Lead NOC Engineer at a energy/utilities company with 51-200 employees
Real User
Has an intuitive interface. Easy to look at the logs and troubleshoot issues.

What is most valuable?

For one, its ease of use is the most valuable feature. It's very easy to look at the logs and troubleshoot issues as they arise. Things just make sense and it is a very intuitive interface.

How has it helped my organization?

It is easier to use than Cisco ASA, so it has reduced our SLAs by a considerable margin.

What needs improvement?

The VPN and central management need to be improved, but that's being nit-picky.

The IPsec VPNs are a little on the buggy side and you sometimes have to jump through hoops to get it to work. When I looked at them last, they were still in development for the centralized management of the firewalls, so when I saw it, it was very much in its infancy.

One more thing to add to what they can improve is the firewall policy presentation, they have their own special way of doing it which takes time for some to get used to, especially if you’re used to Cisco ASA.

For how long have I used the solution?

I have used this solution for about a year.

Buyer's Guide
Sophos XG
March 2024
Learn what your peers think about Sophos XG. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.

What do I think about the stability of the solution?

There were no stability issues.

What do I think about the scalability of the solution?

There were no scalability issues, it is very scalable.

How are customer service and support?

I would rate the technical support a 10/10; they are very professional. I know a couple of those guys over there on a first name basis.

Which solution did I use previously and why did I switch?

Previously, we were using another solution. However, we switched as we needed to upgrade our infrastructure.

How was the initial setup?

The setup was pretty straightforward. They had someone come in, walk us through it and train us on the platform.

What other advice do I have?

Get the professional support contract; it is well-worth it and those guys know their product very very well.

It is a very solid product, easy to use and implement.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
MelvynLee - PeerSpot reviewer
MelvynLeeNetwork Cooperations at STEVENSON ASTROSAT LIMITED
Real User

Thanks Sean, a very informative review. I am seriously considering the XG125 but slightly concerned about the VPN aspect as VPNs are used predominantly in our network. Also considering the Fortigate 60E.

Gerente de Atendimento na Introduce at a tech services company with 11-50 employees
Real User
Robust and feature-rich solution.
Pros and Cons
  • "The features that I have found most valuable are first the Web Filter and the Web Application Firewall SD-Wan on Version 18. Additionally, RED Tunnels allows a Sophos vital to speak to another Sophos vital in headquarters."
  • "The main problem with Sophos XG today is that it doesn't have a feature where you actually know the quality of an international link, which would allow us to we know if the link is operational or not. We need more information. It's losing packets on the network. It's high latency. So, we need more information to know if the link is really bad or really good, and today, we will only know if it's working and this just isn't enough."

What is our primary use case?

We use and implement Sophos XG for our customers for border security, just to make sure that nobody gets in and that everybody who tries to get out will have some kind of filter or protection.

How has it helped my organization?

I can say that it has not exactly improved how our the organization functions, but on the security side it makes everything much more secure, especially for the users. They can't surf the web without some kind of protection for safety and control, and we are alerted if somebody is trying to access some strange websites or trying to access something the company does not allow.

What is most valuable?

The features that I have found most valuable are first the Web Filter and the Web Application Firewall SD-Wan on Version 18. Additionally, RED Tunnels allows a Sophos vital to speak to another Sophos vital in headquarters.

What needs improvement?

The main problem with Sophos XG today is that it doesn't have a feature where you actually know the quality of an international link, which would allow us to we know if the link is operational or not. We need more information. It's losing packets on the network. It's high latency. So, we need more information to know if the link is really bad or really good, and today, we only know if it's working and this just isn't enough.

For how long have I used the solution?

I have been using Sophos XG for about six, seven years.

What do I think about the stability of the solution?

Sophos XG is really robust because of all the implementations you currently have active. We don't have problems on the hardware or a bug on the software or anything like that. It's really, really rare. Most of the problems are from requests for our customers asking to make a particular website available for some parts of the company and things like this. Just some little configurations on the web filter.

What do I think about the scalability of the solution?

