We changed our name from IT Central Station: Here's why
CTO at MEDWIZ SOLUTIONS
Real User
Top 5Leaderboard
Simple to set up with a good GUI, but lacks features
Pros and Cons
  • "The initial setup is pretty simple."
  • "Their tech support is not great."

What is our primary use case?

I primarily use the solution as a firewall. It's running on our data centers and all of our offices.

What is most valuable?

It has a simple GUI, which is good. 

The initial setup is pretty simple.

What needs improvement?

Unfortunately, there are quite a few negatives with them.

Their tech support is not great. 

The features on offer are lacking.

Basically what they don't have is proper bandwidth management for multiple WAN ports and multiple WAN ports to multiple VPN WANs. Meaning, if I have it on both sides on both the main side and on the secondary side, two internet connections, I can't bond the two of them together into a single VPN and have bandwidth managed between the two of them.

If I want to go ahead and make a VPN, right now, I have two internet connections on each side. I have to make a failover a group of four VPNs for it to go ahead and failover between them.

You're getting into a lot of rules. It's a lot of extra rules, et cetera, that has to be done. They don't have simple pointing systems where you could go ahead and make rules saying, "Hey, here's the route". They're not fully route-based VPN rules yet. You literally have to take down all the routes all over the place in order to make updates. It's tedious. 

Basically, we had the problem where we moved certain ranges from one data center to another data center. It took us about an hour of downtime to do that. We had to go ahead and we had to reset VLANs and we had re-setup all the VPNs in all the different places we reconnected. We don't have two sites, we have 25 sites. It was a lot of work.

For how long have I used the solution?

I've used the solution for about three years at this point. 

What do I think about the stability of the solution?

It has its bugs and we can't get answers due to the fact that technical support is outsourced. There are some bugs that we keep running into that tech support can't figure out what to do. The bigger problem is the log systems aren't big enough for them to actually capture all the logs that happen.

How are customer service and technical support?

Technical support is an issue. About six months after we bought it to a year after we bought it, they outsourced all their tech support to India. Literally beforehand, they were an American-based tech support company and they actually had full product knowledge. The Indian-based tech support doesn't have the product knowledge and there was a language barrier. They could speak English, however, they didn't understand us very well.

We were told that they stopped doing outsource and they are rehiring their own internal staff again for tech support. We're hoping that we're going to be able to get better tech support again.

How was the initial setup?

The initial setup is pretty straightforward and simple. It's not overly difficult. I don't consider it to be complex. 

What's my experience with pricing, setup cost, and licensing?

We bought it as is. We bought it with four years of support. However, I can't speak to how much it costs. 

What other advice do I have?

I'd advise users considering the solution that, if you have quite a bit of sites, it's going to get a lot of work to do, to fix things up. It makes more sense if you have minimal sites. 

I'd rate the solution at a six out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Service Delivery Engineer - Network Security Lead at a tech services company with 51-200 employees
Reseller
Top 5Leaderboard
Simple to use, simple to manage, and simple to administer
Pros and Cons
  • "The most valuable feature is the Intercept X. It is the advanced features that are used for malware detection, and antivirus."
  • "Sophos can definitely improve with the interoperability between solutions."

What is our primary use case?

This firewall is part of the security solution that is implemented in medium-sized enterprises.

We are using it for endpoint and user security for laptops and mobile phones.

What is most valuable?

The most valuable feature is the Intercept X. It is the advanced features that are used for malware detection and antivirus. It's similar to antivirus on steroids.

It's simple to use and has a simple interface. It's generally straightforward and configuration-wise, it's not complex. 

It's a very simple product to use and that's why you find it is used mostly in small to medium-sized enterprises. They don't have the manpower that a large organization can have, in terms of the skilled workforce when it comes to cybersecurity. They just need something that is simple to use, simple to manage, and simple to administer, but effective at the same time. That's the main selling point for Sophos.

What needs improvement?

I have not used their SD-WAN product or the SD-WAN feature, so I don't know how scalable the SD-WAN is. But, I hope just that the SD-WAN is up to par with FortiGate.

The integration is an area that can improve a bit. One of the other solutions that I have used that is highly interoperable is Fortinet. It's easy to integrate with other products. 

Sophos can definitely improve with the interoperability between solutions.

For how long have I used the solution?

I have been using Sophos XG for a year and a half.

We are using the latest version.

What do I think about the stability of the solution?

It is very stable. I've not had any issues with it.

In terms of bugs, I've not had any bugs, or I've not encountered any bugs when deploying Sophos or administering Sophos products. 

