pfSense vs. Sophos Firewall

pfSense

pfSense

84 Reviews and Ratings

Sophos Firewall

Sophos Firewall

47 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
pfSense	Score 8.8 out of 10	N/A	pfSense is a firewall and load management product available through the open source pfSense Community Edition, as well as a the licensed edition, pfSense Plus (formerly known as pfSense Enterprise). The solution provides combined firewall, VPN, and router functionality, and can be deployed through the cloud (AWS or Azure), or on-premises with a Netgate appliance. It as scalable capacities, with functionality for SMBs. As a firewall, pfSense offers Stateful packet inspection, concurrent…	$179 per appliance
Sophos Firewall	Score 8.7 out of 10	N/A	Sophos XG Firewall provides comprehensive next-generation firewall protection powered by deep learning and Synchronized Security. Sophos Firewall supplies insights and exposes hidden user, application, and threat risks on the network, and say the product is differentiated by its ability to respond automatically to security incidents by isolating compromised systems, with Security Heartbeat™.	N/A

Pricing

pfSense

Sophos Firewall

Editions & Modules

SG-1100: $179
per appliance
SG-2100: $229
per appliance
SG-3100: $399
per appliance
SG-5100: $699
per appliance
XG-7100-DT: $899
per appliance
XG-7100-1U: $999
per appliance
XG-1537: $1,949
per appliance
XG-1541: $2,649
per appliance

No answers on this topic

Offerings

Pricing Offerings
pfSense	Sophos Firewall
Free Trial
No	Yes
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

No setup fee

Additional Details

—

—

More Pricing Information

Community Pulse
	pfSense	Sophos Firewall
Considered Both Products	pfSense Chirag Deol Chief Marketing Officer Chose pfSense We were using Sophos XG Firewall in our environment but when it comes to cost it's more expensive with limited features. After using [pfSense] we are getting more security features at less cost. After pfSense provides a bundle of security features such as anti-spamming, … Incentivized Helpful? Pretty Varughese IT Executive Chose pfSense We were using Sophos XG Firewall in our environment before but we need a product that is customizable & provides low cost high security features. pfSense provided us high security features with customizable options as it's kernel is based on freeBSD. Incentivized Helpful?	Sophos Firewall Verified User Supervisor Chose Sophos Firewall Very simple to manage, several features, and a report included. Incentivized Helpful?

TrustRadius Insights
	pfSense	Sophos Firewall
Highlights	Research Team Insight Published October 13, 2020 pfSense, from Netgate and Sophos XG Firewall serve as entry level firewalls or options for small and midsize businesses. The Sophos XG Firewall is a full-featured firewall bundling Sophos’ security software and appliances. pfSense is an open source software solution based on the FreeBSD OS. It can run on Netgate’s own SG & XG appliances, as well as deploy virtually on AWS or Azure or on commodity computers, transforming the machine into a small or home office firewall, for an almost no-cost solution. Sophos XG Firewall appears most in the middle-market, while pfSense appears most in budget constrained small businesses. They are competing solutions, however it is possible to use the Sophos XG Firewall for security with pfSense for other features like VPN, load balancing, etc. Sophos XG Firewall has a free “home” edition which may be useful for single branch businesses or home offices as a basic firewall on commodity hardware; this option presents a direct alternative to the open source pfSense. Features There are some advantages to using pfSense and Sophos XG Firewall. It is pfSense’s ease of use for ancillary firewall features where the solution shines. It has an effective and reliable VPN, and presents great NAT functionality. Its traffic control and load balancing are also excellent for the price point. For the middle market Sophos XG Firewalls present little downside. They are easy to set up with antivirus to lockdown malware. The UI is attractive, clear, and easy to navigate. Product users describe Sophos as a security leader that frequently updates and supports its products well. These updates make the Sophos XG Firewall an easy to use solution. Limitations pfSense and Sophos XG Firewall might not be the right choice for a network, as these are both mid-tier or entry level solutions. Additionally, pfSense is almost DIY, which can leave the administrator struggling to configure the security product as needed. There is little support aside from the open source community, and without enterprise grade support users are stuck with trial and error for complex set up and tasks. A sophisticated, patient user is a requirement to get the most out of pfSense. In contrast, Sophos XG Firewalls have complex licensing varying by feature and region, which may be difficult to track, but it may help keep overall costs down. Sophos XG Firewall users surface more specific complaints in complex use cases and deployments. For instance, reviewers cite lack of clear diagnostics, confusing configuration workflows, inadequate bandwidth throttling, and other general breakdown of administrator confidence. There may be a network complexity ceiling beyond which the Sophos XG Firewall is not ideal. Pricing pfSense is open source and doesn’t cost anything on its own. The only related costs are from associated hardware, or paying a little extra to find a sophisticated admin to get it to do what is required. Sophos provides pricing on request but their XG Firewalls are available from VARs and online resellers, and can run a small business about $300. Most models through the 200 and 300 product lines vary in cost from about $2k to $3k, while the high end XG 750 with 3-year fully featured UTM license (3-year) can be started now for about $90k. A license of some kind is required for NGFW features. Sophos’ associated EnterpriseGuard Plus license can be started for under $2000 (3-year license, XG135), to $21.5k (3-year, for the XG-430). For a home office, Sophos XG Firewall software can be installed on an Intel-compatible machine at no cost (it will overwrite any existing Operating System). This may be an option for small, single branch locations that want to set up basic firewall capabilities on commodity hardware, and provides a free trial to familiarize users with the product.

