Sophos XG Reviews

Sophos XG is very good.

It's very friendly.

The performance is good.

The reporting could be improved.

Many other firewalls give you the option to disconnect a user. For example, if an end-user is using too much bandwidth, you could right-click to disconnect this user, but Sophos XG does not support this feature.

Sophos XG does not have the ability to disconnect a user.

I have been using Sophos XG for one and a half years.

We are using the latest version.

The stability of Sophos XG is great!

Sophos XG is scalable.

We have approximately 120 users in our organization who are using this solution.

We have never contacted the technical support for Sophos. Once or twice we called the local support but not for Sophos.

Previously we used Cyberoam. When they announced the end of life we switched to Sophos XG.

It was upgraded because it had reached the end of its life. We only had one option for upgrading to Sophos XG. They gave us the option to upgrade and provided us with the hardware for free.

We migrated from Cyberoam. The migration went very well.

The migration process did not require a lot of configuration.

It took a few days to complete the migration and the testing.

This solution is being managed by myself and a colleague. We are a team of two.

We were able to complete the migration ourselves.

They have different options for the license.

We paid for three years which included the migration and the free hardware.

In most cases, I believe that the licensing is paid yearly.

I don't have any issues with this solution. I would recommend this solution for others who are interested in using it.

I would rate Sophos XG an eight out of ten.

I primarily use the solution as a firewall. It's running on our data centers and all of our offices.

It has a simple GUI, which is good. 

The initial setup is pretty simple.

Unfortunately, there are quite a few negatives with them.

Their tech support is not great. 

The features on offer are lacking.

Basically what they don't have is proper bandwidth management for multiple WAN ports and multiple WAN ports to multiple VPN WANs. Meaning, if I have it on both sides on both the main side and on the secondary side, two internet connections, I can't bond the two of them together into a single VPN and have bandwidth managed between the two of them.

If I want to go ahead and make a VPN, right now, I have two internet connections on each side. I have to make a failover a group of four VPNs for it to go ahead and failover between them.

You're getting into a lot of rules. It's a lot of extra rules, et cetera, that has to be done. They don't have simple pointing systems where you could go ahead and make rules saying, "Hey, here's the route". They're not fully route-based VPN rules yet. You literally have to take down all the routes all over the place in order to make updates. It's tedious. 

Basically, we had the problem where we moved certain ranges from one data center to another data center. It took us about an hour of downtime to do that. We had to go ahead and we had to reset VLANs and we had re-setup all the VPNs in all the different places we reconnected. We don't have two sites, we have 25 sites. It was a lot of work.

I've used the solution for about three years at this point. 

It has its bugs and we can't get answers due to the fact that technical support is outsourced. There are some bugs that we keep running into that tech support can't figure out what to do. The bigger problem is the log systems aren't big enough for them to actually capture all the logs that happen.

Technical support is an issue. About six months after we bought it to a year after we bought it, they outsourced all their tech support to India. Literally beforehand, they were an American-based tech support company and they actually had full product knowledge. The Indian-based tech support doesn't have the product knowledge and there was a language barrier. They could speak English, however, they didn't understand us very well.

We were told that they stopped doing outsource and they are rehiring their own internal staff again for tech support. We're hoping that we're going to be able to get better tech support again.

The initial setup is pretty straightforward and simple. It's not overly difficult. I don't consider it to be complex. 

We bought it as is. We bought it with four years of support. However, I can't speak to how much it costs. 

I'd advise users considering the solution that, if you have quite a bit of sites, it's going to get a lot of work to do, to fix things up. It makes more sense if you have minimal sites. 

I'd rate the solution at a six out of ten.

Firewall is not our expertise, but we do sell it as per the requirement of the customer or if they ask for it. 

Most of the firewalls are on-prem. What we deliver is the hardware. It is appliance-based.

Sophos firewalls are scalable. They are pretty strong in security. So, when they provide any kind of firewall, they provide all the features such as anti-spam, antivirus, etc.

Its price should be improved. Its features are pretty okay, but the price is the area where we have to fight more. They should do something about the price structure.

It has been a couple of years.

It is stable. Its performance is very good. They have now stopped calling it a firewall. They're calling it a Unified Threat Management (UTM) solution.

It is scalable in the sense that if they are using a small model or a small box of firewall and there is an increase in their network and the number of users, they can move that small box to a bigger model. So, if they are using a firewall and they want to scale it up, they can go to the next model.

Sophos has more than 1,000 customers.

Our clients have a good system of support over here. They have full support. They get support from the distributors, from the partners, and then directly from Sophos.

