Sophos UTM Reviews

My primary use case is as a VPN, a firewall and a web filter.

We have a better level of protection and we have the ability for our devices to be more of a self-sustained type of resource.

The most valuable features are:

• Firewall protection
• Intrusion detection

The memory and processing were problematic. The interface could be better.

I have no problem with the cost or licensing of this solution. This is a primary reason whay I wanted this solution. It does the same thing cheaper than other name brands.

We give customers a device that can handle next-gen security threats, which is way better than a typical router.

They are all good, but most-used are the Network Protection and Web Filtering licenses.

VPN needs IKEv2, but it’s in the roadmap.

All other new, cool features will only come to the new Sophos XG Firewall.

There are no more stability issues than with other vendors, so I would say it's very stable.

Scaling out cannot be easier, as there are many migration paths.

It’s satisfactory.

No previous solution. For next-gen firewalls, I began with Sophos.

It is straightforward. There is a wizard running at first boot, making it easy for you to select the level of protection you want.

For under 50 users, MSP licensing is profitable.

We don't use Sophos UTM on AWS.

I would recommend Sophos UTM. But also look at its successor, Sophos XG Firewall, as we do not know how many years Sophos UTM will "live." (Note that it will be free to migrate from UTM to XG).

The most valuable features are:

• Ease of configuration of the firewall rules and routing.

• The email alert on event triggers.

• Internal storage for logging, as you do not have to get another server to store the logs.

The ability to disconnect the VPN connection needs to improve. Currently, in order to disconnect an existing VPN connection of a device, the admin needs to change the password of the user.

I have used this solution for two and a half years.

We encountered stability issues more on the Web Filtering feature where certain valid websites are blocked or the video cannot be played and it requires extra exceptional configuration.

There were no scalability issues.

I would rate the technical support a 8/10.

Previously, we were using WatchGuard UTM. The pricing and ease of use of the configuration were the reasons as to why we moved over to this solution.

Setup is straightforward.

From time to time, there is a promotion and it is more cost effective to get the 3 years subscription licensing upfront.

We looked at Fortinet.

All the features are similar; we are real, hardcore users of the Sophos UTMs.

This product is for beginners and for hardcore professionals; beginners can get their feet wet and professionals can easily look into the product.

Certificate Management should be improved.

I have used this solution since 2014, i.e. for around three years.

We have over 30 Sophos UTMs running. There are some that are not stable, because of the bridges used or ISP used (Cisco vPCs/Dell MLAGs etc.).

The Sophos UTM Internal DB sometimes has problems which affect its scalability.

Technical support is very good, but only to the distributor. Support is poor if the distributor escalates to the vendor or we complain directly to the vendor.

It was not a change; in general, we have used many firewall vendors, but no one is as good as Sophos UTM.

The initial setup is easy.

Unfortunately, the pricing is very expensive, but for licensing, there are some "cheap" options for some scenarios.

If you'd like to look into a system which is very robust and hardcore, then select Sophos UTM.

I think the RED appliances and APs make a difference, and add value to Sophos. Also, it is easy to configure, robust and is a stable appliance. The licensing is great, because you don't have to pay the same license fee for a standby appliance.

Actually, we were not used to firewalls in our organization, but I was working at a distributor previously so I had a chance to do many demos. The customers like its GUI because it's easy to manage and RED takes attention of the customer which has distributed locations like shops, cafes, fast food stores etc.

They should have more powerful appliances. The appliances throughput and performance is suffering under high traffic usage. Also, I think they need better appliances for enterprise and high end customers.

I've used it for one year.

Because we have local laws about logging, we had to get permission to develop a logging mechanism. Also, we had lots of requests to improve URL filtering categories.

I had an issue with transparent mode in a demo, but mostly it is a very stable appliance and software.

Sophos has a sizing guide which is a great during the planning phase in ensuring you are getting the sizing right. I have used it many times when I preparing customer demands. I haven't had any problems yet.

I was working with Sophos' Germany office, and they always supported me. It was really great working with them.

They're 6/10. I had many cases, but they don't like to do a remote session immediately. To be honest, I have worked with better support teams from other vendors,.

It is very easy.

I implemented it but got help from the vendor when I got stuck wit something. They are great.

It is great solution for customers who have small, branch offices. I would advise you get Sophos for distributed locations (with RED and APs).

Great security and logging. Easy GUI.

It really needs to update IPSec to enable IKEv2.

Two years.

No.

No.

No.

Customer service is great and responds really fast.

Technical support might be a bit better and there are not enough easily accessible guides.

Previously used the OpenSource pfSense which works great, but Sophos adds the little extra that is needed in security.

Straightforward.

In-house.

I evaluated pfSense, and still go with pfSense where IPSec to AzurePack services are needed because Sophos does not support IKEv2.

At first I did not like Sophos UTM but after second setup and config I liked it a lot and now recommend it to all my customers. It has great security features, and together with Sophos Endpoint Protection it works perfectly.

We primarily use this solution for:

• VLAN separated network
• Proxy / SSL-Interception
• VPN (IPsec and SSL)
• Reverse Proxy / Webserver Security
• Email Security / Mail gateway
• HA (Hot-Standby)
• IPS / ATP

This is a very good security solution for SMB, so this solution is a good fit for many of our customers.

We find all of the features valuable because together they fit the needs of our customers.

We would be happy with fewer new features over the same time, but with more stable updates!

We would like to have unique viewable IDs for rules and in the packet filter logfile, for easier debugging of old log files.

Sophos UTM shouldn't die.