Shopping Cart

No products in the cart.

Sophos Switch – What you need to know about the new product

There are currently two really exciting topics at Sophos. Zero Trust Network Access and the switches. This post is about the latter and we have almost all the information together by now.

Hardware: 10 models

I’ll start with what we already know about the Sophos Switch hardware. So that you are not completely overwhelmed by the names or have to search for the differences in the product table, I will first explain the name model and thus also the rough differences in the hardware. The names of the Sophos Switch models already reveal a lot about the technical data of the hardware. The following image shows the CS110-48FP switch as an example:

The naming model and the differences of the hardware

There will be the following 10 switch models from Sophos:

100 Series – 1 Gbps

200 Series – 2.5 Gbps

All technical data can be found in the Sophos switch data sheet or on the product pages of the switches.

Thanks Sophos, for the test device 🙏

We received a Sophos Switch CS110-48P from Sophos back in October as a test device. Many thanks to Sophos for giving us the opportunity to try out and test this great device ourselves. Here are a few photos of the CS110-48P switch:

Only the hardware or with license

Sophos Switches can be purchased with or without a license. If you opt for the hardware only (without a license), the following services are included:

  • Local Web Management – The Sophos switch can be managed directly via browser without any restrictions.
  • Command Line Interface (CLI) – The Sophos switch can also be managed from the console, again without restrictions.
  • Limited lifetime warranty – The Sophos Switch is covered by the warranty until the End-of-Life date. When Sophos talks about lifetime here, it is about how long Sophos will support this product. At the current time, a minimum of 5 years can be assumed.

Added value of the subscription

At the current time, the added value of the subscription consists of the following:

  • Sophos Central Management – The Sophos switch, can be managed via Sophos Central.
  • Advanced RMA Support – Fast processing in case of a hardware defect
  • 7 × 24 telephone support
  • Firmware updates

If the subscription is no longer renewed, there is of course no more telephone support, the warranty service is standard again, the Central Management is in read-only mode and the firmware updates have to be installed locally again.

Subscription price

Sophos sets the price for service and support here at 10% of the hardware price, and at 8% for a 3-year license.

Admittedly, the features of the Service are very weak at the moment. It’s a bit like deciding to buy the autopilot when you buy a Tesla. First and foremost, you buy the potential that will follow. In the case of the Switch, this would be features such as Synchronized Security or XDR/MTR functions.

Local GUI

I have now explained the models and what options are available when purchasing. Let’s move on to the management of the switch. We have been using the device productively for a few weeks now. As expected, the hardware makes a good impression, but it is the software that can make the hardware exceptional. In this early version, it makes an excellent and stable impression. The GUI is available in nine languages: English, Spanish, Italian, German, French, Portuguese, Chinese, Japanese and Korean.

There is also a dark mode and the interface is more responsive than you are used to from other Sophos products. The loading time is still a little slow in some places, but this has already improved a lot since the last firmware and should be completely fixed by the final version.

Here are a few impressions of the web interface:

Switch management via Sophos Central

Sophos offers various ways to manage the new switches. You can configure them locally via the web interface or CLI (command line) and, if required, also via SNMP. However, the easiest and most convenient method is certainly the Sophos Central connection. This means that in future you will have your firewalls, Access Points and switches, together with all other Central solutions, combined on one console.

Here are some first impressions of what is currently possible with Central:

Availabilities

We know that some people are already waiting for the Sophos Switches. Sophos is expected to be able to deliver the first models in mid-December 2021, but the number of units is still massively limited. Things don’t look much better until February / March.

Conclusion

We have been dreaming of a Sophos Switch for a few years now. The product makes perfect sense in the line-up and completes the network portfolio. However, Sophos’s last acquisitions were always software companies. Other manufacturers have long had a central dashboard for switches and Access Points, but sometimes the firewall or endpoint was missing. With the Switches, Sophos is bringing an important product into their ecosystem.

There have been rumors for some time that Sophos is working on a switch series. It is therefore all the more pleasing that a market launch has now been successful, even if only very small quantities will be available at the beginning. But launching a new product during a global chip crisis is also very courageous and no easy task.

Central Switch

The product name begins with CS, which stands for Central Switch. If you only buy the switch, without the service and support subscription, the Central part, which makes the switch so interesting, is omitted. Without the management with Central, the question arises as to why you should buy a Sophos Switch and not a product from another manufacturer. The management of the switches via Central, alongside the firewalls, Access Points and the other Central modules in one console, is therefore a really great selling point for anyone who is already in this ecosystem or would like to build on it in the future.

Nevertheless, it has to be said that the software will not be ready when the switches are launched. Exciting killer features such as Synchronized Security or XDR/MTR connectors will probably not be available until later. In most cases, however, a switch is a purchase that will be used for longer than 3 – 4 years anyway. If Sophos delivers these functions within a reasonable period of time, this can be overlooked without hesitation. True to the motto “connecting points”, an incredible amount is possible with this central device in the network and the upcoming functions are just the beginning. 😎

Sophos switches as the new standard

We already have some customers expressing strong interest in the new Sophos Switches and once they are available, we will be able to gain even more experience in other environments. From what we have seen and tested so far, we can already say that Sophos Switches will be our first choice for suitable projects in the future. Up to now, we have used switches from Ubiquiti, and there was really nothing wrong with them. But we still really like the Sophos Switch ecosystem, and with the new switches it will be even more powerful.

Update: The Sophos Switches were a good idea, but the portfolio has gaps (core switch) and the price-performance ratio is not quite right either. Even a year later, the promised functions have not appeared. You definitely get more for your money with other manufacturers.

Avanet opinion 2023-12
Patrizio
Patrizio

Patrizio is an experienced network specialist with a focus on Sophos firewalls, switches and access points. He supports customers or their IT department in the configuration and migration of Sophos firewalls and ensures optimal network security through clean segmentation and firewall rule management.

Subscribe Newsletter

We send out a monthly newsletter with all the blog posts for that month.