We actually do studies to already know before implementation which firewall will be able to handle all the operations. It is really rare to need to change the firewall or to miss a configuration and put in equipment that can't handle the network. We have never had a case where we had to replace a hardware because it couldn't handle the network. It has always been easy to make a survey to get the right equipment for the right amount of people, and every time we need to make a new implementation we have the study making scalability easy, because each hardware is for a specific customer.

How are customer service and support?

If I were to rate support from zero to 10, I would say about six or seven. The Portuguese Support is really bad. It's really not good. Every time you have an issue that's a little bit more complex, it's better to speak to the Global Support than the Latin American Support.

How was the initial setup?

Today the initial setup is simple since we have been using it for a long time and have implemented it for several customers. So now it is really easy for us.

What about the implementation team?

We are the resellers.

What other advice do I have?

My advice to anyone considering Sophos XG is that it has a good cost-benefit. Let's just put it that it does the job right.

On a scale of one to ten, I would say Sophos XG is a nine.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Sophos XG
March 2024
Learn what your peers think about Sophos XG. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,386 professionals have used our research since 2012.
Cyber Security Engineer at a tech services company with 201-500 employees
Real User
Good filtering and application control features, but the bandwidth could be more effective
Pros and Cons
  • "Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping."
  • "This solution could be improved with more effective bandwidth. I found that when I enable DDoS detection for our clients, bandwidth is reduced. If DDoS detection is disabled, the bandwidth will be high, but it isn't secure. We recommend that customers enable DDoS detection, but if they need high bandwidth, we recommend Palo Alto and FortiGate instead of Sophos."

What is our primary use case?

We provide Sophos XG to customers. We work at deploying this solution from scratch to the customer, from unboxing, racking, or stacking, and doing licensing and upgrades for the box. Then we establish the process and security profiles that the customer requires. 

This solution is deployed on-prem. 

What is most valuable?

Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping. 

What needs improvement?

This solution could be improved with more effective bandwidth. I found that when I enable DDoS detection for our clients, bandwidth is reduced. If DDoS detection is disabled, the bandwidth will be high, but it isn't secure. We recommend that customers enable DDoS detection, but if they need high bandwidth, we recommend Palo Alto and FortiGate instead of Sophos. 

For how long have I used the solution?

I have been using Sophos XG for about six months. 

What do I think about the stability of the solution?

This solution is not as stable as other products. In terms of stability, our number one recommendation is Palo Alto, number two is FortiGate, and number three is Sophos. 

What do I think about the scalability of the solution?

Sophos is scalable, but not enough. 

How are customer service and support?

Sophos technical support is effective. 

How was the initial setup?

The installation takes two days. It is easy to deploy, and not as complicated as Palo Alto or FortiGate. We make it in our company labs and, for deployment and maintenance, we recommend one or two people. 

What about the implementation team?

We provide and implement this solution for customers. 

What's my experience with pricing, setup cost, and licensing?

The licensing for Sophos XG is based on the number of users, so I get the module from the sizing of the customer. 

Which other solutions did I evaluate?

We also recommend that customers use FortiGate and Palo Alto, since these solutions are more stable and have more effective bandwidth. 

What other advice do I have?

I rate Sophos XG a seven out of ten. I would recommend it to others, based on their needs, but the stability could be better. 

We have five to seven customers who are using Sophos XG. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Owner at InternetWorld Solutions Sdn Bhd
Reseller
Functionality is straightforward, but tech support could be improved
Pros and Cons
  • "In terms of the functionality, I think it's pretty straightforward. It's easy to pick up. It's also user-friendly."
  • "Support could be improved."

What is our primary use case?

The firewall is used to maintain security. Basically, it's used to make sure that our clients' corporate network is secure. We want to make sure that their email is scanned, protected, and so on.

What is most valuable?

In terms of the functionality, I think it's pretty straightforward. It's easy to pick up. It's also user-friendly.

What needs improvement?

Support could be improved.

For how long have I used the solution?

I have been selling Sophos XG for two years. It is deployed on-premise. 

What do I think about the scalability of the solution?

When it comes to scalability, of course we can upgrade. A lot of firewalls don't allow upgrades. An upgrade would mean changing the box. For our customers, a lot of the functions of the firewall don't reduce. We just need to make sure they enable the security, and then make sure it's giving the protection to the client.

