WIXLIB

Sophos XG FirewallThe world’s best visibility, protection, and response.Sophos XG Firewall brings a fresh new approach to the way youmanage your firewall, respond to threats, and monitor what’shappening on your network.

Sophos XG FirewallSophos XG FirewallSophos XG Firewall provides comprehensive next-generation firewall protectionthat exposes hidden risks, blocks unknown threats, and automaticallyresponds to incidents.Exposes hidden risksPotent, powerful fastSophos XG Firewall provides unprecedented visibility intotop risk users, unknown apps, advanced threats, suspiciouspayloads and much more. You also get rich on-box reportingincluded at no extra charge and the option to add SophosiView for centralized reporting across multiple firewalls.We’ve engineered XG Firewall to deliver outstandingperformance and security efficiency for the best returnon your investment. Our appliances are built using Intelmulti-core technology, solid-state drives, and acceleratedin-memory content scanning. In addition, Sophos FastPathpacket optimization technology ensures you’ll always getmaximum throughput.Blocks unknown threatsSophos XG Firewall provides all the latest advancedtechnology you need to protect your network fromransomware and advanced threats including top-ratedIPS, Advanced Threat Protection, Cloud Sandboxing, DualAV, Web and App Control, Email Protection and a fullfeatured Web Application Firewall. And it’s easy to setup andmanage.Automatically responds to incidentsXG Firewall is the only network security solution that is ableto fully identify the source of an infection on your networkand automatically limit access to other network resourcesin response. This is made possible with our unique SophosSecurity Heartbeat that shares telemetry and healthstatus between Sophos endpoints and your firewall.1Simply manage multiple firewallsSophos Firewall Manager provides a single console for thecomplete central management of multiple XG Firewalls.And if you also want to consolidate reporting acrossmultiple XG, SG, and Cyberoam appliances then withSophos iView, you can.

Sophos XG FirewallSecurity features you can’t get anywhere elseXG Firewall includes a number of innovations that not only make your job a loteasier, but also ensure your network is more secure.Synchronized SecurityA Firewall That Thinks Like YouAn industry first, Synchronized Security links your endpointsand your firewall to enable unique insights and coordination.Security Heartbeat relays Endpoint health status andenables your firewall to immediately identify and respondto a compromised system on your network. The firewall canisolate systems until they can be investigated and cleanedup. Another Synchronized Security feature, SynchronizedApp Control, also enables the firewall to query the endpoint todetermine the source of unknown traffic on the network.Pre-defined policy templates let you protect commonapplications like Microsoft Exchange or SharePoint quicklyand easily. Simply select them from a list, provide somebasic information and the template takes care of the rest.It sets all the inbound/ outbound firewall rules and securitysettings for you automatically – displaying the final policy ina statement in plain English.Unified Firewall RulesUser identity takes enforcement to a whole new layer withour identity based policy technology enabling user levelcontrols over applications, bandwidth and other networkresources regardless of IP-address, location, network ordevice. It literally takes firewall policy to a whole new layer.Insights into Top Risk UsersThe Sophos User Threat Quotient (UTQ) indicator is a uniquefeature which provides actionable intelligence on userbehavior. Our firewall correlates each user’s surfing habitsand activity with advanced threat triggers and history toidentify users with risk-prone behavior.Flexible deployment, no compromiseUnlike our competitors, whether you choose hardware,software, virtual or Microsoft Azure, we don’t make youcompromise – every feature is available on every model andform- factor.XG SeriesSoftwareVirtualAzurePurpose-built devicesto provide the ultimatein performance.Install the Sophos FirewallOS image on your ownIntel hardware or server.Install on VMware,Citrix, MicrosoftHyper-V and KVM.Protect your networkinfrastructure in theAzure cloud.2

