Sophos XGS Reviews

We typically use Sophos XGS for things like (UTM, acting as a proxy, managing routing, and for point-to-point connections.

The most valuable features of Sophos XGS for me are XGS IPS, SD-WAN, VPN setup, email protection, and integration with endpoint security.

Areas for improvement in Sophos XGS include better balance when handling high availability configurations, smoother firmware upgrades without the need for turning off devices, and simplified configuration after firmware updates.

In the next release of Sophos XGS, I would like to see improvements in log searching within the interface and more functionality available without needing to go to the command line, especially for troubleshooting purposes.

I have been working with Sophos XGS for five years.

Sophos XGS is stable and resilient, even in environments with power fluctuations and instability.

Scalability with Sophos XGS is generally good, but there can be frustrations with switches when setting up VPNs. I would rate the scalability as a four out of ten.

I believe the scalability of Sophos XGS can be improved, especially when compared to competitors like Palo Alto and Check Point. While it is a good product, there is room for enhancement to compete better in scalability challenges.

I would rate the technical support as a seven out of ten.

Neutral

Before Sophos XGS, I used Check Point, Palo Alto, and Cisco data solutions. I switched to Sophos because it is more affordable.

The initial setup of Sophos XGS is generally simple, especially for basic internet access with default features, but more complex configurations may have some difficulties. Overall, it is quick and stable.

It took less than an hour and a half to deploy Sophos XGS initially, including setting up internet access and basic firewall rules. However, migrating from older versions to the new setup took longer due to compatibility issues with the old settings.

Sophos XGS is quite affordable.

Overall, I would rate Sophos XGS as a seven out of ten. I would recommend it to others.

We give both endpoint and firewall together.

We have a set of customers who understand Sophos very well. Once they achieve all the security functions and parameters they want, they are more secure. Many customers who previously used different endpoint and firewall solutions now benefit from synchronized functionality with the complete Sophos suite. So, they become more secure, which is more important.

The security heartbeat feature and MDR are the best for customer security.

The functionality of SD-WAN compared to other boxes is lacking. Certain aspects need improvement, particularly enhancing capabilities like SD-WAN. We should also focus on enhancing XDR and NDR functionality in the firewall boxes and provide more threat protection alerts to users.

I've been working with Sophos for more than 15 years.

The technical team never disappoints us in providing solutions. They give us timely and nice follow-up.

Positive

Many of them were using a different endpoint security and a different firewall. But now, with Sophos, they have better security.

The pricing is competitive, and it's a win-win situation for both partners and customers.

In the financial market and banks, other security appliances are more popular than Sophos.

We highly recommend Sophos XGS.

I'd rate the solution eight out of ten.

The solution is a layer 7 next-generation firewall, which we use as a firewall and router. We customize rules to help with our security.

We like the layer 7 capability. We have a couple of servers behind the XGS firewall which understands HTTP packets. The solution offers a very accurate setup, and we can use it as a kind of reverse proxy device. Based on the connected URL, we can direct traffic to different servers without a solution.

The solution is very user-friendly, and the GUI is so good that I don't have to use the CLI. This eliminates the need for typing; clicking allows me to get to what I'm looking for.

The application is a little slow; it takes five to ten seconds to respond to every click when configuring. If we need to do significant configuration, it can take a lot of time. This might be because we have a low-end machine, and it could be faster with a high-end one.

We have been working with Sophos XGS for nine months. 

The stability has always been good, we haven't encountered any issues. 

I can't speak much to the scalability as we haven't scaled the tool. I don't think it is scalable the way I have it configured, but there is a high-availability function in the menus. I don't know if the configuration is automatically transferred to new devices.

We have 600 users working behind the solution, and it is very lightweight in terms of maintenance. Sophos provides free web access, so we can go to their website and configure the firewall, which is automatically passed on to the device.

I escalated a question regarding a license issue, and they solved it very quickly, so I rate the tech support highly.

Positive

The initial setup was straightforward. It has an old-style GUI, so we just followed the steps, and much of the setup was automatic.

We implemented via an in-house team. 

We must purchase separate web server licenses, as they are not included in the regular device license. I would rate the product an eight out of ten in terms of price. It's relatively affordable.

I would rate this solution a ten out of ten. 

For personal use, I suggest pfSense, but for business applications, Sophos is great because they have better support and offer an excellent GUI, which makes XGS very easy to operate. pfSense offers console access and is a lot more configurable, which is why I prefer it for home use.

I would advise potential customers to get a free trial license, as it offers the freedom to trial the solution to see if it has the functionality and configuration options required.