For scalability when it comes to the server, I can add the RAM, the hard disc, and the CPU to boost up the performance. 

How are customer service and support?

The principal tech support is not very present in Malaysia. We are relying on the distributor. Most of the technical things we can handle on our own, like when it comes to setup. When it comes to the issues related to product hardware or software bugs, we will reach out to them. But the response is from the distributor.

The support could be a bit better.

How was the initial setup?

Installation for each version, like Fortinet and Next Generation Firewall, is simple. Based on how familiar we are with the client, it can take a day or two.

We only need one or two people for deployment.

What's my experience with pricing, setup cost, and licensing?

For every firewall, you will need to pay the license for the following year. If they don't pay for the license renewal, they basically won't get the support from Sophos.

What other advice do I have?

They do have their own integration, so I don't really have much to comment about Sophos because we basically just maintain the Sophos Firewall that we supply. We don't do a lot of fancy design work.

We are currently still evaluating the solution.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
Head of Software department & Head of Security department at a tech services company with 11-50 employees
Reseller
Offers good integrated security but failover management is lacking
Pros and Cons
  • "The most useful aspect of the solution is the concept of integrated security."
  • "The management console could be improved and the solution lacks good technical support."

What is our primary use case?

We generally deploy this solution for our clients for its basic functionality; our clients generally don't have sophisticated requirements. The solution is used for the firewall rules and the VPN rules, as well as the WAF functionality. We are silver resellers of this product and I'm head of the software department. 

What is most valuable?

The most useful aspect of the solution is the concept of integrated security which is why I use and recommended this firewall to clients. However, given that we never use endpoint protection, there is less incentive for us to continue using it. Initially it provided a specificity which enabled one kind of endpoint protection managed through the appliance together with the WIFI integrated within the firewall, managing all basic security aspects for TPD. However, because the endpoint protection is not that good and there are problems with malware and we can't prioritize facility management over security of the finances, we can't continue to work this way.

What needs improvement?

I think the management console could be improved. I also find the partner portal difficult to work with because it never functions correctly and it's exhausting to deal with. They should also improve the failover management and the reliability of failover, and there are sometimes issues with the WAF functionality, whereby a number of applications can't be used correctly. Finally, I think the support could be improved because when you open a ticket, there's a long wait time for a response. 

For how long have I used the solution?

I've been using this solution for three years. 

What do I think about the stability of the solution?

The stability is quite good there are no major vulnerabilities. 

How are customer service and technical support?

The technical support is a real weakness but that seems to always be the case. Sophos has improved over the last couple of years. It's better than before but it's still not good.  

What's my experience with pricing, setup cost, and licensing?

I find the solution too expensive, to be honest. It's one of the reasons I'm looking for an alternative. It's overpriced for what they offer.  When you buy a commercial appliance, the only thing you really need is good support, and they don't provide that, so the cost for hardware and software is too expensive. If the support was responsive, I'd be happy to pay. Now I'd prefer to acquire my own hardware and install pfSense and spend the money helping technicians and engineers gain good skills and improve our own support. We'd have the same level of protection at a lower cost. 

What other advice do I have?

I rate this solution a seven out of 10. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: reseller
PeerSpot user
IT Manager at a hospitality company with 51-200 employees
Real User
User-friendly, easy to configure, and stable
Pros and Cons
  • "The interface is user-friendly and the product is easy to configure."
  • "Support for this product is something that is really important, and it needs to improve."

What is our primary use case?

We are using a basic model for its security features. We are in the hospitality industry and it has all of the features that we need.

What is most valuable?

The interface is user-friendly and the product is easy to configure.

What needs improvement?

Support for this product is something that is really important, and it needs to improve.

For how long have I used the solution?

I have been using Sophos XG for almost eight years.

What do I think about the stability of the solution?

This solution has been stable so far.

What do I think about the scalability of the solution?

This is a scalable product and we have about 45 people using it.

Only one person is required for maintenance.

How are customer service and technical support?

Before the current pandemic, technical support was good, but it is becoming worse.

Which solution did I use previously and why did I switch?

In the past, I have worked with SonicWall and Fortinet products.

I prefer Sophos because of the user-friendly configuration and stability.

How was the initial setup?

The initial setup is easy.

