Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Functionality going from UTM to SFOS - got a map?

I am going from using UTM for years, to SFOS v20 on XGS 3300 hardware.

I haven't been able to find any reference that would map functionality from UTM to SFOS.

Does such a thing even exist?

Thanks!



This thread was automatically locked due to age.
Parents
  • I switched from UTM to SFOS a while back. Some things that are functionally different right off the bat:

    1. In the UTM is is very easy to assign static hosts from the DHCP leases. You can assign static IP addresses to devices even within the DHCP lease range. With SFOS it's a bit more difficult as the static hosts have to be outside of the DHCP lease range and must be manually entered by copying MAC addresses.

    2. In the UTM, you can "drag and drop" host objects into different fields to include or exclude devices from things like firewall and IPS rules.

    3. Things are generally easier to do in the UTM, but SFOS has many more security enhancements (such as DPI HTTPS inspection instead of just using the transparent proxy like the UTM has), SFOS has the built in "Sophos Assistant" and NAT/VPN setup wizards. But some things could be made easier, like creating static hosts, and being able to use FQDN as DNS forwarders.

Reply
  • I switched from UTM to SFOS a while back. Some things that are functionally different right off the bat:

    1. In the UTM is is very easy to assign static hosts from the DHCP leases. You can assign static IP addresses to devices even within the DHCP lease range. With SFOS it's a bit more difficult as the static hosts have to be outside of the DHCP lease range and must be manually entered by copying MAC addresses.

    2. In the UTM, you can "drag and drop" host objects into different fields to include or exclude devices from things like firewall and IPS rules.

    3. Things are generally easier to do in the UTM, but SFOS has many more security enhancements (such as DPI HTTPS inspection instead of just using the transparent proxy like the UTM has), SFOS has the built in "Sophos Assistant" and NAT/VPN setup wizards. But some things could be made easier, like creating static hosts, and being able to use FQDN as DNS forwarders.

Children
No Data