In terms of the firewall, I'm using Sophos X on everything, including the VPN, firewall, and endpoints.

Everything about the product is okay. 

I cannot single out anything specifically, as the firewall is working perfectly. The endpoint is helping me greatly and people have been able to work from home using the VPN. It has been great.

The pricing has been fine so far.

It has a pretty straightforward initial setup.

The solution's quite stable. 

The solution is scalable. 

Technical support has always been very helpful.

In terms of updates with the current technologies and current trends, which we're always exposed to, they update their databases frequently. 

It quickly detects issues. 

It is a plug-and-play system. 

Mainly, it's a cloud-based firewall for cloud-based endpoint protection. I can be able to manage my devices from anywhere without configuring all these VLANs and whatnot.

If I could host my emails using an email transfer agent, hosting it, it would be ideal.

The configurations can be a bit complex. It may be a while before you understand the configuration process.

If you do not have any experience with the product, you may struggle to set it up.

I'd like to see more integrated services from Sophos so I can handle everything from one place without a third-party. I would like to have email hosting and management integrated into Sophos XGS.

I've been using the solution for more than five years now.

It is very stable. There are no bugs or glitches. It doesn't crash or freeze. 

The solution can scale. It just depends on the model we are using. For example, on an XG transit, I can add as many users as I want. On XG 105, I can only have limited users. It depends on the package.

We have more than 80 general users on the solution. We use it intermittently.

I've dealt with support several times. They were awesome. We found them to be helpful and responsive. They are quite knowledgable. 

Positive

The setup process is perfectly okay. I'm an IT administrator. It's not very difficult for me to get everything up and running. I also need to check the integration. 

I'd rate the initial setup a four out of five in terms of ease of execution. 

In terms of pricing, it's good. They've been giving us some promotions where we would pay for two years and get an extra year free. We appreciate that level of savings.

We paid for a three-year license a while ago. I can't recall the exact amount that was paid. It was likely around $12,000 or less - around $4,000 a year.

It's one of the best pricing strategies they have used. Initially, if I were paying for a year, I would pay around $5,000 or $6,000. 

It is very affordable for a small enterprise. It is very competitive.

I am looking into Sophos NAC.

We are a customer of Sophos. 

I'd rate the solution eight out of ten.

The performance is good. 

It is scalable.

Technical support has been helpful in general. 

The fabric solution, the access points, and the WiFi, is not being delivered to Egypt due to some regulations. It's hard to get any devices in Egypt right now.  I need one solution and one centralized interface to monitor all the switches, access points, firewalls, and everything. I found this in Fortinet. Sophos is falling short.

We'd like an interface that can monitor everything. 

The costs could be better. 

I've used the solution for two to three years. 

I can't speak to the stability, however, the performance is good. 

The solution can scale well. It's not a problem to expand it. 

We have about 400 people on the solution currently. 

Technical support is good. 

We also worked with Fortinet. While we are on Sophos right now, we're also moving again towards Fortinet. I'm waiting on the delivery right now. 

I am implementing a new public solution for access points and switches. I'm going to FortiGate since it offers a full solution, and it is already delivered to the country, Egypt. With the Sophos access points, they are not delivering regarding regulatory issues and something like that.

We do have some people on the solution that maintains it. I don't handle the initial step myself. We have a team that does it. 

Our own team can handle the initial implementation.

The pricing of Sophos is the same as Fortinet. In general, the solutions in the market are all around the same price. 

When you go to finalize the project and include another competitor, the distributor tends to give a big discount on the solution to exit to another one.

I'm a customer and end-user. 

I don't know which version of the solution we're currently on. I'm the director of the department, and therefore, I'm not working with it directly. There's a team that's working on the versions and upgrading software and so on, while handling the technical issues. 

I'm just dealing with the high level of design or decision-making.

It's not a bad solution. It's a good option and it takes a market share in Egypt. However, I like Fortinet as they have a device that's reaching in the market and the cost is not bad. They also have an impressive monitoring interface with FortiAnalyzer and FortiManager. 

I'd rate Sophos seven out of ten. 

Sophos XGS is a unified threat management solution that combines features such as routing, access management, firewall, threat management, and URL filtering for sandboxing. It serves as a security appliance with multiple capabilities.

The valuable features of Sophos XGS include network protection, web protection, application control, intrusion detection, and iCentral orchestration. These features are beneficial for the product's security posture.

The solution could improve by using fewer hardware resources compared to other products like Palo Alto, which has better performance. 

