Sophos XG Room for Improvement

Sherif Fouad
Project Manager at a mining and metals company with 1,001-5,000 employees
There was a big issue with the Cyberoam and with the SG units as well, i.e. the previous Sophos UTM model. With Sophos XG, you get the chance to block what sites operate on SSL or that operate with HTTPS, without the need of extracting and distributing a certificate. On older Cyberoam and Sophos SG old versions, if you wanted to block something like YouTube or Facebook or any other websites that operate with HTTPS, you had to extract the certificate. Then you had to export that certificate. Then you had to re-import that certificate in all the user browsers. The only problem was if you needed to use an active directory where those certificates would be automatically thrown into the user browsers once they logged in to the domain. For a scenario like mine where you don't have a group policy, it is a disaster and ends up with you setting the rules to block certain websites with HTTPS on the firewall, even while they are not being blocked so that the user will still have access to them. This problem is now 100% sorted out with Sophos XG. Now you can actually block whatever you want, whether it's using HTTPS or HTTP keys from the firewall without the need for extracting certificates. That's a major improvement. That problem with the HTTPS settings was a huge issue. I know other people must be enjoying that it's sorted out now. It was a serious and major issue for Sophos. The only issue that Sophos XG now needs to improve is the product's reporting capabilities. View full review »
Alexandre RASTELLO
Senior Consultant at ARENTIA S.A.
I think Sophos XG can improve some annex features. Like in DHCP, we can't make IP reservations in the range. We must reserve out of the range, which is not good. It will not be the same as the DHCP function in a Windows Server. We can't make an IP reservation in the range of the DHCP in the Sophos. Better in the next release? I hope... Sophos can also improve the debugging of the WAF function and provide a better resolution in the log, in the attached WEB log. The initial error doesn't appear. You must tail the console log to find the source pattern, cause of the error. View full review »
Kolanji Selvaraj
IT Consultant at Crotus
We are having a lot of issues with conflicts and user sessions, and Sophos has suggested that we change the device to the XG 400. Aside from these issues with scalability, the email security features are good, but there are not many options. We would like to know why an email is being blocked, and how we can allow delivery. It does not keep emails in the queue for delivery. It can only log whether it is delivered or not delivered. If I need more details then I have to log in using SSH to get that information. When an email comes in from the outside it is detected. When we check the log it only tells us that it is not delivered. We would like to create an exception, but there are not many options available for this. For example, a domain space is not allowed. Only the user name can be used to do that. We need a domain-based exception for email. Next, the XG 210 is easy to configure, but when we are looking for more details then we can only get this information through SSH. It is quite difficult. If we can get all of those details then it would help us to understand, so this needs to be improved. There are a lot of options and it gets confusing sometimes. If they can give limited options, with more information, then it would be good for the large sites. View full review »
Learn what your peers think about Sophos XG. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
456,495 professionals have used our research since 2012.
Olufemi Adalemo
Chief Technology Officer at Leystel Nigeria Limited
The initial set up process can be a little tricky, especially when you are registering with Sophos and you have a poor internet connection. Setup is not necessarily complex, but it's not trouble-free. You do have connectivity issues at the initial setup with registering the device on the Sophos platform to access the advanced features. It doesn't always go through the first time around. That may be an issue with the quality of our connection. I'm not sure exactly what it is. The single sign-on client I get maybe a 60% success rate on. There are times when it will use single sign-on for verification of users to access Internet resources. It still doesn't always catch the user. The user gets sent to the web login. Even though the single sign-on is helping, it doesn't always work. I would like to see a better single sign-on performance. I'd like to see a more streamlined way of managing your licensing as well. View full review »
Tunji Gbola
Chairman at BASL
Although I enjoy the reporting elements of the solution, it can still be improved. I still can't drill down. There is some information that I would really, really like to see, but I still can't access it. On reports, they sometimes give a summary, but it lists different users as unknown. There are times that I really want to know which user or which IP is causing a problem. View full review »
Michel Labonte
Chef IT at a healthcare company with 51-200 employees
