Sophos UTM vs Sophos XG comparison

You must select at least 2 products to compare!
Sophos Logo
27,025 views|19,279 comparisons
Sophos Logo
54,354 views|41,125 comparisons
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Sophos UTM and Sophos XG based on real PeerSpot user reviews.

Find out in this report how the two Unified Threat Management (UTM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Sophos UTM vs. Sophos XG Report (Updated: November 2022).
654,218 professionals have used our research since 2012.
Q&A Highlights
Question: What Is The Biggest Difference Between Sophos UTM and Sophos XG?
Answer: Sophos UTM is no longer being developed, according to our reseller. All the development effort is going into XG. So XG will be the only Sophos firewall going forward, UTM will eventually be end of life.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
"Technical support is very responsive.""The most valuable feature is the price. I've been requesting prices all over these years between different solutions like Fortinet, Palo Alto, and Check Point and Sophos has been the cheapest and the best of all of them that I have tried. I have been working with Fortinet, it's a fact that the price is surprisingly better.""Sophos is a unified solution. We have anti-virus protection, firewall rules, knotting, and DACC all in one box.""Sophos UTM's best feature is SIM in the cloud, which combines the gateway solution and endpoint solution to send telemetry data to the cloud and provides full contact visibility regarding security.""Monitoring and reporting are areas that need improvement.""The most valuable feature of Sophos UTM is the efficiency and mail filtering module.""Installing Sophos UTM is straightforward. The deployment itself doesn't take long, but you have to spend some time planning and waiting for the hardware to be delivered.""Sophos UTM is the simplest of these products to setup."

More Sophos UTM Pros →

"The two most valuable feature of Sophos XG is, one the option to filter according to different applications and two, the integration with the Active Directory.""Sophos is a comrehensive solution which allows me to configure all the attendant products, such as Sophos' firewall, Endpoint and Encryption features.""Sophos XG is easy to use.""I like the dashboard, the interface, the management console, and the remote login.""It is stable, flexible, and easy to use. It has got a web management portal that can be accessed from anywhere.""It is easy to implement.""What I have found most valuable with the Sophos XG is it's a key component of the Intercept X EDR environment. You have to have it to receive the full benefit. If you've you are using Sophos SG firewalls, they're great firewalls and in many ways, I prefer them to the Sophos XG. Since I have set them up, programmed them, and manipulate firewall rules, et cetera, the Sophos SG's a better interface. However, the Sophos XG's very powerful. I prefer it over other solutions I have used, such as Cisco Meraki and SupportNet, I don't like them. They're not very friendly to people who have to set them up and implement them.""Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping."

More Sophos XG Pros →

"The solution needs to do better at covering mobile devices, although they may have an integrated solution for that purpose.""Anti-phishing functionality should be improved.""Flexibility in pricing could be improved. It's more rigid in its pricing compared to its competitor: Kaspersky.""Updates come out agonizingly slowly, a trickle.""Doesn't provide antivirus for individual computers.""There needs to be some improvement in the IPsec VPN. There is implementation only support. I have version one. I'd be most interested in having IP version two from the protocol.""The integration capabilities could be better.""I think that additional metrics features are needed to be able to monitor other areas or to monitor as much as you can, at a fine-grain resolution."

More Sophos UTM Cons →

"Data traffic analysis could be better. I think Fortinet products like FortiAnalyzer are very effective in analyzing data traffic. I think it's better than Sophos. It could also be more stable.""The pricing can be high unless you choose a longer contract.""I am using the Azure Active Directory in my company and it was complicated to integrate this solution with Azure.""Sophos XG could improve the policies, they are a bit confusing when creating them. There are many options that make it confusing and it could be simplified.""Support could be improved.""I'd like the dashboard to be improved. It could be a bit more customizable.""There should be web caching to improve bandwidth utilization. It should have a very good caching feature. That's because we are in a very poor continent, and the connectivity cost is very high. We have low bandwidth, and the intensive usage of bandwidth is not easy here in Africa. If they improve services for web caching, it would be better.""In the next release, I would like to see improvements made to the policy and simplify the policy-making, as the complexity of it makes it really tough."

