Sophos Next Generation Firewall

J&M Eastern Group is a Sophos supplier in Malaysia that specialises in Sophos Solutions. As a Sophos partner and reseller in Malaysia, we carry a wide range of Sophos products to meet your requirements and quickly respond to the demands of your business. Our team is well experienced with Sophos products, solutions and services.

Powered by threat intelligence, AI and machine learning from SophosLabs and SophosAI, Sophos delivers a broad portfolio of advanced products and services to secure users, networks and endpoints against ransomware, malware, exploits, phishing and the wide range of other cyberattacks. Sophos provides a single integrated cloud-based management console, Sophos Central – the centerpiece of an adaptive cybersecurity ecosystem that features a centralized data lake that leverages a rich set of open APIs available to customers, partners, developers, and other cybersecurity vendors. Sophos sells its products and services through reseller partners and managed service providers (MSPs) worldwide.

OVERVIEW

Xstream Protection

Sophos Firewall’s Xstream architecture protects your network from the latest threats while accelerating your important SaaS, SD-WAN, and cloud application traffic.

• TLS 1.3 Decryption
  Remove an enormous blind spot with intelligent TLS inspection that’s fast and effective, supporting the latest standards with extensive exceptions and point-and-click policy tools to make your job easy.
• Deep Packet Inspection
  Stop the latest ransomware and breaches with high-performance streaming deep packet inspection, including next-gen IPS, web protection, and app control, as well as deep learning and sandboxing powered by SophosLabs Intelix.
• Application Acceleration
  Accelerate your SaaS, SD-WAN, and cloud traffic such as VoIP, video, and other trusted applications automatically or via your own policies, putting them on the Xstream FastPath to optimize performance.

Xstream SD-WAN

The latest SD-WAN capabilities in Sophos Firewall enable extreme network performance, flexibility, and resiliency.

• Xstream FastPath Acceleration
  Accelerate SD-WAN IPsec VPN tunnel flows taking full advantage of the hardware crypto capabilities in XGS Series appliances.
• Performance-Based Routing
  Automatically optimize routing and rerouting of traffic based on WAN Link performance (latency, jitter, loss) in real time with zero impact.
• Point-and-Click Orchestration
  Easily set up the most complex hub-and-spoke or full mesh SD-WAN overlay networks with full tunnel redundancy with just a few clicks.

Powerful Performance

The XGS Series delivers Xstream performance at every price point to power the protection you need for today’s diverse, distributed, and encrypted networks.

• Powered by Xstream
  Accelerate and offload your important SaaS, SD-WAN, and cloud traffic at the hardware level, while adding performance headroom for TLS and deep packet inspection with integrated Xstream Flow Processors.
• High-Speed Connectivity
  Customize your firewall’s already versatile connectivity options with an extensive range of add-on modules for high-speed copper, fiber, Power over Ethernet (PoE), and Wi-Fi.
• Purpose-Built Performance
  Rest assured, your firewall is purpose-built from the core to handle the most demanding workloads with a dual processor architecture, generous memory provisioning, and high-performance solid-state storage.

See How It Works

Central Cloud Management

Sophos Central - The ultimate cybersecurity cloud management platform. Free and easy.

• One Console to Manage It All
  Sophos Central provides a single cloud management console for all your Sophos products and includes group firewall management at no extra charge.
• Reporting in the Cloud
  Sophos Central maintains your firewall log data in the cloud with flexible reporting tools that enable you to analyze and visualize your network over time.
• Zero-Touch Deployment
  Sophos Central enables you to easily deploy new Sophos Firewall devices from Sophos Central without having to touch them.

See how Synchronized Security benefits your business.

Powerful Performance

The XGS Series delivers Xstream performance at every price point to power the protection you need for today’s diverse, distributed, and encrypted networks.

