Sophos XG Reviews

We primarily use the solution as a comprehensive security device.

The VPN capabilities are quite good.

The solution is very good at web and application filtering.

It's quite a comprehensive security solution.

The performance the solution offers is excellent. Compared to the older solution, and especially on the cloud, it can reach very good performance. It depends on the licenses, of course. 

The graphical user interface is excellent. 

The intrusion protection module is very useful.

You can easily connect the solution to cloud management.

The stability has been excellent.

Technical support could be improved. They aren't as responsive as they could be.

It would be ideal if we could have a more populated and detailed knowledge base. Generally, the new features must be tested before applying them to the production side. I would like to see more case studies, more application notes, and so on.

We would like to see an improvement in mail management. When passing from FG Series to XG Series, some mail features have been lost. We would like to regain them.

We've used the solution for many years - before it was even Sophos. Sophos, some years ago, was Astaro AG. Sophos acquired Astaro AG. We have at least ten years of experience with the solution.

We've found the stability to be very good. It doesn't crash or freeze. There are no glitches. The performance and reliability are excellent. 

Occasionally, we do have to do a debug, however, that's typical of all firewall solutions.

The scalability of the solution is very good overall. If a company needs to expand it, it can do so.

We have about 200 people using the solution.

The reaction times of technical support are slow. They should be more responsive. We're not completely satisfied with the way they handle it.

In the past, I've had some experience with SonicWall, Fortinet, and with a Linux solution. However, compared to other solutions, we prefer Sophos.

It's better to be certified to install in a good manner. You need to understand what you are doing. Sophos offers the chance to certify at different levels. There are commercial levels and technical levels.

The time it takes to deploy depends on the complexity of the setup and environment. It can take a few hours or a few days. It can even take a week if the architecture is very advanced.

Generally, you need to be an engineer to handle maintenance. We have three people at our office that can handle implementation and setup as well as maintenance.

You need a license to use the solution. We offer the license as a box license, or we can offer a license like an MSP, as a service provider. We often acquire the licenses and we give them to our customers as an MSP.

We are an authorized partner for Sophos.

We're using the latest version of the solution.

I'd recommend the solution, especially over, for example, Cisco. 

I'd rate the solution ten out often. It's really worked well for us.

This product serves as our current firewall solution, which is a network protection gateway.

This is a very simple solution.

It integrates well with Sophos Endpoint Protection, and we use the two of them to form a holistic security perimeter control. 

Software updates always come with issues. For example, I just upgraded to the next version, 80.5, and it came with VPN issues. It started dropping my VPN users. So, I had to roll back to before the software update. I think that the main area for improvement is the quality assurance of the updates.

The management console is a little bit rigid.

Scalability can be improved.

I think that it performs a little bit slow when it comes to connectivity, and having the speed increased would be better.

We have been using Sophos XG for the past four years.

This is a very stable platform. In the four years that we have had it, it's never gone down.

It is not a very scalable product. I would rate the scalability a seven out of ten because where you order it, it comes with prefixed ports. You will only have perhaps two for the WAN, and then maybe four LAN ports, and one console. In this regard, it's not scalable. 

When you buy it, you can't change the port configuration. In order to get more ports, you may have to upgrade to a bigger firewall.

We have about 130 accounts for approximately 80 employees.

Technical support for Sophos is very good and they have a big presence in South Africa. It uses something called Sophos Central, where support can fix the problem before you, as the user, actually finds it.

It is a very simple and very quick initial setup and configuration. Because it is a next-generation firewall, it does most of the rule development in the background. You just need to set up the basics and start it up.

For what you are buying, it's good value for the money.

Sophos is very good when it comes to pricing. A firewall has a lot of things to look for when you're buying it, including throughput and its features. When we purchased this product, Sophos was the best on the market.

