Sophos XGS vs Stormshield Network Security comparison

Sophos and Stormshield are both solutions in the Firewalls category. Additionally, 94% of Sophos users are willing to recommend the solution, compared to 85% of Stormshield users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Sophos XGS and Stormshield Network Security based on real PeerSpot user reviews.

Find out in this report how the two Firewalls solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Sophos XGS vs. Stormshield Network Security Report (Updated: April 2025).

Buyer's Guide

Sophos XGS vs. Stormshield Network Security

April 2025

Download the complete report

Helped 846,617 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiGate

Featured Reviews

EhabAli

Sr. Cybersecurity Solutions Architect at BMB

Efficient, user-friendly, and affordable

In the past, NSS Labs was utilized to test files and verify the numbers and datasheets. It would be beneficial to have an organization or testing lab that can verify the numbers in our datasheets since changes are frequently made, which can be inconvenient for review. For instance, when comparing different competitors such as Forcepoint, Palo Alto, and Check Point, the throughput or numbers in the datasheet may be lower than the actual numbers. Conversely, Fortinet typically reports very high numbers, but they cannot be replicated in the real world. Therefore, it would be advantageous for them to partner with a neutral testing organization such as NSS Labs to validate these numbers, thus providing more credibility and comfort to everyone regarding the accuracy of the datasheets. For the migration, everyone has a firewall in use and I am selling Fortinet. Typically, I am replacing another firewall. Previously, there was a tool available to convert configurations from one firewall, such as Palo Alto, to Fortinet, but this tool is no longer free. If it could be made free again, it would be very beneficial. This tool shows a lot of promise and is very good. Making it free would help many companies deliver their products in a more efficient and integrated way. It would also be more valuable to include the tool with the firewall package or license instead of having to pay extra for it. Paying extra puts more pressure on small companies to deliver the firewall and complete the configuration, especially if they have hundreds or thousands of policies. It's very painful to move through these policies line by line. The stability has room for improvement. When it comes to Secure SD-WAN, everything is fine. They are going the right way. SD-WAN is very promising. They can provide the SD-WAN solution separately, but they will not take this approach because even the smallest firewall can support the features, so there is no need to have a separate service or appliance. They are following the right steps, and there is nothing to be improved. Feature-wise, I'm really satisfied with the new release, and the features they have added. For now, it's fine.

Read full review

Nassif Kaleny

IT Manager at Bavaria Egypt S.A.E.

Dynamic web and mail filtering contribute to improved security measures

The reporting system is very poor. I cannot trace any traffic to our site if it feels some threats. It just tells me that there is something during a certain time but does not provide information about the type of threats or how to get rid of them. This needs improvement.

Read full review

Ben_Ben

Network Engineer at ACS

The intrusion detection system helps our organization by automatically detecting and responding to potential threats

The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The features I find most useful in Fortinet FortiGate are its simplicity of utilization, which is very important, and its provision of interfaces to see the alerts and other things."

"It has very easy management and an amazing ETM configuration."

"The solution is very user friendly. The user interface in particular is quite nice."

"The SD-WAN feature of Fortinet FortiGate has been most impactful in maintaining our network's integrity."

"It has improved our organization with control data."

"The most valuable features of Fortinet FortiGate are the ability to work in proxy mode, which other solutions, such as Palo Alto cannot. There are some features that are better that come at no extra license or subscriptions cost, such as basic SD-WAN. The DLT is useful, other solutions have the same feature too, such as Palo Alto."

"The multi-tenancy feature is most valuable. It integrates very well with FortiManager and FortiAnalyzer."

"Fortinet FortiGate has impacted our cost savings and security efficiency positively."

More Fortinet FortiGate pros

"It provides good protection services."

"I think Sophos technical support's immediate response is good compared to Fortinet's. If the technical engineer is good, they get the solution immediately. If not, it might take two days. For improvement, immediate response is required, whether by email, phone call, or WhatsApp. Sometimes, we can't wait three or four days for a solution. In urgent situations, we might use a spare Sophos device while waiting for support."

"The threat management system and VPN are most valuable."

"Sophos XGS' most valuable features are protection and intrusion prevention detection."

"One of the main advantages of Sophos XGS is the processor. You don't have to wait a long time for when you are managing the firewall and the traffic is faster now."

"The most valuable features of Sophos XGS are a set of functionalities that are quite commendable, they call it synchronized security, where all the solutions share defense lines with each other."

"The most valuable features in Sophos XGS are identity and VPN. It is a very good solution that is able to detect and prevent a lot of malicious activity."

"In this solution, the most valuable feature is that it's a security device. Maintaining security is very valuable for us. The other feature that we did not find in other products is that it works well with thin client environments."

