Sophos UTM Reviews

There are multiple use cases, and a few examples would be its use in the education, banking, or financial sectors. There are so many other locations and sectors where they deploy this solution.

One of the features of Sophos UTM that I find valuable is its user authentication functionality.

In Sophos UTM, there is room for improvement in certain areas. For instance, I believe that its feature known as Synchronized Security could be enhanced. The solution's technical support for India needs to be improved.

I will need to think about the additional features the solution needs to include in its next release.

I have been using Sophos UTM for almost ten years now. It is a good solution. My company is a partner and an integrator of Sophos UTM.

Stability-wise, I rate this solution a ten out of ten.

Scalability-wise, I rate this solution a ten out of ten. If I talk about the solution's suitability, then it is suitable for enterprises.

Dealing with technical support can be time-consuming when communicating over the phone. I am unable to provide a rating for the technical support team. My suggestion to others would be that they provide the country location of the toll-free number in the solution. Although a toll-free number has been provided for India, the people in India are good. Compared to the UK, there may be issues with understanding and timing, which could lead to many problems.

We use Sophos Access Point, Sophos Firewall, Sophos Switches, Sophos MDR, and Sophos XDR. We have been using Sophos MDR for three years.

Whether the initial setup is straightforward or complex depends on the number of users or people to whom the solution is given.

Compared to the current market offerings, like FortiGate or SonicWall, Sophos offers its solution at a good price.

I compared Sophos UTM with Fortinet and found that Fortinet's EPP, ATP, and hardware are good. Sophos UTM has also improved its hardware by updating its dual-core processors with a second processor that uses advanced technology, whereas previously, the hardware was handled by a single processor. However, we are still facing some problems with Multicast User Authentication.

I recommend Sophos UTM, Sophos Access Points, Sophos Endpoint, and Sophos Switches to other users. Overall, I rate this solution a ten out of ten.

Our company is a partner and reseller of the solution. We lease, sell, and license boxes for our clients. Use cases are rather unique and not uniform. 

We provide support for a few SMBs around the country. 

Some customers are heavy users, with involved configurations, and the setup may include high availability configured with two boxes. 

Others use it as just a gateway between their infrastructure and the internet with very simple configurations that don't include web filtering. 

Active directory integration domain is used for some, but not all customers. Common items include DNATs and SSL VPN. Most customers use VPNs, and site-to-site connections (REDs or IPsec).

We also use virtualized UTMs for LABs.

The firewall itself is very strong and provides great security for the internet. Some clients don't use any other special feature but all customers depend on the firewall as a secure gateway.

A lot of thinking went into the user experience because the UTM interface is streamlined, good, and feels like a web application. It does have hiccups here and there but effectively treats everything as an object. You can quickly see where objects are being used or referred to and change them. 

The UTMs are end-of-life so the web interface is not top-notch and needs more speed. There is still support for the UTMs so they are the best we have right now. 

The solution needs better captive portals and they could have faster UIs. 

An improvement to the transparent proxy would help. A user should be able to open a webpage and be redirected to the captive portal like with WIFI or XGs. From there, the user should be able to log in with a username and password to gain internet access. Many clients migrate to XG due to this missing feature. 

I have been actively using the solution for a some time.

The stability is pretty good and better than XG. We don't have any issues directly related to the solution.

Stability is rated a ten out of ten. 

The solution scales pretty well. Even with a heavy load, the solution shows no issues. 

Scalability is rated an eight out of ten. 

Technical support is not stellar. We have some good experiences and some not so good experiences. We do not have a lot of support requests for the solution.

Support is rated a seven out of ten. 

Neutral

The setup is straightforward.

We implement the solution for customers. We have a specialist, an architect, and four analysts who handle implementations and maintenance. 

I recommend you complete the solution's training because it is pretty good. Rely on the documentation and any tech training available.

I rate the solution a nine out of ten. 

We mostly use UTM for the protection of our network and the web. Some of our customers use it for email protection. We work mainly with governmental organizations. Our company was initially a distributor of the forerunner to UTM, a company called Astaro. We provide UTM to our customers and we are now partners with Sophos. 

