Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 18 replies
  • Subscribers 30 subscribers
  • Views 62923 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Am I the only person who likes this new XG product?

ChavousCamp

Wow - reading the comments here...... sounds like I'm the only one outside of Sophos Corporate who likes this product.

And no - I'm not a Sophos employee _OR_ a Sophos plant.

In fact, I came to the firewalls grudgingly through their other products.  I am (or was) a Watchguard/pfSense/Cisco/Several Others kind of guy. I started with SGN (encryption) and SMC (the server-based mobile control) and then started looking at the firewalls because of a few integrated features.  I decided to go through the engineer cert training for both UTM and XG.  In fact, I think I went through the XG training the day - or the day after - the training itself was released.

After all that - I don't see why everyone is so down on this product.

Sophos has been exceeding clear on the fact that 1) NO SG is not going away any time soon. 2) if you like your SG or CR product, you can KEEP your SG/CR product and 3) YES there are missing features, expect new ones soon.

Are there limitations and weaknesses - YES. It's a VERSION 1 product! (they can call it version 15 all they want.  It's a v1 product)

Is it still a pretty cool damned product? YES. 

Will it improve drastically? Likely, YES.

Seriously guys - give it a few months.  It is brand new, needs a few tweaks, and change always sucks - but the compelling new features they've put in - heartbeat, cloud management, etc - are, or are going to be, excellent.

As of now, our NFR of the XG230 is happily running down in our server room, humming away, and acting as our primary gateway to the internet.  Working like champ so far. 



This thread was automatically locked due to age.
Parents
  • 0

    ChavousCamp said:
    Wow - reading the comments here...... sounds like I'm the only one outside of Sophos Corporate who likes this product. And no - I'm not a Sophos employee _OR_ a Sophos plant.

    Yes, YOU are the only one that likes the product! And there is nothing wrong with liking something that does everything that YOU want it to do.

    However, some of us came from Astaro side and their way of doing things and falsely assumed that sophos was going to use UTM as the template for future development of their greatest product. Now we have to wait till v3 to even get feature parity with UTM? So we are wasting another year on a product to make it as good as UTM? I am not privy to the way things are done at sophos HQ but their decision to pursue cyberoam as their code base and phase out UTM is not very forward thinking. Login to cyberoam NG demo at http://demo.cyberoam.com and then tell me what is so amazing about SFOS that was not easily accomplished in cyberoam?

    ChavousCamp said:
     Are there limitations and weaknesses - YES. It's a VERSION 1 product! (they can call it version 15 all they want.  It's a v1 product)

    Is it still a pretty cool damned product? YES. 

    Will it improve drastically? Likely, YES.

    It is not a v1 product, but could have been called cyberoam 11 or 12 or 15 just as well. It is a redesigned Interface for cyberoam with a few addons taken from UTM. I don't understand what do you mean by pretty damn cool. What makes a firewall cool? Sticker on top, extra cooling fans, blinking lights? If you are saying that the new UI is cool then again YOU are the only one.

    How do you know it will improve drastically? Are you just regurgitating what sophos is saying or perhaps some deduction from the way things have been done in the past that makes you feel so sure that it will improve drastically?

    Its all hoping and praying and waiting. Most of us like sophos products or we wouldn't be here. When some of us say we don't like SFOS, its because it brings nothing new to the table other than the bad gui. If you are using this product as a replacement for ddwrt or other soho products then YES it is great and sophos should be congratulated for offering it for free for HOME USE. But if you want to use it in an enterprise or a business setting, things like

    1.No MTA? I have to rely on a mail relay to get mails from my "damn cool product" since it can't even notify me of a failed login on its own?

    2. Can't rename interfaces to something humanly readable?

    3. Bypassing traffic using regex has been broken since v1 of beta so NO THEY DON'T improve drastically as you are hoping that they "Likely Will".