• Powered by Xstream
  Accelerate and offload your important SaaS, SD-WAN, and cloud traffic at the hardware level, while adding performance headroom for TLS and deep packet inspection with integrated Xstream Flow Processors.
• High-Speed Connectivity
  Customize your firewall’s already versatile connectivity options with an extensive range of add-on modules for high-speed copper, fiber, Power over Ethernet (PoE), and Wi-Fi.
• Purpose-Built Performance
  Rest assured, your firewall is purpose-built from the core to handle the most demanding workloads with a dual processor architecture, generous memory provisioning, and high-performance solid-state storage.

FEATURES

Powerful Protection and Performance

All the firewall features you need.

• Expose Hidden Risks
  Superior visibility into risky activity, suspicious traffic, and advanced threats help you regain control of your networks.
• Stop Unknown Threats
  Powerful next-gen protection technologies like deep learning and intrusion prevention keep your organization secure.
• Isolate Infected Systems
  Automatic threat response instantly identifies and isolates compromised systems on your network to stop threats from spreading.

Visibility and Protection

Sophos Firewall offers the best protection to stop the latest hacks and attacks dead in their tracks – before they get on your network.

Deep Packet Inspection
The Xstream Deep-Packet Inspection (DPI) engine provides high-performance traffic scanning for IPS, AV, Web Protection, and App Control in a single streaming engine.

• TLS 1.3 inspection
• Next-Gen Intrusion Prevention (IPS)
• Zero-day threat protection
• Proxy-based dual-engine AV scanning
• Perimeter defenses
• Country-based blocking policy

Encrypted Traffic
Xstream TLS Inspection 1.3 with industry-leading performance, visibility, policy tools, and built-in intelligence removes an enormous blind spot in your protection.

• TLS 1.3 without downgrading
• Intelligent traffic selection
• Pre-packaged exception list
• Powerful policy engine
• Covers all ports/protocols
• Supports all modern cypher suites
• Unmatched visibility and error handing

Zero-Day and ML Protection
Sophos Firewall leverages Sophos' industry-leading machine learning technology, powered by SophosLabs Intelix, to instantly identify the latest ransomware and unknown threats before they get on your network

• SophosLabs data scientists
• Multiple machine learning models
• Static file analysis
• Dynamic file analysis

Cloud Sandbox
Sophos Zero-day dynamic file analysis uses next-gen cloud-sandbox technology powered by deep learning and the best technology from Intercept X to protect your organization against zero day threats like the latest ransomware and targeted attacks coming in through phishing, spam, or web downloads.

• Dynamic sandboxing analysis
• Deep learning static file analysis

Web Protection
Sophos' Web Protection engine is backed by SophosLabs and includes innovative technologies required to identify and block the latest web threats.

• Advanced Web Protection
• Pharming protection
• HTTPS scanning
• Potentially unwanted app control
• SophosLabs

Synchronized Security
Our revolutionary Security Heartbeat links your Sophos managed endpoint with your firewall to share health and other valuable information enabling an automated and coordinated response to isolate threats and prevent lateral movement.

• Security Heartbeat
• Destination Heartbeat Protection
• Synchronized App Control
• Lateral Movement Protection
• Synchronized User ID

Advanced Threat Protection
Sophos Firewall delivers advanced threat protection to instantly identify bots and other advanced threats while defending your network from today’s sophisticated attacks.

• Security Heartbeat
• Multi-layered, call-home protection
• Intelligent firewall policies
• Traffic light style indicators

User Identity
User identity-based policies and unique user risk analysis give you the knowledge and power to regain control of your users before they become a serious threat to your network.

• User identity powers all firewall policies and reporting
• User Threat Quotient (UTQ) identifies the top risk users on your network
• Synchronized User ID
• Flexible authentication options including directory services
• Two-factor Authentication (2FA) one-time password support for Access to key system areas

Application Control
Complete visibility and control over all applications on your network with deep-packet scanning technology. Synchronized App Control that can identify all the applications that are currently going unidentified on your network.