Features

pfSense

Sophos Firewall

Firewall

Comparison of Firewall features of Product A and Product B
	pfSense 8.8 17 Ratings 2% above category average	Sophos Firewall 9.1 14 Ratings 5% above category average
Identification Technologies	8.514 Ratings	9.014 Ratings
Visualization Tools	8.614 Ratings	8.814 Ratings
Content Inspection	9.016 Ratings	9.014 Ratings
Policy-based Controls	8.617 Ratings	9.314 Ratings
Active Directory and LDAP	7.513 Ratings	9.213 Ratings
Firewall Management Console	9.516 Ratings	9.514 Ratings
Reporting and Logging	8.317 Ratings	8.914 Ratings
VPN	9.017 Ratings	8.814 Ratings
High Availability	9.416 Ratings	9.314 Ratings
Stateful Inspection	9.815 Ratings	9.114 Ratings
Proxy Server	8.115 Ratings	9.511 Ratings

Best Alternatives
	pfSense	Sophos Firewall
Small Businesses	Sophos UTM Score 8.8 out of 10	pfSense Score 8.8 out of 10
Medium-sized Companies	Quantum Firewalls and Security Gateways Score 9.3 out of 10	Quantum Firewalls and Security Gateways Score 9.3 out of 10
Enterprises	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series Score 9.2 out of 10	Palo Alto Networks Virtualized Next-Generation Firewalls - VM Series Score 9.2 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	pfSense	Sophos Firewall
Likelihood to Recommend	9.3 (30 ratings)	9.3 (14 ratings)
Usability	9.7 (8 ratings)	9.7 (5 ratings)
Support Rating	10.0 (1 ratings)	9.1 (2 ratings)

