Sophos UTM Valuable Features

ZaherEL Bsat
Pre-Sales Manager | Infrastructure and Security at National Information Technology Company
To be quite honest, from my personal experience all the features of Sophos UTM are useful, which includes publishing templates and the ease of publishing any servicing needs. From the VPN side, all the VPN protocols are available so you can choose from SSVPN to PPTP to other versions of VPN, and it's easy to deploy within minutes. The firewall includes very good logging where you can see what's hacking your network. The IDS and IPS settings are based on your reliance and also alerts you if there is an attack. We're happy with Sophos and we also have an XG version being used for other services, because we are a company that provides services. We have two versions, we have the XG and the latest one. The Sophos UTM which is the previous version but still being in production is our main firewall for the company. We happy with all the features, we have no negative comments on any of the features except that the XG has more ability to block based on countries. On the previous model, the blocking of countries we had a problem with, i.e. if you use the NAT feature, you can't block countries. You have to enter the IP network. With the XG version, you can just select when you publish via NAT not via WAF. You can select the countries. That is the only difference between XG and the UTM which we did not really like, but other than that its all cool. View full review »
Joseph Mallozzi
Project Engineer
The most valuable to features are: Web Application Firewall, Sophos UTM Manager, IDS/IPS, Remote Access, and RED. * WAF: This is excellent for hardening web servers. The firewall will reverse proxy your web servers, eliminating the need to open ports. Instead the firewall will run an instance of Apache and proxy all traffic to and from the real web servers. (This is also handy when you have a single public IP.) * SUM: The Sophos UTM Manager is a must have for any MSP. The SUM is a centralized portal for quick access to all the firewalls you manage. This also keeps track of who logs into the firewall by AD account. It is great for keeping track of a help desk, and who is making changes. * IDS/IPS: General Intrusion Prevention and detection. It works very well. * Remote Access: VPN access is always a need, and the UTM includes this free with all their license models. A very nice feature that I use a lot is the HTML5 portal. The portal allows you to have web-based access to resources behind the firewall. The best use for this would be when a client does not have any servers on-site. You can set up the HTML5 portal with SSH/Telnet to manage switches on-site, all done through the browser. * RED: REDs simplify the setup for multi-location clients. A license is not required for a RED, and only one UTM is needed. REDs are great for mobile sites, as they can be tossed in a bag and can run off 4G/LTE. Configuration is effortless, and they create a direct tunnel back to the main office, getting you up and online in no time. View full review »
Ayodele Mumuni
Snr Dev Ops Engineer at a tech services company
* The combination of server protection * Seamless incorporation with AWS * Its VPN feature View full review »
Anthony Petecca
Manager IT and Security at Health Street
The isolation of infected machines is a big feature. Also, the ability to detect external sources that change files on a file server is really big. The third key feature is something called EDR. It's a type of advanced file analysis. If you aren't sure what a file is you can click on it and it will upload a sample to Sophos and it will respond saying, "That's malicious," or "Not malicious." You can see every individual file and registry key that that file has ever interacted with, and what they did. It will show you every single thing it's done to the machine so you can clean up everything or check everything that it has ever touched. You don't have to worry about, "Oh, did I clean everything up?" View full review »
IT Infrastructure Architect at a retailer with 10,001+ employees
The UTM/SG platform starts off with the basic functionality of being a good Firewall, adding the additional modules opens up the products set and allows for full web filtering and application control, reverse proxy, APT detection, IPS, VPNs, User portal etc. The licensing model works very nicely to allow you to get the right protection at the right price point for the right deployment size. In the increasingly cloud focused word the Sophos UTM’s ability to deliver Safe web access, Web Filter and Cloud Application control has gone from being a nice to have to being a must have for any size company or organization. The rich access logs it records allows you to get real insight into what your users and devices are accessing on the cloud. Native reporting is basic, but can easily be improved by adding Fastvue Sophos Reporter. View full review »