    4. Logging is nowhere near what is expected from a product that this one claims to be. Not to mention that they didn't rotate log files in the version that I tested. Cool Indeed!!!

    6. Publishing a server is a dream in the UTM. Try it in SFOS and then comment please...

    7. From various threads here, initial login is stuck at 172.16.16.16 and you have to change to accommodate SFOS instead of SFOS seamless integrating in your network. Probably not a problem with preconfigured appliances, but sure is another hindrance in a vm/lab environment.

    I can go on and on but this has been written up many times in many threads. NOBODY cares...

    So, is SFOS a good product? YES, if it serves your needs. But if you have other basic requirements that some of us do then the answer is pretty clear. This doesn't mean that there is any hate for the product itself. All it means is that it is not ready for the UTM world yet and sophos is setting itself up for failure pushing this product so aggressively.

Reply
  • 0

    ChavousCamp said:
    Wow - reading the comments here...... sounds like I'm the only one outside of Sophos Corporate who likes this product. And no - I'm not a Sophos employee _OR_ a Sophos plant.

    Yes, YOU are the only one that likes the product! And there is nothing wrong with liking something that does everything that YOU want it to do.

    However, some of us came from Astaro side and their way of doing things and falsely assumed that sophos was going to use UTM as the template for future development of their greatest product. Now we have to wait till v3 to even get feature parity with UTM? So we are wasting another year on a product to make it as good as UTM? I am not privy to the way things are done at sophos HQ but their decision to pursue cyberoam as their code base and phase out UTM is not very forward thinking. Login to cyberoam NG demo at http://demo.cyberoam.com and then tell me what is so amazing about SFOS that was not easily accomplished in cyberoam?

    ChavousCamp said:
     Are there limitations and weaknesses - YES. It's a VERSION 1 product! (they can call it version 15 all they want.  It's a v1 product)

    Is it still a pretty cool damned product? YES. 

    Will it improve drastically? Likely, YES.

    It is not a v1 product, but could have been called cyberoam 11 or 12 or 15 just as well. It is a redesigned Interface for cyberoam with a few addons taken from UTM. I don't understand what do you mean by pretty damn cool. What makes a firewall cool? Sticker on top, extra cooling fans, blinking lights? If you are saying that the new UI is cool then again YOU are the only one.

    How do you know it will improve drastically? Are you just regurgitating what sophos is saying or perhaps some deduction from the way things have been done in the past that makes you feel so sure that it will improve drastically?

    Its all hoping and praying and waiting. Most of us like sophos products or we wouldn't be here. When some of us say we don't like SFOS, its because it brings nothing new to the table other than the bad gui. If you are using this product as a replacement for ddwrt or other soho products then YES it is great and sophos should be congratulated for offering it for free for HOME USE. But if you want to use it in an enterprise or a business setting, things like

    1.No MTA? I have to rely on a mail relay to get mails from my "damn cool product" since it can't even notify me of a failed login on its own?

    2. Can't rename interfaces to something humanly readable?

    3. Bypassing traffic using regex has been broken since v1 of beta so NO THEY DON'T improve drastically as you are hoping that they "Likely Will".

    4. Logging is nowhere near what is expected from a product that this one claims to be. Not to mention that they didn't rotate log files in the version that I tested. Cool Indeed!!!

    6. Publishing a server is a dream in the UTM. Try it in SFOS and then comment please...

    7. From various threads here, initial login is stuck at 172.16.16.16 and you have to change to accommodate SFOS instead of SFOS seamless integrating in your network. Probably not a problem with preconfigured appliances, but sure is another hindrance in a vm/lab environment.

    I can go on and on but this has been written up many times in many threads. NOBODY cares...

    So, is SFOS a good product? YES, if it serves your needs. But if you have other basic requirements that some of us do then the answer is pretty clear. This doesn't mean that there is any hate for the product itself. All it means is that it is not ready for the UTM world yet and sophos is setting itself up for failure pushing this product so aggressively.

Children
No Data