Follow us :
Xen Bilişim
TR
Get a Quote
Next-Generation Firewall (NGFW) · Firewall

Sophos XGS 138 Firewall (2nd Gen)

Last reviewed:

Sophos XGS 138 is the "distributed edge gateway" model of the 2nd Gen XGS SMB lineup — designed for 150–200 user mid-market organisations or high-bandwidth fibre backbone needs. 19.1 Gbps firewall, 5.85 Gbps IPS, 1.7 Gbps TLS 1.3 inspection. 4x GbE copper + 2x 10 GbE SFP+ fibre ports support multi-datacentre connectivity, MPLS+fibre combinations and high-traffic branch interconnect.

19.1 Gbps Firewall + 5.85 Gbps IPS

Highest IPS throughput in 2nd Gen SMB series.

2x 10 GbE SFP+ Fibre

Fibre backbone or multi-datacentre connectivity; 10 Gbps.

TLS Inspection 1.7 Gbps

High-volume encrypted traffic inspection.

Synchronized Security

Coordinated response with Intercept X + MDR + Email Protection.

Who is XGS 138 for?

150–200 user mid-market orgs, fibre backbone scenarios, multi-branch HQ. 10 GbE fibre ports for MPLS, dark fibre or high-speed internet links.

  • 150–200 active users
  • Fibre backbone / 10 GbE
  • HQ + multiple branches
  • PCI DSS / ISO 27001 / KVKK strict compliance

High Availability + Multi-WAN

Two XGS 138 in Active-Passive HA. Multi-fibre + 5G failover, SD-WAN load balancing. Distributed edge HQ deployment.

Licensing

License model

Hardware + Annual Subscription (Xstream Protection)

Commitment options
  • 1 year
  • 3 years (recommended)
  • 5 years

2nd Gen hardware. Enterprise Support (4h RMA) optional. Redundant PSU standard.

Who is this for?

150–200 user mid-marketFibre backbone needsMulti-site enterprise HQProduction/logistics/finance

Frequently Asked Questions

XGS 138 vs XGS 128?

XGS 128: 9x 2.5 GbE + SFP — 100–150 users, mixed fibre+copper. XGS 138: 4x GE + 2x 10 GbE SFP+ — 150–200 users, fibre backbone.

Old XGS 136 vs XGS 138?

2nd Gen hardware: 10 GbE SFP+ ports (was 1 GbE SFP), Wi-Fi 6, higher IPS, 5G slot.

What's beyond XGS 138?

Sophos XGS 2100/2300 (200–400 users), XGS 3100/3300 (400–800), XGS 4300+ (enterprise). 1U rack-mount models.

SFP+ transceiver included?

No — separately purchased. Multi-mode (LC fibre) or DAC copper options.

HA + 10 GbE complexity?

Sophos Central HA wizard sets it up in 30 min. Fibre cabling is physical work. Xen Bilişim delivers as full package.

Xen Bilişim Deployment Process

  1. 1. Discovery & sizing: Current environment, user count, OS/cloud distribution and compliance requirements analysed; correct SKU and licence count proposed.
  2. 2. Pilot deployment: A 10-25 device subset goes live; integration with existing security stack tested; alerting + reporting configured.
  3. 3. Full rollout: Phased rollout across all endpoints; policy templates applied; user training and IT runbook delivered.
  4. 4. Optimisation & follow-up: 90-day post-launch tuning: false-positive triage, policy hardening, KPI review and quarterly health-checks.

Typical end-to-end timeline: 2-4 weeks (varies by user count and integration scope).

Get a tailored quote for Sophos XGS 138 Firewall (2nd Gen)

Get a Quote 0850 259 5949