.jpeg&w=256&q=75)
About XG Firewall
XG Firewall is a network security software from Sophos designed to protect organizations from online threats. It provides features such as advanced threat protection, web filtering, and intrusion prevention so businesses can secure their networks and manage internet usage effectively. The software allows users to monitor and control access to potentially harmful websites and applications. XG Firewall offers real-time visibility and reporting capabilities, making it easier for IT teams to respond to incidents quickly. Key capabilities: advanced threat protection web filtering intrusion prevention network traffic analysis user identity management Best for: IT professionals that need to secure networks and manage web access.
Sophos Firewall, the successor to XG Firewall, is a robust Next-Generation Firewall (NGFW) designed to provide comprehensive network protection across small to large organizations. Its standout feature, Synchronized Security, allows real-time integration with Sophos endpoints to automatically detect and isolate compromised systems, preventing lateral movement of threats like ransomware. The platform leverages the high-performance Xstream DPI engine for deep packet inspection, intelligent TLS decryption, and advanced web and application control, ensuring that encrypted traffic is thoroughly inspected without major performance degradation. Zero-day threat protection is strengthened through cloud-based sandboxing powered by SophosLabs Intelix, while SD-WAN capabilities offer performance-based routing and simplified VPN overlay orchestration for distributed or remote offices. The firewall is highly flexible in deployment, with hardware appliances, software installations on user-provided servers, virtual appliances for private clouds, and cloud-based virtual machines on AWS and Azure, all managed via a modern, web-based interface or centrally through Sophos Central for unified policy administration and zero-touch deployment.
Pros & Cons
- +Strong integration that works seamlessly with the Sophos ecosystem including endpoints servers UTM and cloud management
- +Ease of use with a user-friendly interface simple deployment and intuitive configuration
- +Comprehensive security with antivirus IPS/IDS app and content filtering SD-WAN VPN orchestration and ZTNA
- +Unlimited VPN options with no extra licensing required for VPN connections
- +Centralized management where synchronization technology allows managing multiple firewalls from one console
- −Logs and reporting limitations where reporting is not granular enough and competitors offer stronger analytics
- −Telemetry gaps with no third-party threat data ingestion such as SHA values
- −Interface issues where some users find it slow cumbersome or poorly designed for real-time traffic visibility
- −Update problems in older versions where past updates caused crashes and HA instability
- −Learning curve that can be complex for new admins and requires experience to configure effectively
Features
Key features
- Active Threat Response (Synchronized Security)
- Identifies and instantly blocks active threats using threat intelligence and coordinates automated response with other Sophos products (like Endpoint/Intercept X) to prevent lateral movement.
- Xstream Architecture and Acceleration
- Accelerates important SaaS, SD-WAN, VPN, and cloud traffic at the hardware or software level using a dedicated architecture.
- Intelligent TLS 1.3 Decryption
- Removes the enormous blind spot of encrypted traffic with fast, effective, and customizable intelligent Transport Layer Security inspection.
- Cloud-Delivered Network Security Platform
- Full integration with Sophos Central for Zero-Trust Network Access (ZTNA), DNS Protection, Zero-Day Threat Protection, and Network Detection and Response (NDR).
- Xstream SD-WAN with Orchestration
- Optimizes network performance using performance-based routing and enables easy, point-and-click setup of complex hub-and-spoke or full mesh overlay networks.
- Single Cloud Management (Sophos Central)
- Provides one console for managing all Sophos products (Firewall, ZTNA, Endpoint, etc.), cloud reporting, and zero-touch deployment.
Additional features
- Automatic Threat Response
- Automatically identifies, blocks, and coordinates an automated response to active threats.
- Synchronized Security
- Coordinates with other Sophos products (like Sophos Endpoint/Intercept X) to further isolate threats and prevent lateral movement.
- Threat Intelligence Integration
- Uses threat intelligence from SophosLabs, Sophos MDR analysts, or third-party sources to identify and block active threats.
- Immediate Insights
- Delivers immediate insights into compromised devices, users, and applications.
- XGS Series Appliance Performance
- Provides Xstream-accelerated performance for modern, encrypted networks.
- Xstream Architecture
- Accelerates and offloads important SaaS, SD-WAN, VPN, and cloud traffic.
- Xstream Flow Processors
- Integrated processors on some models perform Transport Layer Security (TLS) and Deep Packet Inspection (DPI).
