Sophos XG Reviews

The product has improved our network security posture. We got some phishing and malware attacks. We found out that someone was attacking our network. Since we installed the solution, we are not facing any attacks.

IPS works smoothly. The policies and rules work fine. The network performance and reporting tools of Sophos XG are good.

We are facing a little bit of an issue with the product's web filtering capabilities. It must be improved. SD-WAN can be improved.

I have been using the solution for almost two years.

I rate the tool’s stability a seven or eight out of ten.

I rate the tool’s scalability a seven or eight out of ten. Almost 5000 people are using the solution in our organization. We have installed the firewall. It is always running.

The support takes a lot of time to resolve issues.

Neutral

I rate the ease of setup a seven out of ten. The deployment took a few weeks.

The deployment was done in-house. We needed two to three people for the deployment.

I rate the pricing a seven or eight out of ten.

I will recommend the product to others. The solution is not extremely good, but it is good. Overall, I rate the product a seven or eight out of ten.

We are using Sophos XG, but not the latest version. The solution works as the main gateway. We are a small company of 250 employees so we also use the solution as a router.

The hardware and VPN connections are slow so we are planning on upgrading the solution. Next month we will be replacing the Sophos XG we have as it is reaching the end of life next year. We will be purchasing the XG 3000 to gain more options in the VPN tunnels.

The two most valuable feature of Sophos XG is, one the option to filter according to different applications and two, the integration with the Active Directory.

Over the last six months, we have noticed that the hardware is slow, especially the VPN connections.

Sophos would benefit if they could improve the integration with Active Directory. It does not function consistently and we have to reconfigure it to make it function again. 

Integration with IPA, which is like Active Directory for Linux servers, would be a nice feature to include.

I have been using Sophos XG for three years.

This solution is very stable. We have not had any problems in the three years we have been using Sophos XG. We did have one infection that gained access to one server in the DMZ but it was because the rules were not well configured and not because of the product.

We haven't had to scale the solution. 

Support from Sophos XG has been fine for what we have required.

We had been using Astaro. We selected Sophos XG because we knew it would be easy to set up and configure as the two solutions are similar.

Previously we were working with Astaro, so the setup and configuration of Sophos XG was easy. The implementation took less than a month.

The company that sold the firewall solution provided support hours while we were migrating the rules of our old firewall. They provided us with advice on some of the rules, especially on the routing to connect to a branch office.

We purchase an annual standard license.

I recommend Sophos XG if you are coming from pfSense or Astaro as the migration will be really easy. The learning path will also be easy. If you are coming from Barracuda or Cisco it will be more difficult especially the web interface of the firewall is not intuitive.

I would rate Sophos XG an 8 out of 10.

We primarily use the solution for a firewall. We use it as a security device.

The product is very easy to use. We enjoy the ability for it to fit into our high-level security framework. 

It gives us some separation from being on Microsoft tasks. We've got multiple levels of security. We're government contractors. It's great that it's been a separate product that gives us the ability to do the security to a high level without having to resort to needing a big team.

The solution is stable. I've had very few problems with it.

We have found the solution to be scalable. 

We're always looking for the best products and the best pricing. Pricing is always a concern for us.

When they do updates, they could handle them a little bit better. We've only had one problem, however, I do prefer when updates come out a bit quicker. We do the patching and updates and different things, however, in terms of the patch and timing and the criticality of it, it could always be better.

We've been using the solution for five or more years at this point. We've used it for a while. 

The product is reliable and stable. There are no bugs or glitches. It doesn't crash or freeze. 

The product has proven to be scalable. If a company needs to expand it, it can do so.

We have 430 end-users on the product.

We're mostly happy with the technical support. It's better than Microsoft. Any issues we have may simply come down to the SLA. 

The initial setup is pretty straightforward, and, over the last six years, it's gotten simpler, especially when it comes to cloud products.  A company shouldn't have any issues with the process. 

The deployment was very quick. It does not take long. 

My team is quite small internally. I have five to seven IT staff.  I have many service providers that I outsource a lot of the day-to-day management of the infrastructure to.

Sophos assisted us with training at the outset, which we really appreciated. 

We pay annually for the licensing for the overall on-prem solution, however, we also have some Sophos access points at permanent IT sites and different things. I have different Sophos products I may pay a monthly fee for.

We're just customers and end-users.

While this deployment is on-premises, for the cloud, we use Sophos Central.

I'd rate the solution at an eight out of ten. We're pretty pleased with its protection capabilities. 

We are a managed service provider and the primary firewall that we sell and maintain is Sophos XG. It is also used in the company.

