Sophos XG Reviews

We use the latest version.

We are very familiar with the solution. It's pretty straightforward, our personnel is properly trained and we use it efficiently. The solution integrates very easily with other brands.  I've done VPN tunnels with other brands, and that was fine as well. The solution is quite stable and we don't have any issues with it. The VPN is easy and has good logging, monitoring and notifications.

When compared with Sophos XG, Fortinet lacks the notifications and reporting features. 

When it comes to improvements that the vendor can make, we see that the cloud integration for managing all the firewalls is essentially a replacement of the on-prem version we had. It's not mature yet, being still in its infancy stage. That would require some improvement. As I have many firewalls, having the ability to delegate access to use, such as exists with Microsoft CSP or other services, would be a nice feature to see. 

Also, as a tech person, I know that executives do not wish to receive complicated reports, so a simplified executive report for executives would be a nice improvement. This would save us from having to explain issues which are beyond the scope of their knowledge. 

Sophos XG is basically a mix of UTM9, Check Point and several other technologies. It is essentially a merging of technologies. We've been using it since version UTM9, at which point we switched to Sophos XG..

The solution is quite stable. 

The solution is scalable, but an organization should assess in advance its size based needs. Say, for example, a company utilizes the XG 125 version, but grows rapidly. At this point it may need to switch to the 210 version. Yet, switching from one version to another would not really present an issue. One can restore the backup configuration version on the new hardware and be up and running. 

Technical support is pretty good, although I did have some issues with its availability during the COVID-19 pandemic, even though this seems to have been a challenge faced by all major support companies. There were delay issues owing to their teleworking, but the support they offer is quite supportive and they have all the necessary documentation.  The truth is that I have a need for many cases, although the ones I require have to do with things that are out of my control, such as licensing or the occasion of a new app that failed to show up in the console. I have many sub-sites and I did face a serious issue. Technical support was pretty helpful even though I had to redesign the typology of one of my sites. They actually tried assisting me with the original design and I found them to be quite helpful and to possess a good base of knowledge on the site. 

It is important for a person to properly learn the features of any product so that he can optimize its utilization. The setup of the solution is pretty straightforward. What is truly important for a person with only a basic network background is to undergo proper training, so that he may learn about all the features and how to configure them. 

For any product a person uses, it is a good idea to do a test run. Sophos allows for its product to be evaluated without any financial commitment. It offers a free virtual machine for home use testing of the features. 

At present, Fortinet seems to have a slightly higher rating than Sophos XG, so if it were also to turn out to be more cost effective this would affect my rating of it. The reason is that this factor does have an impact on the decisions reached by CEOs when it comes to cost-benefit analysis.

This said, I rate Sophos XG as a nine out of ten, because we are very happy with it and don't really have any issues. We have actually been replacing Cisco normal routers, not sets, with Sophos and we're very happy with them.

We are using Sophos XG, but not the latest version. The solution works as the main gateway. We are a small company of 250 employees so we also use the solution as a router.

The hardware and VPN connections are slow so we are planning on upgrading the solution. Next month we will be replacing the Sophos XG we have as it is reaching the end of life next year. We will be purchasing the XG 3000 to gain more options in the VPN tunnels.

The two most valuable feature of Sophos XG is, one the option to filter according to different applications and two, the integration with the Active Directory.

Over the last six months, we have noticed that the hardware is slow, especially the VPN connections.

Sophos would benefit if they could improve the integration with Active Directory. It does not function consistently and we have to reconfigure it to make it function again. 

Integration with IPA, which is like Active Directory for Linux servers, would be a nice feature to include.

I have been using Sophos XG for three years.

This solution is very stable. We have not had any problems in the three years we have been using Sophos XG. We did have one infection that gained access to one server in the DMZ but it was because the rules were not well configured and not because of the product.

We haven't had to scale the solution. 

Support from Sophos XG has been fine for what we have required.

We had been using Astaro. We selected Sophos XG because we knew it would be easy to set up and configure as the two solutions are similar.

Previously we were working with Astaro, so the setup and configuration of Sophos XG was easy. The implementation took less than a month.

The company that sold the firewall solution provided support hours while we were migrating the rules of our old firewall. They provided us with advice on some of the rules, especially on the routing to connect to a branch office.

We purchase an annual standard license.

I recommend Sophos XG if you are coming from pfSense or Astaro as the migration will be really easy. The learning path will also be easy. If you are coming from Barracuda or Cisco it will be more difficult especially the web interface of the firewall is not intuitive.

I would rate Sophos XG an 8 out of 10.

We primarily use the solution for a firewall. We use it as a security device.

The product is very easy to use. We enjoy the ability for it to fit into our high-level security framework. 

It gives us some separation from being on Microsoft tasks. We've got multiple levels of security. We're government contractors. It's great that it's been a separate product that gives us the ability to do the security to a high level without having to resort to needing a big team.

The solution is stable. I've had very few problems with it.

We have found the solution to be scalable. 

We're always looking for the best products and the best pricing. Pricing is always a concern for us.

