Compare Sophos UTM vs. Sophos XG

Cancel
You must select at least 2 products to compare!
Cisco ASA Firewall Logo
70,706 views|51,770 comparisons
Sophos UTM Logo
61,901 views|50,340 comparisons
Sophos XG Logo
43,322 views|36,908 comparisons
Most Helpful Review
Anonymous User
Find out what your peers are saying about Sophos UTM vs. Sophos XG and other solutions. Updated: March 2020.
438,944 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"Everything is all documented in the file or in the command line script that gets uploaded to the device. It gives us great visibility.""The user interface is easy to navigate.""It is very stable compared to other firewall products.""The management aspect of the product is very straightforward.""The best features are stability and scalability.""Unfortunately in Cisco, only the hardware was good.""The most valuable feature must be AnyConnect. We have quite a few customers who use it. It is easy to use and the stablest thing that we have. We have experienced some issues on all our VPN clients, but AnyConnect has been the stablest one.""The traffic inspection and the Firepower engine are the most valuable features. It gives you full details, application details, traffic monitoring, and the threats. It gives you all the containers the user is using, especially at the application level. The solution also provides application visibility and control."

More Cisco ASA Firewall Pros »

"We find all of the features valuable because together they fit the needs of our customers.""It allows me to easily connect with more than forty-five remote sites and more than fifty remote users between IPsec and SSL VPN, applying the web filter and application filter to ensure a secure connection.""Configuration troubleshooting is eased by the use of the color-coded, live firewall log.""The features that I've known to be most valuable are both the web security features as well as the web firewall capabilities. As a partner of Sophos firewall, we have some clients and they are using Sophos firewall UTM and we are using it as well.""Sophos UTM has improved the porting section. It has improved security by seeing the gaps. For example, when you discover that an entry has been using a certain application, with Sophos UTM acting as a Layer 7 firewall, you can block the application, not the port.""The most valuable feature is the IPS. It also protects us from malware.""UTM 9 brings along IPSec as well as iPhone and iPad support. This seems small but it’s useful.""The isolation of infected machines is a big feature. Also, the ability to detect external sources that change files on a file server is really big."

More Sophos UTM Pros »

"Great interface and in-built help is very intuitive.""The most valuable feature is the intrusion prevention system.""it's user-friendly, not complex.""The simplicity and timely updates.""The most valuable feature is that it scans all of the data for any kind of malware.""The cloud-based interface makes it easy to manage.""This solution is very user-friendly and even a non-professional can configure the policies.""The simplicity of the setup is the most valuable feature."

More Sophos XG Pros »

Cons
"I would say that in inexperienced hands, the interface can be kind of overwhelming. There are just a lot of options. Too much, if you don't know what you are looking for or trying to do.""The annual subscription cost is a bit high. They should try to make it comparable to other offerings. We have a number of Chinese products here in Pakistan, which are already, very cheap and have less annual maintenance costs compared to Cisco.""They need a user-friendly interface that we could easily configure.""It would be nice if you didn't have to configure using a command-line interface. It's a bit technical that way.""You shouldn't have to use the ASDM to help manage the client.""In NGFW, Cisco should be aligned with the new technology and inspection intelligence because Cisco is far behind in this pipeline.""One of the problems that we have had is the solution requires Java to work. This has caused some problems with the application visibility and control. When the Java works, it is good, but Java wasn't a good choice. I don't like the Java implementation. It can be difficult to work with sometimes.""Security generally requires integration with many devices, and the management side of that process could be enhanced somewhat. It would help if there was a clear view of the integrations and what the easiest way to do them is."

More Cisco ASA Firewall Cons »

"We would like to have unique viewable IDs for rules and in the packet filter logfile, for easier debugging of old log files.""I would like to see the SD-WAN feature improved.""Support for IKEv2 is needed in this solution.""The only time we face a problem or issues is when we place a ticket. We have found that response is very slow.""With Sophos UTM, there is a general rule in the firewall when the country blocking can block some countries from accessing your data. In the current version, you still need to add it by putting in the IP range. This feature would be helpful for administrators and it gives them the advantage to block stuff in less time.""The solution could be improved by adding cloud soundboxing.""We didn’t find any issues but I know there have been some in the last few years.""It does have built-in policies, which enable you to disable USB devices, etc. It would be nice if they had more policies because there are not that many of them."

More Sophos UTM Cons »

"Lacking network access control, user profiling and analytics dashboards.""The two main areas where this product needs improvement are routing and reporting.""The uploading and downloading of reports should be included.""The interface could be simplified and diagnostic system graphs improved.""It would be helpful if they had a set of standard templates because it would assist in the beginning, when you are just getting started.""The weakest point is the technical support because they are difficult to get into contact with.""The cloud support needs to be improved.""Their technical support needs improvement. I've been on hold with them for hours waiting for their support."