More Sophos XG Cons →

Pricing and Cost Advice
  • "It is the cheapest product available. It's good if you have a low budget."
  • "We pay for the service on a yearly basis. The last time we paid was in June, for a year. At the time, it was about $20,000."
  • "Our licensing fees are paid on a monthly basis."
  • "It's reasonably priced."
  • "This product is free for home users. The more expensive products have better performance."
  • "I think the pricing of Sophos is very fair."
  • "It is necessary to pay for a licence to use the solution, but it is not very expensive."
  • "The appliance should be purchased and there is a fee for the license."
  • More Sophos UTM Pricing and Cost Advice →

  • "It is not very expensive."
  • "We prepaid in advance to get the max discount."
  • "Sophos XG isn't expensive compared to Check Point."
  • "The price is in the mid-range and it is very good for small to medium-sized businesses."
  • "When you compare with Barracuda, Sophos is quite a bit cheaper."
  • "Licensing fees are on a yearly basis."
  • "For our company, the price was reasonable."
  • "It is not that expensive compared to the other solutions. It is about the same price range as Fortigate, which we used previously. Licensing is on a yearly basis."
  • More Sophos XG Pricing and Cost Advice →

    Use our free recommendation engine to learn which Unified Threat Management (UTM) solutions are best for your needs.
    654,218 professionals have used our research since 2012.
    Answers from the Community
    Miriam Tover
    Juan C. Sanchez Pignalosa - PeerSpot reviewerJuan C. Sanchez Pignalosa
    Real User

    The biggest difference between Sophos SG and Sophos XG is performance. 

    Now, there's even a newer Hardware Platform (same OS as Sophos XG, which is called SFOS) - the Sophos XGS which has different chipset architecture, to attend each security module, with its newest feature called XStream Technology. 

    Besides that, the GUI is very different. Nevertheless, it's worth trying the Sophos XG or XGS, since its GUI is getting overhauled for better performance and easier management, by each new release.

    Alexandre RASTELLO - PeerSpot reviewerAlexandre RASTELLO
    Real User


    The new appliances XGS have a dedicated streaming CPU (Xstream), in addition to the main CPU.

    I have personally tested the differences between the XG and XGS similar appliances. The result is spectacular. 30% more perf minimum:

    The UTM-9 is soon end-life. Sophos security staff is now focused on SFOS 18, XG, XGS.

    To respond to the question "the biggest difference", I think is the "Synchronized Security":

    The firewall is one of the full security solutions centralized in Sophos Central:

    At most of our customers, we implement a Sophos Endpoint locally on servers and workstations and firewall XGS. The synchronized security interact between firewall and endpoints. This can resolve the problem with the "lateral movement" of an infected computer. It can isolate a computer from the network when detected as infected:

    It can be extended to secure cloud systems with Sophos ClouOptix:

    Tested with VM in AWS and Azure, work 5*!

    Another big difference is the Webserver Application Firewall. All my customers with an internal webserver to be published in the net are protected with this "reverse proxy" (WAF). It really does the job of protecting IIS, Apache, etc. from externals attacks.

    Another trick is the SSL VPN sites to sites. When a branch office is implemented with a front ISP router, sometimes the NAT traversal is not possible, for IPSEC VPN connections (UDP 500). With this SSL VPN,  Simple NAT works and gives an SSL 128-bit AES encryption.

    Finally, I have a lot of experience in implementing UTM and, now, XG(S). No way, the log is a big difference, easier to use as in Fortigates! It is similar to CheckPoint firewalls.

    For my experience, no way: -> Sophos XG(S)

    Here is an interesting link on differences between UTM and XG:



    Richard Artes - PeerSpot reviewerRichard Artes
    Real User

    My understanding is that UTM is the software; SG is the hardware. You can buy Sophos UTM running on SG hardware and then later upgrade to the XG running on the same hardware.

    Richard Artes - PeerSpot reviewerRichard Artes
    Real User

    I've been told by our Sophos reseller that Sophos are pushing the XG as next generation firewall, and developing it to at least as good as UTM. So XG will be the firewall of choice moving forward. UTM will not be developed further, according to him.

    Anthony Petecca - PeerSpot reviewerAnthony Petecca
    Real User

    To my understanding, UTM and XG are from different legacy companies that
    are now owned my Sophos. During my time researching anti-virus, UTM makes
    more sense for our needs seeing as XG is primarily a firewall. From the
    information I was able to find during the time of research, it seemed most
    of the community felt XG had feature gaps from UTM.

