Skip to content
The XG Series hardware appliances will reach end-of-life (EOL) on March 31, 2025. Click here to see the XG to XGS migration documentation.

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/sophos-firewall/21.5/Help/en-us/webhelp/onlinehelp/index.html?contextId=NDR-Essentials

NDR Essentials

Network Detection and Response (NDR) is a category of network security products designed to detect abnormal traffic patterns to help identify active adversaries operating on your network. Even skilled attackers need to move across or communicate out of your network to carry out an attack. NDR uses sensors to monitor and analyze your network traffic to identify suspicious activity.

  • About NDR Essentials

    NDR Essentials uses machine learning to analyze your firewall traffic, and detect indicators of compromise (IoCs).

    About NDR Essentials

  • Configure NDR Essentials

    Learn how to configure NDR Essentials.

    Configure NDR Essentials

  • Test NDR Essentials

    Generate test detections to check that Sophos NDR is correctly set up and working.

    Generate NDR test detections