Reflexion will be End-of-life on March 31,2023. See Sophos Reflexion EoL FAQs to learn more.
They were briefly mentioned in the Sophos XG Academy webinars (last session, future og XG, at the last part).
Im really interested in learning more of what to expect!Were currently evaluating Fortinet as replacement for Sophos UTM because they have switches that tie into the Fortigate platform.If Sophos has something alike coming up in the forserable future, it might tip the decision back to Soohos XG.
There are some shortcomings with Sophos switches. Fortinet has far better lineup here as far as ap-switch-fg-extender. But at the end, it depends on what you need so Sophos may fit the shoes.
Please expand on shortcomings if you have tested or used Sophos switches. Currently integration into central is the biggest selling point, other than that, similar to others.
I think Sophos would do well to sell add-on apps w switches, IE: 802.10 access / management via central, new device notifications (security), etc. Integration of switches, central and FW for holistic security management. -- NAC.
IE: Sophos takes leadership w 802.10 -
1. Install Switch / basic setup.
2. Tell Central to add 802.10 feature $$ - MAC BASED switch device security
3.. Switches and FW take inventory of devices and ports at each switch / location.
4. User says allow for discovered devices / MAC addresses, adds friendly labels, host names, etc.
5. User says whether devices can change ports or switches, (mobility OK)? - device DB created.
6. User enables switch lock down w config,
6. User can lock down so that any new device must be authorized by IT, portal reg, etc.
Many other iterations here, but why can't Sophos have something basic as above, and maybe a more advanced tier $$$ for those who need?
I have them 8 under my desk getting ready to be sent back. Primary reason is this:
CS110-24FP - max 4 vlan interfaces can get ip assigned and no static routing ?
all what you have wrote here is available at competing offering for long time. I was hopping for Sophos not to get in to this game but to integrate with one of Tier-1 switch/ap suppliers for security part (Extreme for example).
Ouch, sorry they are not what you need for your application. Features and limitations should be completely disclosed, marketing and technical people @ Sophos need to be on the same page...
AstaroNBack said:Ouch, sorry they are not what you need for your application.
any application ... this switch isn't any type of enterprise.
AstaroNBack said:marketing and technical people @ Sophos need to be on the same page...
they are not. and it will cost them some money now.
Posted an reply in the other thread about this matter.
Sophos is offering a Access Layer Switch. Not a Core Switch.
The general question is: What are you currently looking for, Core or Access Switch.
To answer this questions, we need to learn what Sophos considers Core and what Access switch. Then we need to learn what is L2 managed, L3 lite, L3 switch and so on ... Once we align specific domain language then we may discuss further, Obviously, terminology is wrong here. You should know that most Tier-1 networking vendors have access switches with L3 routing in place.
See my replies here. community.sophos.com/.../515442
Just correct your datasheets and rest of stuff related to your products and you will be fine. Don't bother with rest of the stuff.
Toni, read your comments, makes sense to me, we are using XGS for L3.