Recommendation on Choosing Network Security Device
Hi, wanted to ask the group for help on Choosing Network Security Device replacement for my Shield, we have updated are ISP to 250 Mbps and needed something that can give us more throughput, the most I can get out of the Shield is 55 Mbps I'm in bridge mode, I have done some research on the Sophos XG Desktop https://www.sophos.com/en-us/products/unified-threat-management/tech-specs.aspx#DesktopModels the setup will be for a home and business network at the same location, we have a mix of 5 to 6 ethernet devices and multiple Wi-Fi Devices using 2.4 GHz and 5 GHz, not sure if should go with an all in one device from Sophos?, or use something like Orbi Wi-Fi? we need to cover about 2800 square feet, any help would be greatly appreciated
Re: Recommendation on Choosing Network Security Device
This post was updated on .
I’ve been using a Sophos sg 120 appliance for around a year now, coupled with 2 x ap-55 access points to cover my house. I installed the home edition of the sg utm 9 which has a license limit of 50 devices so it took a bit of time to add all my hosts as static but even though I have approx 35 devices in use regularly it’s been fine. Just remember to change your dhcp pool to 10 devices or so so you can manage the device limit well. Xg firewall home has no device limitations, only limited to 6gb ram and 4 cores I think.
I paid about £60 for the box and £100 each for the aps which is great value for the power this thing delivers. Steep learning curve though. I had it installed in a vm for 6 months while I got to grips with it. Now doing the same with xg firewall but it’s very different so again, will take some time to get my head around it.
Sg 120 box gives me around 150mb throughout. The sg/xg 115 would give more I believe but not tried them. I believe the sg and xg hardware is the same, just comes with a different os. Utm 9 will be phased out eventually but for now is still being updated fairly regularly.
Other choices are buying a mini pc with 2 or more Ethernet ports and using utm 9 or any of the other available security installs such as pfsense, untangle etc.