Most of my customers have more than one or two sites which are connected with the IPsec tunnel. For some people, they need VPN to enter the particular main HO site and access all other remote site subnets, such as when there is a file server hosted on another site. This was a simple use case: from one site, they will enter from SSL VPN to one site and access all their remote sites using this VPN policy only. We don't need to require the VPN for all particular single sites; we create only one single VPN, and from that single console, they can access all these sites as well.

Currently I am working at AVH, which is a system integrator that provides solutions such as security and UTM solutions to clients. My task is the complete installation and implementation of these firewalls and, apart from that, post-support calls. If clients are facing any issues, they reach out to our company, and the company assigns me to their tech solutions.

For the initial setup, we create an SSL VPN portal for this customer's public IP, and we make some local subnet so that the user will get some local subnet IP after connecting with Sophos UTM. After that, we allow the security policy, which determines which resources they can access after connecting with Sophos UTM. They access Sophos UTM VPN using the public IP, and then when they enter the site, they can access the limited resources we have allowed in the policies.

The most useful features I have worked with in Sophos UTM mostly involve the DNATing process and their web filters. Many customers require these web filters to be aligned, such as when they need to access resources over the VPN or over the DNATing process.

Application control reduces their bandwidth consumption. When users consume large amounts of bandwidth, this application filter can limit their usage, ensuring they won't face bandwidth failures. Users are limited to a particular bandwidth for a specific application only.

When connecting to Sophos UTM VPN, certain applications can be restricted from being accessible using this VPN policy. It is more secure with more granular security, allowing the user to only access specific, allowed applications.

I can very easily manage my Sophos UTM VPN users and get all the logs, details, and traffic monitoring over my single dashboard console.

For the challenges I've faced, zero trust is one area where I haven't worked much or have sufficient experience.

I have around 2.5 years of experience in this particular domain.

I currently don't have experience with deployment issues.

I have connected with the Sophos UTM technical team one or two times.

Positive

It is user-friendly and straightforward, so there are no certain challenges to configuring this VPN with Sophos UTM.

Compared to other OEMs and other vendors' firewalls, Sophos UTM is very user-friendly. It has a user-friendly dashboard so that anyone, even a new beginner, can easily learn where the options are and how to configure UTM profiles. Different industries such as hospitality and manufacturing can have customized UTM profiles. The UTM is a granular and easy step, and non-standard categories can be manually added.

Regarding pricing, it's affordable for the features that Sophos UTM provides; there is no higher price, it is affordable.

When deploying on-premises, all customers have suggested this deployment type. Occasionally, there are certain failures; however, it's mostly user-friendly and reliable, with no major challenges in configuration. I definitely suggest checking it out.

On a scale from one to ten, I rate Sophos UTM a nine.

Currently, I have Sophos UTM. I don't remember the details. I know it's about management. I have monitoring from Sophos, alongside the Sophos firewall and Sophos antivirus. Sophos manages the service, with people monitoring my network, including the data from my endpoints and firewalls. They can alert me if there is a security risk. I purchase this service through a distributor in Colombia because the service offers direct management and monitoring.

This integration of the antivirus and the firewall works together to enhance security. Integration is key in securing my system.

With artificial intelligence, there is room for improvement in all antivirus and security software. However, the bad actors are also improving their methods by using artificial intelligence.

I have been using the solution since 2014 or 2015.

Sometimes, I communicate with Sophos support. It was hard for me to talk with them since my English is not as good as American English.

Positive

I used WatchGuard before. WatchGuard was used as part of Azure's antivirus suite. Although all firewalls work similarly, the integration of antivirus and firewall from one company decided my preference for Sophos.

The people who sold me the solution helped me configure everything.

The installation was done by one engineer. Inside my company, two or three people worked with him to deploy it, including my boss, a technician, and myself.

The value between what I receive and what I pay is the best in the industry.

I definitely recommend Sophos. I rate it a nine out of ten. 

Other firewall companies do not have antivirus development as well as Sophos. Sophos is unique in this regard, having developed its antivirus before the firewall, and now both are very good.

I have been using Sophos UTM for the past six years to protect the network at my organization. I use it for my customers and to secure our internal infrastructure.

The zero-day protection and firewall rules are some of the most effective features for threat management. I can set the rules and features, and also use IPsec to connect all my on-premises servers and link them to Sophos UTM so that they are protected even when in the cloud. 

Additionally, I use it to control access into the building through a captive portal integrated across all the PCs we have, ensuring secure access only for authenticated users.

I would love to see artificial intelligence capabilities integrated into Sophos UTM. This would help reduce reliance on external support.

I have been using the solution for the past six years.

There have been no issues with the stability of Sophos UTM.

There have been no problems with the scalability of the solution.

The technical support by Sophos is amazing, especially when I pay for the enhanced support. I receive maximum attention and it is a good system.

Positive

I have been using these boxes for a long time now, all the way from CyberRoam until we migrated to Sophos.

The initial setup was easy because I have been using these boxes for a long time. The operator provided an option to send someone down, however, I worked with them remotely and we were done with configuration in 30 minutes to an hour.

They just sent somebody. However, I was able to handle most of it myself remotely due to my previous experience.

