We changed our name from IT Central Station: Here's why

Huawei NGFW vs Sophos XG comparison

Cancel
You must select at least 2 products to compare!
Huawei NGFW Logo
1,747 views|1,339 comparisons
Sophos XG Logo
44,070 views|36,313 comparisons
Featured Review
Find out what your peers are saying about Huawei NGFW vs. Sophos XG and other solutions. Updated: January 2022.
564,599 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"If you compare the ASA and the FirePOWER, the best feature with FirePOWER is easy to use GUI. It has most of the same functionality in the Next-Generation FirePOWER, such as IPS, IPS policies, security intelligence, and integration and identification of all the devices or hardware you have in your network. Additionally, this solution is user-friendly.""Provides good integrations and reporting.""The most valuable features of this solution are the integrations and IPS throughput.""Feature-wise, we mostly use IPS because it is a security requirement to protect against attacks from outside and inside. This is where IPS helps us out a bunch.""The Firepower+ISE+AMP for endpoint integration is something that really stands it out with other vendor solutions. They have something called pxGrid and i think it is already endorsed by IETF. This allows all devices on the network to communicate.""Its Snort 3 IPS has better flexibility as far as being able to write rules. This gives me better granularity.""The most valuable features of this solution are advanced malware protection, IPS, and IDS.""Web filtering is a big improvement for us. The previous version we used, the AC520, did not have that feature included. It was not very easy for us, especially because the environment had to be isolated and we needed to get updates from outside, such as Windows patches. That feature has really helped us when we are going outside to pull those patches."

More Cisco Firepower NGFW Firewall Pros →

"I had no difficulty using the Huawei NGFW.""I like that the initial setup is straighforward. It's also a scalable solution.""The support for the solution has been excellent. If we ever had an issue they would send an engineer to help us with our problem.""The user interface is very, very good.""The security is good. It's as effective as anything else on the market.""Huawei was able to assist us in the installation of their product. The installation was very fast.""The mapping features and traffic logging are good.""We make use of the new data center, specifically the containerized data center which is built and reviewed by Huawei, including all the device's infrastructure."

More Huawei NGFW Pros →

"The most valuable feature of this solution is that the license offers everything.""A valuable feature involves the solution's manageability.""Sophos is easy to use.""This solution is very user-friendly and even a non-professional can configure the policies.""Some of the most valuable features are filtering and application control. The DDoS detection also shows traffic jamming and traffic shaping.""Good security and a good interface.""The most valuable feature is the Intercept X. It is the advanced features that are used for malware detection, and antivirus.""Compared to other firewalls that I had looked at, I thought Sophos was the better solution. It just seems to be easier to manage versus Cisco, Fortinet, or one of the other options I was looking at."

More Sophos XG Pros →

Cons
"We cannot have virtual domains, which we can create with FortiGate. This is something they should add in the future. Additionally, there is a connection limit and the FMC could improve.""The Firepower FTD code is missing some old ASA firewalls codes. It's a small thing. But Firepower software isn't missing things that are essential, anymore.""The performance should be improved.""The intelligence has room for improvement. There are some hackers that we haven't seen before and its ability to detect those types of attacks needs to be improved.""The configuration in Firepower Management Center is very slow. Deployment takes two to three minutes. You spend a lot of time on modifications. Whereas, in FortiGate, you press a button, and it takes one second.""When you make any changes, irrespective of whether they are big or small, Firepower takes too much time. It is very time-consuming. Even for small changes, you have to wait for 60 seconds or maybe more, which is not good. Similarly, when you have many IPS rules and policies, it slows down, and there is an impact on its performance.""Deploying configurations takes longer than it should.""Cisco Firepower NGFW Firewall can be more secure."

More Cisco Firepower NGFW Firewall Cons →

"I would like to see an antivirus solution included with the product.""The solution doesn't seem to be very mature. Our networking team says they are experiencing a lot of issues in the firewalls and some routers.""Wi-Fi scanning and Wi-Fi analysis would be useful features to include in the future.""The solution is scalable but it is difficult because you need to purchase new systems, it is not just one click.""The solution could be more secure and have better integration.""The solution requires a more interactive dashboard. That would make it easier than playing with configurations the way we have to now.""The documentation needs to be improved. When they retire old models, they also retire the documentation. However, if you are still using an older model, you still need access to that documentation. And yet, they go ahead and removed it. It's gone. You are therefore stuck with a device with no documentation and technical support that isn't very helpful as they also remove support assistance as well.""With the Huawei firewall, none of the features comes at the top. We found out later that customer support is really not good. For this firewall, because of our customers' routine, for example, every six months they'll do a penetration test to find weaknesses. So whenever they came up with VAPT reports, they are looking to Huawei for help. I think that's basically because it's a different culture. Chinese culture and our culture is different. They have always tried to help find some excuses or say some other things that cannot help you solve the problem immediately."