User Testimonials
	pfSense	Sophos Firewall
Likelihood to Recommend	Netgate (Rubicon Communications, LLC) I believe PFSense is well suited for both home lab environments as well as up to small to mid-size business environments on a tight budget. However, I would implore that anything in production requires the use of the authorized hardware that PFSense sells to receive support. However, in my experience, PFSense is a solid set-and-forget firewall solution. Pablo Mojica Systems Administrator Read full review	Sophos It is well-suited for small, medium, and large organizations looking for comprehensive cybersecurity protection. It will not only safeguard their network from cyberattacks but also provide them with many advanced features like deep packet inspection, centralized management, web filtering, application control, etc. in one place. It will help them optimize bandwidth and ensure continued connectivity. Incentivized BB Baladas Bhoir Warehouse Executive Read full review
Pros	Netgate (Rubicon Communications, LLC) Easy to use. Good user interface design! Easy to understand and easy to set up. Lower hardware requirement. 3 years ago, we used an old PC to run it. Now, we have changed to a router device with Celeron CPU and 8GB RAM. It runs smoothly with a 1000G commercial broadband. Incentivized Allan Leung IT & T Manager Read full review	Sophos Web filtering. This allows us to monitor web usage and block certain categories from being access at the perimeter. Application Control. With application control we can block certain applications that get categorized from working accessing the Internet. Synchronized Security. When utilizing the Sophos Endpoint product you can use Synchronized Security to minimize Lateral Movement in a network. If a machine is shows a Red status you can auto-isolate it and it is unable to communicate with anything else on the network. Incentivized Verified User Anonymous Read full review
Cons	Netgate (Rubicon Communications, LLC) I did kind of mention a Con in the Pro section with OpenVPN. When I create a config for an employee other employees are able to login to that config. I could be doing something wrong when I am making it - I am not afraid to admit that as I am pretty new to all of this, but it seems like it builds a key and I would think the key would be unique in some way to each employee, but I could be wrong. I actually do not have a lot of Con's for this software - I did not get to set this up on our work network so I am not sure of any downfalls when installing. I installed this on my personal machine in a Hyper-V environment to get a feel for it before I started working on it at work and it seemed pretty smooth. I didn't run into any issues. Incentivized Charles R. Coggins III Technical Support Specialist Read full review	Sophos If using Endpoint security and the Firewall it would be nice to have an easier back and forth between the portals rather than have two separate tabs open. Especially if using more than one in multiple locations. If dealing with different revisions options are moved around and sometimes in places that doesn't normally seem like they should be there. Incentivized MG Mike Goularte IT Technician Read full review
Usability	Netgate (Rubicon Communications, LLC) The pfSense UI is easy to navigate and pretty go look at. It is much better than some high dollar firewalls that just throw menus you you. The pfSense UI is quick and responsive and makes sense 99% of the time. Changes are committed quickly and the hardware rarely requires a reboot. It just runs. Incentivized Verified User Anonymous Read full review	Sophos Because this is a user-friendly interface, and anyone can use it there are multiple articles and guidelines available, it has advanced-level security features. they provide VPN solutions all the features are very practical, SSID MAC-based authentications web control, Firewall rules segregation of the rules and policies, On-premises Active directory single sign-on feature is also available. Verified User Anonymous Read full review
Support Rating	Netgate (Rubicon Communications, LLC) pfSense+ basic provides "As Available" email support. pfSense+ Pro offers 24 hr turn around email support. pfSense+ Enterprise offers 24/7 phone support. Incentivized Jerry Riggin President Read full review	Sophos As we are all addicted to graphics-oriented interfaces for all our life products. Easy to manage and access as a good way of using anything nawas khan Network Engineer Read full review
Alternatives Considered	Netgate (Rubicon Communications, LLC) Meraki has a unified management login for all devices, which is nice. It also has decent content filtering, both areas where pfSense is weaker. Where pfSense far ouclasses Meraki is in the ease of use and the other width of features. These include features such as better VPN interoperability, non-subscription based pricing, auditability, not relying on the infrastructure of a third party, more transparency of what's actually going on, easier to deploy replacements if hardware fails. Additionally, the NAT management for pfSense seems to be a bit better, as you can NAT between any network segment and not just the LAN segments out the WAN interfaces. Verified User Anonymous Read full review	Sophos I was a big fan of Cisco ASA products, but when I saw all of the security feature differences between both firewalls, I moved to Sophos devices. Its sandbox, IPS, and many more features are really advanced. Cisco does not provide features like this. Incentivized Rahul Verma Network Consultant Read full review
Return on Investment	Netgate (Rubicon Communications, LLC) pfSense can be installed on commodity hardware with no licensing fees. With a simple less than 10 minute restore time, on most hardware, it's an extremely inexpensive way to achieve the same results that some of the more expensive vendors provide. The easy to use interface has allowed configuration management to be preformed by lower level technicians with quick and easy training. Incentivized Aaron Smith Information Technology Manager Read full review	Sophos True UTM device. Very Active customer help for any help. Easy license and cost effective. Should [do] more work on logging and reporting. Basant Gupta Executive System Admin Read full review
ScreenShots		Sophos Firewall Screenshots