Sophos UTM vs Sophos XG comparison


Comparison Buyer's Guide

Executive Summary

Categories and Ranking

Fortinet FortiGate
Average Rating
Number of Reviews
Ranking in other categories
Firewalls (2nd), Software Defined WAN (SD-WAN) Solutions (2nd), WAN Edge (1st)
Sophos UTM
Average Rating
Number of Reviews
Ranking in other categories
Unified Threat Management (UTM) (3rd)
Sophos XG
Average Rating
Number of Reviews
Ranking in other categories
Firewalls (6th)

Mindshare comparison

As of June 2024, in the Firewalls category, the mindshare of Fortinet FortiGate is 22.6%, up from 20.2% compared to the previous year. The mindshare of Sophos UTM is 2.3%, down from 2.8% compared to the previous year. The mindshare of Sophos XG is 14.3%, up from 9.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Unique Categories:
Software Defined WAN (SD-WAN) Solutions
WAN Edge
Unified Threat Management (UTM)
No other categories found

Q&A Highlights

Miriam Tover - PeerSpot reviewer
Feb 26, 2023

Featured Reviews

Ahmad Aloqlah - PeerSpot reviewer
Jan 23, 2022
Powerful firewall with a user friendly interface and content filtering
Our primary use case is mainly for firewalls. We tried FortiClient as well and FortiToken, but we mainly use it for the firewall. The solution is deployed on-prem. We are using the latest version The most valuable feature is the interface, which is very user friendly. We are utilizing most of the…
AlaaMady - PeerSpot reviewer
Jul 20, 2022
A useable solution for small businesses who are willing to rely on cloud-based, centralized management of the software
We use it as an internet firewall, and as our web application firewall I don't believe it has improved our organization; I don't actually like the product because of the features it is missing. I would like this solution to support ICAP. Also, they no longer support on-premises management, and…
May 23, 2019
Offers a high level of visibility of what's happening on your network or on your client machines
There was a big issue with the Cyberoam and with the SG units as well, i.e. the previous Sophos UTM model. With Sophos XG, you get the chance to block what sites operate on SSL or that operate with HTTPS, without the need of extracting and distributing a certificate. On older Cyberoam and Sophos SG old versions, if you wanted to block something like YouTube or Facebook or any other websites that operate with HTTPS, you had to extract the certificate. Then you had to export that certificate. Then you had to re-import that certificate in all the user browsers. The only problem was if you needed to use an active directory where those certificates would be automatically thrown into the user browsers once they logged in to the domain. For a scenario like mine where you don't have a group policy, it is a disaster and ends up with you setting the rules to block certain websites with HTTPS on the firewall, even while they are not being blocked so that the user will still have access to them. This problem is now 100% sorted out with Sophos XG. Now you can actually block whatever you want, whether it's using HTTPS or HTTP keys from the firewall without the need for extracting certificates. That's a major improvement. That problem with the HTTPS settings was a huge issue. I know other people must be enjoying that it's sorted out now. It was a serious and major issue for Sophos. The only issue that Sophos XG now needs to improve is the product's reporting capabilities.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:


"It is a one box solution, which covers most of the edge device’s requirements."
"One of the nice things about FortiGate is that it can be deployed on the cloud or on-premises. You can actually do both. That's the biggest reason why I stick with this solution as opposed to something like Cisco Meraki. Another nice thing is that I can log directly into a FortiGate or get to it through their FortiCloud access products. They're pretty reliable and consistent. One of the reasons why I started using the product was their single pane of management. I can deploy their line of firewalls in conjunction with their switching and access points, and I can manage the entire network from one interface. I don't have to log into one interface for the firewall, another one for the access points, and another one for the switches. These firewalls have access point controller functionality built right into the system, so I don't even have to purchase additional devices to manage them."
"The initial setup of Fortinet FortiGate was straightforward."
"The solution is stable."
"Provides good firewall security and has great VPN features."
"We are very happy with the general bandwidth agility we have seen from one website to another website."
"The GUI is good."
"User-friendly and affordable security solution that's recommended for SMB customers. This solution has good technical support."
"The stability of Sophos UTM is very good. The solution has been stable since Sophos took over Cyberoam which was the original company providing this solution."
"It helped to connect our satellite offices to the main Amazon infrastructure in a circular way."
"Efficient and effective - it's easy to separate rules."
"What I like about Sophos UTM is that it improves my company's security. The solution is easy to set up, which I like, and it's very stable."
"It allows me to easily connect with more than forty-five remote sites and more than fifty remote users between IPsec and SSL VPN, applying the web filter and application filter to ensure a secure connection."
"Sophos UTM has improved the porting section. It has improved security by seeing the gaps. For example, when you discover that an entry has been using a certain application, with Sophos UTM acting as a Layer 7 firewall, you can block the application, not the port."
"Installing Sophos UTM is straightforward. The deployment itself doesn't take long, but you have to spend some time planning and waiting for the hardware to be delivered."
"We find all of the features valuable because together they fit the needs of our customers."
"Price-wise the solution offers acceptable rates. You can find cheaper solutions on the market but when you go cheaper you have fewer features. Today, based on iQuate market the price is very reasonable and affordable, and it's good if you get a good discount. Discounts can be offered by the vendor. If it's a competitive upgrade which means the customer is upgrading from another vendor, Sophos provides extra discount so they can win the deal. In general, it is a good price."
"Sophos XG's price is right, and it's easy to manage. It's a good fit for our current needs at the moment."
"It has a very friendly interface like the Cyberoam iNG units, it has customizable policies, it has proper templates that you can even modify, and you can customize the rules, down to each single user."
"Sophos is a stable solution, and we haven't had any bugs or limitations."
"There are many features. VPN, firewalling, and intrusion detection are the main features that are most useful for us at this time."
"This kind of strategic technology makes it much easier to remove malware and address vulnerabilities quickly."
"The most valuable is the synchronized security between Sophos XG and Sophos endpoint because it provides a lot of visibility about unknown applications. The endpoint shares the information of unknown applications, and you can learn about those applications and create policies to allow or block those applications."
"The security of Sophos XG is very good."


"Fortinet needs to overhaul its documentation."
"The non-error conserve mode has room for improvement."
"There is one big configuration file with no separations for the unique VDOMs. Maybe they could separate individual VDOM configuration files with the root VDOM configuration file referencing the individual VDOM config files.​"
"I would like to see a more intuitive dashboard."
"As far as wanting more scalability or things in the network diagram, it's going to cost you."
"A couple of things I've seen that need improvement, especially in terms of a hard coding. The driver-level active moment really is out-of-the-box and we have to have contact the customer support and sometimes it is difficult to resolve."
"Some of the web policy reports could be improved."
"It claims it does DLP, but the degree and level of controls are very basic."
"The solution could be improved by adding cloud soundboxing."
"The five-factor authentication needs improvement."
"The initial setup may be difficult for those not familiar with the product."
"The reporting could improve by providing information on where, or from which device attacks are coming from. We are already given the country where the attack is coming from but more information would be beneficial."
"Support for IKEv2 is needed in this solution."
"I would like to see the SD-WAN feature improved."
"The scalability of the product is an area with certain shortcomings where improvements are required."
"The reporting system needs to allow for customizations because many reports do not include details that we expect."
"I would like the update process to be easier, to update the firmware of the boxes. I think it's much better automatically than having to do it manually: Download the file, do network discovery. I they can make the update process much more automatic that would help."
"The interface can bit a bit more user-friendly."
"I'm just a sole proprietor for IT support, and from my perspective, there could be better ways to educate a proprietor, such as myself, on how to set it up, and program it, and manage it. They do tend to have support, but a lot of times, it is for larger networks. I need something that is simpler and more rudimentary as to how to go about setting up and configuring the firewall, setting up the rules, and that type of thing. So, if there is a missing component there, that would be it."
"Sophos XG's web server protection and log viewer could improve. They should also introduce sandboxing."
"In the next release, I would like to see improvements made to the policy and simplify the policy-making, as the complexity of it makes it really tough."
"The user interface could be better."
"One area where Sophos XG could improve is in its patch management system."
"Their tech support is not great."