What do I think about the scalability of the solution?

In terms of scalability, it's very scalable because they have different sized firewalls for different requirements or different specifications. 

It is also able to do high availability, so it's very scalable.

Currently, in our organization, we have coverage with Sophos Intercept X Endpoint Protection. We have 49 employees. We plan to continue to use this solution.

We are currently subscribed to a three-year product and will be using it for a duration of three years.

How are customer service and technical support?

I have not had any cases where I had to log technical support, but I believe it would be fast enough in case I needed to reach out to them.

Which solution did I use previously and why did I switch?

We are also using Fortinet FortiGate Firewall. 

How was the initial setup?

The initial setup is very simple.

For a normal deployment with basic configuration in a  medium-sized enterprise, it can take a day and a half.

If it's a complex network design then it might be three to four days.

It only requires one person to deploy and maintain this solution.

What about the implementation team?

We used an implementor and an integrator, but usually, I do it by myself.

Which other solutions did I evaluate?

The features in Sophos XG are the same features you would find in Palo Alto or Fortinet.

What other advice do I have?

I just like it the way it is. I wouldn't recommend any changes to it, because what they have is working and it's working very well. It is a product that I definitely recommend to others.

I would rate this solution a nine out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Learn what your peers think about Sophos XG. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
565,689 professionals have used our research since 2012.
Gerente de Atendimento na Introduce at a tech services company with 11-50 employees
Real User
Robust and feature-rich solution.
Pros and Cons
  • "The features that I have found most valuable are first the Web Filter and the Web Application Firewall SD-Wan on Version 18. Additionally, RED Tunnels allows a Sophos vital to speak to another Sophos vital in headquarters."
  • "The main problem with Sophos XG today is that it doesn't have a feature where you actually know the quality of an international link, which would allow us to we know if the link is operational or not. We need more information. It's losing packets on the network. It's high latency. So, we need more information to know if the link is really bad or really good, and today, we will only know if it's working and this just isn't enough."

What is our primary use case?

We use and implement Sophos XG for our customers for border security, just to make sure that nobody gets in and that everybody who tries to get out will have some kind of filter or protection.

How has it helped my organization?

I can say that it has not exactly improved how our the organization functions, but on the security side it makes everything much more secure, especially for the users. They can't surf the web without some kind of protection for safety and control, and we are alerted if somebody is trying to access some strange websites or trying to access something the company does not allow.

What is most valuable?

The features that I have found most valuable are first the Web Filter and the Web Application Firewall SD-Wan on Version 18. Additionally, RED Tunnels allows a Sophos vital to speak to another Sophos vital in headquarters.

What needs improvement?

The main problem with Sophos XG today is that it doesn't have a feature where you actually know the quality of an international link, which would allow us to we know if the link is operational or not. We need more information. It's losing packets on the network. It's high latency. So, we need more information to know if the link is really bad or really good, and today, we only know if it's working and this just isn't enough.

For how long have I used the solution?

I have been using Sophos XG for about six, seven years.

What do I think about the stability of the solution?

Sophos XG is really robust because of all the implementations you currently have active. We don't have problems on the hardware or a bug on the software or anything like that. It's really, really rare. Most of the problems are from requests for our customers asking to make a particular website available for some parts of the company and things like this. Just some little configurations on the web filter.

What do I think about the scalability of the solution?

We actually do studies to already know before implementation which firewall will be able to handle all the operations. It is really rare to need to change the firewall or to miss a configuration and put in equipment that can't handle the network. We have never had a case where we had to replace a hardware because it couldn't handle the network. It has always been easy to make a survey to get the right equipment for the right amount of people, and every time we need to make a new implementation we have the study making scalability easy, because each hardware is for a specific customer.

How are customer service and support?

If I were to rate support from zero to 10, I would say about six or seven. The Portuguese Support is really bad. It's really not good. Every time you have an issue that's a little bit more complex, it's better to speak to the Global Support than the Latin American Support.

How was the initial setup?

Today the initial setup is simple since we have been using it for a long time and have implemented it for several customers. So now it is really easy for us.

What about the implementation team?

We are the resellers.

What other advice do I have?

My advice to anyone considering Sophos XG is that it has a good cost-benefit. Let's just put it that it does the job right.

On a scale of one to ten, I would say Sophos XG is a nine.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
ITCS user
Networking Engineer at a comms service provider with 1,001-5,000 employees
Real User
Top 5
Easy to set up, good support, and the display of bandwidth usage statistics is interesting. There is a drill down menu showing bandwidth usage for each application. Easy to configure e-mail rules.
Pros and Cons
  • "What we found valuable is the way they deal with emails, as well as the way the bandwidth usage is shown."
  • "We are having challenges when using Zoom with Sophos XG deployed."