Training on the devices is an area that needs improvement. Their training mechanisms are not perfect, and this is where you lose a good appreciation of the product. The documentation for implementation is not good. For example, when you look up the details on a firewall rule to validate it, the details are not there. If you click on the help file, they say a zone is an area where you can define specific logical network areas. This is where they stop, with nothing more. If you want to go further into the concept of it, which you know there is, you have nothing. Then you have to revert to the internet and go onto newsgroups to try to see if anybody has had your type of experience. Then you find someone, they explain it to you then say, "Oh, it only makes sense". So, then when you want to implement this, it's much easier at that time. So, that's the best-case scenario that I can explain. There is an area that is very specific to our setup, where working tools you cannot easily establish a VPN between two internal networks. When you want to establish a VPN with different wizards, they assume that you're always going through your internet link. If you want to create, with the zero-trust concept, which is where you don't trust anybody or any device, you want to make sure that everything on your network is segmented and everything is relative, depending on its flexibility, behind its firewall or a firewall segment. At some points, you might want to establish VPNs between certain network segments. Since you cannot establish VPN tunnels from the Sophos interfaces, plus if you are doing something that's going through the internet, then you lose flexibility. Currently, let's say we have a factory V-LAN and you don't want anybody within the factory V-LAN to be able to connect to another unless it is to a specific V-LAN, and you want to use VPN technology, you can't do it because you can't establish the connection again between two internal interfaces. View full review »
Unmesh Deshpande
CTO at Kingsway Hospitals
The solution really needs some additional features like network access control. If they could incorporate some user profiling and present the analytics of the login user usage patterns, or a typical proper management dashboard to take a decision on the firewall rules, that would be useful. Basically, MI's and the dashboard could be more user friendly. The information is there but the dashboards are not in a graphical format. In short, I'd like to see network access control, user profiling and analytics dashboards. It would make the solution a more competitive product on the market. View full review »
Jay Thompson
Chief Operational Officer at Merchant Light LLC
It would be helpful if they had a set of standard templates because it would assist in the beginning, when you are just getting started. They do have a template, but I mean specifically for different use cases. For example, an existing template for setting up a web page would suggest what kind of security we need to have in place. They do have help menus and videos, but additional templates would be useful. View full review »
Hermann Potgieter
Senior Network Architect at Virtua Technologies
What I don't like about Sophos is that applying policies can sometimes take longer, and there can even be a bit of a network interruption. With FortiGate, it's just one click and then you go, but with Sophos, sometimes the wheel keeps spinning for several seconds. The SD-WAN capability is not as good as it is in FortiGate, and is something that should be improved. View full review »
reviewer1140534
Director, Middle East, East India & SAARC at a tech services company with 51-200 employees
We feel that the GUI can be improved a bit because it has a lot of information and looks a bit outdated. Nowadays, you hear a lot about next-generation firewalls, so some additional features can be added from an EI perspective. Products like FortiGate, for example, have a lot of features apart from the basic firewall. We would like to see integration with existing IPAM and IDAM products. In the future, I would like to see new kinds of automations, as well as the inclusion of artificial intelligence-related features. A lot of other firewalls already have these now. View full review »
chiefnet966021
Networking Engineer at a comms service provider with 1,001-5,000 employees
We are having challenges with social media because ever since this issue of COVID-19 came into existence, the idea of using online discussions has become relevant. Before this, they were not made the priority because they were not considered to be important. Now, we've discovered that we need to use a lot of these online applications. We are having challenges when using Zoom with Sophos XG deployed. Our wireless network is not stable through the connection. More work needs to be done there, since the FW is doubling up as a wireless controller. I would like to see improvements made to the display and visibility. I'm also using Sophos XG firewall as our wireless controller, but as it is now, I can't see my access points on the firewall. My wish is to see the Wireless network and reports also on this firewall cum- controller. View full review »
Zaher EL Bsat
‎Chief Operating Officer at Al Manar
They should expand their DDoS feature. It's basic. They need to enhance it. Technical support needs to be improved. The solution needs a mobile application for the administrator. Today, as an administrator, you cannot manage the solution from your tablet or from your mobile. You can only go through a web console. Other vendors have mobile apps. Some vendors also have the ability to manage and check the chart report and change some settings from a mobile application. This would be an excellent add-on for administrators who are traveling. It could help a lot. View full review »
reviewer1461726
Information Technology Security Officer at a government with 201-500 employees
