What is our primary use case?
We were looking for a solution which provided a single view for both a wired and wireless network. We were previously using the Cyberoam 200ia firewall appliance and wanted an appliance which could support 1500 to 3000 corporate users. The solution also required a wireless access controller scalable to at least a 125 second wave 802.11 ac wireless access point. We purchased a Sophos XG 450 appliance with Sophos wireless access points.
How has it helped my organization?
It improved bandwidth utilization and provided link load balancing features for internet and intranet lease lines. It also provided good security for internal users.
What is most valuable?
- A good package overall
- A nice UTM appliance with a good GUI and reports.
- Configuring web access controls in the appliance is a bit typical and requires debarring and listing separately. Once configured, the solution works beautifully.
What needs improvement?
Initially, there were problems of wireless access points not getting detected and lease lines were getting disconnected after one hour. Sophos replaced the appliance, but the issue was not resolved . The matter got escalated to their international support and the issue was identified as a bug where long distance fiber connections are used over single mode fiber. The patch was shipped by Sophos with a promise to fix the issue in the next release.
Now, the appliance is working fine. The issue of wireless access points was due to some compatibility issues with the D-Link switch. I provided the Cisco 2900 series switches to connect to the wireless access points by creating a separate wireless LAN port on the firewall.
For how long have I used the solution?
Less than one year.
What do I think about the stability of the solution?
Initially, there were issues with the wireless network as wireless access points were disappearing from the dashboard after some time. Later issues were resolved by connecting the wireless access points through Cisco switches.
What do I think about the scalability of the solution?
How is customer service and technical support?
Which solutions did we use previously?
We used to use Cyberoam 200ia. It required to an upgrade due to end of life and the changed requirement of its organisation.
How was the initial setup?
The initial setup was complex as different VLANs had to be created for the business network, wireless network for corporate users, wireless network for guest users, and a separate VLAN for the communications network and the VC. QoS had to be enabled for different type of services. In addition, link load balancing was also configured and tested for internet lease lines and intranet MPLS lease lines.
What about the implementation team?
We implemented through a vendor team, and their expertise level was good.
What was our ROI?
ROI has yet to be calculated.
What's my experience with pricing, setup cost, and licensing?
We purchased the appliance with five years onsite support and licenses.
Which other solutions did I evaluate?
What other advice do I have?
In India Cyberoam, which has been taken over by Sophos, has a vast support network and loyal user base. Migration to Sophos was the logical path. Further, pricing for the upgrade was very competitive as Sophos wanted to retain existing customers.
Disclosure: I am a real user, and this review is based on my own experience and opinions.