Try our new research platform with insights from 80,000+ expert users

Sophos XG vs Sophos XGS comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 5, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiGate
Sponsored
Ranking in Firewalls
2nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
317
Ranking in other categories
Software Defined WAN (SD-WAN) Solutions (1st), WAN Edge (1st)
Sophos XG
Ranking in Firewalls
4th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
198
Ranking in other categories
No ranking in other categories
Sophos XGS
Ranking in Firewalls
14th
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
82
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of January 2025, in the Firewalls category, the mindshare of Fortinet FortiGate is 20.3%, up from 17.4% compared to the previous year. The mindshare of Sophos XG is 11.5%, up from 9.2% compared to the previous year. The mindshare of Sophos XGS is 1.8%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Firewalls
 

Featured Reviews

EhabAli - PeerSpot reviewer
Efficient, user-friendly, and affordable
In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.
SherifFouad - PeerSpot reviewer
Gives us customizable policies, modifiable templates, and customized rules for single users
The major problem that I am facing, and I know that others are facing as well, is with the HTTPS classic, in general, or any classic that works on Secure Socket Layers. Let's say I set up a rule to block users from accessing YouTube or Facebook. The rule will only block the HTTP traffic, which is non-secure traffic. But most websites right now, most of the reputable web services providers, for extra security for their own web servers and for the user's security, provide a connection over Secure Socket Layer. The problem comes when you are trying to block, or allow, similar traffic that uses HTTPS. You have to create a certificate and import it into the users' web browsers, whatever they are using. Now, this is not a problem when you're dealing with users stationed and fixed in a specific site or location. They are using desktops, they will never take the desktops and go home with them, nor will they ever take the desktops and travel to another country, or another site with it. The problem occurs when you're dealing with roaming users who use laptops and have to move between different sites that have different types of policies applied to them. You have to import all sorts of certificates from each site into their browser. Doing so will most probably conflict with something else that is totally irrelevant and cause a problem. A way around this is if you are using authentication with Active Directory. But most of the time, especially if you're operating in a remote site with a very slow internet connection, if it's available in the first place, authentication with Active Directory is impossible. So it needs an easier way to apply HTTPS filters, without importing certificates into users' browsers and without the need for using an Active Directory. There must be a way around it. There are workarounds. But with applied workarounds, it will work out once, it won't work out properly 10 other times. That is my only request. Also, since Sophos took over Cyberoam, the online technical library and support library have become super messy. To get a piece of information is becoming a nightmare. They need to reorganize the online technical support and technical library. The easiest way to overcome this is to look at how the Cyberoam online technical library was structured and to build the Sophos technical library the same way. It is messy, totally unorganized, time-wasting. Instead of getting what you want in five minutes it takes half an hour.
Jaffar Ali - PeerSpot reviewer
Has provided stability, security, ease of management, and better reporting options
People use Sophos XGS because the overall channel support is very good, so they don't face issues. Additionally, it is competitive in pricing against Fortinet in some cases, especially when considering high availability, email subscriptions, and gateways Sophos XGS has provided stability,…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The user interface is relatively easy. The devices are easy to deploy and figure out when you have experience with other security appliances."
"It is very flexible to use."
"FortiGate is flexible and easy to use."
"This is an easy solution to deploy."
"​Easy to implement, and it is also reliable.​"
"The solution is extremely reliable."
"Fortinet FortiGate is user-friendly and affordable."
"The VPN is the most valuable feature."
"Sophos Control Center is a good feature. We can monitor everything from the control panel."
"The scalability of Sophos XG is good."
"The VPN features and its capabilities are great."
"Easy to deploy and user friendly."
"In my experience, the solution was easy to use, has lots of features, and is easy to configure."
"We can configure rules with the user, traffic, etc., making it a very versatile solution for our network."
"The simplicity and timely updates."
"Using Sophos endpoint and the firewall, synchronized security is easy."
"The initial setup is straightforward."
"The scalability of Sophos XGS is very good."
"Web filtering and intrusion detection are essential features. As system integrators, we also like the dashboard because it's easier to configure all the features."
"The threat intelligence capabilities of the tool are good."
"I have no issues with the stability of the product and love using it."
"Sophos XGS's most valuable feature is content filtering."
"The most valuable features in Sophos XGS are bandwidth management, content filtering, and WAN link management failover. If one internet activity or one link would fail, automatically it will switch over to another one."
"Sophos XGS is profound as a firewall and security product."
 