More Sophos XG Cons »

Pricing and Cost Advice
"We pay about $200 yearly and we have two firewalls.""It's very competitive with other products.""Cisco is considered to be an expensive solution.""Always consider what you might need to reduce your wasted time and invest it in other solutions.""The licensing is a bit off because the physical firewall is cheaper than the virtual one. We only have the physical ones as they are cheaper than the virtual ones. We only use the physical firewalls because of the price difference.""There is room for improvement in the pricing when compared to the market. Although, when you compare the benefits of support from Cisco, you can adjust the value and it becomes comparable, because you usually need very good support. So you gain value there with this device.""When it comes to Cisco, the price of everything is higher. Cisco firewalls are expensive, but we get support from Cisco, and that support is very active.""It's a brilliant firewall, and the fact that it comes with a perpetual license really does go far in terms of helping the organization in not having to deal with those costs on an annual basis. That is a pain point when it comes to services like the ones we have on Fortigate. That's where we really give Cisco firewalls the thumbs up."

More Cisco ASA Firewall Pricing and Cost Advice »

"This solution is less expensive than FortiGate.""The biggest issue with Sophos is the pricing. It's definitely more expensive. As I said, we looked at Webroot, which is a big alternative, and Sophos was almost three times the price of Webroot. That's a pretty big difference.""We purchased the appliance with five years onsite support and licenses.""Pricing for the upgrade was very competitive as Sophos wanted to retain existing customers.""Sometimes more is less, meaning if you want more than three features, take the FullGuard licence.""The pricing and licensing are both good and better than Sophos's competitors. This is why we went with the product.""The AWS Marketplace product should be a better fit, but it is a little pricier.""Purchasing through the AWS Marketplace is pretty straightforward. Because were entirely on AWS and don't have anything anywhere else. It made the most sense for us as a one stop shop."

More Sophos UTM Pricing and Cost Advice »

"The price is cheaper than that of some competing vendors.""We paid for our licensing for three years, upfront, and there are no costs in addition to the standard fees.""The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else.""We are paying about $1,500 yearly for the Enterprise Plus. As far as I know, there aren't costs above this standard fee.""It's a suitable price and license.""For licensing the XG 210, we paid approximately $3000 for three years. There are no additional fees on top of this."

More Sophos XG Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
438,944 professionals have used our research since 2012.
Answers from the Community
Miriam Tover
author avatarRichard Artes
Real User

My understanding is that UTM is the software; SG is the hardware. You can buy Sophos UTM running on SG hardware and then later upgrade to the XG running on the same hardware.

author avatarRichard Artes
Real User

I've been told by our Sophos reseller that Sophos are pushing the XG as next generation firewall, and developing it to at least as good as UTM. So XG will be the firewall of choice moving forward. UTM will not be developed further, according to him.

author avatarAnthony Petecca
Real User

To my understanding, UTM and XG are from different legacy companies that
are now owned my Sophos. During my time researching anti-virus, UTM makes
more sense for our needs seeing as XG is primarily a firewall. From the
information I was able to find during the time of research, it seemed most
of the community felt XG had feature gaps from UTM.

author avatarSuheyl Khaki
User

UTM specifically SG series is a very mature and stable platform. It lacks some of the new features of XG; however has a very strong feature set. If you are looking for stability, ease of use and something well documented and understood than I suggest going this way. If however you are looking for a strong level of integration and have a greater than 3 year horizon then I suggest XG.

Wifi integration for example works better on the new platform.

author avatarHh Ho
User

In my company, we use UTM Sophos and I am satisfied with it, but I didn’t use Sophos XG series (but as I heard it is great too).

author avatarSean Gambill
Real User

Sophos UTM is the universal threat manager, XG is just the hardware firewall. In other words, UTM is the full package: A/V, application control, security heartbeat, IDS/IPS, etc. It's been a couple years since I've seriously used them, but I liked them at the time and I'm sure it's only gotten better since then.

author avatarFortweb677 (SE at a tech vendor with 11-50 employees)
Real User

What is the biggest difference between Sophos UTM and Sophos XG? UTM will die and XG will live.

Which of these two solutions would you recommend to a colleague evaluating firewalls and why? XG. SG is obsolete solution. No more development as it is on XG.

author avatarYahya Yanuar
User

If you don't need waf and email protection .. XG/SFOS is the best, but if you need email protection and WAF... SG/UTM 9 is the best.