    Suheyl Khaki - PeerSpot reviewerSuheyl Khaki

    UTM specifically SG series is a very mature and stable platform. It lacks some of the new features of XG; however has a very strong feature set. If you are looking for stability, ease of use and something well documented and understood than I suggest going this way. If however you are looking for a strong level of integration and have a greater than 3 year horizon then I suggest XG.

    Wifi integration for example works better on the new platform.

    Javier Medina - PeerSpot reviewerJavier Medina
    Real User

    There are several differences since there are 2 versions, 

    XG firewall has integrations with other products like intercept X and admin from Sophos central. 

    SG UTM has less integration since it's a separate product. It was formerly Astaro firewall, but the most advanced features have been only set to the XG. 

    There are appliance and software versions of both products. Depending on your need you might choose one or another. But basically, look at them as 2 different firewalls.

    Hh Ho - PeerSpot reviewerHh Ho

    In my company, we use UTM Sophos and I am satisfied with it, but I didn’t use Sophos XG series (but as I heard it is great too).

    Questions from the Community
    Top Answer:As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite good. The most valuable features for me are their web and email filtering. I would… more »
    Top Answer:Sophos UTM is no longer being developed, according to our reseller. All the development effort is going into XG. So XG will be the only Sophos firewall going forward, UTM will eventually be end of… more »
    Top Answer:We use Sophos UTM for endpoint antivirus.
    Top Answer:From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know the firewalls change every 5 to 7 years as stated but you really do need to… more »
    Top Answer:Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat signatures and updates. I also appreciate that I can just import addresses and URL… more »
    Top Answer:Hi Arvind P ,  The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Factor. The Sophos XG appliance that offers a direct competition to the Fortigate 80F… more »
    Average Words per Review
    out of 48 in Firewalls
    Average Words per Review
    Also Known As
    Learn More

    Sophos UTM is a unified threat management platform designed to protect your businesses from known and emerging malware including viruses, rootkits and spyware. The solution provides a complete network security package with everything your organization needs in a single modular appliance.

    Sophos UTM Features

    Sophos UTM has many valuable key features. Some of the most useful ones include:

    • Web and Email Filtering
    • General Management
    • Network Protection
    • Network Routing and Services
    • Advanced Threat Protection
    • Authentication
    • Email Encryption and DLP
    • Web Policy
    • End-User Portal
    • VPN IPsec Client, VPN SSL Client, and Clientless VPN
    • Web Application Firewall Protection
    • UTM Endpoint Protection and Management
    • SEC Endpoint Integration
    • Logging and Reporting

    Sophos UTM Benefits

    There are many benefits to implementing Sophos UTM. Some of the biggest advantages the solution offers include:

    • Simplifies your IT security without the complexity of multiple point solutions
    • Intuitive interface to help you quickly create policies to control security risks
    • Provides clear, detailed reports to give you the insight you need to improve your network performance and protection
    • Complete control to block, allow, shape and prioritize applications
    • Two-factor authentication with one-time password (OTP)
    • Integrated wireless controller
    • Allows you to connect remote offices with easy VPN and Wi-Fi

    Reviews from Real Users

    Below are some reviews and helpful feedback written by PeerSpot users currently using the Sophos UTM solution.

    PeerSpot user Dana B., Network Administrator at a manufacturing company, says “The web and email filtering are the two biggest and most valuable aspects of the solution for us. The solution overall has just been a good, cost-effective solution for us. The solution offers a lot of functionality. The solution scales well. We've found the technical support to be helpful. The stability and performance are quite good.”

    A Technical Director at a security firm mentions, "Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator."

    Marek M., Senior Network Engineer at a computer software company, comments, “Sophos UTM is the simplest of these products to set up. If you follow the instructions using the wizard, which is just a few steps, then you will have a firewall to protect you and your customer.”

    A Software Sales Manager at a tech services company explains, “The overall visibility of the console is what I find most valuable, plus it's very user-friendly. It can be integrated with other solutions such as SOAR, SIEM, etc., even when you have an existing firewall. I really like that the console can be integrated. You'll see everything on the same window, and the single window feature of the machine is so good. These are the features I really like.”

    James D., IT Manager at Manual Workers Union, states, “The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money. The solution has many great features. From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. The initial setup is simple. We enjoy its general stability. The solution can scale. So far, the solution has been problem-free.”

    Sophos XG Firewall is a complete firewall solution that provides all the real-time security and insights you need to protect your network from ransomware and advanced threats. Sophos XG Firewall provides visibility into suspicious users, unknown and unwanted apps, encrypted traffic, and other threats. With its advanced artificial intelligence capabilities, Sophos XG Firewall immediately identifies potential risks and intrusions on web servers and networks.

