Sold by: Sophos
Deployed on AWS
Free Trial
Sophos Firewall for AWS delivers advanced threat protection for AWS environments and assets. Protect networks, applications, ensure security of ingress and egress traffic, and maintain high web-application availability.
4.6
Overview
Sophos Firewall integrates leading technologies into a single next-generation solution without compromising security. Highlights include deep packet inspection with IPS, ATP, URL filtering, and in-depth reporting; Bidirectional AV for WAF with authentication offloading, path-based routing, country-level blocking; and self-service SSL and HTML5 VPRN technologies to make connecting from anywhere and on any device a reality - without administrative overhead.
Preconfigured templates and centralized policy management save time managing user, application and network policies, and provide pre-packaged web filtering, IPS, traffic shaping and app control policies for Active/Active and Active/Passive deployments spanning multiple availability zones.
Sophos synchronized security allows organizations to link endpoints, cloud workloads, and firewall to relay health status and immediately to respond to threats on your network.
Part of a complete SaaS security platform. A selection of Sophos AWS solutions are included below with more at https://www.sophos.com/en-us/public-cloud .
- Deploy auto scaling firewalls in dynamic environments: https://soph.so/utm-autoscaling-payg
- Monitor resource configurations and analyze AWS security groups with Cloud Optix: https://soph.so/cloud-optix
- Neutralize active cyber-attacks with a dedicated team https://soph.so/Rapid-Response
If you have questions about Sophos solutions or need assistance with deployment and configuration, contact us at aws.marketplace@sophos.com .
The cloud formation template to deploy Sophos Firewall will optionally collect Sophos Central account credentials (email and password used to login to https://central.sophos.com ). These credentials are used only once by the firewall to connect to Sophos Central and enable management services. This step is optional, and can be performed at any time after deployment, following the instructions available here.
Highlights
- Sophos Firewall combines advanced networking controls, protections such as Intrusion Prevention Systems (IPS) and Web Application Firewall (WAF), plus user and application controls. Saving time taken to deploy and integrate multiple products.
- Web App Firewall (WAF) protects your web apps against common threats like SQL injection and Cross-Site Scripting. Next-Gen Firewall protection and reporting with stateful traffic inspection, Layer-7 application control, secure proxies, and IPS.
- Sophos Firewall includes extensive reporting. Sophos Firewall provides full insights into user and network activity, surfaced using easy-to-understand indicators so you can take preventive measures before problems occur.
Details
Sold by
Categories
Delivery method
Delivery option
Sophos Standalone Firewall for AWS
Sophos Firewall for Gateway Load Balancer
Sophos Auto Scaling Firewall for AWS
Sophos High Availablity Firewall for AWS
Latest version
Operating system
OtherLinux 22.0 GA
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free for 30 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
c5.2xlarge | $1.56 |
c4.2xlarge | $1.56 |
c5.4xlarge | $2.10 |
c4.4xlarge | $2.10 |
c5.large | $0.54 |
c5.xlarge | $1.02 |
c4.8xlarge | $2.70 |
c4.large | $0.54 |
m7i.xlarge | $1.12 |
m5.large | $0.58 |
Vendor refund policy
Terminate the EC2 instance(s) at any time to stop incurring charges. You may email aws.marketplace@sophos.com for questions regarding Sophos XG Firewall charges and refund requests.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Sophos Standalone Firewall for AWS
This CloudFormation template allows you to deploy a Sophos XG Firewall Standalone. The template will bring up a single XG Firewall instance with two ENI network interfaces attached to the instance, each interface is in a distinct subnet. The first interface is dedicated to the private subnet to be protected by the XG Firewall, the second interface is dedicated to the public/external subnet. The IGW is automatically attache to the public subnet.
CloudFormation Template (CFT)
AWS CloudFormation templates are JSON or YAML-formatted text files that simplify provisioning and management on AWS. The templates describe the service or application architecture you want to deploy, and AWS CloudFormation uses those templates to provision and configure the required services (such as Amazon EC2 instances or Amazon RDS DB instances). The deployed application and associated resources are called a "stack."