It's an easy solution to learn because the graphics are very intuitive. I really like the log because of the amount of information it provides.

Sophos' new generation firewall is missing the link that provides antivirus for each computer. It would be helpful if they could add that element. The technical support used to be excellent but recently they don't seem to be able to solve our problems. 

I've been using this solution for 20 years. 

The solution is stable. 

The solution is scalable although we generally work with smaller organizations. 

The technical support used to be excellent but it's no longer as good as it was and we've had some problems getting solutions to the issues that we're having.

Positive

The initial setup is straightforward. We provide one or two engineers for implementation as well as ongoing support following deployment. 

Licensing can be purchased for one, two, or three years but I'm unaware of the cost. The solution can be downloaded for free if it's for home use which is a good way of testing before implementation.

I recommend testing this product before purchase. It's a good solution and I rate it 10 out of 10. 

We use Sophos UTM as a firewall and access control. The firewall has web filtering and anti-fishing tools. We synced Sophos UTM with our Microsoft Windows Active Directory.

Sophos UTM is a robust solution and it provides flexibility.

I have been using Sophos UTM for approximately five years.

The stability of Sophos UTM is very good. The solution has been stable since Sophos took over Cyberoam which was the original company providing this solution.

The scalability of Sophos UTM is seamless if you have the right UTM device. However, for every device there are limitations, we have 150 users on it at this time.

The support from Sophos is very helpful. We raise a support ticket on the portal and we receive a response.

The initial setup was straightforward. The full deployment takes approximately two days which could be simplified to reduce the time. The major part of the process is the configuration and the policy setup.

We did the implementation of Sophos UTM using our internal team. We have certified engineers that can handle the process. If there are any issues we can reach out to the support of Sophos.

We have two people that handle the maintenance for the solutions.

There is a license for the device and for the software. We pay annually for the solution and the cost is competitive.

Sophos has an aggressive 360-degree security deployment. They are securing your mobile phone and data, both data security and also device security. They're on the cloud too, if you look at the company they really working hard on a 360 approach for security. The coverages they offer makes them robust. You can always start from somewhere, and then you scale up. You can start with their device management solution, or with their firewall, and then you begin to scale up with other features seamlessly. The flexibility they provide is also very good with Sophos, I can recommend Sophos confidently.

I rate Sophos UTM a nine out of ten.

The features that we're currently using are mainly just for the endpoint protection, which is for the service and the workstations. We basically use it for the servers, the main servers, and then from there for the client, which is basically the laptops and the PCs.

The fact that it's not heavy on the machines has really helped. It's basically lightweight. One advantage is that we, having a cloud solution, do not require a physical machine that we have to administer on our network.

The fact that it's on the cloud means we don't have to administer it on our network or deal with a physical machine, which saves us money.

The solution has many great features.

From the console, we can start different scannings on different machines. We enjoy the centralized reporting part of it. 

The initial setup is simple.

We enjoy its general stability.

The solution can scale.

So far, the solution has been problem-free.

We don't need any extra features. We only use it for the servers and the workstations. We'd like to see them offer their services on mobile devices like tablets. I'm not sure if that's an option or not.

I've been using the solution for over a year now.

It's been very stable. In fact, we haven't had any complaints or any issues with it. There are no bugs or glitches. It doesn't crash or freeze. The performance is great.

The scalability is quite good.

Right now, we have 40 users.

We will definitely scale in the future. As we get new employees, we just request additional licenses.

I've never had any issues.

I also use FortiGate.

The implementation process was straightforward. What basically happens is that you just have to pick that certain client from the console and then you just install it on the machines. From there, of course, you handle connectivity after that. It's pretty straightforward.

A full deployment on one machine took less than 20 minutes. The thing is, if you have fast internet, it can even be much less.

Maintenance is very simple. Support is inbuilt from the manufacturer's side. Therefore, internally, if there are any issues on the client machine, you just reinstall it. There isn't much to do really, in terms of maintenance, except maybe the licenses. It's hosted on the cloud and updates are automatic, and are available from the portal.

