What is most valuable?
- URL Filtering: because of the importance of controlling what and individual might access from the organization’s network. Sophos XG has 90+ categories, providing a level of granularity that eliminates the need to create customized categories.
- IPS (Intrusion Prevention System): because of the importance of preventing hackers from using exploits and other mechanisms that might compromise the network
- Anti-malware: Sophos XG comes with two anti-malware engines: its own and Avira, making the UTM more effective at catching malicious code.
- Control Center: an interface crammed with the most vital information like security issues, appliance performance, and Internet link status.
How has it helped my organization?
With a very intuitive and easy-to-use interface, it made it much easier to setup access and business rules, VPNs and to identify issues like Internet link outages and security issues.
What needs improvement?
Sophos XG lacks link load balancing options like ratio and spill over, both useful in some scenarios.
I also think they might consider improving the RAM of some of the appliances, since there are processes that are very memory intensive.
Lastly, I would say packet monitor is another area for improvement as it lacks capabilities like exporting the capture from inside the GUI tool.
For how long have I used the solution?
What do I think about the stability of the solution?
Yes, on the SFOS Version 15, I had to upgrade the firmware of an appliance since it had a problem with the JAMVM process (an apparently known issue in which that process consumes almost all of the CPU resources).
What do I think about the scalability of the solution?
How is customer service and technical support?
I would say that Sophos Brazil has an excellent support team.
Which solutions did we use previously?
How was the initial setup?
It was very straightforward. And I credit that to the great job Sophos did on its OS interface, providing different ways of accessing the same option, hiding some of the complexities of a firewall system, and deploying it with many pre-built policies, objects and rules that for most of the environments makes it unnecessary to spend hours tuning the system.
What's my experience with pricing, setup cost, and licensing?
Sophos is clearly trying to position itself as the market leader in the UTM niche. One way they are doing this is by having an aggressive pricing policy and this makes it a good moment to start using their products.
Which other solutions did I evaluate?
What other advice do I have?
Try to have the help of a Sophos Partner for the correct sizing and purchasing of an adequate licensing bundle.
In addition, I would recommend having a PoC in place in order to make sure that the solution is what the organization needs.
It is important to notice that the XG is available for a 30 days free trial and that there are virtual appliances available for the main virtualization platforms on the market.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Jul 30 2017