More Huawei NGFW Cons →

"The SD-WAN capability is not as good as it is in FortiGate, and is something that should be improved.""Sophos XG's web server protection and log viewer could improve. They should also introduce sandboxing.""The pricing can be high unless you choose a longer contract.""Technical support is difficult to access.""The support service level agreement in regard to the amount of time needed to upgrade things is too low. It should be higher.""There's an IP address delivery for our VPN client and a limited range of IP addresses. So this is a problem in the latest firmware release, but rather than using homework scenarios, we need a lot of VPN clients.""I am using the Azure Active Directory in my company and it was complicated to integrate this solution with Azure.""I would like to see the performance improved."

More Sophos XG Cons →

Pricing and Cost Advice
  • "Cisco pricing is premium. However, they gave us a 50 to 60 percent discount."
  • "There are additional implementation and validation costs."
  • "Cisco, as we all know, is expensive, but for the money you are paying, you know that you are also getting top-notch documentation as well as support if needed."
  • "This product requires licenses for advanced features including Snort, IPS, and malware detection."
  • "This product is expensive."
  • "For me, personally, as an individual, Cisco Firepower NGFW Firewall is expensive."
  • "The price of Firepower is not bad compared to other products."
  • "The solution was chosen because of its price compared to other similar solutions."
  • More Cisco Firepower NGFW Firewall Pricing and Cost Advice →

  • "Licensing fees are billed on an annual basis."
  • "The price of the license of this solution is high."
  • "When you compare the price with other products, it's quite cost-effective. But the problem is always after, let's say, two years or three years later because they are not able to provide updates or patches very quickly."
  • "I believe that we are entitled to a one-year extension on our licensing."
  • More Huawei NGFW Pricing and Cost Advice →

  • "The Sophos pricing, in general, is better than SonicWall, Fortinet, WatchGuard, or anybody else."
  • "We paid for our licensing for three years, upfront, and there are no costs in addition to the standard fees."
  • "The price is cheaper than that of some competing vendors."
  • "The pricing is flexible. Sophos looks at a country's economy and offers flexible pricing. This is how they have managed to penetrate the market."
  • "It's approximately $6,000 for each device."
  • "It is not expensive, it's a reasonable price,"
  • "The issue of a recurring license is a hassle because every year, we have to subscribe."
  • "It is not very expensive."
  • More Sophos XG Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Firewalls solutions are best for your needs.
    564,599 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    When you compare these firewalls you can identify them with different features, advantages, practices and… more »
    Top Answer: 
    The Cisco Firepower NGFW Firewall is a very powerful and very complex piece of anti-viral software. When one considers… more »
    Top Answer: 
    It is easy to integrate Cisco ASA with other Cisco products and also other NAC solutions. When you understand the Cisco… more »
    Top Answer: 
    We make use of the new data center, specifically the containerized data center which is built and reviewed by Huawei… more »
    Top Answer: 
    I believe that we are entitled to a one-year extension on our licensing.
    Top Answer: 
    The solution could be more secure and have better integration. The bandwidth management utilization could stand… more »
    Top Answer: 
    Palo Alto Networks NG Firewalls have both great features and performance. I like that Palo Alto has regular threat… more »
    Top Answer: 
    Sophos UTM is no longer being developed, according to our reseller. All the development effort is going into XG. So XG… more »
    Top Answer: 
    The most valuable features are its nice interfaces and configuration. The endpoint is also very good.
    Comparisons
    Also Known As
    Cisco Firepower NGFW, Cisco Firepower Next-Generation Firewall, FirePOWER, Cisco NGFWv
    Huawei USG Firewalls, USG9500 Series, USG6600 Series, USG6300 Series
    Learn More
    Overview