- Customizable Connectivity
- Offers add-on modules for high-speed copper, fiber, Power over Ethernet (PoE), 5G, and Wi-Fi connectivity.
- TLS 1.3 Decryption
- Removes blind spots with intelligent, fast, and effective TLS inspection that supports the latest standards.
- Deep Packet Inspection (DPI)
- Stops ransomware and data breaches using high-performance DPI with next-gen intrusion prevention (IPS), web protection, and application control.
- Deep Learning and Sandboxing
- Uses deep learning and sandboxing powered by SophosLabs Intelix threat intelligence for zero-day protection and threat classification.
- Application Boost
- Accelerates SaaS, SD-WAN, VPN, and trusted cloud traffic automatically or via policy, utilizing the Xstream FastPath.
- Xstream FastPath Acceleration (SD-WAN)
- Accelerates SD-WAN IPsec VPN tunnel flows using hardware crypto capabilities.
- Performance-Based Routing (SD-WAN)
- Automatically optimizes traffic routing based on real-time WAN link metrics like latency, jitter, and packet loss.
- Point-and-Click Orchestration (SD-WAN)
- Easily sets up complex hub-and-spoke or full mesh SD-WAN overlay networks.
- Cloud-Based Network Detection and Response (NDR)
- Uses AI in the cloud to identify high-risk domains and encrypted payloads.
- Instant High-Speed Blocking (DNS Protection)
- Provides immediate blocking of the latest risky URLs via DNS Protection.
- Zero-Day File Protection
- Offers protection from new zero-day file-based threats using AI and cloud-based sandboxing.
- Secure Application Access (ZTNA)
- Makes applications invisible to hackers while providing secure access for remote workers with built-in Zero-Trust Network Access.
- Cloud SD-WAN Tools
- Provides easy cloud-hosted tools for securely interconnecting remote locations and public cloud infrastructure.
Pricing
Countries & Languages
Available in
Interface languages
Billing currencies
No reviews yet
Be the first to drop a review
Alternatives to XG Firewall
.svg){kind=small}
Nokia Network Software Suite
Nokia Network Software Suite is a network software platform from Nokia that supports operational efficiency…
CIAgent
CIAGENT by SNMP Research is a specialized IT management solution designed to support network monitoring,…
About XG Firewall
XG Firewall is a network security software from Sophos designed to protect organizations from online threats. It provides features such as advanced threat protection, web filtering, and intrusion prevention so businesses can secure their networks and manage internet usage effectively. The software allows users to monitor and control access to potentially harmful websites and applications. XG Firewall offers real-time visibility and reporting capabilities, making it easier for IT teams to respond to incidents quickly. Key capabilities: advanced threat protection web filtering intrusion prevention network traffic analysis user identity management Best for: IT professionals that need to secure networks and manage web access.
XG Firewall Details
XG Firewall's In-App Market Place
Does XG Firewall have an in-app market place?
Yes
How many Mini-Apps in the marketplace?
1
Mini Apps
No
Pricing Options
Accepted Payment Currencies
USD ($), EUR (€), GBP (£), AUD (A$), CAD (C$), JPY (¥), CHF (CHF), SGD (S$), HKD (HK$), ZAR (R)
Pros & Cons
- Strong integration that works seamlessly with the Sophos ecosystem including endpoints servers UTM and cloud management
- Ease of use with a user-friendly interface simple deployment and intuitive configuration
- Comprehensive security with antivirus IPS/IDS app and content filtering SD-WAN VPN orchestration and ZTNA
- Unlimited VPN options with no extra licensing required for VPN connections
- Centralized management where synchronization technology allows managing multiple firewalls from one console
- Logs and reporting limitations where reporting is not granular enough and competitors offer stronger analytics
- Telemetry gaps with no third-party threat data ingestion such as SHA values
- Interface issues where some users find it slow cumbersome or poorly designed for real-time traffic visibility
- Update problems in older versions where past updates caused crashes and HA instability
- Learning curve that can be complex for new admins and requires experience to configure effectively
XG Firewall's Support Options
Documentation
https://docs.sophos.com/Community Forums
https://community.sophos.com/XG Firewall's Alternatives
Nokia Network Software Suite
Nokia Network Software Suite is a network software platform from Nokia that supports operational efficiency…
CIAgent
CIAGENT by SNMP Research is a specialized IT management solution designed to support network monitoring,…