We are a partner of Sophos and Fortinet. We work with Sophos much more than we work with Fortinet.

If it is a small model and a small network, it takes about two days. You need at least two people for its deployment and maintenance.

Its price should be better. Initially, the clients have to pay for the appliance. Then, they have to pay for the software that is installed on the appliance. Depending on whether they have a one-year, two-year, or three-year license, they just have to renew the license of the software after it expires. They don't have to renew the appliance license. So, they have to pay for the appliance only once, and after that, they just renew the software license. That's all.

I would definitely recommend Sophos to others. I would rate it a nine out of 10.

We primarily use the solution for a firewall. We use it as a security device.

The product is very easy to use. We enjoy the ability for it to fit into our high-level security framework. 

It gives us some separation from being on Microsoft tasks. We've got multiple levels of security. We're government contractors. It's great that it's been a separate product that gives us the ability to do the security to a high level without having to resort to needing a big team.

The solution is stable. I've had very few problems with it.

We have found the solution to be scalable. 

We're always looking for the best products and the best pricing. Pricing is always a concern for us.

When they do updates, they could handle them a little bit better. We've only had one problem, however, I do prefer when updates come out a bit quicker. We do the patching and updates and different things, however, in terms of the patch and timing and the criticality of it, it could always be better.

We've been using the solution for five or more years at this point. We've used it for a while. 

The product is reliable and stable. There are no bugs or glitches. It doesn't crash or freeze. 

The product has proven to be scalable. If a company needs to expand it, it can do so.

We have 430 end-users on the product.

We're mostly happy with the technical support. It's better than Microsoft. Any issues we have may simply come down to the SLA. 

The initial setup is pretty straightforward, and, over the last six years, it's gotten simpler, especially when it comes to cloud products.  A company shouldn't have any issues with the process. 

The deployment was very quick. It does not take long. 

My team is quite small internally. I have five to seven IT staff.  I have many service providers that I outsource a lot of the day-to-day management of the infrastructure to.

Sophos assisted us with training at the outset, which we really appreciated. 

We pay annually for the licensing for the overall on-prem solution, however, we also have some Sophos access points at permanent IT sites and different things. I have different Sophos products I may pay a monthly fee for.

We're just customers and end-users.

While this deployment is on-premises, for the cloud, we use Sophos Central.

I'd rate the solution at an eight out of ten. We're pretty pleased with its protection capabilities. 

The solution is mostly used for setting up a firewall and policies. 

The solution is very easy to understand. 

It's simple to set up the firewall and policies. Setting rules is very easy on Sophos as compared to other solutions. 

The product offers many great features. 

Technical support is very good. 

The initial setup is easy.

We have found the solution to be very stable.

A company can easily scale the product if they need to. 

When upgrading the firewalls, the process could be easier. 

While we do have network control, we don't have network monitoring. If I have 200 nodes and I want to see what's happening, I don't have visibility, especially if people are working remotely. 

If we could control roaming users through the firewalls and make it so that it's more of a  complete security solution, which we prefer, that would be ideal. If we have to install some clients on these machines, that's fine. The only concern is the DLP. We want to protect our data from being stolen. We'd also like to monitor activities from the perspective of productivity. We want to be able to track and calculate what users are doing on their machines.

I've been using the solution for more than ten years. 

Earlier, Sophos was known as Cyberoam, Before that, I use Cyberoam and now this has turned into Sophos.

The stability is very good. It does not crash or freeze. There are no bugs or glitches. the solution is reliable. 

The level of scalability depends on the box. We do have the option to scale if we need to.

I have found the technical support to be very helpful and responsive. I am pleased with the level of support I can get. They always provide proper solutions to all issues, whatever we face.

It is not difficult to set up the solution. One ISP, internet service provider, is required, and that is sufficient. If you do have a landline, some switches are available, and we can add to that a firewall. That is secondary. However, the initial requirement is nothing. It is just a plug-and-play setup that is very straightforward.

We had a vendor assist us with the installation. 

There's no additional cost for installation. The provider from which we purchased, the vendor, himself arranged all installation and configuration. They helped us. However, even through customer care, a company can ask for assistance. 

I'm not providing any services. I'm using the product as a customer only. The company, one day, would like to become a partner, however. 

I would recommend the solution to other companies. 

I would rate the solution at a seven out of ten, specifically if I compare it to other options on the market. It's pretty good. 

The solution is primarily used to secure networks, just like PSF, but much better. Sophos XG has a UTM, which is much more security inclusive than a firewall, as it takes a look at the threat management landscape from a unified point of view. They have a firewall and they have an IPS inside the same box. They have a sandbox, they have a web filter, they have a web application firewall, they have a mail gateway, and they have a DMP. These are all inside one box. It's excellent at protecting networks from security threats as well.

