Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos RED capabilities compared to competition

When Sophos will match competition with their RED offering like:

- QoS

- Web filtering 

Sophos was first to market with this type of device but now competition is doing far more Shrug‍♂️



This thread was automatically locked due to age.
Parents
  • Essentially Sophos is doing another solution. Instead of going the full circle and blow up the performance on RED(which you need to do Web filtering etc.), Sophos is investing in Zero Touch Deployment with Firewalls. As Firewalls can offer this, Sophos will bring the XGS hardware to the point, it can replace a RED with the full SFOS firewall feature set. 

    __________________________________________________________________________________________________________________

  • You really need to look what competition is doing. Sophos is lost in space. You are missing my point. 

  • I am a sales engineer, not a product manager. It is not my role to see the market at this point. 

    Could you share your insight with me, so i can comment on those points? Because from my perspective, i can perfectly fine replace most competitors solutions with a FW with zero touch. 

    __________________________________________________________________________________________________________________

  • Your perspective is way wrong. And your approach is wrong. If you are sales engineer (I am also sales/presales) you should know your competition inside-out.  Otherwise, you can find yourself in funny situation. Or not, depending on your status in company.  Don't have time to share this here. I will reach to product manager directly.

  • Ok thanks for your feedback. 

    __________________________________________________________________________________________________________________

  • Sorry if I sounded little bit harsh. I typed it while doing something else. Support managers, product managers should be here on these forums to speak directly with customers and partners. 

  • This forum is actually something used for Home Users and invested users to ask questions. It is not the official touch to departments within Sophos. Most partners / customers have peers like SEs to talk to and address concerns. If you do not want to share you feedback here, you likely have a connection to somebody to reach out to your target persona within Sophos. 

    __________________________________________________________________________________________________________________

  • This forum is actually something used for Home Users

    Please label it as "for home users" so we don't bother. 

  • The community is used by all personas, invested with Sophos. So Home users can get support here, as they have no other possibility. Other persons are using the community as well to ask questions or share feedback. 

    So if you do not want to share your feedback about your concerns here, it is fine. You have your own peers. 

    __________________________________________________________________________________________________________________

  • So it is for home and business users as well. Ok. 

  • And i found the old thread of yours about the same topic.

    https://community.sophos.com/sophos-xg-firewall/f/discussions/134178/sd-red-local-breakout-webfiltering-qos/494699#494699

    And this is something, still the point of discussion of what to do in which scenario.

    As i said, the ecosystem completes different visions. Endpoint Webscanning is some sort the way to go compared to a "web proxy in the cloud". Because using a proxy in the cloud could potentially be a dead end. Utilize Scanning engines on the web filter like the endpoint is doing it, would be the best way to resolve this part of SASE. Giving the endpoint more responsibility is more likely the best approach in the future. 

    __________________________________________________________________________________________________________________

Reply Children
  • That thread was relevant at that time. Since we are competing with other vendors which has far better support and feature set then Sophos at the moment, already delivering by their partners.

    Because using a proxy in the cloud could potentially be a dead end.

    https://www.sophos.com/en-us/solutions/secure-access-service-edge

    can you explain how this new SWG from Sophos will work?

    Utilize Scanning engines on the web filter like the endpoint is doing it, would be the best way to resolve this part of SASE.

    Many customers would disagree with this. Many customer actually moving away from this. At least what I am able to see in Germany, Austria and Balkans.

    https://www.sophos.com/en-us/solutions/secure-access-service-edge

    can you also comment on rest of these product what Sophos will, I hope soo, make GA and how they will affect endpoint?

  • Actually this HTTPS Scan engine is already in place on the endpoint for some time. It is about to manage this solution in a centralized manner. But the endpoint can do this right now and decrypt traffic, block traffic etc. 

    Please reach out to your SE peers to discuss this further. Customer will move away from this solution, because they are lacking the capabilities on management, which is going to be addressed in the future. 

    And again: I am not a Product manager and i cannot comment on any timeframes or anything. 

    __________________________________________________________________________________________________________________