Homepage » Blog » Sophos Firewall » Sophos XG Firewall - Security Heartbeat
Sophos Security Heartbeat

Sophos XG Firewall - Security Heartbeat

Last year in November, Sophos officially released the new XG series and set a huge milestone in its roadmap. In order to develop such a product, which already is in use here (Sophos XG 125), especially on the software level, you need to look back to at least 2011. Back then, Sophos bought the German company Astaro. Three years, later, Sophos also acquired the competitor Cyberoam, which had been founded in 1999 in India.

From the components of Astaro and Cyberoam, the new Sophos XG Firewall has been made and now unites the best from both systems.

Killer feature - Security Heartbeat

What Sophos has created with the new Sophos XG Firewall is communication between the firewall and the endpoints. Sophos is the first company to release a Synchronized Security system, which is supposed to protect from the more and more clever cyberattacks.

  • Quicker identification of threats
  • Active identification of the threat's origin
  • Automatic reaction on threats

New XG Hardware

Fitting the new Sophos Firewall OS, the new XG Hardware is being released. Just that it isn't so new. The XG series is identical to the SG series, just that the pre-installed operating system is different.

  • The Sophos SG comes with the Sophos UTM 9.x
  • The Sophos XG comes with the Sophos Firewall OS

Data sheet: Sophos XG Appliances

How does Security Heartbeat work

In order to profit from the new Security Heartbeat, a SG or XG appliance with the new Sophos Firewall OS is required. The endpoints get Sophos Central protection, which is now also being hosted in German data centers.

Then, as soon as a new Sophos-protected endpoint device is added to your network, its Security Heartbeat automatically connects to the local Sophos XG Firewall and communicates the security status of that device. In real time, threats are communicated to the firewall, which then denies the client access to the Internet or the company server, depending on its configuration. In the near future, the client may also be stripped of the keys used for data encryption. Only when the firewall classifies the client as "clean" again will it get the keys back. The systems therefore exchange keys, which means that attacks can be responded to much more quickly. Pretty clever, isn't it?

Thanks to this new technology, it's possible to protect yourself even better against new threats from the internet. Security breaches are reacted to in real time to prevent for example malware from spreading or data from being stolen.

"No other company is currently able to provide this kind of synchronized and integrated communication between endpoint and network security products. The resulting time and resource savings are very attractive, especially for the SMB sector; as is the ability to stand up to increasingly sophisticated cyberattacks."
Christian Christiansen, Vice President of Security Products at market researcher IDC.


Admittedly, the new Sophos Firewall OS doesn't have much in common with Sophos UTM 9.x anymore. It takes some time to get used to the new interface. But Security Heartbeat alone is big enough of a reason to give the new Firewall OS a chance! Make your network safer with Synchronized Security.

In case you need support with the configuration, we're happy to help.

Shopping Cart
Scroll to Top