Sophos UTM Room for Improvement

Dana Bailes - PeerSpot reviewer
Network Administrator at a manufacturing company with 51-200 employees

The ease of use could be a bit better. It's something they could work on.

The ease of configuration could be improved. It's not as simple as it could be just yet. However, it's kind of the nature of it.

They're kind of difficult to get set up sometimes.

Some of the detail in the web filter and the email filtering could be better outlined in the reporting. It is not as good as the two separate standalone solutions we used previously. However, it does also gives us a lot of other stuff that those two solutions didn't. It's a trade-off.

View full review »
Technical Director at a security firm with 1-10 employees

There were a lot of features and functionality in Sophos SG UTM but nothing was state of the art in terms of technology. You did not get the latest functions. It was very monolithic as it was based on an old Linux PuTTY system.

Everything has changed in the newer version of the solution from the SG to the XG. It was a completely new reborn version. You are not able to migrate from SG to XG using scripts. it is very difficult because of the differences. There was not a simple migration path from one to the other.

In the Sophos SG UTM version, you cannot have any other functions. Sophos will tell you "It's a closed version. We will not have any more functions." However, in the new version, you have a lot of new functions, and every two or three months you have new features. For example, you can use Sophos Central to synchronize both strategy policies and even security, if you are equipped with Sophos antivirus on workstation and server. If your antivirus on the workstation finds a threat, your firewall will have the information of the station, what issue it had, and what other stations it communicated with.

Sophos has to enable the Intercept X or an EDR function on the firewall because for the moment, the firewall is only equipped with sandboxing or something similar. Which, is quite good but there should be something easier for the user. For example, the logs at the moment are not as simple as they are in other solutions, such as Fortinet, it is very important to have a logging tool, log reporting, or a reporting engine. We need to see logs and find information within. However, 10 years ago, we do did not care about the logs but things have changed. We need them to analyze, to have a view of some of the layers but we do not have this. They could improve by providing better log functionality and features.

View full review »
Senior Network Engineer at a computer software company with 11-50 employees

Sophos UTM is sensitive when it comes to setting up the SSL VPN, with the certificate.

The bandwidth speeds are limited, although this could be because they're doing web filtering. They need to have the time to filter all of the traffic.

The logs are not clear, which means that you need an additional piece of software in order to read them clearly. This is the main issue with Sophos UTM. Essentially, you need to spend time looking through the logs and if you want quicker access then you need to have third-party software.

View full review »
Buyer's Guide
Sophos UTM
November 2022
Learn what your peers think about Sophos UTM. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
653,757 professionals have used our research since 2012.
President at a tech vendor with 1-10 employees

Sophos has a very small crew of people who continue to work on enhancing the UTM. At some point, they had actually stopped enhancing it and the word on the street was that they weren't going to enhance it any more because everybody was going to go over to XG, but they found that 50% of their users were still on the UTM and that was five years after they'd come out with the XG line. They decided they were going to rebuild some core parts of XG, and that would take a while. It's been six years and they're still not there. The updates come out agonizingly slowly. They just trickle out and when there's a problem with an update it takes a while to sort out. It's still a viable product but the more they improve XG, the less you have a need to stick with SG.

View full review »
Software Sales Manager at a tech services company with 51-200 employees

I have no suggestions for improvement for Sophos UTM. It's been a decade and it has been a very good product throughout the Pakistan market.

Pricing could be improved. After-sales service is much better. Once you have a sales team and a technical team for any product, it definitely becomes very easy to pitch or get the revenues out of that product. Flexibility in pricing matters a lot.

View full review »
James Dagmore - PeerSpot reviewer
IT Manager at Manual Workers Union

We don't need any extra features. We only use it for the servers and the workstations. We'd like to see them offer their services on mobile devices like tablets. I'm not sure if that's an option or not.

View full review »
Bashir Bashir - PeerSpot reviewer
IT Administrator at Vegol

The support could be better.

They need to improve their email protection. Their email protection is horrible. They have an email protection license that is paid for. However, they need to improve on email protection capabilities.

They need to have proper reporting. What they offer no is weird. I need to get another application to give me a clear diagram of my network. This should instead come directly from Sophos. 