In addition to Sophos, we looked at FortiGate, SonicWall, and Cisco. We were looking for a next-generation firewall, and Cisco was out of range because it was too expensive. We settled on Sophos because we already had the endpoint solution in our environment, and the price was very good as well.

Sophos XG is a firewall that I recommend because it's a very simple firewall. It's not complicated, and a LAN expert can just start using it and learn very quickly. Definitely, its usability is very good, and it's a very robust firewall.

I would rate this solution a seven out of ten.

On-premises

I use Sophos XG mainly as a gateway. It also serves as the DHCP server on my network and is utilized for web control.

The Sophos XG offers intuitive configurations, which is primarily what I find valuable. It is easy to configure due to its graphical interface, reducing the reliance on specialized IT personnel and cuts down on time used for support and troubleshooting.

The reporting side could use improvement. Having more reports on the dashboard would be beneficial. While there might be different tools or licenses for various purposes, having more reports available would be helpful.

I have been working with Sophos XG for nearly five years. I started with Cyberoam and then transitioned to Sophos.

The deployment process was smooth. There were trained engineers available, and it was easy for my team to adopt.

The solution has been stable. It's on 24/7 and has consistently been reliable over the years.

I have not had the need to scale, which might be due to having more capacity than needed.

I rely on local vendor support, so I haven't directly engaged with Sophos technical support.

Neutral

Before Sophos, I used Linux-based firewalls that I configured myself. Cyberoam was my first physical firewall, which naturally progressed to Sophos due to cost considerations and local support.

The initial setup was straightforward. It wasn't a lengthy project, and within three days, the deployment was completed.

I did not use a specific project methodology. I followed my regular project plan, which included an initial meeting to kick off the deployment.

I benefit from reduced reliance on specialized IT skills, especially during staff turnover. The graphical interface of Sophos XG simplifies configurations, saving time in support and troubleshooting compared to the Linux-based solution I previously used.

The decision to go with Sophos was influenced by pricing and strong local support.

During my evaluation process, I looked at Cisco and Palo Alto in addition to Cyberoam.

For organizations considering Sophos, it is important to evaluate their network deployment plan, especially if they have a hybrid environment. They should consider if Sophos XG, in its basic deployment, can provide sufficient security or if additional tools are required. I would rate the overall solution an eight out of ten.

On-premises

We use Sophos XG firewall primarily for threat management, including firewall and endpoint equipment protection. We are in the process of upgrading to Sophos XG 33 firewall.

Sophos has greatly improved our network's security posture. In terms of network security and user activity reporting, it has helped us to manage and analyze the activities of the users. From the reporting, we can now see areas where we need improvements, such as blocking certain sites from users.

The most valuable features are its protection capabilities like threat prevention, malware security, web protection, and web security. The security features are very good.

There should be a workaround in case of equipment breakdown, like a stopgap measure while the equipment is being returned or replaced. An improvement in the product's pricing would also be beneficial so that more people can afford it.

We have been using Sophos XG since 2018.

Sophos' technical support is very prompt and efficient. For instance, when our equipment failed to reboot, their team was quick to diagnose and resolve the problem by exchanging the equipment within two weeks.

Positive

We used another firewall before Sophos.

Having a Unified Threat Management system like Sophos XG has helped us spend less on network security, thus providing a good return on investment by managing our income effectively.

The price is reasonable, but if reduced, it could become accessible to more people. Currently, it costs about four million shillings in Kenya.

Before using Sophos, we used another firewall.

Regular prompts from Sophos to the users for instant reporting of any challenges would be very beneficial. Including more YouTube videos, webinars, and other educational content would also help users understand and utilize the product more effectively.

I'd rate the solution nine out of ten.

On-premises

We primarily use the solution for gateway purposes, in order to provide us with gateway security.

The product is good in terms of routing multiple ISP Internet and also it's good in internet traffic control.

The updates are helpful and add to the solution in a positive way.

The initial setup is simple.

The solution is stable.

For the most part, you can easily scale the solution.