The most valuable feature is that it is a next-generation firewall.

The fact that it is integrated between endpoints and the firewall, and then the firewall and a central Sophos operation center, is very good.

The cloud-based interface makes it easy to manage.

The integration with the Intercept X approach means that Sophos XG can do things that none of the others are doing.

The main area that needs improvement is the documentation.

Sophos needs to be a little better at communicating with partners about changes, issues, patches, and so forth. 

The weakest point is the technical support because they are difficult to get into contact with.

We have been using the Sophos XG series for three years.

This solution has been very stable and it's a good product, otherwise, I wouldn't be using it.

The technical support team is knowledgeable and they are good, although it is very hard to get a hold of them. You sometimes have to wait in queue for over an hour to speak with somebody. To me, that is the most frustrating thing about Sophos.

We did not use another similar solution prior to Sophos XG. Since the MSP business started, it has been our primary firewall product because of the pricing and support.

The initial setup is complex, as is setting up any next-generation firewall today. You have to know what you're doing with firewalls in general, although beyond that, it isn't as bad as some of the firewalls that I have seen.

The deployment typically doesn't take longer than a few hours or a day, depending on the type of client and what it is that we have to do.

The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else. Because of the partner program, the pricing I get is extremely good compared to what I would get from any of the others.

I have evaluated several firewall products and I think that Sophos is better in terms of ease of use, performance, and pricing.

I would highly encourage others to evaluate Sophos and adopt it. I've discovered that compared to other products, it is easier to manage and I think that it operates better.

Overall, I think that they've got a pretty complete set of features and they seem to be on a really good path. My only complaints are about the documentation and the availability of technical support. 

I would rate this solution a nine out of ten.

We're using Sophos XG within one business unit for security. We use it for the firewall and mapping some services.

Sophos XG's price is right, and it's easy to manage. It's a good fit for our current needs at the moment. 

Sophos XG's user interface has some room for improvement. 

We started using Sophos XG in June of this year, so it has only been a few months. 

I think Sophos XG is stable.

Sophos XG is scalable. We have about 600 users here in Mexico, and everyone is behind this solution. I think it's possible we might increase usage, and we've discussed this with our corporate office in Germany. We could decide to go with another product, but we might expand Sophos if it performs well.

Support is one area where I have some issues. Sophos support isn't that good. 

In some companies where I've worked, I used Fortinet and ASA with FirePOWER from Cisco. In some places, I used Meraki with the MX and the Advance Security licensing. I have some issues with other technologies. Last year, they had Sophos UTM on the devices, but there was an opportunity was to switch our clients to Sophos XG and try out the solution.

Setting up Sophos XG is too easy. It took about two hours. The only part of the solution that I deployed was the firewalls. It's something I do all the time in my business unit, so it was quick. We have two people responsible for deployment and maintenance, including me. 

I had some support from a partner.

A Sophos XG license costs approximately $45,000 

I rate Sophos XG nine out of 10. Our experience so far has been good, but maybe we'll come across another solution that's at the same or a higher level.

We use the solution for application control and web filtering. We also use it as a VPN point, and we use it on other occasions for tracing and reporting about usage and high application rates.

We are able to trace any user and pinpoint any vulnerability or any malicious software. We are able to synchronize between the local and active directories so we can catch users easily through their login names and IDs.

The reporting on the solution is excellent.

There needs to be a way that we can distinguish between educational institutions on Youtube and other Youtube videos. You can do this on Fortinet. Basically, they can block all other Youtube videos besides those that are from educational institutions. With Sophos, you either allow for all Youtube videos or none at all. They need to allow for more specification on different websites.

They only have one single location for training videos. They must offer them elsewhere as well. When the site goes down, everything stops, and you can't access the videos when you need them, so they need to diversify that. It's limiting.  

The stability of the solution is excellent.

The scalability is good. We could only handle around 5,000 users but even when we reached 3,000 users, Sophos only consumed around 24% and 40% of Prime usage. 

The solution's technical support is not the best. When I take a step to open a case with Sophos support I can't understand them at all; I can't understand their accent. I always appreciate if they can communicate with me through e-mail instead, which makes it much easier. 

Many cases take a long time to be resolved. Some cases they seem to ignore or don't reply to for a long time so I have to remind them that the case is still open before they will respond. 

The initial setup was straightforward. The implementation took about a day. There were only two people needed for deployment.

We had a consultant assist with the setup. They were very good.

We use the on-premises deployment model.

I would rate the solution nine out of ten. It's a very good firewall. It helps a lot with protection, and every organization needs a firewall to ensure they are protected.