View full review »
Director de Tecnologías with 501-1,000 employees

There needs to be some improvement in the IPsec VPN. There is implementation only support. I have version one. I'd be most interested in having IP version two from the protocol.

View full review »
IT Manager at a consultancy with 51-200 employees

I can't recall dealing with any missing features.

Lately, I've dealt more with Fortinet, and haven't focused too much on Sophos.

The initial setup may be difficult for those not familiar with the product.

View full review »
Abhijit Mukherji - PeerSpot reviewer
IT Head at Dee Development

The application server needs to be improved because currently, the classification segregation of applications needs to be more defined. Also, we used to be able to open the firewall using LAN IPS but that's no longer possible and needs to be solved. I'd like to see an improvement in central categorizing. These days with all the applications and threats, getting everything filtered down needs to be a finer, more granular process. There are times when you find that a website seems to be legit, but there is a code running behind it that can act as a proxy or some kind of a bot. The sites are always logged on, but at times we have to open for a few clients or a few sites and in that time they're open to attack.

View full review »
Head of IT

At the very least, keep existing. I will continue to use Sophos. If Sophos maintains its current ease of management, I believe I will continue to use it.

I would like them to keep the features as they are.

The GUI can be improved. It is not as good as Trend Micro, but I still like it.

The GUI could be more user-friendly.

Now, they offer a SaaS product in comparison to XDR and, TRM, which stands for automatic analysis of virus behavior or deadline. Currently, for example, when there is a threat, we analyze it ourselves, but now they offer automatic analysis because Sophos' XDR is based on cloud PCS.

I would like them to include automatic analysis for virus behavior and also cloud PCS.

View full review »
System Analyst at Abbey Mortgage Bank

I'm still exploring the features and I haven't used them in totality. 

I think that additional metrics features are needed to be able to monitor other areas or to monitor as much as you can, at a fine-grain resolution. This would be good. Somewhat similar to what Darktrace can do. 

Proactively understand and using AI intelligence to monitor and see activities that are away from the norm and then proactively see how they can either isolate the quarantine system and inject it back into the system upon validation.

They could explore most of the products in Symantec's and Fresh Services and run from the same file to see what additional feature one is offering.

I would also like it if they could work on the price because it is expensive.

View full review »
Director with 11-50 employees

The solution needs to do better at covering mobile devices, although they may have an integrated solution for that purpose. 

I don't really know how it behaves when it comes to web server protection. We have no web servers of our own. I don't know how it behaves if we open our servers to the outside. My sense is that the degree of protection must be higher.

View full review »
Nikoloz Kratsashvili - PeerSpot reviewer
IT Manager at Cartlis

It is a fine product, however, I need more endpoint protection.

They should release a license for more than 50 IPs. As of now I have had some discussion about with management, and we need to do some planning and around that to see if we can change things.

The pricing is too high. There are other options that are less expensive, such as Bitdefender. In fact, Bitdefender is very good, aside from lacking a firewall such as this. Beyond that, it's a very good product with central management on-premises. 

It would be nice if it had basic features, such as DLP (Data Loss Prevention).

View full review »
Gonzalo Moreno - PeerSpot reviewer
Owner at supernovatel

In Sophos UTM there is always a problem with the routing tables. If you want to see the routing table, you have to use the UI. You can't do it via a web browser. The routing table is better in Fortinet.

View full review »
Javier Medina - PeerSpot reviewer
Cyber Security Officer at Grupo Vision

Sophos should improve its ability to check something like bandwidth consumption for users or something more real-time.

real time trafic graph most show specific info from user, ip and bandwith, in my personal opinion i have seen better traffic graphs in open source firewalls.

View full review »
Chief Information Security Officer and Founder at a insurance company with 201-500 employees

The integration capabilities could be better.

View full review »
General manager at DotCom, Lda.

Sophos UTM sometimes falls short in high-availability environments. They used to launch firmware that didn't work very well in a high-availability environment. 

View full review »
Network and Security Engineer at ONB

Sophos UTM could improve the way the configuration has to be done. I have to do the configuration through the command line interface but if it could be done through the graphical user interface it would be much better.