The solution offers everything in one product.

It's excellent at protecting networks from malicious threats.

The solution is very easy to use and straightforward. 

Once you get past the license activation, the installation is easy.

I would like to see the technical support improve. They have the worst technical support I have ever seen in my whole life.

The initial setup, specifically when activating the license, is a nightmare and is quite difficult. 

I've been using the solution for five years now. It's been a while. 

We're a distributor, however, the company is still quite new. At my last company, I had 150 clients on Sophos. 

Technical support is just awful. They are not helpful or responsive. We are not satisfied with the level of support on offer. They need to improve this aspect. They simply do not reply.

They have very bad response times. It's very strange. Before, when I was dealing with Cyberoam, before Cyberoam was acquired by Sophos, it was good. Now, it's Sophos XG, and, while Cyberoam support was amazing, Sophos support has just gone down the drain. I don't know why.

The initial setup is a nightmare. The installation, getting the box to get up and running, is a hectic process, due to the fact that the box basically would not activate any feature unless the license is activated. And the license is only activated with the cloud. When you are doing that, it's just a sort of a nightmare. Now they have a new feature in which you can just create a license and you can activate the license on the appliance. However, generally speaking, it's one of those appliances that, if it's not registered on the portal online, won't even start. It can be a nightmare sometimes. That said, after the license is activated, it's just plain simple and easy.

I previously was an implementor and would set up the solution for clients.

You need to pay for the license. You need to pay for the hardware as well. The cost depends on the model of the hardware and on which license. They have different editions, and licenses you're going to go with. They have different modules, and the cost depends on which modules you'd like to activate for security features. Not everyone will buy Sophos to utilize all the features. Usually, it's just the firewall, and IPS, sandbox, and the web filter that people are looking for. Not many people have Sophos or VM servers on-prem to protect them.

We use both cloud and on-premises deployment models. 

Now, I am using the solution personally at home, however, before, where I was working, I used the solution for three years, specifically implementing Sophos XG for customers.

I'd rate the solution at an eight out of ten. 

I'd recommend the solution to other users and companies. For small and medium businesses, Sophos is a good security vendor.

We primarily use it for web content filtering, spam filtering, and VPN.

The setup and the control management are easy enough. For the most part, the features that it offers work well. 

Web filtering is easy enough to deploy, manage, or make exceptions to. 

The logging side of it could definitely be better. Some of the logging lacks, and the information that they provide you, especially in the spam filtering section, could be better.

We're going into our third year.

For what we use it for, it does what we need to do with little to no issue. It is not overly complex for us to be able to deploy what we need.

We're a school. We have 150 staff and 700 to 800 students.

I haven't had any problems with their technical support. Every time we've had to call them, they have been fairly reliant. They have been able to solve the issue or the question that we had.

I've been through a few.

Its setup is easy enough. 

Because we're in education, Sophos gives us a very competitive price for it.

When we first got it, we were on version 17. We have now upgraded to version 18. There was a significant change between versions 17 and 18. Once you get your head around those differences, it is not that complex. Now, version 18 does some stuff that some of my older firewalls used to out of the box. So, that in itself was more of a nicety. It makes things a lot easier. 

I would rate Sophos XG a nine out of 10.

I like their firewall and the intrusion detection feature. This is also a scalable solution.

Their reporting needs to be improved.

The initial setup is not straightforward.

Technical support could be improved as well.

Integration to the cloud is also a challenge. It's not straightforward, especially while I move my mail from on-premises to cloud 365. I had to go to the cloud to research certain routes with it.

I've been using it for five years.

It is scalable. We have over 500 users.

My experience with technical support has been poor because I have not had any support. When I have had issues, I have gone to their help files but have not had any technical support.

The initial setup is not straightforward. You have to do a lot of reading to do something new. So, you have to really understand it or have prior knowledge to be able to find your own way out to whatever you want to do.

We currently have two people who manage this solution.

The cost could be lower especially if you want to add other features. For example, if I want to activate the advanced threats feature in Sophos Central, there will be an additional cost. There are features that I wish I could have, but because of the cost, I currently don't have them.

I think technical competence is much needed, so if you are not familiar with Sophos firewalls, you would need to be trained. You need to have knowledge to be able to work with this solution. It's not straightforward like other firewalls. It's not easy; you may understand the concept, but you need to have technical knowledge regarding the interface and the movement.

So, I would rate Sophos XG at seven on a scale from one to ten.