Follow us :
Xen Bilişim
TR
Get a Quote
Next-Generation Firewall (NGFW) · Firewall

Sophos XGS 118 Firewall (2nd Gen)

Last reviewed:

Sophos XGS 118 is the mid-segment of the 2nd Gen XGS SMB lineup — the most-chosen model for 50–100 user SMBs. 15.5 Gbps firewall throughput, 3.5 Gbps IPS, 1.1 Gbps TLS 1.3 inspection. 9x 2.5 GbE ports + 1x SFP fibre + Gen.2 5G module expansion slot. Sophos Central management, Synchronized Security, Cloud Sandbox and Zero Trust Network Access (ZTNA). XGS 118w variant includes integrated Wi-Fi 6.

15.5 Gbps Firewall + 3.5 Gbps IPS

SMB sweet spot throughput; ATP + ML-based threat protection.

TLS 1.3 Inspection 1.1 Gbps

Over-1 Gbps encrypted-traffic inspection capacity.

5G Module Slot

Gen.2 5G module for primary or backup mobile connectivity.

SD-WAN + ZTNA

Multi-WAN load balancing + application-based remote access without VPN.

Right for which SMB?

Optimal for 50–100 user single-location offices or HQ + 3–5 branches. 9 GbE ports + SFP + 5G slot.

  • 50–100 user SMB
  • HQ + 3–5 branches (SD-WAN)
  • Production/logistics single site
  • 5G primary/backup needs

Relation to existing AV/EDR

XGS firewall handles perimeter; endpoint side needs Sophos Intercept X (or competing EDR). Together they form Synchronized Security.

Licensing

License model

Hardware + Annual Subscription (Xstream Protection)

Commitment options
  • 1 year
  • 3 years (recommended)
  • 5 years

2nd Gen hardware, optional redundant power supply (XGS 1xx series). Premium Support + 24h RMA included.

Who is this for?

50–100 user mid-SMBMulti-location HQProduction/logistics single siteKVKK + ISO 27001 readiness

Frequently Asked Questions

XGS 118 vs XGS 128?

XGS 118: 15.5 Gbps fw / 3.5 Gbps IPS / 1.1 Gbps TLS — 50–100 users. XGS 128: 19.1 Gbps fw / 4.65 Gbps IPS / 1.45 Gbps TLS — 100–150 users.

Old XGS 116 vs XGS 118?

2nd Gen hardware: 9x 2.5 GbE (was 8x 1 GbE), 5G module support, higher throughput, optional redundant PSU.

High Availability?

Yes, two XGS 118 in Active-Passive HA cluster.

What does the 5G module provide?

Gen.2 5G module makes XGS primary or backup in locations without fibre/cable. Monthly data plan from carrier.

SD-WAN?

XGS 118 native SD-WAN support — no extra licence.

Xen Bilişim Deployment Process

  1. 1. Discovery & sizing: Current environment, user count, OS/cloud distribution and compliance requirements analysed; correct SKU and licence count proposed.
  2. 2. Pilot deployment: A 10-25 device subset goes live; integration with existing security stack tested; alerting + reporting configured.
  3. 3. Full rollout: Phased rollout across all endpoints; policy templates applied; user training and IT runbook delivered.
  4. 4. Optimisation & follow-up: 90-day post-launch tuning: false-positive triage, policy hardening, KPI review and quarterly health-checks.

Typical end-to-end timeline: 2-4 weeks (varies by user count and integration scope).

Get a tailored quote for Sophos XGS 118 Firewall (2nd Gen)

Get a Quote 0850 259 5949