Some advise for private usage of Sophos products

Question

Hello community, 
 I am currently very unhappy with Sophos and the usage for private networks. 
 My current issues are: 
 
 Several technical issues: SFP-VDSL2 not working, joining the Sophos Central not possible 
 Licensing: The entire license structure is quite unclear to me, especially at reasonable costs 
 Ending on-premise endpoints in summer 2023 
 
 So going back to the planing, here is what I want: 
 
 Securing my private network including two Laptops of the company, I am working for (Home Office) 
 Securing my private devices including MacBook, Windows Laptop, tablets (Apple, Huawei) and Smartphones (Apple, Samsung) - 2 persons using this 
 Securing my private NAS 
 Securing some IoT/SmartHome devices, like Neato Vacuum cleaner, Logitech Harmony Hubs, Sonos speaker, SmartTV, &hellip; 
 Secure connection to one VPS Server and my parents place 
 
 By securing I mean especially: 
 
 Avoid threats for the devices like Maleware, Ransomware and so on. 
 Avoid this marketing/advertising tracking, which is so much on the internet, at least on a certain level 
 
 What I already do have as hardware: 
 
 Sophos XG106, including to not properly working VDSL2-SFP-modems 
 Ruckus r510 Access Point 
 TPLink managed Switch with PoE 
 FritzBox 7530 
 
 Reasonable costs besides buying the hardware are annual fees up to 40&euro;. I know, it&lsquo;s not much, but much more usually private persons spend for security subscriptions. 
 At the moment, I am quite unsure what&lsquo;s happening with Sophos aggressive Cloud strategy and which licenses in which size I do need and which costs a have calculate. From a technical point of view, running a FritzBox with PiHole as local DNS worked better for me, although I know, that none of these components deliver more than basic network security. 
 Thanks for your advise.

rfcat_vk · Answer

Hi, 
 I would suggest you put the fritzbox in passthrough mode while you are waiting for an answer on the VDSL issue. What Is not clear to me with your VDSL issue, is the device you are using a sophos compatible or another supplier hardware. 
 You can secure all your IoT devices to varying degrees, depends on how serious you are. 
 You can stop a lot of advertising but not all because some sites have embedded the install attention seeking advert in their web page, absolute pain, the connecting links get blocked. 
 Connecting to a VSP server I can't help there and your parents place will depend on what they are using as their firewall device? 
 Your endpoint expiry will be when you licence expires. 
 The licence module cost for XG licences is based on your XG106's power. The licence fees are 1, 2 or 3 year subscription with dual anti-virus, geoIP and application firmware updates included. 
 1/. web proxy licence for advert scanning etc 
 2/. mail proxy for mail scanning 
 3/. network protection 
 4/. base firewall 
 The other modules, unless you have a fileserver that you wan to access from the internet are not necessary. Sandstorm probably not for home. 
 Central is a free licence with the condition that you can only store 7 days of data and not full functionality. 
 When you purchased the XG106 you would have been advised of the various modules and licensing costs. I would recommend that you talk to your reseller/partner for more details. 
 Support, first level support is basically these forums and because you have a paid licence the support portal to create cases. 
 I am a home user and can assist you with some of your setup information if you need it. 
 Ian

Some advise for private usage of Sophos products

Top Replies