Menlo Secure vs Sophos XG comparison

Menlo Security and Sophos are both solutions in the Firewalls category. Menlo Security is ranked #50, while Sophos is ranked #4 with an average rating of 8.2. Menlo Security holds a 0.1% mindshare in Firewalls, compared to Sophos’s 10.7% mindshare. Additionally, 100% of Menlo Security users are willing to recommend the solution, compared to 93% of Sophos users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Jul 13, 2025

Menlo Secure and Sophos XG are directly competing in web and network security solutions. While Menlo Secure is preferred for its pricing and support, Sophos XG seems to have the upper hand overall due to its comprehensive security features.

Features: Menlo Secure is known for its web isolation technology that protects users from malware. Its cloud proxy solution and single console management further enhance user and admin experiences. Sophos XG offers integrated threat detection and sandboxing capabilities with features like Sophos RED, web protection, and anti-malware engines, making it a robust network security solution.

Room for Improvement: Menlo Secure can enhance its logging capabilities and SSL decryption for banking sites. It also needs to address bypass authentication issues. Sophos XG could improve its complex initial configuration process and streamline its management interface. Enhanced reporting features would also be beneficial to Sophos XG users.

Ease of Deployment and Customer Service: Menlo Secure offers an easy cloud-based deployment which minimizes setup time. It is backed by responsive customer service. Sophos XG, although more complex with its on-premises setup, offers diverse deployment options. Its customer support complements its flexible structure.

Pricing and ROI: Menlo Secure provides a cost-effective solution with a good ROI, focusing on reducing operational risks. Sophos XG, despite higher initial costs, provides long-term security benefits that justify the investment. The choice between immediate savings or long-term benefits may influence pricing preferences.

To learn more, read our detailed Menlo Secure vs. Sophos XG Report (Updated: July 2025).

Buyer's Guide

Menlo Secure vs. Sophos XG

July 2025

Download the complete report

Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Mindshare comparison

As of August 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.8%, up from 17.8% compared to the previous year. The mindshare of Menlo Secure is 0.1%, up from 0.0% compared to the previous year. The mindshare of Sophos XG is 10.7%, up from 9.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Firewalls

Featured Reviews

Vasu Gala

Manager, Information Technology Operation/Presales at TechMonarch

A stable solution with an intuitive interface and quick customer service

I have been working with Fortinet FortiGate, WatchGuard, Sophos, and SonicWall. I'm not as comfortable with SonicWall because of their UI and limitations. I prefer Fortinet above all other options. When it comes to configuration, I am confident in my ability to handle various tasks, including creating policies such as firewall rules, web policies, and application policies. Additionally, I can configure VPNs and implement load balancing, among other tasks. Overall, I feel much more comfortable working with Fortinet. Fortinet has made significant improvements by integrating AI with firewalls for threat analysis and prevention. In the past 2-3 years, they have launched FortiSASE and SIEM, and they also provide SOC services. Both Palo Alto and Fortinet FortiGate are excellent. While Fortinet FortiGate comes at higher prices, the functionality and support justify the cost. They promptly resolve firmware issues and inform all support providers about configuration changes.

Read full review

Olivier DALOY

Group Information Systems Security Director - CISO at Faurecia

Secures users wherever they are and enable us to inspect SSL traffic, but we encountered too many issues

The solution should have no impact but it does have a bit of impact on end-users. For example, we encountered some issues in the downloads that took longer than they did without using Menlo. That is clearly not transparent for users. We expected not to have any latency when downloading anything from the internet with Menlo compared to without Menlo. We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution. In other words, we hope to get the same level of protection, while reducing the number of visible bugs, issues, latencies, impacts on performance, et cetera, that we have today with Menlo. We already solved most of them, but we still have too many such instances of issues with Menlo, even though it is protecting us for sure. The weak point of the solution is that it has consumed far too much of my team's time, taking them away from operations and projects and design. It took far too much time to implement it and get rid of all of the live issues that we encountered when our users started using the solution. The good point is that I'm sure it is protecting us and it's probably protecting us more than any other solution, which is something I appreciate a lot as a CISO. But on the other hand, the number of issues reported by the users, and the amount of time that has been necessary for either my team or the infrastructure team to spend diagnosing, troubleshooting, and fixing the issues that we had with the solution was too much. And that doesn't include the need to still use our previous solution, Blue Coat, that we have kept active so that whatever is not compatible or doesn't work with Menlo, can be handled by that other solution. It is far too demanding in terms of effort and workload and even cost, at the end of the day. That is why we decided to transition to another solution. If we had known in the beginning that we would not be able to get rid of Blue Coat, we probably would not have chosen Menlo because we were planning to replace Blue Coat with something that was at least able to do the same and more. We discovered that it was able to do more but it was not able to replace it, which is an issue. It is not only a matter of cost but is also a matter of not being able to reduce the number of partners that you have to deal with. In addition, they could enhance the ability to troubleshoot. Whenever a connection going through Menlo fails for any reason, being able to troubleshoot what the configuration of Menlo should be to allow it through would help, as would knowing what level of additional risk we would be taking with that configuration.

