I would recomend, sophos UTM Home edition, or sophos xg firewall there is a frees vertion to, cmoaring the free features vrs OPNSense there are a lot of pros. I tried for many years pfsense, opnsense and many other opensource distros, until i started using sophos free…

Difficult to say without knowing some facts about the company, budget, space, type of SIEM to be implemented, 24/7 personal, shift management, etc.  It's better to verify which is more suitable for you based on your needs and type of business.

@Chirosca Alecsandru try firs the the sophos UTM Home edition, its free version provides most of the features, if you look for robust and stability, this is the best option, i have made many implementation to small bussiness and works just perfect, also web filtering is…

@Chirosca Alecsandru OpenSense, pfsense, ufw, there are a lot of opensource alternatives, i have tried many of them, but no one like the sophos UTM home edition

@Evgeny Belenky It is very expensive and license is yearly

You can try the Sophos NG firewall (the Home edition) - it's free and you can install it on a local server.  Try it to see if it suits your needs, also if you need to scale, Sophos can handle it very well and also is far from being expensive.

There are several differences since there are 2 versions,  XG firewall has integrations with other products like intercept X and admin from Sophos central.  SG UTM has less integration since it's a separate product. It was formerly Astaro firewall, but the most advanced…

Sophos has a cloud firewall edition with whole features artificial intelligence and much more features, see more at https://www.sophos.com/en-us/p...

Sophos includes AI for the NG Firewall https://ai.sophos.com/projects...

@Evgeny Belenky hi there, in AI not yet, but i have worked in SOC automation with complex workflow based on IOC, automated mitigation based on EDR and other cool stuffs with Arcsight SIEM, and BPMN based playbooks

Hi Carlos, I Agree with Darryl, by now one of the most suitable and affordable solutions with great power, scalability is the XG Sophos NGFW. if sizing is needed please don´t hesitate in requesting it, it fits to anysize, bandwith, throowoutput, etc...

In addition i can tell that you can use 2FA for free with the sophos authenticator and enabling OTP for your vpn remote ssl users, also there are some other vpn awesome features like html5 and rdp over vpn so you dont need to publish or port forwarding makin  you network…

You need to know the apps and bandwith that your users will need to calculare the trhowoutput of the interfaces, that is more about sizing rather than brand, but the sophos vpn client is very light and easy to install

Assosiated threats are many, like data loss, data exfiltración, vlan hoppin, sensible data expossure, ransomeware, etc.

You should build a lab, try the tools and analyze the traffic and behavior with a traffic analizer like wireshark and any sandbox or edr that shows you what the tools do, but all this should be outside your production environment, use tools that has been released by the…

I recomend the Sophos UTM

try to bluid a POC for diferent needs and usid depending on the client you are bringind the show, you can built a ransomeware POC ar a phishing scenario, some time i do 2 screens one with kali, revers tcp and othe station opening a word file with a script that gives…