Jeff Berndsen
Network Engineer II at a legal firm with 1,001-5,000 employees
* Firewall * NAT * Intrusion prevention * Site-to-Site VPN * Web filter * Anti-virus View full review »
Juan C. Sanchez Pignalosa
CEO And Founder at Advisor Consulting Group Corp
The web filter and the ATP (Advanced Threat Protection) are great and easy to manage, and the integrated WAF (Web Application Firewall) allows the administrator to seamlessly protect HTTP/S services without having to pay thousands of dollars. The just introduced Sandstorm system for protection, is awesome as well. View full review »
Scott Rouse
Architecture and DevOps at
* The VPN side of it. * The ease of configuration of the VPN. * Some of the end user self-serviceability of it without having to have a whole lot of touch from our operational group View full review »
Frank Scalzo
Director of Cloud Technology at Avalere Health\Inovalon
Its scaling capability. Sophos has a single pane of glass which allows me to manage all my VPCs from a single instance, managing all my firewall from one place, which is huge for me. When you have multiple VPCs and multiple accounts, it becomes too cumbersome to use a product that you have to look at individually. With Sophos, I can look at one place and see everything: my logs, filters, firewall rules, etc. View full review »
M.K. Goyal
Asst General Manager(C&IT) at NMDC Iron & Steel Plant
* A good package overall * A nice UTM appliance with a good GUI and reports. * Configuring web access controls in the appliance is a bit typical and requires debarring and listing separately. Once configured, the solution works beautifully. View full review »
Dragan Pavlovski
Head of IT at a construction company with 201-500 employees
All the features are valuable. * Web protection: Allows me to control unnecessary web traffic into the company network. * Email protection: Protects the company from spam and malicious emails. * RED and VPN: Provides an easy and secure way to connect branch offices so I can easily control them. * WAF and DMZ: Provides an easy and very secure way to publish your internal servers. Enables you to have more than one WAN and to use them for load balancing and controlling the traffic through them. View full review »
Quality Officer at a tech services company with 10,001+ employees
The IPS and endpoint protection function. A standard Firewall of an access router, monitoring up to OSI level 4, is unacceptable anymore these days. The endpoint protection solution is integrated, thus running along with the notification function. View full review »
Md. Dipu Khan
The features that I've known to be the most valuable are both the web security features as well as the web firewall capabilities. As a partner of Sophos firewall, we have some clients that are using Sophos firewall UTM and we use it as well. View full review »
John Xavier
CIO at Quartesian
It provides a solid firewall. View full review »
Boris Kočar
Business Owner at a tech services company with 1-10 employees
Reverse proxy, SSL VPN, web & email protection For me, those features were most valuable from a security point of view; • Reverse proxy is very important for shielding application frameworks. • For VPN, we all knew that PPTP was broken and is not secure anymore. For Ipsec, you need to have opened ports, and if you are in a hotel who only has ports 80 and 443 opened, you can’t do anything. SSLVPN is one of the solutions. Yes, you can use DirectAccess, but there are some limitations, too. For DirectAccess, you need to have all those computers joined in one domain. • Web & email protection is a nice feature because you have all of those controls in one dashboard. This is of course for small and maybe some mid-size companies. For larger and enterprise, it’s another story. View full review »
CTO at a tech services company with 11-50 employees
* Email and web proxy: for filtering unwanted emails and spam, and for web content and malicious url filtering * SSL VPN and two-factor authentication: for secure remote access * Layer 7 app control: for blocking P2P (ex. BitTorrent) and media streaming content * WAF/reverse proxy: for securely publishing web applications and protecting Exchange services * WAN load balancing: for multiple Internet connection management View full review »
Aimee White
Website and EComm at a local government with 10,001+ employees