Software updates always come with issues. For example, I just upgraded to the next version, 80.5, and it came with VPN issues. It started dropping my VPN users. So, I had to roll back to before the software update. I think that the main area for improvement is the quality assurance of the updates. The management console is a little bit rigid. Scalability can be improved. I think that it performs a little bit slow when it comes to connectivity, and having the speed increased would be better. View full review »
Michael Hlavaty-LaPosa
Owner/President at TeamLogic IT of Oklahoma City
The main area that needs improvement is the documentation. Sophos needs to be a little better at communicating with partners about changes, issues, patches, and so forth. The weakest point is the technical support because they are difficult to get into contact with. View full review »
Samir Shah
CEO / Managing Director at Infinity Access Technologies Pvt Ltd
With the proliferation of fiber connectivity becoming available at our homes, consumers should not have to go and buy another module for fiber to ethernet converters or another device to get the fiber options. I understand all UTM models should have direct SFP ports available so that FFTH is directly terminated to UTM for better management and uptime. View full review »
Wael Nasr
Information security specialist at a non-tech company with 201-500 employees
There needs to be a way that we can distinguish between educational institutions on Youtube and other Youtube videos. You can do this on Fortinet. Basically, they can block all other Youtube videos besides those that are from educational institutions. With Sophos, you either allow for all Youtube videos or none at all. They need to allow for more specification on different websites. They only have one single location for training videos. They must offer them elsewhere as well. When the site goes down, everything stops, and you can't access the videos when you need them, so they need to diversify that. It's limiting. View full review »
Devanand PR
IT Support Executive at a healthcare company with 51-200 employees
The interface could be improved by simplifying it and making it much smarter. I would also like to see an improvement in the diagnostic system graphs. They could be modified to provide individual graphs. The present page has all graphs in a single page and it slows things down and takes more time to refresh and load. Additional features they could consider including in any update would be symbols and tools. They could also include URL groups and all Office updates, the regular things that people do on a daily basis. View full review »
Leadvanceng574
Lead Advance Engineer at IHCC
Sometimes we experience difficulties with our server and that is usually due to a bug. Somehow bugs seem to find their way through Sophos' security. The issue is usually resolved when we contact technical support. In the next version, I would like to see an improvement in this. The developers should test everything after any update to ensure that bugs don't come though with the update. View full review »
reviewer1189566
IT Engineer with 51-200 employees
Categorization or uncategorized websites is an area that needs improvement. Having a web portal where you could make requests for the categorization of non-categorized items, would be beneficial. The DLP rules don't cover countries such as Serbia. You cannot make custom rules. That could be added so that we could detect content that is not supposed to leave the company via email, and so that the rules could be customized by the clients. We only have predefined rules and most of them are not for Serbia or countries from the Region. View full review »
Jasim Alsafran
Network & System Administrator at a tech services company with 201-500 employees
In regards to email as an example, if you experience any malware, it is contained in the container but doesn't give you any information about the email, or what is contained in the email. You only have the option to reject it or to release it. I need to open the email to see what it contains and the value of it before I know whether to access it or not. Stability needs improvements. View full review »
reviewer1462965
Network Team Lead at a manufacturing company with 5,001-10,000 employees
It is a very basic and entry-level firewall. It doesn't give very granular control over the traffic. It should have more granular control over the traffic. This feature should be there similar to Palo Alto and Cisco. It should have such advanced features. View full review »
RafatJuneidi
Firewall Engineer at Golden Tech
Some features are not available on the graphical interface. So you need to return to the command line to solve some issues that are faced by the customer. I used it for enterprise networks, I decided that it is not very good for enterprise networks. There is some issue with its hardware. I have faced two problems and that were resolved by Sophos earlier. They changed the appliance. In other products, I have not seen such problems in the hardware. So I think that the hardware is not heavy duty. You can say it's not heavy duty like other vendors. The performance is not as it says on the datasheet. They should improve the hardware. If they can do that, it would be a very good product. View full review »
Mohamed Abdel Hassanein
Managing Director at a tech services company with 201-500 employees
The number of ports, especially on the entry-level appliances, should be increased. The price of adding ports should be reduced to make it more competitive. The vendor needs to create materials to show the differences between Sophos products and those from other vendors. Network management needs to be included in the package. As it is now, it only supports ten multiple users, which is something that should be increased. View full review »
Purnachandra Rao Koneru
Manager IT at QPS Bioserve Pvt Ltd.
