Most Helpful Review
Researched Sophos XG but chose Cisco ASA Firewall: Great diagnostics combined with a high-security VPN
A great UI with very intuitive features; comprehensive documentation ensuring issues are easily resolved
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Cisco ASA is very strong."
"It protects our network."
"The stability of the product is good."
"It is a comprehensive suite and complete package."
"The integration and configuration were pretty straightforward."
"The transparency of the single UI to ensure security. A product has to be simple so that an administrator can use it."
"It provides security for our company and users."
"Among the top features are integrated threat defence and the fact that each virtual appliance is separate so you get great granular control."
"The most valuable feature is the IPsec VPN."
"The Smart Dashboard and other user interfaces are very easy to use and can be handled without any significant IT skills."
"After introducing this NGFW, we have improved our security posture, and now, have peace of mind."
"It is easy to configure and it is a valuable antivirus protection. I especially like the IPS feature of this product."
"We never had an outage of the appliances or the consoles. Stability is very strong. I never had a problem related to stability."
"We use Check Point to complete the network compliance rules."
"The initial setup was very straightforward. You can customize it and change it as you need."
"The solution is easy to use. I like the monitoring the most."
"We have found that the simplicity of the XG 210 is its most valuable feature."
"Sophos XG has cybersecurity. It integrates with the antivirus software."
"It gives me a very good, stable connection in all tunnels."
"The SL VPNs are the most valuable feature. I have a lot of systems out of the head office that need to connect to the local networks, and they all connect wirelessly via the Sophos VPN client."
"What I like about his program, is that it is easy to use and easy to manage."
"The filtering is very easy to do. You can segment and create profiles for usage very easily."
"The solution seems pretty stable. We've had no issues so far."
"I like the fact that it can self remove malware and do updates on the cloud via Sophos Central."
"Migration with other appliances is not easy. It has to be done manually, and this takes a long time."
"The pricing is a bit high."
"Cisco ASA should be easier to use. It is a bit tough to navigate and see what is going on."
"Even on a smaller scale, people are finding you need HA pairs, and there's no way that the ASA can do that, at least in the virtual version."
"The artificial intelligence and machine learning (behavioral based threat detection), which I can this will be coming out in another year, these are what we need now."
"The initial setup was complex."
"There are always vulnerabilities that come up and there was one in early 2018 but this was patched with software updates."
"In terms of next-generation capabilities, Cisco is a little behind, and it is way behind the market leaders."
"Check Point Smart Dashboard does not support my Apple MacBook Air. It only supports Windows versions."
"The presentation of the reports need to be more user-friendly."
"I would like for them to develop the ability to manage a cloud firewall with the same console. That would be very helpful."
"This product has room for improvement in technical support for Africa."
"Although they have it now, we don't have a license for it, and I think mobile device security should be a standard feature. I cannot control someone bringing their device to my network and what they do."
"All the advanced features of automation, especially the first installation of tunnels, need improvement."
"Reporting has to be improved."
"One of the biggest disappointments is the GUI."
"When I call, I have to wait at least one to two hours to reach them."
"The only issue that Sophos XG now needs to improve is the product's reporting capability."
"I would like to have remote access to clients using a static IP for a certain period of time."
"The initial set up process can be a little tricky, especially when you are registering with Sophos using your registration number. Setup is not necessarily complex, but it's not trouble-free. You do have connectivity issues at the initial setup with registering the device on the Sophos platform to access the advanced features. It doesn't always go through the first time around. That may be an issue with the quality of our automation. I'm not sure exactly what it is."
"The program is rather expensive."
"The UTM itself needs improvement. When you're navigating it seems like it takes forever to load anything. The hardware is okay. It's just the software that could be more responsive."
"It's easy to use, but it's hard to configure exact settings. They need to make it easier to access advanced features."
"On reports, they sometimes give a summary, but it lists different users as unknown. There are times that I really want to know which user or which IP is causing a problem."
Pricing and Cost Advice
"Cisco recently has become very expensive."
"The cost is a bit high compared to other solutions in the market."
"Purchasing from the AWS Marketplace was easy. It was just point and click."
"It is pay-as-you-go, so it much cheaper than buying in the plants."
"Our individual release cycle has been quicker because the entire development and testing environment has been automated because of these virtual instances. It has aligned our development workflow. This is where we have seen the ROI increase."
"With the Cisco ASA, you do get what you pay for. What would really be awesome is to see Cisco blow out a real cheap version where you can use the sandbox, but leave it step-wise and go to another product relatively easily, like getting you hooked on candy."
"We are partners with Cisco. They are always one call away, which is good. They know how to keep their customers happy."
"Pricing is high, but it is essentially a corporate decision."
"The price is high in comparison to other solutions."
"We pay $5,000-$6,000 a year."
"Maybe the pricing is a bit high but you get the durability and the duration."
"Licensing issues may be confusing at times."
"It is quite an expensive product, although security is a top priority."
"This product is not cheap and there are additional costs that depend on what model or package that you buy."
"Palo Alto is somehow not as good as Check Point, budget-wise and performance-wise. Palo Alto is more costly than Check Point."
"Comparatively, Check Point pricing is a little high. However, if you have that budget, I would recommend anybody to go with Check Point."
"For licensing the XG 210, we paid approximately $3000 for three years. There are no additional fees on top of this."
"It's a suitable price and license."
"We are paying about $1,500 yearly for the Enterprise Plus. As far as I know, there aren't costs above this standard fee."
"The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else."
"We paid for our licensing for three years, upfront, and there are no costs in addition to the standard fees."
"The price is cheaper than that of some competing vendors."
Questions from the Community
Top Answer: Cisco FW for peace of mind
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: Centralised dashboard for all checkpoints gateway with options of copying policy from 1 gateway to another Providing… more »
Top Answer: Licensing issues may be confusing at times.
Top Answer: From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
Top Answer: My understanding is that UTM is the software; SG is the hardware. You can buy Sophos UTM running on SG hardware and then… more »
Compared 34% of the time.
Compared 15% of the time.
Compared 8% of the time.
Compared 5% of the time.
Compared 3% of the time.
Compared 59% of the time.
Compared 18% of the time.
Compared 6% of the time.
Compared 4% of the time.
Compared 3% of the time.
Compared 19% of the time.
Compared 13% of the time.
Compared 11% of the time.
Compared 6% of the time.
Compared 4% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv||Check Point NG Firewall, Check Point Next Generation Firewall|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
Offered via the Check Point Infinity architecture, Check Point’s NGFW includes 23 Firewall models optimized for running all threat prevention technologies simultaneously, including full SSL traffic inspection, without compromising on security or performance. Learn More about Next Generation Firewall and What is Firewall?
Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.
Learn more about Cisco ASA Firewall
Learn more about Check Point NGFW
Learn more about Sophos XG
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Control Southern, Optimal Media|
Information Not Available
Financial Services Firm20%
Comms Service Provider13%
Comms Service Provider27%
Computer Software Company26%
Financial Services Firm24%
Computer Software Company14%
Computer Software Company25%
Comms Service Provider23%
K 12 Educational Company Or School6%
Financial Services Firm18%
Mining And Metals Company12%
Comms Service Provider29%
Computer Software Company22%
See our list of best Firewalls vendors.