Most Helpful Review
Researched Sophos XG but chose Cisco ASA Firewall: Great diagnostics combined with a high-security VPN
Researched Sophos XG but chose pfSense: Feature-rich, well documented, and there is good support available online
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The greatest benefit for the organization is the confidence that we are secured."
"Its ability to discover attacks is a valuable feature. All of the other features that have to do with security are good."
"I haven't had any major problems so I haven't had to open a ticket with technical support."
"The IPS (In-plane switching) is the most valuable feature."
"I like the user interface because the navigation is very easy, straightforward on your left side pane you have all the sites that you need to browse. Unlike any other firewalls, it's pretty straightforward."
"We have multiple secure internal networks linked with our plants. We are from a oil company, so we have multiple plant areas which need to have restricted network access. Therefore, we are using it for restricting access to the plant area."
"The initial setup was completely straightforward."
"I would say the Firepower module is most valuable. I'm trying more to transition to this kind firewall. I had to study a little on Palo Alto Networks equipment. There is a lot I have to learn about the difference."
"We generally use it because it's cheap. When we need something more robust we use Barracuda and Sony Wireless Routers. For certain clients, we use pfSense because it's compatible with the VoIP platform."
"My company mainly works in the health and educational domain, schools and universities. I prevent the improper use of content from schools and universities. I defend the medical records for the patients in our hospitals. That is the main use case for me for the firewall."
"I had some outages in the network and we provide services for our company. We sell mobile credits. The terminal gets access to our own server inside the network and if one internet fails, then the other one is still up and we have a back-up link on the devices."
"This solution has helped our organization by protecting our network from attacks."
"This solution has increased the level of security, given us more control, provided a deep insight into network traffic, and is a great VPN solution."
"The scalability is very good, where you can do an HA configuration and then bring in another box, if necessary."
"The most valuable features are the VPN and the capture photo."
"The solution is very robust."
"We have found that the simplicity of the XG 210 is its most valuable feature."
"Sophos XG has cybersecurity. It integrates with the antivirus software."
"It gives me a very good, stable connection in all tunnels."
"The SL VPNs are the most valuable feature. I have a lot of systems out of the head office that need to connect to the local networks, and they all connect wirelessly via the Sophos VPN client."
"What I like about his program, is that it is easy to use and easy to manage."
"The filtering is very easy to do. You can segment and create profiles for usage very easily."
"The solution seems pretty stable. We've had no issues so far."
"I like the fact that it can self remove malware and do updates on the cloud via Sophos Central."
"There may have been one or two incidences of malicious threats."
"Some of the features, like the stability, need to be improved."
"In the past though, colleagues have had issues during the upgrade process. The failover didn't work and production was down."
"At times the product is sluggish and slow"
"If I need to download AnyConnect in a rush, it will prompt me for my Cisco login account. Nobody wants to download a client to a firewall that they don't own."
"Most of the time, when I try to run Java, it is not compatible with ASA's current operating systems."
"We have to rely on Cisco ASDM to access the firewall interface. This needs improvement. Because we have a web-based interface, and it is a lot more user-friendly."
"The installation and integration of Cisco ASA with FirePOWER can be improved. The management with Fortigate is easier than Cisco ASA on FirePOWER. The management side of Cisco ASA can be improved so it can be more easily configured and used."
"I would like to see SD1 integration into the software. That would be fantastic."
"pfSense is not user-friendly. I hope to have something to make the interfaces more user-friendly."
"Adjustment in the interfaces: I had to adjust those interfaces manually and of course that is a great feature that you can restore it but it is immediately also one point for improvement. If you don't have to adjust, if it's just stamped and it works, that's great."
"This product needs improvements with respect to reporting and auditing."
"We would like to see ready-made profiles to cover most users' needs."
"I would like to see different graphs available in the reporting."
"If a user doesn't have a large amount of experience in Linux systems, they will have problems using this solution. Users need to be highly skilled in troubleshooting competency. Users who do not have such skills will find the product difficult to use."
"The solution requires a lot of administration."
"When I call, I have to wait at least one to two hours to reach them."
"The only issue that Sophos XG now needs to improve is the product's reporting capability."
"I would like to have remote access to clients using a static IP for a certain period of time."
"The initial set up process can be a little tricky, especially when you are registering with Sophos using your registration number. Setup is not necessarily complex, but it's not trouble-free. You do have connectivity issues at the initial setup with registering the device on the Sophos platform to access the advanced features. It doesn't always go through the first time around. That may be an issue with the quality of our automation. I'm not sure exactly what it is."
"The program is rather expensive."
"The UTM itself needs improvement. When you're navigating it seems like it takes forever to load anything. The hardware is okay. It's just the software that could be more responsive."
"It's easy to use, but it's hard to configure exact settings. They need to make it easier to access advanced features."
"On reports, they sometimes give a summary, but it lists different users as unknown. There are times that I really want to know which user or which IP is causing a problem."
Pricing and Cost Advice
"Licensing is expensive compared to other solutions."
"The cost is a big factor for us. This is why we are using it only in our restricted area. They are very much higher than their competitors in the market."
"We paid about $7,000 for the Cisco firewall, plus another small Cisco router and the lead switch. It was under the combined license. It's a final agreement."
"Watch out for hidden licensing and incredibly high annual maintenance costs."
"I bought a license for three years and it was really affordable."
