This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG firewall, can't say I'm impressed

Attempted today to swith out the old UTM with XG firewall (home use). Been using this product since Astaro 4.7 (I think), and loved it since day one.

And I can't really say I'm impressed with XG firewall. The GUI is messy while im sure the touch fanboys will love it, personally I hate it.

There don't seem to be a option to see live log. It could be that I didn't look good enough tho.
Country blocking, couldn't get it to work. Don't know if it was even supposed to work.
Specifying FW rules was horrible. I think I actually prefer Windows firewall rule adding to this.

Reporting was powerfull and I can see thats a improved area.

Unfortunatley the XG firewall named Batman was decapitaed and nuked from orbit. Atleast I tried and wanted to like it.

This thread was automatically locked due to age.

0 William Warren over 9 years ago in reply to thausmann

thausmann said:
That's what i say too. XG firewall GUI is miles away from the UTM GUI! The posibilty to upgrad from UTM to Sophos XG Firewall i not an option for UTM users.

I am glad the option to downgrade is not available for UTM users...
Cancel
Vote Up 0 Vote Down

Cancel
0 William Warren over 9 years ago in reply to TXGARobert@Home

TXGARobert@Home said:
I and a co-worker manage the UTM9 for our school district and when I showed him the new "XG" product yesterday he asked me " What did they do to it? ". Reminds me of the South Park episode where the boys are upset about the last Indiana Jones movie ( Season 12, Episode 8 ).

I am trying to like this thing, but it just isn't happening. NOTHING is the same as the UTM. It looks like the whole reason for acquiring the UTM from Astaro was to kill the competition.

I will stay with the UTM software at school until it just becomes too full of security holes to justify it's use. What does it say when they release a "replacement" product but have no plans for current customers to import their old configurations into the new device until the summer of 2016? That's almost 7 months after the product launched.

I have 13 years of blood/sweat and tears invested in my current configuration of this UTM software. I'll retire before I manually enter all that configuration again. Heck, I couldn't even if I wanted to because I can't make any sense of the interface of this thing.

Please, as a gesture of Holiday Spirit and general Good Will, return the rights to the ASG to the guys in Karlsruhe so the UTM doesn't have to go out like this.

The founders have moved on to ocedo that itself has been sold off. Astaro is dead now and most of the german devs are also gone. Hang onto SG as long as they keep it alive....
Cancel
Vote Up 0 Vote Down

Cancel
0 William Warren over 9 years ago in reply to 0xDECAFBAD

0xDECAFBAD said:
It took me a long time, but I think I finally got a pretty good handle on the new GUI. I re-created the rules I had running on UTM9, but as soon as I had one client downloading a file the internet was crippled for any other user. (This is home use). One computer downloading a file, ping to Google was 1,200ms, web browsing was painfully slow. I start disabling HTTP(S) scanning, then IPS, and performance improves. The dashboard is showing a performance alert and my system load is 2.0 with NO TRAFFIC running through the box at all. This is on the same hardware I was running UTM9 on with no issues. I can download a file, stream HD netflix, surf the web, and play a multiplayer video game with no issues on UTM9. I went back to UTM9. Hopefully they fix the performance issues. I'm not sure if the 4-core limit doesn't play well with my 8 core Intel Atom C2750? Is the Sophos XG Linux kernel 64-bit? I didn't think to check before I re-installed UTM9.

XG is limited to 6 gigs of ram and 4 cores. With you running an atom you had your total processing power cut in half so you are going to have issues. XG is a 64 bit kernel.
Cancel
Vote Up 0 Vote Down

Cancel