Professional Documents
Culture Documents
Sophos XG Firewall
Sophos XG Firewall
Highlights
➢ XStream Architecture provides extreme levels of visibility, protection, and performance
through stream-based packet processing
➢ XStream TLS inspection offers high performance, support for TLS 1.3 with no downgrading,
port agnostic, enterprise-grade polices, unique dashboard visibility, and compatibility
troubleshooting
➢ XStream DPI Engine provides stream scanning protection for IPS, AV, Web, App Control,
and TLS Inspection in a single-high performance engine
➢ XStream Network Flow Fast Path delivers policy-driven and intelligent acceleration of
trusted traffic automatically
➢ All firewall rules provide an at-a-glance summary of the applied security and control for
AV, sandboxing, IPS, Web, App, Traffic Shaping (QoS), and Heartbeat
➢ Pre-defined IPS, Web, App, and Traffic Shaping (QoS) policies enable quick setup and easy
customization for common deployment scenarios (e.g. CIPA, typical workplace policies,
and more)
➢ Sophos Security Heartbeat connects Sophos endpoints with the firewall to share health
status and telemetry enabling instant identification of unhealthy or compromised
endpoints
➢ Dynamic firewall rule support for endpoint health (Sophos Security Heartbeat)
automatically isolates and limits network access to compromised endpoints
➢ Configuration API for all features for RMM/PSA integration
➢ SD-WAN connects remote/branch sites across a geographically-distributed network
➢ Remote Access VPN with a free and easy client for Windows/Macs
➢ Sophos Central cloud-based management and reporting for multiple firewalls provides
group policy management and one console for all your Sophos IT security products
➢ Zero-touch deployment and configuration in Sophos Central for new firewalls
Basic Firewall
General Management
➢ High Availability (HA) support clustering two devices in active-active or active-passive
mode with plug-and-play Quick HA setup
➢ Full command line interface (CLI) accessible from GUI
➢ Flexible device access control for services by zones
➢ Email or SNMP trap notification options
➢ SNMP v3 and Netflow support
➢ Central management support via Sophos Central
➢ API for third-party integration
➢ Remote access option for Sophos Support
➢ Cloud-based license management via My Sophos
Secure Wireless
➢ Simple plug-and-play deployment of Sophos wireless access points (APs) — automatically
appear on the firewall control center
➢ Central monitoring and management of APs and wireless clients through the built-in
wireless controller
➢ Bridge APs to LAN, VLAN, or a separate zone with client isolation options
➢ Multiple SSID support per radio including hidden SSIDs
➢ Support for the latest security and encryption standards including WPA2 Personal and
Enterprise
➢ Support for IEEE 802.1X (RADIUS authentication) with primary and secondary server
support
➢ Hotspot support for (custom) vouchers, password of the day, or T&C acceptance
➢ Wireless guest Internet access with walled garden options
➢ Support for HTTPS login
The chart below shows all the bundles (orange text) and within each bundle the individual
subscriptions are shown. If the bundle name includes ‘Protect’ then it contains either an XG series
hardware appliance or a virtual appliance.
There are 2 levels of support ‘Enhanced’ and ‘Enhanced Plus’. The higher level of support
provides direct access to senior Sophos support staff and also provides warranty for any connected
Sophos devices. If you are buying individual subscriptions and want the higher level of support,
you should purchase the Enhanced Plus Support bundle. If you are buying any of the other bundles
then the bundle includes Enhanced Support and you can add the higher level of support by
purchasing the ‘Enhanced to Enhanced Support Upgrade’ product.
Comparison Between Sophos XG and FortiGate
Sophos XG firewalls provide a good balance of value and security for SMEs, with a wide
range of functionality, including a Web application firewall, a secure Web gateway, email
protection, ransomware protection and phishing protection – all while blocking 97.82 percent of
live, active exploits in NSS Labs tests. One downside of the solution is a lack of integration with
third-party endpoint detection and response (EDR) tools.
Blocking 99.71 percent of live, active exploits in NSS Labs tests, the Fortinet FortiGate
firewalls offer solid security for customers of all sizes, with hardware and cloud-based solutions
available in a wide variety of configurations and price points. The company's Forti OS operating
system provides a holistic view into devices, traffic, applications and events throughout the
network.
NSS Labs testing is where the biggest differences between the two seem to be. FortiGate
was better at blocking threats, yet Sophos rated higher for the effectiveness of its intrusion
prevention component. NSS factors exploit block rate and evasions into a product's overall IPS
score.
The Sophos XG-750 scored higher than the FortiGate 600D in throughput, while the
FortiGate 3200D bested all comers in throughput and connection rates