What is our primary use case?

Right now, we are using this product as a perimeter firewall just to deal with emails and to protect servers, as well as other equipment that is on the network.

What is most valuable?

What we found valuable is the way they deal with emails, as well as the way the bandwidth usage is shown. I find this information to be very interesting.

What needs improvement?

We are having challenges with social media because ever since this issue of COVID-19 came into existence, the idea of using online discussions has become relevant. Before this, they were not made the priority because they were not considered to be important. Now, we've discovered that we need to use a lot of these online applications.

We are having challenges when using Zoom with Sophos XG deployed. Our wireless network is not stable through the connection. More work needs to be done there, since the FW is doubling up as a wireless controller.

I would like to see improvements made to the display and visibility. I'm also using Sophos XG firewall as our wireless controller, but as it is now, I can't see my access points on the firewall. My wish is to see the Wireless network and reports also on this firewall cum- controller. 

For how long have I used the solution?

We have been using Sophos XG for almost three years.

What do I think about the stability of the solution?

Sophos XG is stable and we have no problems with it.

What do I think about the scalability of the solution?

I think there is a limitation on the issue of scalability, and it is related to the interfaces that we bought. Right now, all of the employees are using it. The traffic that passes through it covers close to 2,000 users.

For us, our bandwidth is growing so we may have to scale further, in terms of the hardware networking components.

How are customer service and technical support?

We are constantly in touch with the distributor in Zimbabwe and they are excellent.

Which solution did I use previously and why did I switch?

Prior to Sophos XG, we were using Cyberoam for our firewall. We switched because Cyberoam was acquired by Sophos.

How was the initial setup?

The initial setup is very simple. It takes perhaps an hour to complete, which included importing rules from Cyberoam.

What about the implementation team?

We completed some certifications for using this product, but for the implementation, we were assisted by IDSS. In some instances, we are doing the maintenance on our own. When we have a challenge, on a case-by-case basis, we might contact the vendor and may require them to come in and assist.

What's my experience with pricing, setup cost, and licensing?

The issue of a recurring license is a hassle because every year, we have to subscribe. It causes us problems in our organization.

What other advice do I have?

We are expanding and setting up a new data center, and I want to put a new firewall in. We have an interest in diversifying, in terms of vendors, so that we do not create a single point of failure in case one product fails. Ideally, we want to have different products.

This is a product that I can recommend for anybody who is looking for a firewall.

I would rate this solution a eight point six out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
IT support officer at a wholesaler/distributor with 51-200 employees
Real User
Top 20
Performs well, the firewall and threat management are good
Pros and Cons
  • "So far, I'm happy that they have recently added a firewall role, so I feel a little more comfortable with the security. The threat management is good."
  • "For the moment, managing the Sophos interface is a little bit challenging."

What is our primary use case?

There are about 100 people using Sophos at our office. We have two ISPs, so we have to have access to our internet providers. We also need security to deploy our network. Also, our home and external users need to be able to log in. So we use Sophos XG to build our deployment. Sophos is more than just a firewall. It analyzes security effects, so it's a firewall for the future. It's more than just a hardware firewall. There are also some paid options, so we do not have to have the main server inside our office here. We use Office 365. And although we use five servers at our location, not everything is in the cloud yet. 

What is most valuable?

We haven't used it for very long, so I have not analyzed the main features deeply. So far, I'm happy that they have recently added a firewall role, so I feel a little more comfortable with the security. The threat management is good. Also, the graphics and the throughput of our internet access are better than before, so it's the Sophos anti-threat device that we have. 

What needs improvement?

For the moment, managing the Sophos interface is a little bit challenging. We have an external partner that helps me to comprehend. But it's new. It has to keep up with the market, and I understand that. But that's my personal problem at the moment. High-availability clusters have not been implemented, so we have only one firewall and one device. So should this device go down, there's no more internet access. But so far, we haven't had any problems. 

For how long have I used the solution?

I've only been using Sophos XG for three months.

What do I think about the stability of the solution?

Sophos is stable.

What do I think about the scalability of the solution?

Sophos XG is scalable.

How are customer service and support?

I used Sophos tech support for the previous solution because Sophos sold that as well. Now, we only work with the external partners. So for the moment, I haven't had to send questions directly to Sophos. But my past experience with Sophos support was good. It was very professional and easy. We stay with Sophos software because of the technical support.

Which solution did I use previously and why did I switch?

