Make your SD-WAN goals a reality
Sophos Firewall and the Sophos Secure Access Portfolio of products are all managed and orchestrated through the Sophos Central unified security platform. They enable you to meet your SD-WAN networking goals simply and economically while offering zero-impact response to internet disruptions and outages, even in the most challenging environments.
Powerful link management
Sophos Firewall supports SD-WAN load balancing across multiple links using round robin weighting and session persistence capabilities. It also enables performance- and SLA-based link selection and routing, calculated using real-time packet loss, jitter, and latency metrics. When transitioning between links, the application traffic rerouting function has zero impact on performance.
SD-branch networking made easy
Extending your network to branch offices and other remote locations with Sophos SD-RED software-defined remote Ethernet device couldn’t be simpler. SD-RED supports zero-touch remote setup, with no technical skills required at the remote location, and you can orchestrate your SD-WAN overlay network from Sophos Central with a quick, intuitive point-and-click exercise.
Xstream FastPath acceleration
SD-WAN IPsec VPN tunnel flows are accelerated using either the Xstream Flow processors in many XGS Series firewall appliances or the virtual FastPath technology built into the software architecture. The processors can also offload and accelerate other important trusted traffic from the cloud.
Dynamic SD-WAN link selection
Even the best internet services experience occasional congestion and disruptions. When that happens, you want your SD-WAN solution to seamlessly transition sessions to your healthy WAN connections without slowing the performance of your VoIP, conferencing, and other important application traffic.
Real-time performance monitoring
Sophos Firewall automatically and dynamically monitors and generates reports on the performance of your internet connections in terms of packet loss, jitter, and latency metrics.
Zero-impact rerouting
When WAN link performance takes a hit, Sophos Firewall automatically reroutes traffic, including active sessions, to a better-performing link with no disruption to users or their applications.
Automated multisite VPN orchestration
If you’ve ever set up more than a couple of VPN tunnels between different sites, you know how time-consuming and tedious this process can be. Sophos Central orchestration tools make interconnecting your SD-WAN overlay network in the cloud quick and easy.
With just a few clicks, set up full mesh, hub-and-spoke, or any other type of SD-WAN overlay network with full tunnel redundancy and automatic failover. You simply select what gets connected, and Sophos Central takes care of automatically setting up the necessary tunnels and rules at the back end.
SD-branch
Remote and branch office connectivity
Sophos Firewall and the Sophos Secure Access Portfolio, including SD-RED devices and Sophos Switch, enable you to build a flexible, affordable SD-WAN overlay network. Get set up quickly and easily, no matter what or where you're connecting, and manage it all through Sophos Central.
Biogas domes
Wind turbines
Emergency vehicles
Cruise and cargo ships
Remote observatories
Construction sites
Retail locations
CCTV cameras
Public buses
Home workers
An innovative approach to VPN connectivity
- Zero-touch auto-provisioning for deployment by nontechnical staff
- Secure VPN connectivity to your Sophos Firewall from anywhere via our lightweight, robust, Layer 2 SD-RED tunnel
- Selective routing options for any mix of VPN and local WAN access traffic
- Enterprise-grade encryption
- Flexible connectivity options, including 3G/4G, copper, fiber, Wi-Fi, and PoE (SD-RED 60 only)
Zero-touch deployment to your remote locations
How it works:
Simply enter the SD-RED device ID into your Sophos Firewall and ship it to the location where it’s needed. As soon as the device is plugged in and connected to the internet, our provisioning service automatically connects it to your firewall and establishes a secure, dedicated VPN tunnel. You don’t need any technical skills at the remote site.
Ultra-affordable:
SD-RED devices are very affordable and require no additional licensing fees. SD-RED management is included in your Sophos Firewall Network Protection subscription.
Powerful and reliable application routing
Sophos Firewall enables direct-to-the-cloud, application-based routing for over 3,300 different applications, reducing your need to backhaul traffic through your datacenter. This capability allows you to accelerate application performance and improve the user experience.
The firewall also identifies and routes custom and obscure application traffic, which is a challenge for many competing products. With Sophos Synchronized Security™, your endpoints help identify these applications reliably to ensure that every application on your network is prioritized and routed efficiently.
Form factors for all your cloud and hybrid needs
Sophos Firewall offers a powerful and modular line of hardware appliance models, as well as software, virtual, and cloud deployment options and unique, affordable SD-RED devices to help you easily meet your networking goals.
XGS Series appliances
Sophos Firewall offers a full range of top-performing hardware appliances with modular connectivity options for all your LAN, WAN, and wireless needs, including Wi-Fi, cellular, copper, and fiber interfaces.
Cloud, virtual, software
Sophos Firewall is also available as a software appliance, supports all the popular virtualization platforms, and is available on both Azure and Amazon Web Services to protect and connect your public, private, and hybrid cloud networks.
SD-RED
Our unique zero-touch SD-RED edge devices make extending your secure network to branch offices and industrial control systems (ICS) easy. SD-RED lightweight Layer 2 tunnels provide a robust secure VPN solution. The setup works reliably even in the most hostile and high-latency network situations.
Azure Virtual WAN integration
Sophos Firewall’s integration with Azure Virtual WAN enables you to build a scalable SD-WAN network deployed across the global Microsoft enterprise WAN backbone while securing applications and traffic flows using Sophos Firewall’s full suite of protection capabilities.