More Sophos XGS pros

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page."

"Ease of use is the best feature of the product."

"I can see what traffic is going on. I can easily block any programs from attacks."

"It's an easy, straightforward management platform to use."

"The tool's most valuable feature is its dashboard, which helps you manage different aspects of a single page. The intrusion detection system helps our organization by automatically detecting and responding to potential threats. It operates similarly to Darktrace, which detects and responds automatically based on the security rules you apply. Initially, you configure everything to block, and then you can whitelist specific items as needed."

"I like how you can configure the rules. There is the task for the rules and a task for the network configuration. It also provides SMD filtering, and it can be integrated with the active directory for the users, their mission, and the VPN configuration. We are here in Sudan, and Stormshield didn't work in Sudan for more than a decade. Stormshield is a very strong firewall and very easy to configure and maintain. I am just working with the firewall solution, and we don't have any other solutions like endpoint solutions or something like that."

"The most valuable features are the IPS, the firewall function, and the price."

"I like that it works fine. Stormshield is a very good solution."

More Stormshield Network Security pros

Cons

"The renewal price and the availability could be improved."

"My only complaint about FortiGate is a lack of QinQ VLAN tunneling. I haven't found this feature in any Fortinet product. You can do this on all Cisco routers, including the smaller models. However, QinQ isn't available on the biggest, most expensive Fortinet units. They still don't have that. I think now we're on software version 6.0, and they still haven't found a solution for QinQ. It isn't a dealbreaker, but that's my main complaint."

"It would be good if they had fewer updates."

"Usually, we sell the bundle with the UTM or threat management piece with IPS, IDS. Other providers, such as Palo Alto, are ahead in terms of safe functionality. So, for me, delivering truly safe service is probably something that still needs to be improved."

"There are problems with the custom reporting of the unique traffic. The data is there, but it is too difficult for us to extract."

"FortiLink is the interface on the firewall that allows you to extend switch management across all of your switches in the network. The problem with it is that you can't use multiple interfaces unless you set them up in a lag. Only then you can run them. So, it forces you to use a core type of switch to propagate that management out to the rest of the switches, and then it is running the case at 200. It leaves you with 18 ports on the firewall because it is also a layer-three router that could also be used as a switch, but as soon as you do that, you can't really use them. They could do a little bit more clean up in the way the stacking interface works. Some use cases and the documentation on the FortiLink checking interface are a little outdated. I can find stuff on version 5 or more, but it is hard to find information on some of the newer firmware. The biggest thing I would like to see is some improvement in the switch management feature. I would like to be able to relegate some of the ports, which are on the firewall itself, to act as a switch to take advantage of those ports. Some of these firewalls have clarity ports on them. If I can use those, it would mean that I need to buy two less switches, which saves time. I get why they don't, but I would still like to see it because it would save a little bit of space in the server rack."

"They can do more tests before they release new versions because I would like to be more assured. We had some experiences where they release something new and great, but some of the old features are disabled or they don't work well, which impacts the product satisfaction. The manufacturer should be able to prove that everything works or not only that it might work. This is applicable to most of the other services, software, and hardware companies. They all should work on this. We cannot trust every new release, such as a beta release, on the first day. We wait for some comments on the forums and from other companies that we know. We always wait a few weeks before we use the updated version. They should also extend the VPN client application, especially for Linux versions. Currently, it has an application for Linux devices, but it doesn't work the way we want to connect to the VPN. They use only the old connection, not the new one. They have VPN client applications for Windows and Mac, but they can add more useful features to better manage the devices and monitor the current health of each device. Such features would be helpful for our company."

"We would like to have the ability to disable some of the security functionalities."

More Fortinet FortiGate cons

"All the security features could be better."

"Having previously worked with the Astaro Security Gateway platform (now called Sophos UTM), I can attest that the configuration and dashboard for this older platform was easier to manage than that of both Sophos XG and XGS. If it were up to me, I would prefer to go back to the older SG dashboard."

"We'd always like the solution to be a bit less in terms of cost."

"The first time a person sets it up, they will need training."

"The price of Sophos XGS could improve, it is high."

"The reporting system is very poor. I cannot trace any traffic to our site if it feels some threats."

"One area for improvement would be including automatically generated certificates for HTTPS, which was available in earlier versions but might not be in the latest."

"Sophos XGS could be improved by adding a built-in hyper-converged solution."

More Sophos XGS cons

"The SD card could be more secure."

