Install XG Home on Protectli fw2b device

Thanks, I'll take a look at that option next time I am working on it.

You can export parts of your previous device's configuration and import therm into your new XG, just not all of them. You could try starting with your existing policies.

Ian

Thank you. I will just have to work on the default rules and policies.

Hi,

the backup will only work if the devices have the same number of interfaces.

The XG software installs based on NIC positioning within the hardware of the motherboard not on naming conventions.

You can make the changes to the default rules in the GUI without needing to use the configuration wizard.

Ian

The Protectli Vault fw2b has WAN and a LAN ports. When the Sophos firewall software is installed, the WAN port becomes port 1 and the LAN port becomes port 2. This effectively switches their roles.

Good morning! Well, I have it working, but still need to configure the firewall rules and policy. First, here is what happened:

The Protectli Vault fw2b has WAN and a LAN ports. When the Sophos firewall software is installed, the WAN port becomes port 1 and the LAN port becomes port 2. This effectively switches their roles. Once I plugged in my PC to the WAN port, I was able to connect via SSH and web gui. Thank you for putting up with this issue. Protectli told me that it happens, so now everything is okay.

Questions in regards to Sophos XG configuration. Can my backed up configuration from the old XG85 (17.5.x) to this Sophos home running 18.0.6.1? Can I restart the configuration wizard so that I can choose the least protection and then build from there? When the configuration wizard came up, I checked all the boxes and now I have a firewall that is too restrictive and won't even let webmail access.

Thank you again.

Hi,

this does not make sense! If the NIC is working correctly you should receive an IP address from thew XG, sounds like ae you suggested earlier the NIC has failed.

Ian

I did that yesterday. I verified the default address that Sophos comes with 172.16.16.16 and configured my PC to have the IP address 172.16.16.15. I still was not able to connect to the device. I could not ping the IP and I couldn't ping from the device to my PC. I was also unable to SSH in of course. At this point, I will have to console into the device and see if I can effect any changes. I will also be contacting Protectli for assistance.

Try reinstalling it and don’t change the default address.

ian

Well, that is what I am trying to fix/work on. Right now I can't which is why I reached out to the community. My reason for asking is to see if anyone else has run into this problem before. When I used an old computer, I was able to get in through the web gui, but for some reason I am not able to. I am going to have to try using the console port on the Protectli device and see if I can see what is happening. If this was Sophos support like I have for the obsolete XG85 I have, they would have told me to console in. I couldn't because I don't have a serial to usb cable to connect to the console cable that I have. I hope this answered your question. It is just frustrating that even when I could initially console in via the LAN IP, I couldn't get in through the web ui using port 4444.