When they do updates, they could handle them a little bit better. We've only had one problem, however, I do prefer when updates come out a bit quicker. We do the patching and updates and different things, however, in terms of the patch and timing and the criticality of it, it could always be better.

We've been using the solution for five or more years at this point. We've used it for a while. 

The product is reliable and stable. There are no bugs or glitches. It doesn't crash or freeze. 

The product has proven to be scalable. If a company needs to expand it, it can do so.

We have 430 end-users on the product.

We're mostly happy with the technical support. It's better than Microsoft. Any issues we have may simply come down to the SLA. 

The initial setup is pretty straightforward, and, over the last six years, it's gotten simpler, especially when it comes to cloud products.  A company shouldn't have any issues with the process. 

The deployment was very quick. It does not take long. 

My team is quite small internally. I have five to seven IT staff.  I have many service providers that I outsource a lot of the day-to-day management of the infrastructure to.

Sophos assisted us with training at the outset, which we really appreciated. 

We pay annually for the licensing for the overall on-prem solution, however, we also have some Sophos access points at permanent IT sites and different things. I have different Sophos products I may pay a monthly fee for.

We're just customers and end-users.

While this deployment is on-premises, for the cloud, we use Sophos Central.

I'd rate the solution at an eight out of ten. We're pretty pleased with its protection capabilities. 

The solution is primarily used as a firewall with all the "next Generation" functionality. We sell this solution to our clients.

I prefer the solution to other Firewalls as it is very intuitive to manage.  

The product offers a more complete set of security functionality at one price . It differentiates more in objects to protect like web server protection or email protection.

Troubleshooting is easy with XG Firewall because of clear arrangement of troubleshooting features in GUI.  I like the ease of use.

The Base License includes already VPN, network protection and web protection functionality and you have a wireless controller on top. The data stream analysis and security features are built-in; these are the main features we need these days.

The user interface is very good. It's already quite simple and easy to use.

Recently, I've had a problem with updating firmware. Updates should be more stable . The last update I did was not successful and ended in a unusable device. Also the support case i opened for it could have been more effective.

I don't use all of the features and therefore it would be difficult to evaluate if anything is missing.

I've been dealing with the solution for around 12 months or so. It's been about a year at this point.

From the update side, the last update didn't run successfully and this is not good for us as the customer needs this device to access the internet. If this device is failing and it has no connection to the internet  it is a great problem for the customer.

It may be possible to implement a second device in a fail-over cluster and this would avoid such a problem as then if one device fails in the updating process, the other device could be take over, and so it would be not such a great problem. That said, in this scenario, you have to sell two devices. That would be the best way to ensure stability, however.

The scalability of the solution is limited according to sizing. You buy one device with specific performance parameters, which should be equivalent to the customer's needs, and this device is not able to customize to a higher level. If you need to grow, you must buy another device with higher parameters.

In our case, the customers we work with have small setups. They aren't large organizations. Sophos told us about a sizing guide in the future.

We are a reseller and  our first and only support case was not very effective. It should not be used as a guideline.

We also resell Cisco products.

The initial setup is not overly complex.  The process is straightforward. A company shouldn't run into problems but need a understanding of the device and the functions.

The deployment process depends on the requirements. A good planning is beneficial.

The pricing is good due to the fact that you get so much functionality from one overall solution. The base license covers all features you need to protect against threats from internet. Setting up the device basically is intuitive and there are a lot of help from internet community.

We are a reseller of both Cisco and Sophos.

We're using the latest version of the solution for our clients.

I'd rate the solution at an nine out of ten. We've  been satisfied with the product, however, there is still more they could do in testing updates.

We are going to be hosting our own website and we are using the Sophos XG because we want to make sure that it is well protected. We also want to make sure that the rest of our LAN is not compromised.

In addition to using this firewall ourselves, we resell the product to our customers. We have a well-trained team that can perform the implementation and deployment.

Our network is now much better protected than it was. If you don't have your network and your infrastructure secured, as a business, which is about more than just putting a firewall in place, then you're asking for trouble. There is a lot of hunting going on, and it's not just the large corporations. It's the small businesses, too.

The most valuable feature is that it scans all of the data for any kind of malware.

It logs everything that goes in or out, and the logs are helpful.

The simplicity of the setup is very good. I can add whatever ports I need and it's pretty easy to set up.

It would be helpful if they had a set of standard templates because it would assist in the beginning, when you are just getting started. They do have a template, but I mean specifically for different use cases. For example, an existing template for setting up a web page would suggest what kind of security we need to have in place. They do have help menus and videos, but additional templates would be useful.

I have been using Sophos XG for about eight months.

The stability has been rock solid and it hasn't gone down once.

For me, there is essentially no limit when it comes to scaling. I have never used all of the connections but the limitation is between 50,000 and 200,000. I would say that scalability is enormous. If we had a bigger network then I would probably get a bigger Sophos.

At this point, we're just starting and only have three or four people who are regularly using it.

The technical support is awesome.