The cloud support needs to be improved. As it is, they only have support for Microsoft Azure. They should expand it to include providers like Amazon and Alibaba. View full review »
Unmesh Deshpande
CTO at Kingsway Hospitals
The security of the solution could be improved by making it more intuitive and it should have a background reputation service for classification of websites for content filtering. It's a service which defines the type of websites enabling me to do my content filtering in a much more effective and efficient way. They really need to include some kind of a client app for mobiles so that firewalls and all the metrics can be accessed directly on the phone; some kind of administrative application on the phone, maybe on an iOS or Android. View full review »
reviewer1429977
Network Security Administrator at a comms service provider with 501-1,000 employees
The first area that needs to be improved is customer support. If I'm implementing a connection on the DMZ or WAN, I should be able to dive deep into the implementation, specifying what needs to be implemented or not. For example, I should be able to configure specific details for the DMZ, and not have to follow the templates that they provide. We have had problems with the stability that affected business operations. View full review »
reviewer1192233
Information Systems Infrastructure Manager at a comms service provider with 1,001-5,000 employees
When you are using it as a controller for the wireless access points, it doesn't perform well. It is not suitable for the public cloud. It is more suitable for enterprise data. It is not really the equipment for cloud data centers. I am looking for a data center firewall. View full review »
Ezekiel Dhlamini
Operations Manager at iBound
The UTM itself needs improvement. When you're navigating it seems like it takes forever to load anything. The hardware is okay. It's just the software that could be more responsive. View full review »
Shah Abdul Manap
IT Executive at Hotel Maluri Kuala Lumpur
I need to do a bit more research on the product. I can't think of any features that are missing. The solution is tied to the US dollar. You need to pay whatever the equivalent is in your own currency, and, if the exchange is bad, it can really add to the cost. View full review »
reviewer1199082
Senior IT Manager at a agriculture with 11-50 employees
I would like to have more artificial intelligence in the web monitoring service that comes with it. It should alert us when particular events happen. It has already got some of that. I know that it is more of a service, and Sophos is already looking at it. It is called SIEM. View full review »
Supportservice464
Support Services Manager at a wholesaler/distributor with 51-200 employees
It's easy to use, but it's harder to configure when you want detailed settings. They need to make it easier to access advanced features. View full review »
reviewer1439775
VP of Operations at a manufacturing company with 51-200 employees
The UI needs improvement because it can be a little weird at times. View full review »
Kamran SAJJAD
Manager IT at a retailer with 201-500 employees
The two main areas where this product needs improvement are routing and reporting. The security can be improved, as well. View full review »
Adedayo Williams
IT Analyst at a financial services firm with 11-50 employees
In the Firewall, the Intrusion Prevention System can be improved. Now because COVID has come to stay, people tend to work from home, and cybersecurity has been on the high side. It can improve more on the security aspect of this so that it can combat any major threat or common bug. I am not saying that the security has become compromised, as it is usually active, but they can improve on it. Local and technical support can be improved. When firmware updates are complete, there were issues with connectivity and VPN users. Recently, I stopped updating the firmware because I didn't want to obstruct the connectivity of the staff working remotely at different locations. I have stopped doing any updates until the issue can be addressed. View full review »
Bjoern Koeckert
System Administrator Server and Networks at a manufacturing company with 201-500 employees
The behavior with the zones was a little bit tricky to understand and the beginning of the project. Sophos XG is difficult to manage and it is difficult to understand when you first begin. The reaction time of the GUI is terrible when compared to other manufacturers. View full review »
Rmegio Lawag
Technical Department Manager at Direcbusiness Technologies, Inc.
In terms of improvement, one of the features we are having a hard time getting a hang of is MAC addressing, like when we assign IP addresses to a specific MAC address. That is something that can be improved. For the next release, I think, it should have better feature integration. View full review »
reviewer1274955
Senior Director of IT Operations at a tech services company with 11-50 employees
The VPN is in need of improvement. For us, it is hard to set up and it not working properly. View full review »
Ibrahim El Sayed
Network & Hardware Administrator at Nile Projects & Trading Co.
I would like to have remote access to clients using a static IP for a certain period of time. This would allow me to log in to any client, remotely, with a known and fixed IP address. View full review »
Neeraj Mohotra
Technical Analyst- Presales and delivery at TechNexa Technologies Private Limited
The uploading and downloading of reports should be included. We are looking for a firewall to block the uploads from the user, not the downloads. I would like to see this feature updated. In the next release, I would like the uploading and downloading reports to be included. View full review »
David Van Win
Senior System Administrator at a financial services firm with 201-500 employees
Their technical support needs improvement. I've been on hold with them for hours waiting for their support. View full review »
reviewer1463193
IT Manager at a manufacturing company with 201-500 employees
Sophos needs improvements made to the console, such as host entry or defining rules directly from it. View full review »
reviewer1477533
IT Security Manager at a financial services firm with 201-500 employees
It's a problem that we are not able to investigate incidents, there is no tracking. Security is also lacking in this product. View full review »
Sayem Abdullah Rihan
Administrator IT at Shopfront Limited
It would be great if the user can have a portal to check on activities related to their account. View full review »
Mohamed Y Ahmed
Technical & Pre-Sales Manager at GateLock
Network security is in need of improvement. View full review »
Learn what your peers think about Sophos XG. Get advice and tips from experienced pros sharing their opinions. Updated: December 2020.
456,495 professionals have used our research since 2012.