We did not need a reseller or consultant's assistance. It was all handled internally.

I haven't really explored ROI. I only have worked with it for slightly over a year. Maybe we need to start looking at it. 

That said, so far, we are protected and we haven't been hit so far. We're getting the returns from it in that sense.

Having a cloud option is a real cost saving. 

In terms of licensing, we pay on yearly basis. From there, what happens, in the last month, we request a quotation for renewal, and then from there we just pay through the local reseller. 

We're thinking of maybe dealing with the supplier, the manufacturer, directly, however, right now, we're still using the local supplier for licensing and payments. 

We are on the latest version of the solution.

We are customers.

I would rate the solution at a nine out of ten. We are very happy with it. I would recommend it to others.

I'd advise new users that, if they are going to go with the cloud option, that issues related to maintenance is actually handled within the cloud. The rollout is pretty smooth.

We use Sophos UTM as an on-premise firewall.

All of Sophos UTM's features are valuable. The intrusion prevention is great, and I like dual virus scanning on the network layer because we scan it through Avira and Sophos. Web filtering is also a fantastic option for clients who want to really lock down internet access. And of course, it has the basic firewall features like port blocking and all of the stuff that most standard firewalls include.

I've been using Sophos UTM for over 12 years. I started using the solution before it became Sophos. It was originally called the Astaro Security Gateway, and then Sophos acquired Astaro and renamed it Sophos UTM.

Very stable. Very good.

I have Sophos UTM deployed for all my IT clients. There are 40 of them in the field serving about 500 users total.

We get put on hold for a long time. Otherwise, I'm not unhappy with their support at all. 

If you have a networking background and understand how to configure it, it's very straightforward. Somebody off the street can't just come in and do it, but yeah, it's pretty straightforward.

I would rate Sophos UTM a strong eight. I'm not giving it a ten because they're putting all their efforts into the XG model, so the UTM model will probably be phased out before long. I love the security of the XG. It's better with artificial intelligence and all of this type of stuff, and you can manage it from the Sophos Central Cloud. But Astaro ASG, now Sophos UTM, was the first unified threat management system and everybody else was copycatted it. I think its web filtering's great. If there are any security vulnerabilities, it's the fault of the administrator configuring the product, not the solution itself. You can lock networks down tight with this if you know what you're doing.

I'm IT head at our company in India and we are customers of Sophos UTM.

The solution has many good features. There was a steep learning curve moving to version 18 but we're now at a point where the solution is more efficient and effective. When talking about VLANs the solution makes it easy to separate rules for everything. The solution is easy to use with simple implementation.  

The application server needs to be improved because currently, the classification segregation of applications needs to be more defined. Also, we used to be able to open the firewall using LAN IPS but that's no longer possible and needs to be solved. I'd like to see an improvement in central categorizing. These days with all the applications and threats, getting everything filtered down needs to be a finer, more granular process. There are times when you find that a website seems to be legit, but there is a code running behind it that can act as a proxy or some kind of a bot. The sites are always logged on, but at times we have to open for a few clients or a few sites and in that time they're open to attack.

We've been using this solution for at least six years. 

This solution is absolutely stable. 

The solution is scalable; we jumped from 135 to 230 users without any problems at all. 

Technical support used to be good but it's lagging a bit now. Support staff was better trained and more efficient than they are now. It could be because of Covid but it's a bit of a challenge at the moment. 

We worked with SonicWall many years ago. We then switched to Cyberoam and then we primarily used Cisco Firepower. There were support issues with Cisco and it wasn't easy to find the KB articles and training was lacking. Even the training personnel had problems when we had issues with implementation. The same thing happened when we used Palo Alto with the support being the biggest problem. It was so unstructured and I hope that has changed in the last 12 months. When it comes to firewalls we are happy with two products; Fortinet is our preference but when you take cost into account, we prefer Sophos. 

The initial setup was relatively straightforward. 

The licensing costs for Sophos are reasonable. It's clear to me that there are no full solutions, you can't win it all, and the cost is always an issue. We're on the winning side with Sophos in that respect. We renew our license every three years. 