We had Cyberoam. That brand that doesn't exist anymore, so we had to change.

How was the initial setup?

I contacted the external partner, and the setup was easy. It took about two or three days. Some little pictures were difficult for us to find, but that's normal. We could not make a one-to-one copy of the older one, so we had to search for some little personal configurations here. Now that everything is configured right, we are happy to have it. 

What's my experience with pricing, setup cost, and licensing?

Because Sophos is sold by the brand that we had before that and Cyberoam does not exist anymore, it costs less because we stayed within the older firewalls. The price was also very good. It was not expensive before because of their value at the time. I think it's not cheap but not very expensive, either. It's in the middle. 

What other advice do I have?

Based on what I know from using it so far, I would recommend Sophos. I rate it eight out of 10.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Gonzalo Moreno
User at supernovatel
Real User
Top 10
A firewall solution with a valuable VPN feature
Pros and Cons
  • "Because of the pandemic, the VPN is the most valuable feature."
  • "I used to work with Fortinet, and sometimes I see that the SD-WAN feature could be better because it's much easier in Fortinet."

What is our primary use case?

We use Sophos XG for a central firewall, with some branches making a VPN, but that's the normal deployment. Some clients use it as a proxy, but most of my clients use it as a gateway. We use Sophos to configure policies, work filters, application filters, and the SSL VPN and IPSec VPNs.

What is most valuable?

Because of the pandemic, the VPN is the most valuable feature. In Bolivia, the clients normally asked for an appliance with a web protection license or network protection and web protection license. These are the most common features demanded by our customers.

Some clients are also using the wireless solution and using XG firewall as a wireless controller. For those clients, this feature is a very important.

What needs improvement?

I used to work with Fortinet, and sometimes I see that the SD-WAN feature could be better because it's much easier in Fortinet. That area could be improved in Sophos XG as it's too complicated right now.

For example, I remember a case where the routers had to be configured by commands. It's not hard, but you have to read and investigate how to do that. The XG firewall works fine, but you have to read, and it takes some time to do it.

Sophos XG could also improve the floating area. I have more features in Fortinet, more visibility of the networking table, and the networking area. But in Sophos, you have to enter the CLA and display it. It'll also help if they offered more toll booths for VPN like Fortinet.

For how long have I used the solution?

I've been working with Sophos XG for around five years.

What do I think about the stability of the solution?

I have no issues with the stability. No reboots are needed, and there hasn't been a problem with that.

What do I think about the scalability of the solution?

The new enterprise models are scalable, and we don't have problems. I think it's fine.

How are customer service and technical support?

I like their technical support. With Cyberoam, I remember the technical support used to work closely with us. They used to configure some features for us and help us resolve problems, but not just by email. They used to work with us and show us how to do it. I think that was nice, but in Sophos, they give us instructions and help us, but by email.

How was the initial setup?

The initial setup and configuration was very easy for us. I think it's easier than the other options in the marketplace. The deployment time is relative. For example, if you're deploying for a client who has another firewall and have to integrate it, it'll take around two or three days. But if it's a new environment, you can deploy the firewall within two hours.

Which other solutions did I evaluate?

Normally, my clients look at Fortinet. Both have similar features, and sometimes Sophos is more expensive, or FortiGate is more expensive. It depends. But normally, I have clients that migrate from Fortinet to Sophos. They are used to working with FortiGate without a problem, but the main difference in our case is the support. Because as a company, SUPERNOVATEL, has more experience with Sophos to help our clients immediately. That makes the difference.

What other advice do I have?

On a scale from one to ten, I would give Sophos XG a nine.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Alex Clerici
System Integrator at Tecnimex srl
Real User
Top 5
Very good at web and application filtering with a great GUI
Pros and Cons
  • "The stability has been excellent."
  • "Technical support could be improved. They aren't as responsive as they could be."

What is our primary use case?

We primarily use the solution as a comprehensive security device.

What is most valuable?

The VPN capabilities are quite good.

The solution is very good at web and application filtering.

It's quite a comprehensive security solution.

The performance the solution offers is excellent. Compared to the older solution, and especially on the cloud, it can reach very good performance. It depends on the licenses, of course. 

The graphical user interface is excellent. 

The intrusion protection module is very useful.

You can easily connect the solution to cloud management.

The stability has been excellent.

What needs improvement?

Technical support could be improved. They aren't as responsive as they could be.

It would be ideal if we could have a more populated and detailed knowledge base. Generally, the new features must be tested before applying them to the production side. I would like to see more case studies, more application notes, and so on.