I'm not seeing any such things that require any improvement. It's good. From time to time, some updates will come through. It's meeting our requirements right now.

The pricing has gotten much higher. 

We've been using the solution for three years. It's been a while now. 

The stability and performance are excellent. There are no bugs or glitches. It doesn't crash or freeze. It's very reliable. 

We have 50 users spread across three devices. 

The solution, in terms of scalability, has its limitations, of course. Scalability in the sense of if I want to add more ISPs all depends upon my port availability. Transitions and migrations are fine and doable. I don't find any challenges there.  

Technical support from Sophos has been brilliant. We deal with them on any L3 issues and they are always helpful. 

The initial setup is very straightforward and simple. it's not overly complex or difficult. 

The deployment was quick and took maybe one day.

In terms of maintenance requirements, We have an L1 technical person who will take care of all the routine maintenance of the firewall, and we also have L2 support with the vendor. We have an L3 support from the Sophos team itself. 

We did the implementation with the assistance of a vendor. We did not completely handle it ourselves. 

While, at first, the pricing was very good, it's since crept up. Now, upon renewal, it's pretty high. They've increased the costs. 

Currently, we have three devices that are similar. Only the capacity varies.

I'm a customer and an end-user. I don't have a business relationship with Sophos. 

I'd recommend the solution to other users and organizations. I'd rate it at a ten out of ten. it's the best. 

On-premises

I am using it for unified management.

I like the firewall, inbound, and outbound modules the most. The VPN feature also works well. It is very easy to configure rules in Sophos XG.

We have got local service here in Zimbabwe from Sophos, which is something that I like a lot. We have got good local support, and they come on-site when we have any challenges.

Sophos provides a lot of good training all around Zimbabwe. They are quite dominant here, similar to other solutions like Fortinet or WatchGuard.

When you are using it as a controller for the wireless access points, it doesn't perform well.

It is not suitable for the public cloud. It is more suitable for enterprise data. It is not really the equipment for cloud data centers. I am looking for a data center firewall.

I have been using Sophos XG for more than five years. I started with Cyberoam, which was bought by Sophos.

It is stable. I have managed to secure my network. It has been good so far.

It is not so scalable. If you want to upgrade, you have to buy another appliance. I don't see so much scalability. You can only change a port from 1 gigabit to 10 gigabits. There are other solutions like Fortinet that are more scalable.

Their support is good. We get local support from them.

The initial setup is straightforward. The deployment took two days.

The pricing is flexible. Sophos looks at a country's economy and offers flexible pricing. This is how they have managed to penetrate the market.

I would definitely recommend it. It has good support and training.

I would rate Sophos XG a seven out of ten.

On-premises

I use the solution as my endpoint firewall and at the same time, I use it for load balancing and spillover.

What I like the most is the reporting. 

The integration with the Sophos firewall is brilliant. I don't need to be physically present in the office. I can monitor everything from Sophos Central. That is a great feature and it's one thing that I really appreciate about the solution.

I like the fact that it can self remove malware and do updates on the cloud via Sophos Central.

The interface is good.

Although I enjoy the reporting elements of the solution, it can still be improved. I still can't drill down. There is some information that I would really, really like to see, but I still can't access it.

On reports, they sometimes give a summary, but it lists different users as unknown. There are times that I really want to know which user or which IP is causing a problem. 

I've been using the solution for ten months.

There is something that have observed and I don't know what exactly the problem is. Right now, from my ISP I'm supposed to have unlimited bandwidth, but I observed behind the firewall my bandwidth seems low. I'm not exhausting what I have from my ISP. I've checked the TOS and there's no limit. When I spoke with one of the resellers they said that they too had experienced it before and that probably I should restart the device.

That they observed that the clients that restarted had their internet service improve. I don't think that is a good solution. I don't want to have to restart my device to have the internet service improved.