My clients use Sophos XG for deploying firewalls at corporate office and branch offices. The branches connect via site-to-site VPN, allowing outbound traffic from the central location.

The firewall provides network visibility and reporting capabilities, constantly improving over time. It can be integrated with the cloud console, allowing centralized management of multiple firewalls. integration with endpoint security products ensures seamless traffic flow and rule enforcement, even when endpoints are not directly connected to the firewall.   

I've had experience with Sophos XG's threat intelligence features, and they provide good coverage, although I wouldn't say they're the best in the industry. The sandbox feature is available with top-tier subscriptions, allowing you to test content in a cloud sandbox.

One improvement I'd suggest for Sophos XG is to make certain functionalities, like CR functionality, part of the default firewalling rather than exclusive to premium subscriptions. Enhancing DLP capabilities at the gateway level could significantly boost security for organizations.

I have been using Sophos XG for the past 10 years. 

As for stability, I'd give it a high score, maybe a nine, because it keeps running without much downtime.

I'd rate them an eight for stablity It's not to say they're perfect, but generally, it's pretty good I'd recommend it for companies of all sizes.

Integrating Sophos XG into existing infrastructure was quite easy and straightforward. There were hardly any complexities involved in the process.you can use both options - cloud-based or hardware-based firewalls. When I mention hybrid, it means having both options available. While cloud-based firewalls offer convenience, they can be more expensive compared to hardware ones. Although I haven't personally worked with the cloud version, it seems similar in appearance but may have different features. Cloud-based firewalls may seem like an overkill in terms of price, especially when considering the cost of operation over time. They become more beneficial when additional security layers like zero trust, DLP, or secure web gateway functionalities are added. This expands security beyond physical location constraints, making it accessible from anywhere.

I'd rate Sophos XG an 8. It's my first preference and confidently recommend it to other users.

We use the latest version.

We are very familiar with the solution. It's pretty straightforward, our personnel is properly trained and we use it efficiently. The solution integrates very easily with other brands.  I've done VPN tunnels with other brands, and that was fine as well. The solution is quite stable and we don't have any issues with it. The VPN is easy and has good logging, monitoring and notifications.

When compared with Sophos XG, Fortinet lacks the notifications and reporting features. 

When it comes to improvements that the vendor can make, we see that the cloud integration for managing all the firewalls is essentially a replacement of the on-prem version we had. It's not mature yet, being still in its infancy stage. That would require some improvement. As I have many firewalls, having the ability to delegate access to use, such as exists with Microsoft CSP or other services, would be a nice feature to see. 

Also, as a tech person, I know that executives do not wish to receive complicated reports, so a simplified executive report for executives would be a nice improvement. This would save us from having to explain issues which are beyond the scope of their knowledge. 

Sophos XG is basically a mix of UTM9, Check Point and several other technologies. It is essentially a merging of technologies. We've been using it since version UTM9, at which point we switched to Sophos XG..

The solution is quite stable. 

The solution is scalable, but an organization should assess in advance its size based needs. Say, for example, a company utilizes the XG 125 version, but grows rapidly. At this point it may need to switch to the 210 version. Yet, switching from one version to another would not really present an issue. One can restore the backup configuration version on the new hardware and be up and running. 

Technical support is pretty good, although I did have some issues with its availability during the COVID-19 pandemic, even though this seems to have been a challenge faced by all major support companies. There were delay issues owing to their teleworking, but the support they offer is quite supportive and they have all the necessary documentation.  The truth is that I have a need for many cases, although the ones I require have to do with things that are out of my control, such as licensing or the occasion of a new app that failed to show up in the console. I have many sub-sites and I did face a serious issue. Technical support was pretty helpful even though I had to redesign the typology of one of my sites. They actually tried assisting me with the original design and I found them to be quite helpful and to possess a good base of knowledge on the site. 

It is important for a person to properly learn the features of any product so that he can optimize its utilization. The setup of the solution is pretty straightforward. What is truly important for a person with only a basic network background is to undergo proper training, so that he may learn about all the features and how to configure them. 

For any product a person uses, it is a good idea to do a test run. Sophos allows for its product to be evaluated without any financial commitment. It offers a free virtual machine for home use testing of the features. 

At present, Fortinet seems to have a slightly higher rating than Sophos XG, so if it were also to turn out to be more cost effective this would affect my rating of it. The reason is that this factor does have an impact on the decisions reached by CEOs when it comes to cost-benefit analysis.

This said, I rate Sophos XG as a nine out of ten, because we are very happy with it and don't really have any issues. We have actually been replacing Cisco normal routers, not sets, with Sophos and we're very happy with them.