Sophos XG vs UTM

What are the differences between Sophos XG and Sophos UTM? Do we have an iso file of Sophos XG? Many thanks!
DP230Network AdministratorAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Both products are being developed in parallel, so it is not as though if you stick with UTM you will lose out, but personally as a long time UTM user I don't think XG is where it needs to be yet. I am used to the UTM interface, I find it quite simple, whereas the XG interface is while pretty, too fiddly. About a year ago I went from UTM to XG and straight back to UTM. This was a year or so ago, maybe things have changed now, but XG was just missing too many features that UTM had. There is a good comparison write up on this blog which I think reflects similarly to my experience.

People who have never used UTM seem to prefer XG over UTM after trying both, and people who have used UTM prefer it over XG.

XG in terms of big differences contains a next gen firewall (its all the rage from security vendors right now).

Yes ISO's are available for XG, XG home edition can be downloaded from here.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
btanExec ConsultantCommented:
XG is the newer firewall firmware. In fact, the former is a superset of UTM. in particular, XG Firewall v16 closed most significant gaps with UTM 9. Around 35 UTM features added to XG and there are a lot of features unique to XG as well. Some examples of the features are mentioned in
UTM 9 features added to XG v16:

Core and Networking:
Two-Factor Auth (OTP) Support
Rule and object cloning
Country and continent objects
Policy-based Routing
Per-Rule Routing

Web and WAF:
Warn Action
Google Apps Enforcement
Unscannable content handling
Creative Commons
3rd Party URL Lists
Cookie based Auth Caching

Full MTA / Store & Forward
SPX Reply Portal
SPX Cover Page & Header/Footer
SMTP Profiles
Domain / MX routing

Site-to-site RED Tunnels
RED 15w Support
AP 15C Support
HA support for dynamic interfaces
SH Key Access to Shell
A more detailed listing is found in

Sophos XG Firewall runs perfectly on all Sophos SG Series hardware appliances, as well as the same Intel compatible hardware and the same virtual environments as UTM 9. But it is noted that XG Firewall is not currently compatible with Amazon Web Services, but we plan to add support for AWS and Azure cloud deployments soon.

Check out the ISO in
v15 was the last version I used and it looks like in v16 they took community feedback on board and changed the UI to be inline with the UTM UI; huge improvement because the pre v16 UI was a horror show. I've just updated my virtual appliance, everything is now much more intuitive, except DNAT/SNAT rules, which seems to be hidden under Business Application rules possibly in the Firewall. I still prefer Sophos UTM based on the last 10 minutes of using XG, but I'll give it more of a play.
btanExec ConsultantCommented:
For author advice
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Hardware Firewalls

From novice to tech pro — start learning today.