What's my experience with pricing, setup cost, and licensing?

This is a budget-friendly product with reasonable pricing.

What other advice do I have?

In summary, this is a good product and other than the support, I don't think that there is anything else that will improve it for us.

I would rate this solution an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Senior Manager, Information Technology at a university with 201-500 employees
Real User
Top 5Leaderboard
Reliable and easy to install, but the policies should be upgraded
Pros and Cons
  • "It is simple to use."
  • "In the next release, I would like to see improvements to simplify the interface and more policy deployments."

What is our primary use case?

We use this solution as a firewall for everyone to connect to the internet.

We protect ourself and we use it as a VPN to connect to the internal network. 

How has it helped my organization?

It is improved significantly. 

What is most valuable?

It is simple to use.

What needs improvement?

The interface should be changed. It should be more user-friendly.

They should also update the policies and statistics because Fortinet is better, but Sophos could grow.

In the next release, I would like to see improvements to simplify the interface and more policy deployments.

For how long have I used the solution?

It was Cyberoam and we upgraded to Sophos XG. We have been using Cyberoam for more than 10 years and more than one year with Sophos XG.

We were on version 17 and have just upgraded to version 18.

What do I think about the stability of the solution?

It's stable. We have no problem at all with stability or with Sophos XG.

What do I think about the scalability of the solution?

Its high availability is fine, it's good. It's scalable as well.

 We have approximately 500  employees using this solution.

We will continue and increase our usage of this product.

How are customer service and technical support?

We had one issue with Cyberoam, but it was upgraded with Sophos. They helped us, but it takes a bit of time to resolve it but it's fine. 

Which solution did I use previously and why did I switch?

We also use Fortinet FortiGate for large locations. The Fortinet usage is completely different than Sophos. Sophos is simple, but I prefer Fortinet.

How was the initial setup?

It's easy to install. 

It takes the team one hour to launch it.

We have a team of 15 people to deploy and maintain this solution.

What about the implementation team?

We completed the installation ourselves.

What's my experience with pricing, setup cost, and licensing?

We purchased the technical appliances for on-premises.

We have our license for three years.

Which other solutions did I evaluate?

Yes. Fortinet. However the price is much better to Fortinet.

What other advice do I have?

I would recommend Sophos XG to others, but it would depend on their capacity.

I would rate Sophos XG a seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
VP of Operations at a manufacturing company with 51-200 employees
Real User
Stable, easy to setup the rules, versatile, and good support
Pros and Cons
  • "The most valuable feature of this solution is the flexibility of it, it's pretty versatile."
  • "The UI needs improvement because it can be a little weird at times."

What is our primary use case?

The primary use case of this solution is as the main company firewall.

What is most valuable?

The most valuable feature of this solution is the flexibility of it, it's pretty versatile.

Also, the firewall aspect in terms of setting up rules. They worked pretty well.

What needs improvement?

The UI needs improvement because it can be a little weird at times.

For how long have I used the solution?

I have used Sophos XG in the last twelve months.

What do I think about the stability of the solution?

This solution is stable. We haven't had any real issues.

What do I think about the scalability of the solution?

I don't know if this solution is scalable. We haven't explored this area yet.

As we grow, we plan to increase usage.

How are customer service and technical support?

Technical support is good.

How was the initial setup?

Initially, the setup was a bit complex.

It was complex because we were coming off of a different setup. It was just getting used to the software, but it's not too bad.

We require one and a half staff members for the deployment and the maintenance. They seem to do a pretty good job of updating it and keeping it current.

What about the implementation team?

We implemented ourselves. We did not use a vendor or integrator.

What was our ROI?

We're military contractors, and the cybersecurity compliance aspect of it has been the most helpful.

We know how the networks operate from our end, even though we are relatively green. We don't what we are comparing it to.

What's my experience with pricing, setup cost, and licensing?

We prepaid in advance to get the max discount.

What other advice do I have?

I would rate Sophos XG an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free Sophos XG Report and get advice and tips from experienced pros sharing their opinions.
Updated: March 2024
Product Categories
Firewalls
Buyer's Guide
Download our free Sophos XG Report and get advice and tips from experienced pros sharing their opinions.