    Sophos XG Firewall Features

    Sophos XG Firewall offers a wide range of security features, including:

    • Application control: Prevent widespread infections with XG’s Security Heartbeat. XG Firewall automatically identifies the source of an infection on a network and automatically prevents it from accessing other network resources.

    • Synchronized user ID: Eliminate the need for client or server authentication agents by sharing user identification between the endpoint and the firewall through Security Heartbeat.

    • Centralized management: Easily manage all activities with Sophos Central. The XG cloud management platform allows users to easily set up, manage, and monitor XG firewalls along with other Sophos products. Some of Sophos Central’s features include alerting, backup management, one-click firmware updates, and rapid deployments of new firewalls.

    • Lateral movement protection: Automatically isolate compromised systems at every point in the network to stop attacks dead in their tracks.

    • Network protection: Protect networks from attacks and threats while providing secure network access.

    • Web protection: Gain clear visibility and control over all users’ web and application activity.

    • Web server protection: Solidify web servers and applications against hacking attacks while providing secure web access.

    • Email protection: Consolidate email protection with anti-spam, DLP, and encryption. XG’s Live Anti-Spam provides protection from the most recent spam campaigns, phishing attacks, and malicious attachments. Data Loss Prevention automatically triggers encryption on sensitive data in outgoing emails.

    Reviews from Real Users

    Sophos XG Firewall stands out among its competitors, among other reasons, for its intrusion detection capabilities, its user-friendly management platform, and in general, for being a complete and robust firewall solution.

    Niranjan P., a network & system support engineer, writes, “Sophos is a comprehensive solution which allows me to configure all the attendant products, such as Sophos's firewall, endpoint, and encryption features. A nice feature of Sophos is that it offers in sync and heartbeat security. When my clients have a perimeter involving Sophos firewall and endpoints with Sophos Endpoint, they can communicate with each other.”

    Antonio D., sales manager at INFOSEC, notes, “The product has a console that is based in the cloud for all their products. In this console, they have email security, firewall security, endpoint security, et cetera. All of the products on offer in the console are very useful for us. The solution is stable. The solution works well for enterprises and large-scale organizations.”

    Antony M., ICT/HMIS supervisor at a healthcare company, writes, “The VPN feature is the most valuable. It has come in handy during this period when people are working from home. The filtering feature is also valuable because you can easily filter the sites that you don't want to visit. You can also set timely surfing quotas”

    Learn more about Sophos UTM
    Learn more about Sophos XG
    Sample Customers
    One Housing Group
    Information Not Available
    Top Industries
    Financial Services Firm14%
    Comms Service Provider11%
    Manufacturing Company11%
    Comms Service Provider26%
    Computer Software Company19%
    Manufacturing Company11%
    Financial Services Firm11%
    Healthcare Company8%
    Comms Service Provider8%
    Comms Service Provider25%
    Computer Software Company18%
    Media Company4%
    Company Size
    Small Business59%
    Midsize Enterprise21%
    Large Enterprise20%
    Small Business29%
    Midsize Enterprise22%
    Large Enterprise49%
    Small Business62%
    Midsize Enterprise24%
    Large Enterprise14%
    Small Business34%
    Midsize Enterprise21%
    Large Enterprise45%
    Buyer's Guide
    Sophos UTM vs. Sophos XG
    November 2022
    Find out what your peers are saying about Sophos UTM vs. Sophos XG and other solutions. Updated: November 2022.
    654,218 professionals have used our research since 2012.

    Sophos UTM is ranked 1st in Unified Threat Management (UTM) with 39 reviews while Sophos XG is ranked 6th in Firewalls with 134 reviews. Sophos UTM is rated 8.4, while Sophos XG is rated 8.0. The top reviewer of Sophos UTM writes "Great web and email filtering with reasonable pricing". On the other hand, the top reviewer of Sophos XG writes "Light and stable with excellent real-time control ". Sophos UTM is most compared with pfSense, Fortinet FortiGate, OPNsense, Untangle NG Firewall and Cisco Secure Firewall, whereas Sophos XG is most compared with Fortinet FortiGate, pfSense, OPNsense, Cisco Secure Firewall and Sophos XGS. See our Sophos UTM vs. Sophos XG report.

    We monitor all Unified Threat Management (UTM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.