"The filtering configuration could be better. We have some difficulties with the filtering configuration and the filter extension. It's not that easy. It's not that straightforward. In the next release, I would like to see a reporting system. Stormshield doesn't have any tutorials on how to do the configuration and things like that. They just have documentation on the website. If you want to configure, for example, Cisco or Fortinet, you can find tutorials on YouTube. They show you how to configure the features, and so on. In Stormshield, there is nothing on social media or the internet on how to configure different things. The lack of documentation or the lack of material makes it difficult for others to adopt this solution."

"This is not a next-generation firewall."

"The biggest issue was their support department was not able to help us, then everything stops. This is a no-go area for me."

"With Stormshield, there are difficulties joining things, and it can be complex depending on the architecture."

"The product must improve its pricing."

"It could be better if it were more user-friendly. It's too complicated for us to use it. The price could be better as well."

"Improvement is needed in terms of the technical support of the manufacturer."

More Stormshield Network Security cons

Pricing and Cost Advice

"The price is highly competitive when compared to other brands that offer similar functionality."

"The price is fair for what we get with FortiGate."

"Its pricing is fine. It is on a yearly basis. Other than the licensing fee, there is no extra fee."

"This is not a cheap solution but it isn't expensive, either. It's a good solution for the right price."

"The price is okay."

"In the Asian economy in which we operate, FortiGate is expensive."

"The pricing or licensing of Fortinet FortiGate is quite effective as it offers different bundles that aggregate most required features, while also allowing clients the option to select specific components alone."

"Fortinet has more device options that are affordable for small businesses than Palo Alto, and its enterprise-level models are also cheaper. Palo Alto also has a separate license for VPN connections and SD-WAN, but FortiGate offers these features standard."

More Fortinet FortiGate pricing and cost advice

"The licensing cost for Sophos XGS is high. However, they do apply competitive discounts and different layers of discounts."

"Sophos XGS costs around $75,000 for fifty units."

"Sophos XGS is a very expensive solution."

"The cost is comparable to other similar solutions."

"Sophos XGS is priced lower than some of its competitors, such as Fortinet"

"A central firewall on the cloud with a cluster might be 70,000 to 80,000 euros for a three-year license."

"It is roughly around $4,000."

"I can't recall the exact amount that was paid. It was likely around $12,000 or less - around $4,000 a year."

More Sophos XGS pricing and cost advice

"We bought a three-year license, and we renew it whenever it expires. The price could be better. It's always very expensive."

"For mid-sized companies, they sell their appliances for good prices."

"We chose Stormshield for its price, as the Azure firewall was too expensive."

"The SN200 series costs between $500 USD and $600 USD per year, whereas the SN700 series costs approximately $1,000 annually."

"The price of this solution and the price of support are ok."

"The pricing could be better."

"I think the price is good."

See which vendors are best for you

Use our free recommendation engine to learn which Firewalls solutions are best for your needs.

See recommendations

846,617 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

22%

Computer Software Company

14%

Comms Service Provider

Manufacturing Company

Computer Software Company

15%

Manufacturing Company

Comms Service Provider

Educational Organization

Computer Software Company

22%

Comms Service Provider

16%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the better NGFW: Fortinet Fortigate or Cisco Firepower?

When you compare these firewalls you can identify them with different features, advantages, practices and usage a...

See all answers

What is the biggest difference between Sophos XG and FortiGate?

From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know...

See all answers

What are the biggest technical differences between Sophos UTM and Fortinet FortiGate?

As a solution, Sophos UTM offers a lot of functionality, it scales well, and the stability and performance are quite ...

See all answers

What do you like most about Sophos XGS?

The policies are the greatest feature. They allow us to configure granular control over our network traffic.

See all answers

What is your experience regarding pricing and costs for Sophos XGS?

The pricing is justified, and the solution is considered budget-friendly compared to other vendors.

See all answers

What needs improvement with Sophos XGS?

Hardware stability needs improvement. I have experienced multiple hardware complaints, particularly during firmware u...

See all answers

What do you like most about Stormshield Network Security?

Ease of use is the best feature of the product.

See all answers

What is your experience regarding pricing and costs for Stormshield Network Security?

We pay for the quality we receive.

See all answers

What needs improvement with Stormshield Network Security?

The product must improve its pricing.