"With AnyConnect, it depends on your license. It depends on the number of concurrent users you want to connect."
"This solution might be expensive, but it is economical in the long run."
"Some of our customers would be more likely to standardize on Cisco equipment if the cost was lower because a lot of people install cheap equipment."
"This solution provides enterprise-level features at a fraction of the cost of an enterprise firewall."
"It is an open source firewall."
"We are using the open-source version, not the commercial one."
"It has almost zero cost, and it is open to us. It runs on a small appliance just for a couple of 100 bucks, and I've never had an appliance burn out on me yet."
"It is open source."
"I spent a couple of $1,000 on hardware, and the OS was free. A comparable firewall would cost me probably 20 grand. It saved a lot of money."
"I like the fact that it is open-source."
"pfSense is open-source, but the support is something that the customer pays for."
"For licensing the XG 210, we paid approximately $3000 for three years. There are no additional fees on top of this."
"It's a suitable price and license."
"We are paying about $1,500 yearly for the Enterprise Plus. As far as I know, there aren't costs above this standard fee."
"The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else."
"We paid for our licensing for three years, upfront, and there are no costs in addition to the standard fees."
"The price is cheaper than that of some competing vendors."
"The pricing is flexible. Sophos looks at a country's economy and offers flexible pricing. This is how they have managed to penetrate the market."
"It's approximately $6,000 for each device."
Answers from the Community
Questions from the Community
Top Answer: When you compare these firewalls you can identify them with different features, advantages, practices and… more »
Top Answer: Cisco FW for peace of mind
Top Answer: You don't really specify what type of router you are looking for but if you are talking about a gateway router I… more »
Top Answer: One other big difference is that pfSense is FreeBSD based while Sophos UTM is linux based. It is also worth having a… more »
Top Answer: Basically the major difference between Sophos XG Firewall and PFsense is that Sophos is a nextgen firewall based on… more »
Top Answer: The simplicity of the setup is the most valuable feature.
Top Answer: The BGP engine is very limited.
Top Answer: If you pay for the premium support, you'll get better support from Sophos. I would rate Sophos XG an eight out of ten… more »
Compared 34% of the time.
Compared 15% of the time.
Compared 7% of the time.
Compared 5% of the time.
Compared 3% of the time.
Compared 25% of the time.
Compared 16% of the time.
Compared 14% of the time.
Compared 8% of the time.
Compared 3% of the time.
Compared 19% of the time.
Compared 10% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 4% of the time.
Also Known As
|Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAv|
Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.
Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.
Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.
|Providing comprehensive network security solutions for the enterprise, large business and SOHO, pfSense solutions bring together the most advanced technology available to make protecting your network easier than ever before. Our products are built on the most reliable platforms and are engineered to provide the highest levels of performance, stability and confidence.|
Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.
Learn more about Cisco ASA Firewall
Learn more about pfSense
Learn more about Sophos XG
|There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.||Nerds On Site Inc., RKC Development Inc., Expertech, Fisher's Technology, Ncisive, Consulting, CPURX, Vaughn's Computer House Calls, Imeretech LLC, Digital Crisis, Carolina Digital Phone, Technigogo Technology Services, The Simple Solution, SwiftecITInc, Rocky Mountain Tech Team, Free Range Geeks, Alaska Computer Geeks, Lark Information Technology, Renaissance Systems Inc., Cutting Edge Computers, Caretech LLC, GoVanguard, Network Touch Ltd, P.C. Solutions.Net, Vision Voice and Data Systems LLC, Montgomery Technologies, Techforce, Concero Networks, ASONInc, CPS Electronics and Consulting, Darkwire.net LLC, IT Specialists, MBS-Net Inc., VOICE1 LLC, Advantage Networking Inc., Powerhouse Systems, Doxa Multimedia Inc., Pro Computer Service, Virtual IT Services, A&J Computers Inc., Envision IT LLC, CommunicaONE Inc., Bone Computer Inc., Amax Engineering Corporation, QPG Ltd. Co., IT 101 Inc., Perfect Cloud Solutions, Applied Technology Group Inc., The Digital Sun Group LLC, Firespring|
Information Not Available
Financial Services Firm17%
Comms Service Provider14%
Computer Software Company7%
Comms Service Provider34%
Computer Software Company22%
Comms Service Provider16%
Financial Services Firm8%
Comms Service Provider40%
Computer Software Company17%
Financial Services Firm15%
Comms Service Provider9%
Comms Service Provider39%
Computer Software Company20%
pfSense is ranked 2nd in Firewalls with 22 reviews while Sophos XG is ranked 7th in Firewalls with 44 reviews. pfSense is rated 9.0, while Sophos XG is rated 7.8. The top reviewer of pfSense writes "The terminal gets access to our own server inside the network and if one internet fails, then the other one is still up". On the other hand, the top reviewer of Sophos XG writes "Offers a high level of visibility of what's happening on your network or on your client machines". pfSense is most compared with OPNsense, Fortinet FortiGate, Sophos UTM, Untangle NG Firewall and Palo Alto Networks NG Firewalls, whereas Sophos XG is most compared with Fortinet FortiGate, Sophos UTM, WatchGuard Firebox, Palo Alto Networks NG Firewalls and OPNsense. See our Sophos XG vs. pfSense report.
See our list of best Firewalls vendors.
We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.