• Visibility and control over thousands of applications
• CASB cloud app visibility
• Synchronized App Control
• User-based application policies
• Traffic shaping (QoS) prioritizes bandwidth allocation to critical applications and limits bandwidth for non-business applications

Web Control
Full visibility and control over all your web traffic with flexible enforcement tools that work the way you need, with options for user and group enforcement of activity, quotas, schedules, and traffic shaping.

• Enterprise Secure Web Gateway (SWG) policy model
• Template-driven activity control with predefined workplace and compliance policies
• Education and SafeSearch features
• Comprehensive traffic enforcement
• Traffic shaping (QoS)

Content Control
Flexible, user-based monitoring and control of keyword content and downloadable content, including file types via FTP, HTTP, or HTTPS.

• Web keyword monitoring
• File download filtering templates
• Policy-based outbound email DLP
• Web caching

Business Applications
Combine next-gen firewall capabilities with our enterprise-class web application firewall to protect your critical business applications from hacks and attacks while still enabling authorized access.

• Next-generation IPS
• Web Application Firewall
• Granular, user-based protection

Email and Data
Protect your email from spam, phishing, and data loss with our unique all-in-one protection that combines policy-based email encryption with DLP and anti-spam.

• Full MTA store and forward support
• Live anti-spam
• SPX encryption
• Policy-based DLP
• Self-serve user portal

Networking and Access

Sophos Firewall offers the most complete portfolio of secure edge access solutions, VPN , SD-WAN, and core networking capabilities to fit any network.

SD-WAN
Xstream SD-WAN in Sophos Firewall includes powerful features to enable your SD-WAN connectivity, quality, security, and continuity goals easily.

• Multiple WAN link profiles with flexible application, service, or user-based routing
• Real-time performance-based WAN link monitoring (for jitter, latency, and packet loss)
• Zero-impact re-routing of traffic to higher performing links in the event of a disruption
• Xstream FastPath acceleration of IPsec tunnel traffic
• Synchronized SD-WAN application routing of obscure or custom applications

Central SD-WAN Orchestration
Sophos Central cloud managed SD-WAN orchestration makes setting up complex site-to-site SD-WAN overlay networks easy.

• Point-and-click to setup full mesh, hub and spoke, or any kind of SD-WAN overlay network
• Sophos Central automates all the necessary rule setups on your firewalls
• Full tunnel redundancy support
• Monitoring and management made easy

Site-to-Site VPN
Sophos Firewall supports all standards-based VPN technologies, as well as our own lightweight extremely robust layer 2 RED tunnels.

• IPsec and SSL VPN tunnels
• Xstream FastPath acceleration of IPsec tunnel traffic
• Wizard-based orchestration
• Sophos RED site-to-site tunnels
• AWS VPC easy import and management

ZTNA
Sophos Firewall integrates with Sophos Zero Trust Network Access (ZTNA) to offer a secure and simple way for users to securely connect to important applications and data.

• Securely connect users to applications
• Superior protection from Ransomware and other threats
• Cloud and on-premises application support
• Remote access from anywhere
• Device health integrates with Synchronized Security

Remote Access VPN
Sophos recommends ZTNA for remote access; however, Sophos Firewall also supports legacy remote access via our free Sophos Connect VPN client.

• Windows and Mac support
• IPsec and SSL support
• Easy provisioning and deployment
• Free (unlimited SSL remote access licenses included at no extra charge)

SD-RED
A Sophos exclusive, SD-RED provide a unique and affordable secure edge access device for SD-Branch, SOHO, and industrial control solutions.

• Zero-touch deployment auto-provisioning SD-WAN edge device
• Enterprise-grade encryption
• Split tunnel options
• Integrated wireless options
• Ultra affordable

Wireless Controller
Every Sophos Firewall includes an integrated wireless controllers to enable easy secure wireless deployments for our APX wireless access points, all managed from a single console.