See all answers

Comparisons

Sophos XG vs Fortinet FortiGate

Compared 22% of the time

Netgate pfSense vs Fortinet FortiGate

Compared 13% of the time

Cisco Secure Firewall vs Fortinet FortiGate

Compared 10% of the time

WatchGuard Firebox vs Fortinet FortiGate

Compared 5% of the time

SonicWall TZ vs Fortinet FortiGate

Compared 5% of the time

More Fortinet FortiGate Competitors

Sophos XG vs Sophos XGS

Compared 24% of the time

OPNsense vs Sophos XGS

Compared 17% of the time

Netgate pfSense vs Sophos XGS

Compared 7% of the time

Check Point NGFW vs Sophos XGS

Compared 6% of the time

Palo Alto Networks NG Firewalls vs Sophos XGS

Compared 6% of the time

More Sophos XGS Competitors

Netgate pfSense vs Stormshield Network Security

Compared 18% of the time

OPNsense vs Stormshield Network Security

Compared 6% of the time

WatchGuard Firebox vs Stormshield Network Security

Compared 6% of the time

Palo Alto Networks NG Firewalls vs Stormshield Network Security

Compared 6% of the time

Sophos UTM vs Stormshield Network Security

Compared 4% of the time

More Stormshield Network Security Competitors

Product Reports

Buyer's Guide

Fortinet FortiGate

April 2025

Download Fortinet FortiGate product report

Buyer's Guide

Sophos XGS

March 2025

Download Sophos XGS product report

Buyer's Guide

Stormshield Network Security

March 2025

Download Stormshield Network Security product report

Also Known As

FortiGate 60b, FortiGate 60c, FortiGate 80c, FortiGate 50b, FortiGate 200b, FortiGate 110c, FortiGate, Fortinet Firewall

No data available

NETASQ Firewalls

Overview

Fortinet FortiGate offers comprehensive network security and firewall protection across multiple locations. It effectively manages data traffic and secures environments with features like VPN, intrusion prevention, and UTM controls.

Organizations rely on Fortinet FortiGate for its robust integration with advanced security policies, ensuring significant protection for enterprises, cloud environments, and educational sectors. It facilitates network segmentation, application-level security, and authentication management, securing communication within and between locations such as branches and data centers. Its efficient SD-WAN and UTM features enable streamlined data management and enhanced threat protection capabilities. Users appreciate its centralized management, facilitating seamless operations across diverse environments.

What are the key features of Fortinet FortiGate?

VPN Capabilities: Ensure secure remote access for users and seamless site-to-site connections.
Intrusion Prevention System (IPS): Detect and prevent security threats and vulnerabilities.
Advanced Firewall: Offers robust firewalling with application control and web filtering.
SD-WAN: Optimizes application performance and enhances bandwidth management.
SSL VPN: Provides reliable and secure access for remote workers.

What benefits should users expect from Fortinet FortiGate?

High-performance Security: Delivers effective threat mitigation with high availability.
Centralized Management: Simplifies network operations with cloud-based management tools.
Detailed Analytics: Provides comprehensive insights into network activity and security threats.
Load Balancing: Ensures optimal resource distribution and traffic management.

Fortinet FortiGate is crucial in sectors like education, offering robust networks for secure data flow between campuses and facilitating remote learning. In enterprise environments, it allows efficient management of application traffic and security across multiple branches, while in the cloud, it seamlessly integrates with diverse platforms to enhance security infrastructure.

Fortinet

Sophos XGS is a comprehensive network security solution designed to protect organizations from advanced threats. It combines next-generation firewall capabilities with advanced threat protection, web filtering, and application control.

XGS has powerful deep learning technology and can detect and block even the most sophisticated malware and ransomware attacks. It also offers granular control over web access, allowing organizations to enforce policies and prevent access to malicious or inappropriate websites. Additionally, XGS provides application control features, enabling organizations to manage and prioritize network traffic based on specific applications or user groups.

With its intuitive management interface and centralized reporting, XGS offers easy deployment and monitoring of network security.

Sophos

NETASQ's integrated intrusion prevention engine uses protocol conformity analysis, application filtering and antivirus analysis to inspect authorized traffic flows and strengthen application security. NETASQ enables you to establish and configure user-based security policies, giving you greater control over which network resources each user is authorized to access.

Stormshield

Sample Customers

Amazon Web Services, Microsoft, IBM, Cisco, Dell, HP, Oracle, Verizon, AT&T, T-Mobile, Sprint, Vodafone, Orange, BT Group, Telstra, Deutsche Telekom, Comcast, Time Warner Cable, CenturyLink, NTT Communications, Tata Communications, SoftBank, China Mobile, Singtel, Telus, Rogers Communications, Bell Canada, Telkom Indonesia, Telkom South Africa, Telmex, Telia Company, Telkom Kenya

Information Not Available

ACESUR group, Ministry of Education Oman, Anios Laboratories, Zain, DLM Location

Buyer's Guide

Sophos XGS vs. Stormshield Network Security

April 2025

Free Report: Sophos XGS vs. Stormshield Network Security

Find out what your peers are saying about Sophos XGS vs. Stormshield Network Security and other solutions. Updated: April 2025.

DOWNLOAD NOW

846,617 professionals have used our research since 2012.

See our Sophos XGS vs. Stormshield Network Security report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.