What does Sophos Basic Functionality Include?

Each Sophos hardware offers the following basic functionality:

VPN

Offers standards-based site-to-site and remote-access VPN (free up to the capacity of the firewall) with support for IPsec and SSL. The Sophos Connect remote access VPN client for Windows and Macs provides seamless and easy deployment and configuration options. SD-RED layer 2 site-to-site tunnels offer a lightweight and robust VPN alternative.

Xstream SD-WAN and Networking

Includes all networking, routing, and SD-WAN capabilities, including zone-based stateful firewall, NAT, VLAN, SD-WAN profiles, performance-based WAN link selection and monitoring, load balancing, zero-impact WAN link transitions, and Xstream FastPath acceleration of trusted application traffic, IPsec VPN traffic, and TLS-encrypted traffic flows.

Reporting

Extensive on-box reporting provides valuable insights into threats, users, applications, web activity, and much more. Note that specific reporting functionality may depend on other protection modules to get the full benefits (for example, web protection or web and application reports).

What does the Sophos Standard Protection Bundle Include?

The Standard Protection Bundle offers the following features in addition to the basic functionality of every Sophos:


Enhanced Support

Enhanced support includes 24/7 support available around the clock, as well as regular feature updates to ensure that systems are always up to date. Additionally, advance hardware replacement during the warranty period guarantees quick replacement in the event of hardware failure.

Network Protection

The network protection solutions include the XStream TLS and DPI engine (Deep Packet Inspection), which enable in-depth analysis and inspection of encrypted traffic. Intrusion Prevention System (IPS) protects against network attacks, and Advanced Threat Protection (ATP) detects and blocks advanced threats. Security Heartbeat integrates security status information from endpoints into network monitoring. The management of SD-RED (Remote Ethernet Device) enables the integration and management of remote sites. Detailed reporting assists in monitoring and analyzing network security.

Web Protection

Sophos Web Protection offers comprehensive web policies to manage complex user and group policies based on inappropriate usage. Application-aware control allows the solution visibility and control over thousands of applications with traffic shaping (QoS) options. Synchronized application control automatically identifies unknown and evasive applications on the network. Supported by SophosLabs, the advanced engine protects against polymorphic and obfuscated web threats using innovative techniques like JavaScript emulation and behavioral analysis. Additionally, Xstream SSL inspection ensures ultra-low latency for HTTPS inspection without impacting performance.

What does Sophos Xstream Protection Include?

Sophos Xstream Protection offers the following features in addition to Standard Protection:

Zero-Day Protection

Sophos Zero-Day Protection effectively protects against known and unknown threats through a combination of static and dynamic file analysis. Supported by SophosLabs, the cloud-based platform enables rapid identification and blocking of ransomware. Static analysis uses machine learning for threat detection, while dynamic analysis monitors file behavior in a sandbox. Detailed reports provide comprehensive insights into threats, ensuring you are always optimally protected.

DNS Protection

Sophos DNS Protection is a cloud-based service that provides DNS resolutions and offers an additional layer of security for networks. It immediately blocks access to unsafe domains across all ports and applications, both for managed and unmanaged devices. It also enables the integration of compliance controls to block unwanted websites across the entire network. Through continuous updates from SophosLabs, the solution identifies malicious sites in real-time, providing effective protection.

Central Orchestration

Sophos Central Orchestration provides cloud-based management for VPN and SD-WAN orchestration, significantly simplifying network setup. This solution seamlessly integrates multiple WAN links and optimizes routing to improve resilience and performance while also incorporating user authorization and the Security Heartbeat for access control. Central Firewall Reporting offers cloud-based reporting with predefined reports on threats, compliance, and user activities. With the MDR/XDR connector, companies can utilize 24/7 threat detection and response from the Sophos MDR team.