Thread Info
  • State Not Answered
  • Replies 4 replies
  • Subscribers 10 subscribers
  • Views 239 views
  • Users 0 members are here
Options
Suggested

Firewall Groups - Pointers to good documentation or proceedures

furicle

I have a handful of firewalls in Sophos Central, all of them are 'ungrouped'

Some of them are quite similar, and I like the idea of a 'group' so that I can make changes to a number of firewalls in just one spot.

I have created a group and imported the config from one firewall into it.

But now I need more information.  Will all of the settings shown in the group be applied to every firewall that's imported to it?  Some of the settings (like static DNS settings for example) are specific to just one firewall.   Can I pick and choose what gets applied? And see what doesn't match the group?

The documentation I've seen doesn't go into any specifics, and I'm working with production systems, so I can't "play around and find out" unfortunately.

I'd really appreciate suggestions on more detailed docs, or walk through videos, or ?

Parents Reply
  • 0 in reply to LuCar Toni

    I did see that, but it wasn't clear to me.

    1 - what's a namen ?  Is that a typo for name?
    2 - what does 'push' mean - Is there a separate step to apply the policy to the firewall AFTER it's put in the group?
    3 - Maybe I'm thinking about this wrong - if I start with a blank policy for the firewall group, and import a firewall, what happens?  Does it remove things from the firewall we've imported?     Or does it only overwrite what's on the firewall when they both have the same name?  But it adds missing things?

Children
  • 0 in reply to furicle

    Yes sorry- Name means Object Name. 

    Everytime you touch the object in Central (edit, create, delete) it creates a job to push. 
    If you add a firewall to a group, it will push the entire group to the firewall (you can skip this, if you want). 

    If you create a new group, it will import the objects from the firewall to central (basically create a copy of the firewall in central). If you add the same firewall to the group, basically nothing will happen, as all objects are already on the firewall. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    OK.  Thanks, that's a little clearer.

    One more question.  If I have a completely blank group, and I add a firewall to that group, it will not change anything, right?

    It doesn't delete existing local settings?

    Then after that, if I add a thing to the group settings, it will add that to the firewall?   

Unfiltered HTML