Pricing and Cost Advice

"The beauty is the price performance ratio is great with FortiGate. It provides all the features we needed and the price is comparable with others' firewalls. The price is quite competitive with the firewalls with similar features."
"The license for Fortinet FortiGate is affordable in my country."
"It is affordable. Palo Alto is much more expensive than Fortinet."
"Fortinet's pricing is more straightforward than other solutions. If Fortinet doesn't stick out when you're searching for a solution, you are a glutton for punishment. You only need to know two things when purchasing a Fortinet solution: your total bandwidth and bandwidth at the site. You need to estimate the future bandwidth with other solutions if your customer plans to upgrade."
"Fortinet FortiGate gives you most of the features in one license."
"The price for the device and software is high. However, the solution is of good quality and has a lot of features."
"​We saved a bundle by not needing all the past appliances from an NGFW.​"
"Fortinet is competitive price-wise."
"The price of the solution is high. The price from USD to my currency is expensive."
"The price is something that one will need to consider."
"I have no problem with the cost or licensing of this solution. This is a primary reason whay I wanted this solution. It does the same thing cheaper than other name brands."
"Our licensing fees are paid on a monthly basis."
"It will cost approximately $67 US per device. We have 300 devices in our organization."
"​In the case of a software/virtual appliance subscription, you pay by protecting user/IP addresses. You can do this to as much hardware resources as you like.​​"
"Pricing for Sophos UTM is OK. Here in Egypt, many companies use the solution because of its price and features. My company pays the Sophos UTM license fee yearly."
"There is a license for the device and for the software. We pay annually for the solution and the cost is competitive."
"At first, I thought the price was very high. But when I read about the machine's features, we decided to go with it."
"The price is good for the moment."
"The price is not reasonable."
"The price is less expensive compared to others."
"The price of Sophos is reasonable. It's not too expensive — I think it's worth it."
"The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else."
"We bought the three-year license, and there are no additional costs."
"The price of Sophos XG is reasonable."
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
789,728 professionals have used our research since 2012.

Comparison Review

it_user216600 - PeerSpot reviewer
Jan 3, 2016
Sophos UTM vs. Fortinet FortiGate
I have used both Sophos and Fortinet products in production and I have found the Sophos UTM appliances (hardware and virtual) to be a better fit most of the time -- with a few caveats which I will touch on below. In both instances, the transition from TMG will be mostly straightforward. The main…

