Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 29 subscribers
  • Views 969 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG Physical or Virtual for a business with 300 plus users

Donnie Johnson

We need to purchase a new firewall for our business. We currently use Sophos XG virtually in a branch office but I'm concerned about performance in a virtualized environment. This firewall would run all the IPS and Malware protection plus serve up to 150 VPN connections. Can anyone speak on this? 



This thread was automatically locked due to age.
  • 0

    If you have a good infrastructure for virtual environment I recommend you to use virtual appliance. With virtual appliance, you have more management options for backup and disaster recovery on your firewall and you can bypass all risks about HW failure in HW appliance and you will save money. because you don't need to buy another HW appliance after 7 years.

    Regarding Sophos XG sizing guide document, a virtual appliance with necessary resources can support 9000 concurrent users. So you can use virtual appliances without any concerns. 

  • 0

    I'd generally advise to go virtual . Yes you pay a performance overhead penalty but on the other hand you can buy much more powerful hardware than what is inside an XG box for the same amount of money . I generally say to customers anything over a XG 135 to just go virtual in general . It's also very easy to upgrade to higher capacity if you purchased a machine with some breathing room ( aka cpu cores / memory )

    One thing you have to take into consideration is in a lot of cases clock speed is still pretty much the deciding speed factor as many underlying tasks as lot of the stuff is still very much single core bound I've found.

  • 0 in reply to djdrastic

    Hi,

    there is a tradeoff with the software version when compared to the higher end XG hardware, you don't get all the performance enhancements, the functionality is the same.

    Ian