Questions from the Community
Top Answer: Fortinet FGs: Great devices, relatively easy to deploy and maintain. Cheaper than most devices of their kind. If you're… more »
Top Answer: They provide DDoS protection and multi-factor authentication. That is a good option as it enables work-from-home… more »
Top Answer: In terms of costs, other solutions are more expensive than Cisco. Palo Alto is more expensive than Cisco.
Top Answer: My understanding is that UTM is the software; SG is the hardware. You can buy Sophos UTM running on SG hardware and then… more »
Top Answer: I'd agree with Karl's comment above. PfSense is a great product but treat it like a firewall and the big bonus is it's… more »
Top Answer: I presume the topic is UTM appliances (as Meraki and Sophos have many products). Any physical site connected to the… more »
Top Answer: From my experience regarding both the Sophos and FortiGate firewalls, I personally would rather use FortiGate. I know… more »
Top Answer: The simplicity of the setup is the most valuable feature.
Top Answer: The BGP engine is very limited.
Popular Comparisons
Compared 8% of the time.
Compared 5% of the time.
Compared 3% of the time.
Compared 30% of the time.
Compared 22% of the time.
Compared 7% of the time.
Compared 6% of the time.
Compared 3% of the time.
Compared 19% of the time.
Compared 13% of the time.
Compared 6% of the time.
Compared 6% of the time.
Compared 3% of the time.
Also Known As
Cisco Adaptive Security Appliance (ASA) Firewall, Cisco ASA NGFW, Cisco ASA, Adaptive Security Appliance, ASA, Cisco Sourcefire Firewalls, Cisco ASAvAstaro
Learn
Cisco
Sophos
Sophos
Overview

Cisco ASA firewalls deliver enterprise-class firewall functionality with highly scalable and flexible VPN capabilities to meet diverse needs, from small/branch offices to high performance data centers and service providers. Available in a wide range of models, Cisco ASA can be deployed as a physical or virtual appliance. Flexible VPN capabilities include support for remote access, site-to-site, and clientless VPN. Also, select appliances support clustering for increased performance, VPN load balancing to optimize available resources, advanced high availability configurations, and more.

Cisco ASAv is the virtualized version of the Cisco ASA firewall. Widely deployed in leading private and public clouds, Cisco ASAv is ideal for remote worker and multi-tenant environments. The solution scales up/down to meet performance requirements and high availability provides resilience. Also, Cisco ASAv can deliver micro-segmentation to protect east-west network traffic.

Cisco firewalls provide consistent security policies, enforcement, and protection across all your environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables greater simplicity, visibility, and efficiency.

Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

The global network of highly skilled researchers and analysts, protecting businesses from known and emerging malware - viruses, rootkits and spyware.

Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.

Offer
Learn more about Cisco ASA Firewall
Learn more about Sophos UTM
Learn more about Sophos XG
Sample Customers
There are more than one million Adaptive Security Appliances deployed globally. Top customers include First American Financial Corp., Genzyme, Frankfurt Airport, Hansgrohe SE, Rio Olympics, The French Laundry, Rackspace, and City of Tomorrow.One Housing Group
Information Not Available
Top Industries
REVIEWERS
Financial Services Firm19%
Comms Service Provider13%
Manufacturing Company10%
University7%
VISITORS READING REVIEWS
Computer Software Company28%
Comms Service Provider23%
Media Company6%
Government5%
REVIEWERS
Comms Service Provider11%
Financial Services Firm11%
Healthcare Company11%
Construction Company6%
VISITORS READING REVIEWS
Comms Service Provider26%
Computer Software Company23%
Media Company8%
Government5%
REVIEWERS
Financial Services Firm18%
Healthcare Company12%
Mining And Metals Company12%
Construction Company6%
VISITORS READING REVIEWS
Computer Software Company25%
Comms Service Provider22%
Media Company8%
Construction Company5%
Company Size
REVIEWERS
Small Business35%
Midsize Enterprise24%
Large Enterprise40%
VISITORS READING REVIEWS
Small Business29%
Midsize Enterprise24%
Large Enterprise47%
REVIEWERS
Small Business62%
Midsize Enterprise18%
Large Enterprise20%
VISITORS READING REVIEWS
Small Business63%
Midsize Enterprise21%
Large Enterprise16%
REVIEWERS
Small Business67%
Midsize Enterprise23%
Large Enterprise10%
VISITORS READING REVIEWS
Small Business51%
Midsize Enterprise26%
Large Enterprise22%
Find out what your peers are saying about Sophos UTM vs. Sophos XG and other solutions. Updated: March 2020.
438,944 professionals have used our research since 2012.
Sophos UTM is ranked 1st in Unified Threat Management (UTM) with 24 reviews while Sophos XG is ranked 7th in Firewalls with 20 reviews. Sophos UTM is rated 8.4, while Sophos XG is rated 8.2. The top reviewer of Sophos UTM writes "Has a solid state hard drive and can boot in less than sixty seconds". On the other hand, the top reviewer of Sophos XG writes "Offers a high level of visibility of what's happening on your network or on your client machines". Sophos UTM is most compared with pfSense, Fortinet FortiGate, Untangle NG Firewall, OPNsense and Meraki MX , whereas Sophos XG is most compared with Fortinet FortiGate, pfSense, Meraki MX , WatchGuard Firebox and OPNsense. See our Sophos UTM vs. Sophos XG report.

See our list of best Firewalls vendors.

We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.