Read full review

TarunPanchal

IT Manager , SAP HANA Administrator at Tara Paints & Chemicals

Decades of expertise lead to seamless installations and robust security

I typically use the Sophos XG Firewall to enhance my cybersecurity by using all layers. The intrusion prevention system impacts my security posture effectively, as we have not faced any ransomware or cyber threats. I have more than 800 servers live from Sophos. The synchronized security feature has proven to be very beneficial, and I have not encountered any issues. Sophos XG Firewall has contributed to reducing overall costs because it helps save money. We purchased endpoint security for the first time last year, and even without endpoint security, it provides comprehensive security. Sophos XG uses AI effectively to enhance threat detection and response, securing from AI at the packet level.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I am "headache free" that I don't have to categorize all the websites and that security has been pre categorized by the people, and that the services are getting updated. At least one part of my problem is over."

"FortiGate improved our security. It's one of the best hardware firewalls."

"The dynamic segmentation feature in Fortinet FortiGate is pretty good."

"We've found the solution to be pretty stable."

"Good load balancing feature."

"Fortinet FortiGate is pretty robust. The updates and firmware releases are pretty timely. They have a good product revision and review system, so they are constantly reviewing their configuration and the different mechanisms that are used on Fortinet FortiGate."

"I'm pretty happy with its reliability. It is also very scalable."

"Overall, I would rate Fortinet FortiGate a ten out of ten."

More Fortinet FortiGate pros

"It has reduced security events to follow up on. While it is not 100%, there has been probably a 90% or more reduction. We were getting hit left, right, and center constantly from people browsing the Internet and hitting bad websites. It was not just bad websites that were stood up to be malicious, but good sites that were compromised."

"Accessing the internet with a proxy from anywhere is the most valuable feature. It ensures that users are only able to browse legitimate websites. If they happen to go to a legitimate website with a malicious payload, the isolation feature will take care of that."

"For us, the primary goal is protection on the web, and that's extremely important. We're not using any of the other services at this time. The web part is key to the success of the organization. It gives us the ability to protect. It can isolate. It opens the session in an isolated format so that the code isn't running locally. It is running over in the Menlo environment, not in ours. It is not running on the local computer, whereas if you were to go to a normal website, it would run Java or something else on the local machine and potentially execute the malicious code locally. So, it does give us that level of protection."

"The fact that it is a cloud proxy solution is another feature we like. For example, if you acquire a new company, you can use it to protect that new company without the need to install anything physically on their networks."

"What I have found most valuable with the Sophos XG is it's a key component of the Intercept X EDR environment. You have to have it to receive the full benefit. If you've you are using Sophos SG firewalls, they're great firewalls and in many ways, I prefer them to the Sophos XG. Since I have set them up, programmed them, and manipulate firewall rules, et cetera, the Sophos SG's a better interface. However, the Sophos XG's very powerful. I prefer it over other solutions I have used, such as Cisco Meraki and SupportNet, I don't like them. They're not very friendly to people who have to set them up and implement them."

"We are able to trace any user and pinpoint any vulnerability or any malicious software. We are able to synchronize between the local and active directories so we can catch users easily through their login names and IDs."

"The simplicity of the setup is the most valuable feature."

"The stability has been excellent."

"The most valuable feature of this solution is that the license offers everything."

"It's a product that is in continuous improvement and is following what the customer is asking for. They are taking inputs and designing new releases specifically according to the client and their needs."

"The initial setup is very straightforward and the solution is extremely user-friendly."

"It is a very stable solution."

More Sophos XG pros

Cons

"There are just some services that aren't available. For example, the Ethernet or point-to-point protocols. They could add these services to their product offering - especially services for ISPs."

"I believe there is room for improvement in machine learning and AI in Fortinet FortiGate. I would like to see more automation regarding AI and machine learning in Fortinet FortiGate."

"They could continuously focus their improvements on network perimeter security, as that's what they're best at."

"I mostly do administration, and I found Cisco to be the hardest major firewall manufacturer to deal with, with Fortinet FortiGate being the second hardest for me."

"Fortinet FortiGate needs to improve the logging and reporting. Additionally, the next-generation application's policies should be improved. When they were released they had bugs."

"Fortinet FortiGate can improve the integration with Active Directory. Additionally, I would like to have a Cloud Controller, such as they do in the Cisco Meraki solution."

