Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

MIGRATION UTM TO XGS

ALL CONFIGURATION: LDAP + OTP NAT ROULES, ETC



This thread was automatically locked due to age.
  • What is your question?


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • HI

    I HAVE MIGRATION UTM TO XGS

    SOPHOS HAVE SOFTWARE WIZARD TO MAKE THESE?

    ROLES.NAT NETWORK ALL SETUP

  • I believe there is no publicly available tool. It used to be possible to use some wizard through the help of a Sophos partner maybe it's still possible but I don't know. But even then it is not advised to take this route as UTM completely different than SFOS is.

    In UTM IIRC you can print an entire config of the current setup. Also make sure to have a backup of the latest configuration and have the latest UTM installer available.

    Then manually install Sophos firewall and start configuring.

    If you happen to also replace hardware then you can already start setting up the new hardware and keep the current running for the time necessary.

    PS, please do not use all capitals, it is like shouting.


    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • He/She is from Japan, You find alot of people from Asia writing in all caps due the nature of there keyboard. 

    __________________________________________________________________________________________________________________

  • You find a migration script tool here:  UTM to SFOS Migration Utility 

    It migrated a lot of things over to SFOS.

    What you will have to do: Build a new firewall rule set, which is suitable for your needs. Likely UTM rule set is outdated (anyway). But you will have Services, Hosts, VPN Tunnels etc. all covered with the tool above. 

    LDAP Setup and OTP is not migrated. 

    Check with this service, in case of questions: https://doc.sophos.com/support/migration/en-us/firewall/index.html 

    __________________________________________________________________________________________________________________