Answers from the Community

Miriam Tover - PeerSpot reviewer
Feb 26, 2023
Feb 26, 2023
The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. They can not be compared with each other because the price, license, firewall throughput, and TLS Inspection are completely different. You can see the Sophos UTM brochure in this link:
2 out of 18 answers
it_user1000680 - PeerSpot reviewer
Feb 25, 2019
Please Select Sophos, it will make your internet speed is perfectly, and outstanding protection for your network
Feb 25, 2019
Sorry Nick, we are expertise in WatchGuard not Sophos! I Hope u find a better option tan me! Un saludo / Greetings Sinuhé Moscoso Serrano Coordinación de Sistemas Teléfono: 91882 29 29 Dirección: Avenida Punto Es, Nº 6 Tecnoalcalá. 28805 - Alcalá de Henares (Madrid). web: e-mail: _____ La información contenida en este mensaje y/o archivo(s) adjunto(s), enviada desde SOLUCIONES INFORMÁTICAS ADV S.A., es confidencial/privilegiada y está destinada a ser leída sólo por la(s) persona(s) a la(s) que va dirigida. Le recordamos que sus datos han sido incorporados en el sistema de tratamiento de SOLUCIONES INFORMÁTICAS ADV S.A. y que siempre y cuando se cumplan los requisitos exigidos por la normativa, usted podrá ejercer sus derechos de acceso, rectificación, limitación de tratamiento, supresión, portabilidad y oposición/revocación, en los términos que establece la normativa vigente en materia de protección de datos, dirigiendo su petición a la dirección postal AVDA. PUNTO ES, 6 TECNOALCALÁ CAMPUS UNIVERSIDAD - ALCALÁ DE HENARES (28805) o bien a través de correo electrónico Si usted lee este mensaje y no es el destinatario señalado, el empleado o el agente responsable de entregar el mensaje al destinatario, o ha recibido esta comunicación por error, le informamos que está totalmente prohibida, y puede ser ilegal, cualquier divulgación, distribución o reproducción de esta comunicación, y le rogamos que nos lo notifique inmediatamente y nos devuelva el mensaje original a la dirección arriba mencionada. Gracias. _____ De: Nick Regan from IT Central Station Enviado el: lunes, 25 de febrero de 2019 13:30 Para: Asunto: Seeking expertise in Sophos UTM Hi Sinuhe, Can you help out a colleague with the following question about Sophos UTM: ----- What Is The Biggest Difference Between Sophos UTM and Sophos XG? One of the most popular comparisons on IT Central Station is Sophos UTM vs Sophos XG . People like you are trying to decide which one is best for their company. Can you help them out? What is the biggest difference between Sophos UTM and Sophos XG? Which of these two solutions would you recommend to a colleague evaluating firewalls and why? Thanks for helping your peers make the best decision! ----- Please reply to this email with your response or post your answer here. You've been a member of IT Central Station since June 2018. In a market full of vendor hype, we provide free connections between real users of Sophos UTM to share advice and make better buying decisions. Thanks for being part of the community. Nick Regan Community Director, IT Central Station IT Central Station 244 Fifth Avenue New York, NY 10001 (646) 328-1944 um-nqn 297002 To change notifications, please visit your subscription page or unsubscribe completely. gitbdelVkUyRGkxK1IwUTBISXZ6U1pPQ2MzNXVCYkNjMW9COHBLbk4xUC9qWGV5MlNpL1lxODV2YjIvKzF5UmpsVlQxRy0tS3lOUXZ5ajBibzJ5QitrMnlqMEtLQT09--c0c4d23bcb28e517b482665721a97d17d9fde2c1gitbdel

Top Industries

By visitors reading reviews
Educational Organization
Computer Software Company
Comms Service Provider
Manufacturing Company
Computer Software Company
Comms Service Provider
Educational Organization
Computer Software Company
Comms Service Provider
Manufacturing Company

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
What Is The Biggest Difference Between Sophos UTM and Sophos XG?
The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. ...
What do you like most about Sophos UTM?
The most valuable feature of Sophos UTM is the endpoint protection feature.
What is your experience regarding pricing and costs for Sophos UTM?
You cannot really say that the solution is expensive, given the protection it gives.
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
What are the main differences in features between Sophos XG and FortiGate 80F?
Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate
No data available



Sample Customers

1. Amazon Web Services 2. Microsoft 3. IBM 4. Cisco 5. Dell 6. HP 7. Oracle 8. Verizon 9. AT&T 10. T-Mobile 11. Sprint 12. Vodafone 13. Orange 14. BT Group 15. Telstra 16. Deutsche Telekom 17. Comcast 18. Time Warner Cable 19. CenturyLink 20. NTT Communications 21. Tata Communications 22. SoftBank 23. China Mobile 24. Singtel 25. Telus 26. Rogers Communications 27. Bell Canada 28. Telkom Indonesia 29. Telkom South Africa 30. Telmex 31. Telia Company 32. Telkom Kenya
One Housing Group
Information Not Available
Find out what your peers are saying about Sophos UTM vs. Sophos XG and other solutions. Updated: May 2024.
789,728 professionals have used our research since 2012.