Pricing has become expensive recently due to the dollar hike and naira value changes in Nigeria. Even though it's expensive, I consider Sophos a major first line of protection, so I pay for it nonetheless.

I've been recommending Sophos UTM to others, and I would continue to do so. 

Overall, I would rate the solution a nine out of ten.

The primary use case for the solution is as a perimeter protection firewall, which includes functionalities such as VPN, web control, and traffic inspection. It is used in various customer environments, providing comprehensive security management and network protection.

The platform's most valuable features include the integrated multifactor authentication (OTP) for VPNs, which enhances security, and the flexible and intuitive firewall policy settings that simplify management.

Enhancing the user interface to achieve the same level of flexibility as the older UTM interface could improve the product. The current XG interface needs to be more consistent during configuration.

I have been using Sophos UTM for 15 years. 

The solution is stable. I rate it a ten for stability.

The solution is highly scalable, especially with VM offerings, though it can be pricey. I rate scalability as eight or nine.

The customer service and support for Sophos UTM have been exceptional. The developer community is also valuable, offering substantial support and insights.

I previously used solutions like FireGuard and WatchGuard but switched to Sophos for its comprehensive features and superior user interface.

The initial setup for basic functions is very straightforward and can be completed in less than an hour. However, advanced configurations can become challenging.

Our in-house team manages the deployment. We seek help from third-party MSPs with expertise in complex configurations.

The product pricing and licensing are higher, but they offer good value for the features and stability provided.

I evaluated other options including Fortinet FortiGate, but found Sophos to be more suited to our needs at the time due to its ease of use and robust feature set.

The platform requires regular monitoring. Overall, I rate it a ten. 

We use Sophos UTM for our organization's network security.

The most valuable feature of Sophos UTM is the endpoint protection feature.

The technical support team’s response time could be improved.

I have been using Sophos UTM since 2018.

I rate the solution ten out of ten for stability.

We use the solution daily in our organization.

I rate the solution ten out of ten for scalability.

I previously used Kaspersky. I switched to Sophos UTM because of the features that it is offering.

On a scale from one to ten, where one is difficult and ten is easy, I rate the solution’s initial setup ten out of ten.

The solution's deployment took a week for the first time because our organization is big and has over 300 endpoint equipment. It takes a few hours to do the renewals now. We deployed Sophos UTM from the Active Directory. Three people were involved when we deployed the solution for the first time.

You cannot really say that the solution is expensive, given the protection it gives.

Sophos UTM has improved our network's threat detection and response. It has been good so far because we don't have many attacks. We use the solution's web filtering feature for our organization's security. We use the firewall to protect our endpoint equipment and protect against any infiltration in our network. We also use the solution’s VPN feature.

Around one or two people are required for the solution’s maintenance. I would recommend the solution to other users because it has helped us. The solution's installation and deployment are seamless, and its protection is secure.

Overall, I rate the solution ten out of ten.

My company deals with eight clients who use Sophos UTM. My company's clients mainly use Sophos UTM for protection against threats and for other purposes like content filtering, web filtering, and VPNs.

The most valuable features of the solution are application filtering and web filtering.

Sophos UTM needs to streamline the VPN configuration. It also needs to fix the concerns related to the solution's Port Address Translation (PAT) rule.

In the future, I want Sophos UTM to provide users with sandboxing features.

The scalability of the product is an area with certain shortcomings where improvements are required. Sophos should give some flexibility to users, especially when you run low on things like memory and storage.

The support team's turnaround time is an area of concern where improvements are required.

I have been using Sophos UTM since 2018. My company has a partnership with Sophos UTM.

It is a stable solution. Stability-wise, I rate the solution an eight out of ten.

Scalability-wise, I rate the solution a five out of ten.

With Sophos UTM, I have noticed that you cannot upgrade the physical devices, meaning you cannot change the memory or the hardware. If you want an upgrade, then you have to go to select the next model or a bigger model offered by Sophos.

One of my company's clients uses the tool in an environment consisting of 20 people, while another client uses the tool in an environment consisting of 20,000 people.

Whenever my company contacts the support team of Sophos, we get really good support.

I rate the technical support a seven out of ten.

Neutral

I have experience with Fortinet FortiGate, Check Point, and Cisco ASA. My company uses different products depending on the preferences of our customers.

The product's initial setup phase was relatively easy. I rate the product's initial setup phase a six out of ten.

The solution is deployed on an on-premises model.

The solution can be deployed in three days, depending on the size of an organization. If it's a small company, you can finish the deployment process in a day, but if it's a big company with a lot of requirements, it could even take a week to do the full deployment. The product's initial deployment takes a few hours, but the customization to be carried out to suit an organization's structure takes time, and it depends on how big the company is and what customizations the customer wants in terms of modules.

Sophos UTM is a reasonably priced product.

I rate the product's price a five on a scale of one to ten, where one is cheap, and ten is expensive.

Sophos UTM is a good tool, especially for SMBs. Sophos UTM has a lot of features that enterprise-sized businesses ask for, but they don't really work very well. For SMBs, the product's features are very good. The setup phase of Sophos UTM can be carried out quickly. In Sophos UTM, it is easy to troubleshoot.

I rate the overall tool a seven out of ten.