• Plug-and-play deployment
• High performance with the latest 802.11ac, Wave 2 wireless standard, and powerful radios
• Flexible configuration with options for isolation, bridging, zones, hotspots, channel width, and multiple SSIDs per radio.
• Secure encryption with support for all the latest standards

Core Networking
Sophos Firewall offers the most advanced enterprise-grade networking technology available for NAT, routing, and bridging.

• Powerful object-based NAT rules
• Advanced routing with Static, OSPF, BGP, and RIP with full 802.1Q VLAN support
• SD-WAN link balancing
• Flexible bridging options
• IPv6 Certified support

Segmentation
Flexible and powerful segmentation options via zones and VLANs provide ways to separate levels of trust on your network while enabling added protection against lateral movement between different parts of your network.

• Zone-based firewall
• Default zones for LAN, WAN, DMZ, LOCAL, VPN, and Wi-Fi
• Full VLAN support
• Zone and VLAN isolation
• Zone-based policies
• Micro-segmentation and auto-isolation via Synchronized Security

Management and Reporting

Sophos Central is your single-pane-of-glass for managing your entire cybersecurity portfolio. From endpoint, to mobile, to ZTNA, and of course, all your firewalls, no one offers this level of management integration and ease of use.

Sophos Central Management
Sophos Central provides powerful centralized management, reporting, and zero-touch deployment for all your Firewalls and other Sophos products from a single console.

• Sophos Central Cloud Management
• Group Firewall Management in Sophos Central
• Synchronize policy and settings across groups
• Central cloud backup management
• Centralized firmware update scheduling

Central SD-WAN Orchestration
Sophos Central cloud managed SD-WAN orchestration makes setting up complex site-to-site SD-WAN overlay networks easy.

• Point-and-click to setup full mesh, hub and spoke, or any kind of SD-WAN overlay network
• Sophos Central automates all the necessary rule setups on your firewalls
• Full tunnel redundancy support
• Monitoring and management made easy

Central Firewall Reporting
Central Firewall Reporting Advanced provides flexible and powerful tools to create your own custom views of network activity and threats across your entire network.

• Report across multiple firewalls
• Create custom reports with powerful visualization tools
• Save, export, and schedule your reports
• Store firewall log data in the cloud for historical reporting up to a year

Dashboard and Alerts
Sophos Firewall’s carefully crafted control center analyzes extensive back-end data sources to surface just the information you need to respond quickly to changes in your network.

• Instant insights at a glance
• Traffic-light-style indicators
• Quick Drill-down Interaction with Any Control Center Widget
• Automatic email notifications for any important event
• SNMP with a Custom MIB and support for IPSec VPN Tunnels

Free Reporting
Sophos Firewall is unique in providing extensive, free on-box reporting and limited cloud-based reporting at no extra charge.

• Hundreds of reports
• Built-in storage on XGS Series for unlimited log data storage for historical reporting
• Live log Viewer
• Syslog support
• Limited 7 day cloud storage for Central Firewall reporting
• No extra charge

COMPARE MODELS

XGS Series

Next-Gen Firewall Appliances

SMB and Branch Office

XGS Series Desktop

Excellent value and all-in-one connectivity for all your branch office, retail outlet, and small business needs.

Models: 87/87w, 107/107w, 116/116w, 126/126w, 136/136w

Distributed Edge

XGS Series 1U Rackmount

Performance and versatile connectivity options to meet the security infrastructure needs of larger SMB and mid-sized organizations.

Models: 2100, 2300, 3100, 3300, 4300, 4500

Enterprise Edge

XGS Series 2U Rackmount

Performance, connectivity, and redundancy without compromise for the most demanding distributed enterprise networks.

Models: 5500, 6500

Remote Ethernet Devices

SD-RED Series

Plug-and-play Remote Ethernet Devices to provide edge connectivity for branch office and remote sites.

Models:  20, 60

Wi-Fi Access Points

APX Series

Manage, secure, and control your Wi-Fi networks from your Sophos Firewall.

Models: 120, 320, 530, 740