Sophos XGS Uplink Interfaces

Question

Migrating our sites, and my brain, to sophos XGS from UTM 
 
 In the UTM when I setup multiple WAN interfaces for uplink balancing, the object Uplink Interfaces was created. I could then use this object for things like the masquerade rules 
 
 I do not see this in XGS, is it not done anymore? 
 
 Is it not required? If i put both WAN Ports in a masquerade rule, will the XGS know to only use 1 or the other based on some setting (like the weight in uplink balancing?) or will it possibly cause split leg connections if i do this?

LuCar Toni · Answer

So essentially i wrote an recommended read about this: Sophos Firewall: Routing in Sophos Firewall with SD-WAN PBR 
 You have something like: WAN link manager (its the Uplink Interfaces). You have NAT and you have Routing. 
 Use the SD-WAN Routes to do multipath Routing like in UTM (but with a lot more features compared to UTM). 
 Then use MASQ (if you have different alias IPs). If you dont have multiple IPs on the same interface, use the default MASQ rule, it will do everything for you. Control everything via SD-WAN and you will be fine.

Sophos XGS Uplink Interfaces

Top Replies