"They could simplify their deployment process, especially when customers have existing devices."

"It would be a benefit if Fortinet would release a one-stop solution that is better integrated with other products and an automated emergency response system."

More Fortinet FortiGate cons

"The user monitoring could still be improved."

"We are now transitioning to another solution. The main reason for that is that managing all of the exceptions and troubleshooting all of the issues our users have had connecting to the internet has become too significant in terms of workload, compared to what we hope we will have with another solution."

"In the best of all worlds, we wouldn't have to make any exceptions. However, that is a big ask because a lot of that depends on how websites are constructed. For example, there are some very complex, application-oriented sites that we end up making exceptions for. It is really not that big an issue for us to make the exceptions. We feel like we are doing that without a huge impact on our security posture, but we do have to make some exceptions for complex sites, e.g., mostly SaaS-type sites and applications."

"Currently, I don't have a good way to see which of my rules are being used in the access control lists. I have numerous entries, but are they all still needed? A report that would show me my list of who is allowed and whether we're actually using it would be useful because I can then go clean up my list. It would be easier to manage. We would eliminate the vulnerability of unused services."

"The user-friendly interface of Sophos XG is acceptable but too complicated."

"The reporting could be improved in this solution by adding more details."

"The manuals or guides we are given are too simple. When we are implementing the product, it is difficult for us as we don't have more detailed information."

"The UI needs improvement because it can be a little weird at times."

"The number of ports, especially on the entry-level appliances, should be increased."

"The initial setup, specifically when activating the license, is a nightmare and is quite difficult."

"The vendor doesn’t publish the price on the website."

"The solution could improve by making the graphical interface better and increasing the performance."

More Sophos XG cons

Pricing and Cost Advice

"It is very cost-effective. You get features similar to other firewalls, such as Palo Alto, but at a lower price."

"It is a good product from a price perspective versus functionality."

"It's a very full-featured and it's priced well solution."

"The licensing scheme of Fortinet is better than Cisco. It is more logical."

"For the price, I'd rate it a ten because it's very cost-effective."

"Go for long term pricing negotiated at the time of purchase."

"Fortinet is the least expensive solution."

"Fortinet FortiGate is cheaper than Palo Alto. It is about 20% cheaper."

More Fortinet FortiGate pricing and cost advice

"It is appropriately priced for what they're doing for us. Considering the protection provided, I feel their pricing is spot-on."

"We save a ton of money and time. Previously, the numerous hits that we were receiving from our security tools, prior to implementing them, had to all be chased down, dispositioned, and endpoints had to be reimaged. It was just a ton of effort to do all that. That is where the savings from time and money come in."

"The solution is expensive. It's more expensive than the solution I previously used. Compared with the other cloud-based solutions, it's very competitive."

"The pricing is flexible. Sophos looks at a country's economy and offers flexible pricing. This is how they have managed to penetrate the market."

"For licensing the XG 210, we paid approximately $3000 for three years. There are no additional fees on top of this."

"Sophos XG is a reasonably priced solution."

"Sophos is very good when it comes to pricing."

"For every firewall, you will need to pay the license for the following year. If they don't pay for the license renewal, they basically won't get the support from Sophos."

"The cost could be lower especially if you want to add other features."

"It comes at a fair price as compared to some of the other products out there. Its price is in the middle. It is not the cheapest, and it is also not as expensive as Juniper, Check Point, and definitely Cisco. Nowadays, everybody is very cost-sensitive, and people don't want to spend unnecessary money, but even before that, it was a fairly priced product. You've got your choice of what license you want. There are basically two types of licenses, and it depends on what you need to do, and everything is included in that license. There is no cost for VPN and DMZ. You purchase the license, and you know upfront what you're getting or what you're not getting, and that's it. It is one license fee and done and dusted."

"There is no license required to use this solution."

More Sophos XG pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

865,384 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Computer Software Company

19%

Financial Services Firm

11%

Retailer

Manufacturing Company

Computer Software Company

15%

Comms Service Provider

Manufacturing Company

Financial Services Firm

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

Ask a question

Earn 20 points

Which is better - Palo Alto Networks NG Firewalls or Sophos XG?

Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...

See all answers

What are the main differences in features between Sophos XG and FortiGate 80F?

Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...

See all answers

What do you like most about Sophos XG?

IPS works smoothly.