We did have a Cisco router prior to using Sophos XG, but I don't know much about Cisco or how to get it operational. I also realized that it was getting old, so we switched to a high-end Sophos model. With malware in this day and age, where we have a 6000% increase in the number of malware attacks compared to two years ago, we wanted to be well protected.

The initial setup is straightforward. If I can do it then anyone can do it. The deployment took a couple of hours. Because we are new to this type of solution, our strategy will be to begin by blacklisting everything and then whitelisting only the things that we need.

Our in-house team handled the implementation and deployment. We have more than 200 people that are very well trained, so we can set up pretty much anything. 

We paid for our licensing for three years, upfront, and there are no costs in addition to the standard fees.

I evaluated several options and sought out advice before selecting Sophos XG.

I am happy with this solution, which is one of the reasons that we are selling it. I don't like to sell or recommend things that I have not used. I have tried a lot of the features but I would say that there is a lot more potential I haven't even tested at this point.

I would rate this solution a ten out of ten.

We are developing a software. We use the solution to protect our environment. Our main concern is to block users’ uploading.

Sophos XG is a fantastic solution. We achieved our security target after installing the solution. Our main concern was to block uploading. We were able to achieve that using the custom rules.

The product has all the latest features. It has malware protection, ransomware protection, and zero-day protection. It helps block everything.

The vendor doesn’t publish the price on the website. We must contact the agents to know the price. It is a lengthy process. It would be easier if the price details were provided on the website.

I have been using the solution for the last three years.

The tool’s stability is good. I rate the tool’s stability a ten out of ten.

We have 10 to 15 users in our organization. The tool’s scalability is high. I rate the scalability a ten out of ten.

The technical support is great.

Positive

The initial setup was difficult. We must learn everything before implementation. In the beginning, everything seems difficult. For someone who has worked on other firewalls before, Sophos XG is not that complicated to implement.

I prefer the on-cloud versions because we have control systems on the cloud. It will be much easier to handle things. If we have it on-premises, we must maintain and look after the equipment. The cloud version is much more secure and easier to maintain.

The pricing is very high. The product could be a little cheaper. It will help Sophos to compete with other brands in the market. I rate the pricing a ten out of ten.

We also use Sophos Intercept X. It is a fantastic tool. It protects PCs from malware attacks. Overall, I rate the solution a ten out of ten.

I like the web filter, application filter, and VBA. There are so many good features. The most powerful thing is clearly the software. I can easily do whatever I want.

Their updates can be faster and more regular. Right now, it's updated monthly. When I need to update the firmware, I want it done within weeks, not months. There are also some changes in version 18, like rules, that aren't needed.

Sophos XG is a very powerful and stable solution. It's more stable than Cyberoam.

Sophos XG is scalable.

Technical support is good and easy to deal with. If I have a problem, I open the ticket, and I call, and the problem's solved automatically by them.

We used Cyberoam ten years ago and then transferred to Sophos. We switched because it was the latest technology.

The initial setup was very easy because you can follow the manuals, follow your past experiences, and so on. We also need about three to six people a day to maintain this solution.

At first, I thought the price was very high. But when I read about the machine's features, we decided to go with it. Now I think the price is reasonable.

On a scale from one to ten, I would give Sophos XG a nine.

My clients use Sophos XG for deploying firewalls at corporate office and branch offices. The branches connect via site-to-site VPN, allowing outbound traffic from the central location.

The firewall provides network visibility and reporting capabilities, constantly improving over time. It can be integrated with the cloud console, allowing centralized management of multiple firewalls. integration with endpoint security products ensures seamless traffic flow and rule enforcement, even when endpoints are not directly connected to the firewall.   

I've had experience with Sophos XG's threat intelligence features, and they provide good coverage, although I wouldn't say they're the best in the industry. The sandbox feature is available with top-tier subscriptions, allowing you to test content in a cloud sandbox.

One improvement I'd suggest for Sophos XG is to make certain functionalities, like CR functionality, part of the default firewalling rather than exclusive to premium subscriptions. Enhancing DLP capabilities at the gateway level could significantly boost security for organizations.

I have been using Sophos XG for the past 10 years. 

As for stability, I'd give it a high score, maybe a nine, because it keeps running without much downtime.

I'd rate them an eight for stablity It's not to say they're perfect, but generally, it's pretty good I'd recommend it for companies of all sizes.

Integrating Sophos XG into existing infrastructure was quite easy and straightforward. There were hardly any complexities involved in the process.you can use both options - cloud-based or hardware-based firewalls. When I mention hybrid, it means having both options available. While cloud-based firewalls offer convenience, they can be more expensive compared to hardware ones. Although I haven't personally worked with the cloud version, it seems similar in appearance but may have different features. Cloud-based firewalls may seem like an overkill in terms of price, especially when considering the cost of operation over time. They become more beneficial when additional security layers like zero trust, DLP, or secure web gateway functionalities are added. This expands security beyond physical location constraints, making it accessible from anywhere.

I'd rate Sophos XG an 8. It's my first preference and confidently recommend it to other users.