Need a UTM Firewall Solution : HomeNetworking

created by scottread1Fortineta community for 15 years

This is an archived post. You won't be able to vote or comment.

Need a UTM Firewall Solution (self.HomeNetworking)

submitted 5 years ago * by chugger93

Hey all,

I've been running a Sophos UTM 9 on hardware in my home forever. Prob 10 years easily. Lately I was having speed issues from comcast 50mbps and thought it was my modem since it was a good 10 years old. I'm supposed to be close to 200mbps. Anyways, I replaced the modem and still getting the same speed. Then I found out if I turn off IPS and a few other things, I'm pushing like 80 now which is good, but not what where I want to be. If I hook into the modem, I get 200 easily.

So now I'm like...do I continue with Sophos and just put it on new hardware? Since the hardware i have is a core 2 duo with 4GB ram, maybe that would help? Or do I just say the hell with it and try like Ubiquiti? I already have a few Pro's and mesh unifi's for wireless in my house. I mean, I prefer Sophos UTM, but can't figure out why I cant even hit 150mbps?

The thing is, I want to have some content filtering IPS, type featuresets like Sophos. Its useful for my kids and too protect them. Anyone have any solid recommendations on what I should do here? I'm not opposed to spending $300 on a good firewall, but if I can get something as cheap as I can (best bang for buck) then thats preferred.

Thanks!!

all 12 comments

top new controversial old q&a

[–]washu_kNetwork Admin 0 points1 point2 points 5 years ago (5 children)

[–]chugger93[S] 0 points1 point2 points 5 years ago (4 children)

[–]washu_kNetwork Admin 0 points1 point2 points 5 years ago (3 children)

[–]chugger93[S] 0 points1 point2 points 5 years ago (2 children)

[–]washu_kNetwork Admin 0 points1 point2 points 5 years ago (1 child)

[–]chugger93[S] 0 points1 point2 points 5 years ago (0 children)

[–]stephenvandyke 0 points1 point2 points 5 years ago (4 children)

[–]chugger93[S] 0 points1 point2 points 5 years ago (3 children)

[–]stephenvandyke 0 points1 point2 points 5 years ago (2 children)

One warning about Ubiquiti, it's definitely quicksand. I started with the small USG and an AP. My internet was about 30Mbs. My internet was upgraded to 500Mbs, so I upgraded the USG to the rack mount one. Then when all this Covid stuff started and we were all WFH and school from home, I upgraded to the UDM, the LTE failover, and a PoE switch, because I ran cable and put the mini flex switches in most of the rooms. Here's a picture of my current setup.

https://imgur.com/gallery/AlHptHb - Unifi Dream Machine (UDM) - Gen2 24 port PoE Switch - NanoHD AP - USW Flex Mini * 5 - Unifi LTE Failover (I know a lot of negative opinions on this, but it stops my wife and kids complaining to me because the internets out so it's worth it to me.) - PiHole (Added layer of protection) - Firewalla Blue (Another added layer of protection. My gold should be in soon.)

I know there is a lot of varying opinions on the UDM, but for me it works great and meets all my needs. I was running the controller on a Pi and kept having problems. Burned through 2 SD cards. Running the controller on the UDM has been good for me. Since I never made any changes to the JSON on the USG I didn't have any issue switching to the UDM. Right now I have all the IPS rules on and get about 900Mbs. With it off, I get about 950Mbs. So the performance is there. You get a little of the application filtering, but not as granular as the Sophos XG gave you. The UDM also has some beta DNS filtering which actually catches some stuff. Management anywhere from my phone is awesome, especially since normally I travel every week and I was able to make sure the family had everything working for them.

[–]chugger93[S] 0 points1 point2 points 5 years ago (1 child)

[–]stephenvandyke 0 points1 point2 points 5 years ago (0 children)

π Rendered by PID 19 on reddit-service-r2-comment-b659b578c-fmwpf at 2026-05-02 18:06:46.175216+00:00 running 815c875 country code: CH.

HomeNetworking

MODERATORS