I've checked the setup. I even checked with the reseller, who told me everything is okay. I've gone for XG training. Even after the XG training, I've gone back to look at my setup. I can't see anywhere the bandwidth is being shared. I'm not sure if it's the device itself, but I've checked everything.

The scalability is okay. We have about 200-250 users.

Technical support can be improved upon. There are times that I've had some issues that I've tried escalating in technical support and it takes a while before we really get it resolved. 

Once I was getting a particular malware from an unknown source on one of my servers which was behind the firewall. I asked their support why. Later they advised that I should install Intercept X for servers on that particular device. I was confused about how it was behind a firewall; the firewall should be able to detect which system is getting infected. The system doesn't really go to the internet and nobody browses on it. The only thing I could imagine that could cause it was a Windows update. If it was from an update they least it should have been able to say, "Okay, it was from this particular update that this malware was filtered in."

Out of ten, I would give their service a five.

The solution we were using previously was Cyberoam.

The Cyberoam device was about five years old and had started malfunctioning. It wasn't giving us the output it had previously provided. At that time, Sophos had already bought Cyberoam. We had the option to either upgrade the OS to a Sophos OS or to a Sophos device.

We decided to go for a Sophos device since the Cyberoam device was already problematic.

The initial setup is straightforward.

I used a reseller to assist with implementation.

We pay on a yearly basis. 

We have Sophos XG, but we also have Intercept X for our endpoint and recently we just deployed Intercept X for the servers. I've not done a calculation of the costs of all three to know what my yearly maintenance costs would be.

Once you have basic networking skills and firewall management it's easy to set up. With Sophos Central, I think it's a good solution for any IT department.

I would rate the solution eight out of ten.

As it is now, the solution is good, but I believe that there's still room for more improvement. I still believe the reporting could be improved. Sophos, from my experience, seems to affect my bandwidth. I didn't set any limit, so I don't know where that is coming from, but it's something that we've noticed with the XG.

I use the solution in my internal network for my home office, for which I have applied a router in my home. I have deployed a couple of switches in my home network, but I need to secure my network from attacks.

Adaptive security is the most usable and most efficient feature in Sophos XG. The performance and scalability of the tool are advantageous areas.

With the firewall part in Sophos XG, it is not very flexible if you want to block access to a particular site during your internal usage. The tool is not able to block access to a particular website instantly or easily since it takes a considerable amount of time to configure a few things. If you specify that a user should not be able to go to www.google.com, it should be denied for sure.

The support engineers of the product are not very tech-savvy, making it an area where improvements are required.

I have been using Sophos XG for four years. I am a customer of the product.

At times, there are some issues that I have faced with the stability of the product. Not many firmware updates pushed into the tool are bug-free, and because of this, I face issues.

I rate the tool's stability a seven out of ten.

It is a scalable solution.

Based on my experience with the product's support team, I feel that Sophos provides good technical support to its users.

I rate the technical support a six out of ten.

Neutral

The product's initial setup phase was easy, especially compared to Cisco.

The solution is deployed on the cloud. I have also worked with the on-premises model.

The solution can be deployed in only a couple of hours.

The product has improved the security posture. Sophos XG provides features that are almost the same as those Cisco Firepower devices provide. I would say that a couple of features in Sophos XG are the same as the ones provided by other Cisco devices, which are top-notch.

The management tools or log-related solutions that are presented with Sophos are okay but not top-notch when it comes to Cisco. I rate the reporting and visibility tools in Sophos XG a six out of ten compared to Cisco.

Sophos xG's integration capabilities do not apply to a limited number of security tools. Cisco provides integration capabilities with many products, while Sophos XG offers integration with a limited number of products. Cisco provides integration capability with almost any tool that is present in the world. Cisco works day and night to ensure that it provides good integration capabilities with the solutions.

I recommend the tool to those who plan to use it, especially if you own a very small office where you don't need a product with too many functionalities.

I rate the tool a seven out of ten.