I rate the solution eight out of 10. 

Sophos UTM is a virtual appliance used for network security.

Sophos SG UTM had all the basic functionality that you needed. It is user-friendly and easy to manage for any integrator.

There were a lot of features and functionality in Sophos SG UTM but nothing was state of the art in terms of technology. You did not get the latest functions. It was very monolithic as it was based on an old Linux PuTTY system.

Everything has changed in the newer version of the solution from the SG to the XG. It was a completely new reborn version. You are not able to migrate from SG to XG using scripts. it is very difficult because of the differences. There was not a simple migration path from one to the other.

In the Sophos SG UTM version, you cannot have any other functions. Sophos will tell you "It's a closed version. We will not have any more functions." However, in the new version, you have a lot of new functions, and every two or three months you have new features. For example, you can use Sophos Central to synchronize both strategy policies and even security, if you are equipped with Sophos antivirus on workstation and server. If your antivirus on the workstation finds a threat, your firewall will have the information of the station, what issue it had, and what other stations it communicated with.

Sophos has to enable the Intercept X or an EDR function on the firewall because for the moment, the firewall is only equipped with sandboxing or something similar. Which, is quite good but there should be something easier for the user. For example, the logs at the moment are not as simple as they are in other solutions, such as Fortinet, it is very important to have a logging tool, log reporting, or a reporting engine. We need to see logs and find information within. However, 10 years ago, we do did not care about the logs but things have changed. We need them to analyze, to have a view of some of the layers but we do not have this. They could improve by providing better log functionality and features.

I have been using this solution for approximately five years.

For the whole life of Sophos SG UTM, it has been highly stable.

On the newer XG version, we have had a lot of small bugs on the very first version. We were having lots of small bugs on different functions and it had been a mess for a lot of integrators to make it work and to keep confidence in the XG. The XG had a lot of functions and all functions could have a lot of bugs. Even if everything is under control on one or several functions, there were some functions that had many, such as the VPN. However, in version 18 the stability was a lot better. 

You rely on the stability of a firewall and if you have some bottlenecking from the communication from or to the internet. It is very difficult to be confident in Sophos and we lost some confidence in Sophos in the very earlier version.

Overall, we had more problems with the XG than with the SG version.

I have used other Sophos solutions, such as Sophos XG UTM.

The installation of Sophos SG UTM is very easy. There are detailed manuals that can help with the installation if you run into difficulties. There is some basic transferring training you can take that is not complicated.

It is very complicated to migrate everything you put in SG to another version. You need to redefine many aspects manually on the XG because you are not able to extract the configuration from a confidential file to import it into the XG. They are very different and will not work in the same way. It is very confusing for a new customer.

If customers want to buy the XG because it is the new version and they want to migrate through a Sophos or integrator, it will take a lot of days for engineers from SG to XG to implement because it is not the same solution anymore. It is very much similar to if you were migrating from SG to a Fortinet or to a Palo Alto firewall. You have to recreate the configurations manually on your side, with no migration paths. It is a very important point. We do not have migration paths from one to another.

The solution is very low cost compared to competitors. You have a good firewall, a lot of functions for less than the price of some omni firewall competitors.

I have evaluated other solutions, such as Sophos XGS.

There are two versions of the Sophos UTM. The old one is the SG, and the newer ones are the XG and XGS UTM, the next-generation firewalls.

Sophos UTM was a rebranded solution that was bought from the Astaro company. It was one of the first UTM and was a very stable solution. Everything was inside a small box, you could start to enable or disable some functions, such as TCP, HTTP proxy, or firewalling. It allowed you to manage everything you wanted in this Unified Threat Management solution. It was a very nice multi-functioning security tool. If you adapted to the way of working with the UTM you could do everything with it. 

It was a nice solution. Sophos still allows the use of the SG UTM. For example, if you want to buy an XG Firewall, which is their new next-generation firewall, you still can purchase the older SG UTM. Sophos is able to still deliver this solution.

I rate Sophos UTM a seven out of ten.