View full review »
IT Engineer at Wise Communication

Sophos' new generation firewall is missing the link that provides antivirus for each computer. It would be helpful if they could add that element. The technical support used to be excellent but recently they don't seem to be able to solve our problems. 

View full review »
Mohammed_Sajid - PeerSpot reviewer
Information Technology Network Administrator at abl

The reporting system needs to allow for customizations because many reports do not include details that we expect. 

It would be beneficial to have a security fabric feature like FortiGate that integrates with UTM devices and reports to expose issues. 

View full review »
Fathi Kharfi - PeerSpot reviewer
Head Of Network & Technical Support at Tadhamon International Islamic Bank

They could use more SSL VPN support.

We'd like the setup to be even easier, if possible. 

View full review »
AlaaMady - PeerSpot reviewer
System Administrator at a insurance company with 51-200 employees

I would like this solution to support ICAP. Also, they no longer support on-premises management, and are forcing clients to use centralized management via the cloud, which I don't agree with.

View full review »
Chief Information Technology Officer at a non-profit with 1,001-5,000 employees

I would like to see Sophos UTM add support for all the new threat-detection technologies and the ability to respond to novel security threats that come along every day.

I'm in the process of switching every UTM device in all branches to Sophos, so I need visibility into each branch to see the activity. I need alerts for any threat that enters the network. If there is unauthorized access or some specific action that can threaten my network, I want to be notified.

View full review »
Owner at Perspectiva company

I think the interface configuration could be improved. It's very complex for now. They need to provide more videos and have more documentation. I think that's missing at the moment. By chance, I found something on a video that wasn't in the documentation and it was a lifesaver. I upgraded my hardware from 100 megabytes to 1,000 megabytes and had many problems. I had to start from scratch and get someone to help me with it.

View full review »
Occupational safety technician at Concremat

The VPN could be better. We need a better VPN client for the customers.

We'd like better logging. 

View full review »
Science Technician at a government with 201-500 employees

In the next release, the solution should contain an administration security user to access the interface.

View full review »
Wisnu Nursahid - PeerSpot reviewer
Technical Manager for Network Security at VTI

Sophos UTM's firewall is a bit weak, and some of its features lack depth compared to other products like F5.

View full review »
Assistant Manager IT Zircon Technology at Zircon Techonolgy

The reporting could be a lot better and technical support could be improved.

View full review »
Technical Manager at Digital World

We need to speed up the support.

View full review »
Saurabh Bhansali - PeerSpot reviewer
Head of IT at Venus Jewel

Sophos UTM could be simplified, and they can improve on the many other features, like SD-WAN and load balancing. Sophos UTM is missing a few features that their competitors have. For example, if you have multiple branches you would like to connect, the load balancing features aren't available on multilink. If we create a VPM for multiple LAN links, we cannot load balance the traffic.

View full review »
Mohammad Mojtaba Sohrabi - PeerSpot reviewer
Manager at

We are very happy with Sophos. I can't think of any pressing issues that need to be addressed.

View full review »
Mahmoud Sayed - PeerSpot reviewer
Senior IT Specialist at Shabana Group

There are things missing when it comes to policies.

The web filtering capability should be improved.

Anti-phishing functionality should be improved.

View full review »
Senior System Engineer at a real estate/law firm with 51-200 employees

The five-factor authentication needs improvement. 

It needs central management. 

View full review »
IT Director at a manufacturing company with 201-500 employees

Monitoring and reporting are areas that need improvement.

View full review »
Senior Network Security Engineer at Soffit

There's an issue that when we deploy UTM on fiber, it automatically upgrades to the latest version without giving an option to stay on the current one.

View full review »
Harun Rashid - PeerSpot reviewer
Presales & Implementation Engineer at a tech services company with 11-50 employees

Sophos is good for endpoint security but Trend Micro is better than Sophos. APEX is better than Sophos because it has a friendly, usable dashboard, and the implementation is very easy.

Sophos should be more user-friendly, have more dashboards, and an easier implementation.

View full review »
Buyer's Guide
Sophos UTM
November 2022
Learn what your peers think about Sophos UTM. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
653,757 professionals have used our research since 2012.