See all answers

Comparisons

Cisco Secure Firewall vs Fortinet FortiGate

Compared 12% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 11% of the time

Cisco Meraki MX vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 4% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 4% of the time

More Fortinet FortiGate Competitors

Prisma Access by Palo Alto Networks vs Menlo Secure

Compared 18% of the time

Cisco Umbrella vs Menlo Secure

Compared 17% of the time

Prisma Access Browser vs Menlo Secure

Compared 13% of the time

Check Point Harmony SASE (formerly Perimeter 81) vs Menlo Secure

Compared 10% of the time

Symantec Endpoint Security vs Menlo Secure

Compared 9% of the time

More Menlo Secure Competitors

OPNsense vs Sophos XG

Compared 9% of the time

Netgate pfSense vs Sophos XG

Compared 9% of the time

SonicWall TZ vs Sophos XG

Compared 5% of the time

Palo Alto Networks NG Firewalls vs Sophos XG

Compared 4% of the time

Sophos XGS vs Sophos XG

Compared 4% of the time

More Sophos XG Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

August 2025

Download Fortinet FortiGate product report

Buyer's Guide

Menlo Secure

August 2025

Download Menlo Secure product report

Buyer's Guide

Sophos XG

July 2025

Download Sophos XG product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

Menlo Security Web Security, Menlo Web Security

No data available

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Menlo Security Secure Application Access

Menlo Security Secure Application Access makes zero trust access easy, giving users secure connectivity to private applications, including web and legacy applications. At the core of Secure Application Access is the Menlo Secure Cloud Browser, which fetches, secures and delivers the content for users.

In addition to providing simple-to-deploy, clientless ZTA, Secure Application Access and the Menlo Secure Cloud Browser protect applications from attacks such as session hijacking, cookie manipulation, and other tactics that employ protocol manipulation.

Secure Application Access protects applications from Internet threats and provides granular controls for added protection of the application and associated data. These security controls include Read-only/Read-write, Upload/download, Copy/paste, AV scanning, Sandboxing, and Data Loss Prevention.

Last Mile Data Protection

Menlo Last-Mile Data Protection identifies and prevents sensitive data from leaving your company by meticulously inspecting all file uploads and user input across browsing sessions. Leveraging the Secure Cloud Browser, users are protected from the internet and you can protect your organization from data loss with comprehensive traffic monitoring and controls. This approach addresses the growing concerns surrounding data leakage in the age of AI tools like ChatGPT.

By identifying sensitive data through file types, regular expressions, or predefined libraries, Menlo Last-Mile Data Protection empowers security teams to regulate data input into AI platforms and prevent unauthorized uploads. This capability provides crucial protection for intellectual property, PII, and other confidential information.

The solution leverages the Menlo Cloud Security Platform's visibility and control over traffic to reliably detect and prevent data leaks originating from both browser submission forms and non-browser traffic. With the ability to inspect encrypted web traffic, Menlo Last-Mile Data Protection enforces DLP policies consistently across all users and devices, ensuring comprehensive data protection.

Menlo Security

Sophos XG is a versatile network security solution that offers network protection, firewall management, VPN access, web filtering, and intrusion prevention, providing comprehensive security for businesses from small offices to large enterprises.

Sophos XG stands out for its Synchronized Security, easy setup, and robust templates. It manages VPN access, protects against threats, and handles load balancing and traffic monitoring. The cloud-based management, centralized dashboard, and detailed logging make it user-friendly and reliable. Integration of features like email protection, SD-WAN, and unified threat management ensures a broad spectrum of security needs are covered. However, it could benefit from improvements in network security, user portals, technical support, and more scalable SD-WAN features.

What are the key features of Sophos XG?

Synchronized Security: Orchestrates threat intelligence sharing between endpoints and firewall.
Unlimited SSL VPN Clients: Provides extensive VPN client support for secure remote access.
Cloud-Based Management: Facilitates remote administration with a cloud-hosted platform.
Intrusion Prevention: Detects and blocks potential threats in real-time.
Centralized Dashboard: Offers a comprehensive view of network security status.

What benefits and ROI should users look for in reviews?

Scalability: Easily adapts to growing business needs.
User-Friendliness: Simplified setup and intuitive management.
Effective Threat Protection: Provides robust security against a wide range of threats.
Comprehensive Reporting: Delivers detailed insights and analytics.
Cost-Effectiveness: Competitive in pricing with flexible deployment options.

Sophos XG is implemented across industries such as healthcare, education, and finance to secure sensitive data and ensure regulatory compliance. It aids in endpoint protection, application control, load balancing, and traffic monitoring essential for these industries. Enhancing network security, simplifying VPN setup, and integrating adaptive security features remain focal points for businesses.

Sophos

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Information Not Available

Buyer's Guide

Menlo Secure vs. Sophos XG

July 2025

Free Report: Menlo Secure vs. Sophos XG

Find out what your peers are saying about Menlo Secure vs. Sophos XG and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,384 professionals have used our research since 2012.

See our Menlo Secure vs. Sophos XG report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.