Cons

"The firewall engine is not so strong as of now, in my opinion... My second concern is that, while they have Zero-day vulnerability and anti-malware features, the threat engine needs to be strengthened, its efficiency can be increased."
"The support is the main thing that needs to be improved."
"​It needs to improve its ISP load balancing.​"
"You do need some IT knowledge in order to effectively work with the solution."
"Stability and technical support are the two major issues I have found with Fortinet."
"Fortinet needs to overhaul its documentation."
"The performance and speed are aspects of the solution that could always be improved upon."
"They are doing good, but they can improve the distributor assignment. The availability of the product and the timeline of delivery are the main things. The distribution should be swift, and the distributor should not reach out to end customers directly. They should work as a distributor. There should also be one more local distributor. Currently, there is only one distributor in Pakistan, and the rest of them are in UAE. It is difficult to work with only one distributor. Sometimes, you don't get along with the same distributor, and that's why they should have one more distributor. Their licensing should also be improved. The activation or renewal of the product should be done from the date of renewal, not from the date on which the license expired."
"I'm just a sole proprietor for IT support, and from my perspective, there could be better ways to educate a proprietor, such as myself, on how to set it up, and program it, and manage it. They do tend to have support, but a lot of times, it is for larger networks. I need something that is simpler and more rudimentary as to how to go about setting up and configuring the firewall, setting up the rules, and that type of thing. So, if there is a missing component there, that would be it."
"The reaction time of the GUI is terrible when compared to other manufacturers."
"Lacks improved throughput performance in a box."
"I can't use the product's application control feature, making it a disadvantage of the solution where improvements are required."
"The UI needs improvement because it can be a little weird at times."
"The manuals or guides we are given are too simple. When we are implementing the product, it is difficult for us as we don't have more detailed information."
"We had a difficult time assigning IP addresses to specific MAC addresses."
"They need to improve the SD-WAN feature."
"It has recently started to suddenly block and crash."
"Sophos XGS could improve the automation system. It could be better if there was some level of automation, attacks automation, meaning if this happens, then it automatically executes a particular process."
"The SD-WAN feature isn't very good. It's there, but it doesn't work properly."
"Their marketing strategy is quite low, and they need to enhance engagement with partners."
"Sophos XGS could improve by having a Network Access Control(NAC). This feature is a basic function in other firewalls and should be added, such as Palo Alto."
"In Sophos, the user portal is not user-friendly."
"The solution could have a bit more functionality."
"There are some issues with conversion and user roles when upgrading to Cyberoam."
 

Pricing and Cost Advice

"The price is fair for what we get with FortiGate."
"You need to pay a license for this solution. Our licensing is now done in our subsidiary."
"Setup costs and pricing depends on many variables, but it's mostly affordable."
"The price is high compared to some of the other solutions."
"The price is fine."
"The pricing of the solution is very competitive."
"The price of Fortinet FortiGate could improve, it is expensive."
"On a scale of one being cheap and ten being expensive, I rate the tool's price as an eight."
"Sophos XG is not expensive for a firewall, especially when you compare it with Check Point."
"When compared to other products, Sophos licensing is very affordable."
"The product is well priced."
"Licensing fees are on a yearly basis."
"The licensing for Sophos XG is based on the number of users, so I get the module from the sizing of the customer."
"The price of the Sophos XG is very good. There are not any licensing costs, it is a one-time purchase price."
"In terms of price, it is a mid-range product."
"When you compare with Barracuda, Sophos is quite a bit cheaper."
"The licensing cost is in the normal range and is not very costly."
"We pay about $150."
"Sophos XGS is priced lower than some of its competitors, such as Fortinet"
"I pay close to $10,000 per year, which I find to be expensive compared to the other similar solution or equivalent solutions."
"The price of the solution is reasonable and their target market is small to medium-sized companies."
"The cost is comparable to other similar solutions."
"Sophos XGS costs around $75,000 for fifty units."
"Sophos XGS is a very expensive solution."
report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
831,369 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
22%
Computer Software Company
14%
Comms Service Provider
6%
Manufacturing Company
6%
Computer Software Company
17%
Comms Service Provider
8%
Manufacturing Company
7%
Financial Services Firm
6%
Computer Software Company
18%
Manufacturing Company
8%
Comms Service Provider
7%
Educational Organization
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?
When you compare these firewalls you can identify them with different features, advantages, practices and usage a...
What is the biggest difference between Sophos XG and FortiGate?
From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...
What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?
As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...
Which is better - Palo Alto Networks NG Firewalls or Sophos XG?
Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat si...
What are the main differences in features between Sophos XG and FortiGate 80F?
Hi Arvind P , The Sophos XG firewall has a number of models right from XG86 to XG135w under the 1U Desktop Form Fact...
What Is The Biggest Difference Between Sophos UTM and Sophos XG?
The Sophos UTM is a UTM and Sophos XG is the NGFW. First, you must know about the difference between a UTM and NGFW. ...
What do you like most about Sophos XGS?
The policies are the greatest feature. They allow us to configure granular control over our network traffic.
What is your experience regarding pricing and costs for Sophos XGS?
The pricing is justified, and the solution is considered budget-friendly compared to other vendors.
What needs improvement with Sophos XGS?
Hardware stability needs improvement. I have experienced multiple hardware complaints, particularly during firmware u...
 

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall
No data available
No data available
 

Overview

 

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya
Information Not Available
Information Not Available
Find out what your peers are saying about Sophos XG vs. Sophos XGS and other solutions. Updated: January 2025.
831,369 professionals have used our research since 2012.