Snort vs. Sophos UTM

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Snort
Score 8.4 out of 10
N/A
Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.N/A
Sophos UTM
Score 9.1 out of 10
N/A
Sophos UTM provides core firewall features, plus sandboxing and AI threat detection for advanced network security. It has customizable deployment options.N/A
Pricing
SnortSophos UTM
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
SnortSophos UTM
Free Trial
NoYes
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Detailst2.small - $0.123 - Total / hr m3.medium - $0.417 - Total / hr m3.large - $0.883 - Total / hr m3.xlarge - $1.366 - Total / hr m3.2xlarge- $1.982 - Total / hr c3.large - $0.555 - Total / hr c3.xlarge - $1.11 - Total / hr c3.2xlarge - $1.72 - Total / hr c3.4xlarge - $2.59 - Total / hr c3.8xlarge - $3.68 - Total / hr c4.large - $0.55 - Total / hr c4.xlarge - $1.099 - Total / hr c4.2xlarge - $1.698 - Total / hr c4.4xlarge - $2.546 - Total / hr c4.8xlarge - $3.841 - Total / hr m4.large - $0.868 - Total / hr m4.xlarge - $1.365 - Total / hr m4.2xlarge- $1.931 - Total / hr
More Pricing Information
Best Alternatives
SnortSophos UTM
Small Businesses
AlienVault USM
AlienVault USM
Score 7.9 out of 10
pfSense
pfSense
Score 9.3 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
pfSense
pfSense
Score 9.3 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Palo Alto Networks Next-Generation Firewalls - PA Series
Palo Alto Networks Next-Generation Firewalls - PA Series
Score 9.4 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
SnortSophos UTM
Likelihood to Recommend
8.1
(5 ratings)
9.0
(11 ratings)
Usability
-
(0 ratings)
10.0
(1 ratings)
Support Rating
-
(0 ratings)
7.9
(3 ratings)
User Testimonials
SnortSophos UTM
Likelihood to Recommend
Cisco
If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.
Read full review
Sophos
UTM works great if you want a solid, obvious firewall. There's not a lot of second-guessing as to what you are about to do with every change you make. If you incorporate their wireless access points and RED (remote ethernet device) for remote users or small offices, it's considerably much easier to set up than other comparable solutions. If you are looking to manage your firewalls via the cloud, you are out of luck.
Read full review
Pros
Cisco
  • IPS detection.
  • DoS detection.
  • Packet logging.
Read full review
Sophos
  • Firewall Protection. The protection is unmatched, setup it a little daunting, but once set up it pretty much runs itself.
  • Site-to-site VPN. Super easy to deploy so we are able to network all our sites together.
  • The DHCP server function is actually really nice, I prefer using it over the traditional way of using a DC for DHCP.
Read full review
Cons
Cisco
  • At times can be unstable with Cisco bugs, require frequent upgrading.
  • FTD images that are being pushed for ASAs are less efficient from an administration standpoint, no CLI.
Read full review
Sophos
  • Better standard support, it used to be great, now, not so much (for paying customers, that only aquired the Hardware)
  • Better wireless solution, there is always room for that, now that everybody needs robust wifi, even at home!
  • Faster and more robust wireless Access Points, or different vendor-like compatibility.
Read full review
Usability
Cisco
No answers on this topic
Sophos
The interface is no non-sense and easy to understand. No need for any consultants to help implement this solution. The performance is consistent and solid. Paired with a good amount of firmware and definitions, it's hard to find any fault in this product. It's interoperability with other Sophos products make a compelling argument to invest in more Sophos products.
Read full review
Support Rating
Cisco
No answers on this topic
Sophos
I find the support fair. The wait can be frustrating when dealing with fire. The pandemic has not helped with this. Although the wait can be long, the support reps are knowledgeable and was able to resolve the issues I was facing.
Read full review
Alternatives Considered
Cisco
For our organization, the Cisco defense in depth concept works the best. While Cisco can be made to work with other vendors, we have found the best in depth protection by integrating Cisco products for maximum visibility. We had a Barracuda Web Filter, but it was difficult to maintain when you had limited scope on what you could block, so we created a whitelist only setup which required a lot of additional manpower. This wouldn't have covered new threats with DNS spoofing and the like. Sourcefire also integrated with our anti-malware platform (Cisco AMP) for even better visibility on what may be happening on the end users workstation. We are planning on adding in Cisco ISE to complete the approach and possibly stealthwatch to cover our bases in the future. The Palo Alto gear was interesting, but it was priced far out of our range.
Read full review
Sophos
I would rate Sophos second on this list right below Webroot. Webroot has an easier user interface and policy builder. However, Sophos would be on top of its UI would be improved. I would rank CrowStrike third and McAfee last. Sophos is great for complex environments that have multiple needs.
Read full review
Return on Investment
Cisco
  • Being open source, ROI on free is hard to beat for something that works.
  • I believe it greatly enhances the security of my network.
Read full review
Sophos
  • Sophos has provided a secure Firewall for us.
  • Integration with Sophos Central makes it easier to manage both.
  • Site to site VPN Failover groups has caused more trouble than it's worth.
  • High availability doesn't recognize when you are restarting for an update.
Read full review
ScreenShots