Sophos Firewall Overview

Sophos Firewall Overview

Sections: 

Resources: 

Overview: 

  • Sophos Firewall is a next generation firewall solution designed to protect networks from a wide range of security threats, including malware, ransomware, and cyber attacks 
  • It combines traditional firewall capabilities with advanced features such as deep packet inspection, intrusion prevention, and web filtering to provide comprehensive security
  • Referencing Sophos line of features, these hardware firewall appliances are targeted and designed for small to large enterprises that require high performance, high security firewalls

Visibility & Protection Features 

Deep Packet Inspection 

  • DPI is a technique used in network security to examine the data payload of packets traveling across a network at a much deeper level than traditional packet filtering methods
  • Sophos Xstream DPI engine provides high performance traffic scanning for IPS, antivirus, web protection, and app control in a single streaming engine

Encrypted Traffic Inspection

  • Sophos Xstream TLS 1.3 inspection with industry-leading performance, visibility, policy tools, and built-in intelligence removes an enormous blind spot in your protection

Zero-day & Machine Learning (ML) Protection

  • Sophos Firewall leverages ML technology to instantly identify the latest ransomware and unknown threats before they get on your network

Cloud Sandbox

  • Sophos zero-day dynamic file analysis uses next-gen cloud sandboxing, to protect against zero-day threats, including new ransomware and targeted attacks coming in through phishing, spam, or web downloads

Web Protection

  • Sophos web protection engine includes innovative technologies required to identify and block the latest web threats

DNS Protection

  • Sophos DNS protection provides a high-performance, cloud-based domain name resolution service for website compliance and security

Synchronized Security

  • Sophos Security Heartbeat links your Sophos-managed endpoint with your firewall to share health and other valuable information to enable an automated and coordinated response, isolate threats, and prevent lateral movement

Active Threat Response

  • Sophos Firewall provides an immediate and automated response to active threats and adversaries to stop them dead in their tracks and prevent lateral movement 

User Identity

  • User identity-based policies and unique user risk analyses give you the knowledge and power to regain control of your users before they become a serious threat to your network

Application Control

  • Complete visibility and control over all applications on your network with deep packet scanning technology
  • Synchronized app control can identify all the unidentified applications currently running on your network

Web Control

  • Full visibility and control over all your web traffic with flexible enforcement tools that work they way you need, with options for user and group enforcement of activity, quotas, schedules, and traffic shaping

Content Control

  • Flexible, user-based monitoring and control of keyword content and downloadable content, including file types via FTP, HTTP, and HTTPS

Business Applications

  • Combine next-gen firewall capabilities with our enterprise-class web application firewall to protect your critical business applications from hacks and attacks while still enabling authorized access

Email & Data

  • Protect your email from spam, phishing, and data loss with our unique all-in-one protection that combines policy-based email encryption with DLP and anti-spam

Networking & Access Features 

SD-WAN

  • Xstream SD-WAN in Sophos Firewall includes powerful features to help you meet your SD-WAN connectivity, quality, security, and continuity goals easily

Central SD-WAN Orchestration

  • Sophos Central cloud-managed SD-WAN orchestration makes setting up complex site-to-site SD-WAN overlay networks easy

Site-to-site VPN

  • Sophos Firewall supports all standards-based VPN technologies, as well as our own lightweight, extremely robust Layer-2 remote Ethernet device (RED) tunnels

ZTNA

  • Sophos Firewall integrates with Sophos Zero Trust Network Access (ZTNA) to offer a secure and simple way for users to connect to important applications and data securely

Remote Access VPN

  • Sophos recommends ZTNA for remote access; however, Sophos Firewall also supports legacy remote access via our free Sophos Connect VPN client

SD-RED

  • Sophos exclusive SD-RED software-defined remote Ethernet devices provide a unique and affordable secure edge access device for SD-branch, SOHO, and industrial control use cases

Wireless Controller

  • Every Sophos Firewall includes an integrated wireless controller to enable easy secure wireless deployments for our APX* wireless access points, all managed from a single console

Core Networking

  • Sophos Firewall offers the most advanced enterprise-grade networking technology available for Network Address Translation (NAT), routing, and bridging

Segmentation

  • Flexible and powerful segmentation options via zones and VLANs provide ways to separate levels of trust on your network while enabling added protection against lateral movement between different parts of your network

Management & Reporting Features 

Sophos Central Cybersecurity Management Platform

  • Provides powerful centralized management, reporting, and zero touch deployment for all your Sophos Firewalls and other Sophos products from a single console

Sophos Central Firewall Reporting Advanced

  • Provides flexible and powerful tools to create your own custom views of network activity and threats across your entire network

Dashboard & Alerts

  • Sophos Firewall's carefully crafted control center analyzes extensive back-end data sources to surface just the information you need to respond quickly to changes in your network 

Free Reporting

  • Sophos Firewall is unique in providing extensive, on-box reporting and limited cloud-based reporting at no extra charge

High Availability (HA)

  • Sophos Firewall provides support for HA deployments to ensure maximum resiliency, reliability, uptime, and performance 

Cybersecurity as a Service (CSaaS)

  • Sophos Firewall integrates with our 24/7 Managed Detection and Response (MDR) service