Classic defence in depth, with layered features. * SPI (stateful packet inspection) * IPS * WAF * VPN capability with built-in load balancer Nothing out of the ordinary these days, but the fact Sophos has such a big name and good support was a big plus for the client who already had a relationship with Sophos support. Also, auto-scaling of UTM workers using EC2 is a nice and handy feature. UTM 9 brings along IPSec as well as iPhone and iPad support. This seems small but it’s useful. Finally, Cold Standby CloudFormation script to one node, with persistent info in S3, is a convenient feature. View full review »
Max Pupov
DevOps at a tech services company with 11-50 employees
Our policy is launch and forget. It works well without any maintenance. So far, it has worked pretty well regardless of the traffic. View full review »
Global Network Security Admin at a Consumer Goods with 201-500 employees
It can identify threats quickly, then find the affected devices and quarantine them. It ease of use: The GUI is easy to maneuver through; it is not complicated. View full review »
Ian Cowley
* Using the Home version to help Sophos develop the XG. I have not used the earlier UTM, which colleagues have recommended. * The UTM features are reasonably strong and the patterns are updated on a regular basis * Supports all the traditional firewall components View full review »
Data Department Manager at a comms service provider with 501-1,000 employees
As both a firewall and UTM it's perfect. View full review »
Ryan Pealer
Network Administrator at a government with 11-50 employees
To me it is the Web Server Protection, it is not an easy task to protect your web servers from the big bad internet. This solution does it elegantly and, if configured correctly, even hides the server's base system from prying eyes. View full review »
Martin Lindemann Frederiksen
It Forum Gruppen A/S
They are all good, but most-used are the Network Protection and Web Filtering licenses. View full review »
Milos Lichtenstein
IT SM & Security Consultant at a tech services company with 1,001-5,000 employees
The most valuable features are * Web Protection - Protects you against problems originating from the internet. * Advanced protection (Sophos Sandstorm) - Protects against crypto viruses in real-time. * Email Protection - Really strong anti-spam. * REDs (Remote Ethernet Device) - Connects you from a remote workplace to your source network. View full review »
Pei Pei Ong
Senior IT Support Engineer at a religious institution with 51-200 employees
The most valuable features are: * Ease of configuration of the firewall rules and routing. * The email alert on event triggers. * Internal storage for logging, as you do not have to get another server to store the logs. View full review »
Arndt Reimers
Systemadministrator at MCON Group GmbH
All the features are similar; we are real, hardcore users of the Sophos UTMs. View full review »
Darren Weiner
Solutions Architect at National Renewable Energy Laboratory
It meets our compliance needs for antivirus. View full review »
Security Architect at a financial services firm with 501-1,000 employees
* Ease of deployment * Licensing * The dashboards are good. View full review »
Elías Björnsson
Senior IT Consultant at a tech services company with 51-200 employees
Great security and logging. Easy GUI. View full review »
Medhat Mohammed Elsamoly
Network & System Engineer at a tech services company
RED remote Ethernet Device layer 2 site-to-site tunnel. RED is a layer 2 tunnel based on SSL protocol that you can establish tunnel, with or without static public IP form provider and this is a feature you will not see among another vendor. View full review »
Senior Solutions Specialist at centerprise international
The most valuable feature is that it is easy to administer. View full review »
IT Security Specialist at a tech services company with 11-50 employees
The most valuable feature is the IPS. It also protects us from malware. View full review »
Neeraj Panwar
Cloud Network Administrator at a tech services company with 11-50 employees
The security is the most important, and without security, we cannot use our network on a weekly basis. View full review »
Unified Communications Specialist at Agentra
The most valuable features are: * Firewall protection * Intrusion detection View full review »
Joshua Robertson
IT Specialist at a financial services firm with 201-500 employees
* Sophos UTM Manager (SUM): It allows us to manage over 50 Sophos UTM devices from a central management console. * Creating rules, exceptions, and managing most features from SUM, and pushing to all or a section of devices as needed. View full review »
CEO with 501-1,000 employees
* Ease of use * Rapid deployment with great logging and analysis features View full review »
Edward Cetron
Owner with 11-50 employees
Application layer filtering. View full review »

Sign Up with Email