    Cisco NGFW firewalls deliver advanced threat defense capabilities to meet diverse needs, from
    small/branch offices to high performance data centers and service providers. Available in a wide
    range of models, Cisco NGFW can be deployed as a physical or virtual appliance. Advanced threat
    defense capabilities include Next-generation IPS (NGIPS), Security Intelligence (SI), Advanced
    Malware Protection (AMP), URL filtering, Application Visibility and Control (AVC), and flexible VPN
    features. Inspect encrypted traffic and enjoy automated risk ranking and impact flags to reduce event
    volume so you can quickly prioritize threats. Cisco NGFW firewalls are also available with clustering
    for increased performance, high availability configurations, and more.
    Cisco Firepower NGFWv is the virtualized version of Cisco's Firepower NGFW firewall. Widely
    deployed in leading private and public clouds, Cisco NGFWv automatically scales up/down to meet
    the needs of dynamic cloud environments and high availability provides resilience. Also, Cisco NGFWv
    can deliver micro-segmentation to protect east-west network traffic.
    Cisco firewalls provide consistent security policies, enforcement, and protection across all your
    environments. Unified management for Cisco ASA and FTD/NGFW physical and virtual firewalls is
    delivered by Cisco Defense Orchestrator (CDO), with cloud logging also available. And with Cisco
    SecureX included with every Cisco firewall, you gain a cloud-native platform experience that enables
    greater simplicity, visibility, and efficiency.
    Learn more about Cisco’s firewall solutions, including virtual appliances for public and private cloud.

    In addition to all the functions of conventional firewalls, Huawei NGFW also provides more advanced security functions, such as IPS and anti-malware functions, to identify applications and prevent application-layer threats. Huawei NGFW provides a global context awareness architecture for granular controls based on application, content, time, user, attack, and location (ACTUAL). The innovative SmartPolicy technology and management interfaces that can be easily integrated simplify the O&M management. The Intelligence Awareness Engine (IAE) uses an integrated architecture to perfectly balance security and performance. Huawei NGFW provides next-generation security featuring comprehensive protection, granular control, and OM simplicity to meet the requirements of enterprise networks on access control, scope of protection, usability, and performance in the new ICT landscape.

    Sophos XG Firewall is next gen firewall that is optimized for today’s business, delivering all the protection and insights you need in a single, powerful appliance that’s easy to manage.

    Offer
    Learn more about Cisco Firepower NGFW Firewall
    Learn more about Huawei NGFW
    Learn more about Sophos XG
    Sample Customers
    Rackspace, The French Laundry, Downer Group, Lewisville School District, Shawnee Mission School District, Lower Austria Firefighters Administration, Oxford Hospital, SugarCreek, Westfield
    KMITL, Peking University
    Information Not Available
    Top Industries
    REVIEWERS
    Comms Service Provider22%
    Financial Services Firm16%
    Government8%
    Non Profit8%
    VISITORS READING REVIEWS
    Comms Service Provider33%
    Computer Software Company21%
    Government7%
    Manufacturing Company4%
    VISITORS READING REVIEWS
    Comms Service Provider40%
    Computer Software Company20%
    Financial Services Firm6%
    Cloud Provider5%
    REVIEWERS
    Manufacturing Company11%
    Financial Services Firm11%
    Healthcare Company8%
    Comms Service Provider8%
    VISITORS READING REVIEWS
    Comms Service Provider40%
    Computer Software Company18%
    Government6%
    Media Company4%
    Company Size
    REVIEWERS
    Small Business43%
    Midsize Enterprise28%
    Large Enterprise29%
    VISITORS READING REVIEWS
    Small Business21%
    Midsize Enterprise13%
    Large Enterprise65%
    REVIEWERS
    Small Business50%
    Midsize Enterprise13%
    Large Enterprise38%
    REVIEWERS
    Small Business63%
    Midsize Enterprise24%
    Large Enterprise13%
    VISITORS READING REVIEWS
    Small Business50%
    Midsize Enterprise24%
    Large Enterprise26%
    Find out what your peers are saying about Huawei NGFW vs. Sophos XG and other solutions. Updated: January 2022.
    564,599 professionals have used our research since 2012.

    Huawei NGFW is ranked 25th in Firewalls with 8 reviews while Sophos XG is ranked 5th in Firewalls with 130 reviews. Huawei NGFW is rated 7.2, while Sophos XG is rated 8.2. The top reviewer of Huawei NGFW writes "Good interface and easy to set up but needs more documentation". On the other hand, the top reviewer of Sophos XG writes "Light and stable with excellent real-time control ". Huawei NGFW is most compared with Fortinet FortiGate, Cisco ASA Firewall, Palo Alto Networks NG Firewalls, Palo Alto Networks VM-Series and Juniper SRX, whereas Sophos XG is most compared with Fortinet FortiGate, pfSense, Meraki MX, Palo Alto Networks NG Firewalls and SonicWall NSa. See our Huawei NGFW vs. Sophos XG report.

    See our list of best Firewalls vendors.

    We monitor all Firewalls reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.