Sophos XG FirewallNetwork ProtectionAll the protection you need to stop sophisticated attacks and advanced threatswhile providing secure network access to those you trust.Next-gen Intrusion Prevention SystemSecurity HeartbeatProvides advanced protection from all types of modernattacks. It goes beyond traditional server and networkresources to protect users and apps on the network as well.Creates a link between your Sophos Central protectedendpoints and your firewall to identify threats faster,simplify investigation and minimize impact from attacks.Easily incorporate Heartbeat status into firewall policies toautomatically isolate compromised systems.Advanced Threat ProtectionInstant identification and immediate response to today’smost sophisticated attacks. Multi-layered protectionidentifies threats instantly and Security Heartbeat providesan emergency response.Advanced VPN technologiesAdds unique and simple VPN technologies including ourclientless HTML5 self-service portal that makes remoteaccess incredibly simple or utilize our exclusive light-weightsecure RED (Remote Ethernet Device) VPN technology.Web ProtectionComprehensive web protection and application control with powerful andflexible policy tools ensure your networked users are secure and productive.Powerful user and group web policyHigh performance transparent proxyProvides enterprise-level Secure Web Gateway policycontrols to easily manage sophisticated user and groupweb controls. Apply policies based upon uploaded webkeywords indicating inappropriate use or behavior.Optimized for top performance, our transparent proxytechnology provides ultra-low latency inspection andHTTPS scanning of all traffic for threats and compliance.Advanced Web Threat ProtectionEnables user-aware visibility and control over thousands ofapplications with granular policy and traffic-shaping (QoS)options based on application category, risk, andother characteristics. Synchronized Application Controlautomatically identifies all the unknown, evasive, andcustom application on your network.Backed by SophosLabs, our advanced engine providesthe ultimate protection from today’s polymorphic andobfuscated web threats. Innovative techniques likeJavaScript emulation, behavioral analysis, and originreputation help keep your network safe.Application Control and QoSSandstorm ProtectionSophos Sandstorm uses next-gen cloud-sandbox technology to give yourorganization an essential layer of security against ransomware and zero-day attacks.No Additional HardwareBetter Protected, Better InformedIt integrates with your XG Firewall and is cloud-delivered sothere’s no additional hardware required. Sophos Sandstormblocks evasive threats like ransomware, disguised asexecutables, PDFs, and Microsoft Office documents —sending them to a cloud-sandbox to be detonated andobserved in a safe environment.Threat intelligence is fed back to your XG Firewall and thefile blocked or permitted. The process takes just a couple ofminutes with minimal impact for the user. And Sandstormgives you detailed threat reports for every incident so youknow exactly what’s going on.3

Sophos XG FirewallEmail ProtectionFull SMTP and POP message protection from spam, phishing and data losswith our unique all-in-one protection that combines policy-based emailencryption with DLP and anti-spam.Integrated Message Transfer AgentSPX Email EncryptionEnsures always-on business continuity for your email,allowing the firewall to automatically queue mail in theevent servers become unavailable.Unique to Sophos, SPX makes it easy to send encryptedemail to anyone, even those without any kind of trustinfrastructure using our patent-pending password-basedencryption technology.Live Anti-SpamProvides protection from the latest spam campaigns,phishing attacks, and malicious attachments .Self-serve QuarantineGives employees direct control over their spam quarantine,saving you time and effort.Data Loss PreventionPolicy based DLP can automatically trigger encryption orblock/notify based on the presence of sensitive data inemails leaving the organization.Web Server ProtectionHarden your web servers and business applications against hacking attemptswith a full-featured Web Application Firewall while providing secure access withreverse proxy authentication.Business Application Policy TemplatesReverse proxyPre-defined policy templates let you protect commonapplications like Microsoft Exchange Outlook Anywhere orSharePoint quickly and easily.With authentication options, SSL offloading, and server loadbalancing ensure maximum protection and performancefor your servers being accessed from the internet.Protection from the latest hacks andattacksWith a variety of advanced protection technologiesincluding URL and form hardening, deep-linking anddirectory traversal prevention, SQL injection and cross-sitescripting protection, cookie signing and more.4

Sophos XG FirewallHow to BuyEvery XG Firewall comes equipped with Base Firewall functionality includingIPSec, SSL VPN, and Wireless Protection. You can extend protection with ourbundles or by adding protection modules individually.Network ProtectionSandstorm ProtectionWeb ProtectionAll the protection you need to stopsophisticated attacks and advancedthreats while providing securenetwork access to those you trust.Sophos Sandstorm uses nextgen cloud-sandbox technologyto give your organization anessential layer of security againstransomware and zero-day attacks.Comprehensive web protectionand application control withpowerful and flexible policy toolsensure your networked usersare secure and productive.Security Heartbeat Email ProtectionWeb Server ProtectionLinks your Sophos endpoints withyour firewall to deliver unparalleledprotection from advanced threatsand reduce the time and complexityof responding to security incidents.Full SMTP and POP message protectionfrom spam, phishing and data losswith our unique all-in-one protectionthat combines policy-based emailencryption with DLP and anti-spam.Harden your web servers andbusiness applications againsthacking attempts while providingsecure access to external userswith reverse proxy authentication.A simple approach to comprehensive supportWe build products that are simple yet comprehensive. And, we take the same approach with our support. With optionsranging from basic technical support to those including direct access to senior support engineers and customized delivery.Licenses namesSupportVia telephone and emailSecurity Updates & PatchesFor the life of the productSoftware Feature Updates & UpgradesStandardEnhancedIncluded with purchaseIncluded in all bundlesFor 90 days(business hours only)Included(24x7)VIP Access(24x7)Included with an activesoftware subscriptionIncluded with an activesoftware subscriptionIncluded with an activesoftware subscriptionIncluded 90-daysIncludedIncludedConsultingRemote consultation on your firewall configuration andsecurity with a Sophos Senior Technical Support EngineerWarranty and RMAFor all hardware appliancesTechnical Account ManagerDedicated named technical account manager5Enhanced PlusIncluded(up to 4 hours)1 year (return / replace)Advance Exchange(max. 5 years)Advance Exchange(max. 5 years)Optional(extra cost)Optional(extra cost)