Version release notes
Additional details
Usage instructions
You can manage your Sophos XG Firewall on AWS from the Web Interface using HTTPS (TCP port 4444), the command shell using SSH (TCP port 22), and via the API.
Sophos XG Firewall requires a valid email address for administration purposes. This email address is not used for any other purpose and remains local to the Sophos XG Firewall AMI.
Resources
Support
Vendor support
For customers who participate in the AWS Product Support Connection, Sophos provides technical support via phone and web portal. Phone: +1-844-591-2756 Web portal:
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Sophos
By Palo Alto Networks
By Juniper Networks
Top
10
In Network Infrastructure, Security
Top
10
In Network Infrastructure
Top
50
In Migration
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Intrusion Prevention System
Deep packet inspection with IPS technology for threat detection and prevention
Web Application Firewall
WAF with bidirectional antivirus protection, authentication offloading, and path-based routing to defend against SQL injection and Cross-Site Scripting attacks
URL Filtering and Content Control
URL filtering capabilities with country-level blocking and pre-packaged web filtering policies
Centralized Policy Management
Centralized management of user, application, and network policies with preconfigured templates for Active/Active and Active/Passive deployments across multiple availability zones
Synchronized Security Integration
Synchronized security linking endpoints, cloud workloads, and firewall to relay health status and enable coordinated threat response
Application Layer Visibility and Control
Complete application layer-7 visibility and control of traffic with next-generation firewall capabilities in AWS environments
AI/ML-Powered Threat Detection
AI/ML-powered inspection engine with researcher-grade signatures for detection of zero-day threats, exploits, malware, spyware, and command and control attacks
Dynamic Policy Management
Policy definitions that dynamically apply to cloud assets based on AWS tags, Application IDs, User IDs, geographies, or zones without manual intervention
Cloud Infrastructure Integration
Seamless integration with Gateway Load Balancer, AWS Auto Scaling, and Transit VPC with AWS Transit Gateway for protection across dynamic and large-scale deployments
Advanced Threat Prevention Service
Cloud-delivered Advanced Threat Prevention security service with market-leading threat coverage against known and zero-day threats while maintaining performance
Next Generation Firewall Architecture
High-performance firewall solution with core firewall, VPN, NAT, and advanced L4-L7 security services including application security, IPS, and anti-virus capabilities.
Anti-Virus and Malware Protection
Cloud-based anti-virus protection that detects and blocks spyware, adware, viruses, keyloggers, and other malware over POP3, HTTP, SMTP, and FTP protocols.
Intrusion Detection and Prevention
Intrusion detection and prevention (IPS) system integrated with application visibility and control through AppSecure for threat detection and workload protection.
VPN and Secure Connectivity
IPsec and full mesh VPN termination services enabling secure connectivity from on-premises data centers, campuses, and branches to AWS cloud across geographically dispersed VPCs.
AWS Cloud Service Integration
Native integration with AWS services including Elastic Load Balancer, Auto-Scaling Groups, CloudWatch, Security Hub, Key Management Service, Elastic Network Adapter support, and Gateway Load Balancer with L3 gateway and L4 load balancer capabilities.
Standard contract
No
No
No
Customer reviews
Ashutosh Jha
Robust protection has blocked external threats and provides clear visibility into user activity
Reviewed on Feb 20, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Sophos Firewall is blocking threats from outside. I use Sophos Firewall to block threats from outside by implementing a rule-based policy, where whenever traffic has to pass through the firewall, I create a rule, and based on that rule, I can easily perform the configuration that I want with the restriction.
With the help of Sophos Firewall, I can also have visibility on my users, see what they are doing and what they need to use, and apply those types of restrictions from Sophos Firewall.
What is most valuable?
Sophos Firewall offers multiple features, including IPS, IDS, ATP, NDR, XOps, web protection, application protection, web server protection, and many more. Out of all those features, I find web protection and application protection to be very helpful and valuable in my daily work.
