RED devices on restrictive network?

Question

How would the RED unit work on an MPLS network? Eg we have a remote site on MPLS and we need a secure connection from that remote site to our UTM which is on the edge of our main site? Now before anybody mentions MPLS security etc, this is for security within our network so that our other sites on the MPLS network can't sniff the traffic from this site. So, how would a RED unit find the UTM in this scenario? 
 Also, if we decide to deploy another RED unit at another site (point to point) which has a restrictive firewall on it's edge only allowing dns, http & https, how would the RED unit fair there?

joney · Answer

I am not sure I fully understand your MPLS setup, but I think RED manual deployment might be what you are looking for. When adding a RED without the Deployment Helper, you can choose 'Device deployment: 'Manually via USB Stick'. Then you can transfer the initial configuration via a USB stick to the RED. 
 For your second question: Sophos RED requires Ports 3400 and 3410 in order to work, see https://www.sophos.com/de-de/support/knowledgebase/122755.aspx for more information.