Reporting

Sophos UTM Benefits

There are many benefits to implementing Sophos UTM. Some of the biggest advantages the solution offers include:

Simplifies your IT security without the complexity of multiple point solutions
Intuitive interface to help you quickly create policies to control security risks
Provides clear, detailed reports to give you the insight you need to improve your network performance and protection
Complete control to block, allow, shape and prioritize applications
Two-factor authentication with one-time password (OTP)
Integrated wireless controller
Allows you to connect remote offices with easy VPN and Wi-Fi

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Sophos UTM solution.

PeerSpot user Dana B., Network Administrator at a manufacturing company, says “The web and email filtering are the two biggest and most valuable aspects of the solution for us. The solution overall has just been a good, cost-effective solution for us. The solution offers a lot of functionality. The solution scales well. We've found the technical support to be helpful. The stability and performance are quite good.”

A Technical Director at a security firm mentions, "Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

Marek M., Senior Network Engineer at a computer software company, comments, “Sophos UTM is the simplest of these products to set up. If you follow the instructions using the wizard, which is just a few steps, then you will have a firewall to protect you and your customer.”

A Software Sales Manager at a tech services company explains, “The overall visibility of the console is what I find most valuable, plus it's very user-friendly. It can be integrated with other solutions such as SOAR, SIEM, etc., even when you have an existing firewall. I really like that the console can be integrated. You'll see everything on the same window, and the single window feature of the machine is so good. These are the features I really like.”

James D., IT Manager at Manual Workers Union, states, “The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money. The solution has many great features. From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. The initial setup is simple. We enjoy its general stability. The solution can scale. So far, the solution has been problem-free.”

Sophos

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Information Not Available

One Housing Group

Buyer's Guide

Menlo Secure vs. Sophos UTM

April 2025

Free Report: Menlo Secure vs. Sophos UTM

Find out what your peers are saying about Menlo Secure vs. Sophos UTM and other solutions. Updated: April 2025.

DOWNLOAD NOW

850,028 professionals have used our research since 2012.

See our Menlo Secure vs. Sophos UTM report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.