Sophos Firewall has positively impacted my organization by preventing outside threats, allowing me to easily monitor my users, and configuring any rule for any user regarding what they need to use and what I am restricting for the particular user. I can share that it has improved productivity because if anyone could ransom my network, they could demand money to decrypt the files, thus saving us money, time, and providing reliability.
What needs improvement?
Sophos Firewall can be improved by providing more throughput. As of now, it is working well, but if there is a report facility for generating more detailed reports, such as brief reports, it would also be helpful.
For how long have I used the solution?
I have been using Sophos Firewall for the last two years.
What do I think about the stability of the solution?
Sophos Firewall is stable as of now.
What do I think about the scalability of the solution?
Sophos Firewall's scalability is good; if I want to migrate, it can easily be done with the help of the backup and restore feature.
How are customer service and support?
Customer support for Sophos is very good. I would rate the customer support a 10 out of 10.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I previously used Fortinet before switching to Sophos Firewall. I switched from Fortinet to Sophos Firewall because of the licenses and the user interface; Sophos Firewall's user interface is very user-friendly, and unlike Fortinet, which requires purchasing a VPN license separately, Sophos Firewall includes the VPN license for free.
What was our ROI?
I have seen a return on investment as it has saved our money and time, especially since Sophos Firewall can save money from outside attackers.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for Sophos Firewall is good; with the Xstream Protection bundle, I can get multiple features, including DNS protection, and the VPN licenses are free for Sophos Firewall, making it very favorable.
Which other solutions did I evaluate?
Before choosing Sophos Firewall, I evaluated other options, including taking a demo for Palo Alto, but I found Palo Alto to be very high cost, so I did not switch to that.
What other advice do I have?
Sophos Firewall also includes a VPN feature with types of VPN setup that allows me to easily facilitate remote work. My advice to others looking into using Sophos Firewall is that I recommend it as it is easy to use, easy to deploy, and the licensing is not overly complicated, making it reliable. Sophos Firewall is very reliable, very user-friendly, and easy to use. I give this product a rating of 10 out of 10.
Saurabh S.
Synchronized Security and Centralized Cloud Management That Meets All Our Needs
Reviewed on Feb 18, 2026
Review provided by G2
What do you like best about the product?
1. Synchronized Security
2. Deep Packet Inspection
3 Advanced Web And application Control
4 Centralized Cloud Management
2. Deep Packet Inspection
3 Advanced Web And application Control
4 Centralized Cloud Management
What do you dislike about the product?
Nothing as much , all good form me and full fill our requirement
What problems is the product solving and how is that benefiting you?
1. Protecting against Cyber Threats
2. Controlling User Internet Usage
3. Securing remote Access
2. Controlling User Internet Usage
3. Securing remote Access
Radheshyam B.
User Management in One Dashboard
Reviewed on Feb 03, 2026
Review provided by G2
What do you like best about the product?
It easy to use and confirtable to manage all network and user on one dashboard
What do you dislike about the product?
Firmware updates can sometimes cause unexpected issues, including stability problems, in some cases requiring re-configuration
What problems is the product solving and how is that benefiting you?
Uses Sophos Labs AI and machine learning to identify and stop zero-day exploits and malware, reducing the risk of data breaches.
Mohammad A.
Easy to Understand, User-Friendly, and Highly Secure Firewall
Reviewed on Jan 21, 2026
Review provided by G2
What do you like best about the product?
It is easy to understand and user-friendly. Most secured firewall.
What do you dislike about the product?
NAT rules automatically created when creating firewall rule.
What problems is the product solving and how is that benefiting you?
As of now many problems solved by firewall. Round-robin process is very benefit.
Osama H.
Exceptional Security for Networking and User Protection
Reviewed on Jan 13, 2026
Review provided by G2
What do you like best about the product?
Secure My Networking and My user from any network attack
What do you dislike about the product?
Tge report doesn't have more details about my bandwidth usage
What problems is the product solving and how is that benefiting you?
Secure mu users and secure the Internet