Re: Ditched them months ago
The Microtik Hex is fast but that's mostly because it's little more than a simple SPI firewall which has been around for more than two decades, while Sophos XG is a full blown NGFW/UTM firewall which can decrypt, identify and block traffic and scan for malware. In terms of network protection, it's a world of difference, and in today's security environment a SPI firewall alone is pretty meaningless as border device to protect against malware or attacks.
The same is true for open source firewall distros like OPNsense or (*shudder*) pfSense.
I have been running Sophos XG Home for some time (installed on a HP T620 Extended thin client with intel 4-port NIC) and had no problems pushing through full line speed at a 500Mbps connection (without DPI, obviously; with DPI the bandwidth dropped notably to around 200-250Mbps; obviously more powerful hardware would have helped here).
Sophos XG Home uses up to four cores and 6GB RAM, so it's not limited to single core as claimed by another poster.
Granted, being a NGFW/UTM it comes with a steep learning curve (and the sometimes illogical UI doesn't help) and it's easy to impair performance by making the wrong setting. But at the end of the day, Sophos XG is an enterprise product, so the complexity should not come at a surprise.