Additionally, better integration of AI and machine learning for predictive analysis of potential threats could be beneficial. 

The technical support also needs improvement, including a better ticketing system and faster response times.

I have been using Sophos XGS firewall for more than 15 years, with approximately twelve years of precise usage.

I would rate the stability of Sophos XGS as a six out of ten. There have been observations of downtimes compared to other devices, and it doesn't perform as well as competitors like Palo Alto or Check Point.

Sophos XGS has scalability issues as it doesn't have features like cascading. Instead, it requires new devices to scale, unlike Palo Alto which allows adding devices to a pool.

The technical support is quite poor and needs significant improvements in response time and quality, especially for medium and small enterprises. It seems other brands face similar issues, but the costs rise for premium support, which is challenging for smaller entities.

Neutral

The initial setup of Sophos XGS is simple compared to other firewalls.

The pricing for Sophos products is considered high. The pricing model needs to be more flexible, catering differently to sectors like education, which might not require as high a price point.

I can recommend Sophos XGS for small to medium companies and the education sector. It is less ideal for enterprises with very high-security needs. Organizations with sensitive data should consider alternatives like Palo Alto or Fortinet.

I'd rate the solution eight out of ten.

We primarily use the solution as a firewall. 

We have multiple clients. The use case is based on their requirements, for example, as a site-to-site VPN or maybe as an FSL VPN for end users to promote the network access of company systems. Apart from that, it is used for web filtering and URL blocking. Apart from that, it's on a regular day-to-day basis used as a firewall.

It covers most areas that are needed.

The initial setup is straightforward.

The solution is scalable. 

It's stable. 

We've had issues with support. If they improved on the support part, that would be great.

They should customers who are facing issues with their product reviews; they found bots in it. If they can do their proper research and use the user analysis and testing, that would greatly help the clients.

The software release has been giving us problems.

Other firewalls provide better reporting. We need admin and activity logs to be populated for the firewall. 

For the Sophos XGS, I've been working with it for the last four years. Overall, for firewalls in general, I've been working with solutions for more than ten years.

The solution is stable. We haven't really had any issues until a bug hits the firewall. 

We are the service provider to the client, so we have a total of 28 people, excluding the team lead and the presale technical support or maybe a presale technical person. They are working directly on Sophos XGS. e tend to deal with enterprise-level customers. We don't have small-scale organizations under our portfolio. This solution is best suited for mid-range companies and larger. 

The solution is pretty scalable. I'd rate it a three out of five in terms of ease of scalability.

Support has been very poor.

Neutral

We have three major products, which we offer to clients. They are Palo Alto, Cisco ACI, and Sophos XGS.

There are many major differences between Sophos and Palo Alto. This product is not comparable to Palo Alto right now. Maybe the basic models of the Palo Alto can be compared with the Sophos XGS firewall, however, not the higher-end ones. Palo Alto is much more advanced. 

The solution is straightforward to set up. It is not overly complex.

How long it takes to deploy depends on how the implementation is requested. It won't take more than one hour if it is a basic implementation like setting up the firewall with ISP connections and all those things. However, if it is a complete setup with implementations, other tests, and all those things, it takes around six to seven hours.

After the installation, we do the software updates periodically along with the model which the client has purchased Apart from that, we also do the maintenance of the various policies and other configurations. We do make changes to the firewalls based on changing industry standards, et cetera.

I'd rate the ease of implementation a four out of five. 

If the customer requests assistance with the initial setup, however, we will provide an engineer to them. They'll come to the implementation site and assist.

I don't take care of the licensing part. There is a separate team.

We are a Sophos Gold partner. 

We have multiple firewalls on multiple OS versions. Basically, we do have two major pieces of software installed in the firewall, which are 1854 MR4 and the latest release, 1801.

There are multiple criteria when making a decision about whether to go with Sophos or maybe another firewall. It depends on the client's requirements as well as their budget. 

I'd rate the solution five out of ten.

The solution provides firewall protection.

The solution is easy to use and configure, once you know how to apply the policies.

The customer service response time can be improved.

I am currently using the solution.

The stability is good. I have not had any problems with it.

The scalability of the solution is good.

The customer service response time is slow and could use improvement.

The setup is straightforward if you know how to do iOS.

The cost is around $50 per endpoint, and there is a one-time purchase fee for the firewalls of $2,500, plus services. It is roughly around $4,000.

I am currently evaluating CrowdStrike. I like it better.

I give this solution seven out of ten.

If you are looking for a low-cost solution, cheaper than Cisco I recommend this solution. You should also look at Fortinet.