We would like to see an improvement in mail management. When passing from FG Series to XG Series, some mail features have been lost. We would like to regain them.

For how long have I used the solution?

We've used the solution for many years - before it was even Sophos. Sophos, some years ago, was Astaro AG. Sophos acquired Astaro AG. We have at least ten years of experience with the solution.

What do I think about the stability of the solution?

We've found the stability to be very good. It doesn't crash or freeze. There are no glitches. The performance and reliability are excellent. 

Occasionally, we do have to do a debug, however, that's typical of all firewall solutions.

What do I think about the scalability of the solution?

The scalability of the solution is very good overall. If a company needs to expand it, it can do so.

We have about 200 people using the solution.

How are customer service and technical support?

The reaction times of technical support are slow. They should be more responsive. We're not completely satisfied with the way they handle it.

Which solution did I use previously and why did I switch?

In the past, I've had some experience with SonicWall, Fortinet, and with a Linux solution. However, compared to other solutions, we prefer Sophos.

How was the initial setup?

It's better to be certified to install in a good manner. You need to understand what you are doing. Sophos offers the chance to certify at different levels. There are commercial levels and technical levels.

The time it takes to deploy depends on the complexity of the setup and environment. It can take a few hours or a few days. It can even take a week if the architecture is very advanced.

Generally, you need to be an engineer to handle maintenance. We have three people at our office that can handle implementation and setup as well as maintenance.

What's my experience with pricing, setup cost, and licensing?

You need a license to use the solution. We offer the license as a box license, or we can offer a license like an MSP, as a service provider. We often acquire the licenses and we give them to our customers as an MSP.

What other advice do I have?

We are an authorized partner for Sophos.

We're using the latest version of the solution.

I'd recommend the solution, especially over, for example, Cisco. 

I'd rate the solution ten out often. It's really worked well for us.

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Information Technology Security Officer at a government with 201-500 employees
Real User
Top 20
Quick to install and configure with proactive support, but updates often cause problems
Pros and Cons
  • "Definitely, its usability is very good, and it's a very robust firewall."
  • "I think that the main area for improvement is the quality assurance of the updates."

What is our primary use case?

This product serves as our current firewall solution, which is a network protection gateway.

What is most valuable?

This is a very simple solution.

It integrates well with Sophos Endpoint Protection, and we use the two of them to form a holistic security perimeter control. 

What needs improvement?

Software updates always come with issues. For example, I just upgraded to the next version, 80.5, and it came with VPN issues. It started dropping my VPN users. So, I had to roll back to before the software update. I think that the main area for improvement is the quality assurance of the updates.

The management console is a little bit rigid.

Scalability can be improved.

I think that it performs a little bit slow when it comes to connectivity, and having the speed increased would be better.

For how long have I used the solution?

We have been using Sophos XG for the past four years.

What do I think about the stability of the solution?

This is a very stable platform. In the four years that we have had it, it's never gone down.

What do I think about the scalability of the solution?

It is not a very scalable product. I would rate the scalability a seven out of ten because where you order it, it comes with prefixed ports. You will only have perhaps two for the WAN, and then maybe four LAN ports, and one console. In this regard, it's not scalable. 

When you buy it, you can't change the port configuration. In order to get more ports, you may have to upgrade to a bigger firewall.

We have about 130 accounts for approximately 80 employees.

How are customer service and technical support?

Technical support for Sophos is very good and they have a big presence in South Africa. It uses something called Sophos Central, where support can fix the problem before you, as the user, actually finds it.

How was the initial setup?

It is a very simple and very quick initial setup and configuration. Because it is a next-generation firewall, it does most of the rule development in the background. You just need to set up the basics and start it up.

What was our ROI?

For what you are buying, it's good value for the money.

What's my experience with pricing, setup cost, and licensing?

Sophos is very good when it comes to pricing. A firewall has a lot of things to look for when you're buying it, including throughput and its features. When we purchased this product, Sophos was the best on the market.

Which other solutions did I evaluate?

In addition to Sophos, we looked at FortiGate, SonicWall, and Cisco. We were looking for a next-generation firewall, and Cisco was out of range because it was too expensive. We settled on Sophos because we already had the endpoint solution in our environment, and the price was very good as well.

What other advice do I have?

Sophos XG is a firewall that I recommend because it's a very simple firewall. It's not complicated, and a LAN expert can just start using it and learn very quickly. Definitely, its usability is very good, and it's a very robust firewall.

I would rate this solution a seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Product Categories
Firewalls
Buyer's Guide
Download our free Sophos XG Report and get advice and tips from experienced pros sharing their opinions.