Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 38 subscribers
  • Views 820 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Migration from UTM Home Edition

Dave Curr

I've been warned that I am about to reach the 50 IP limit in UTM Home, so I'm going to look to migrate to XG Home edition. Here's my plan

  • Create a VM with 4 network ports (current UTM device has 4)
  • build a config that looks similar to my UTM (network objects, IP addresses on interfaces, reserved DHCP addresses, rules  etc)
  • remove the HDD from my existing UTM home device
  • install XG fresh on a new physical disk
  • restore the above config 

Am I going to have any gotchas there? One thing that leaps to mind is the mapping of the physical interfaces to the ones configured in the backup. 

From what I've read, there aren't any migration tools available for home users - the main thing I'd like to avoid is having to manually migrate about 200 hosts, networks and groups, any way I can automate that? The CLI doesn't seem to offer that. Is there any easy way of getting the objects out of the UTM in text format? I can see it in the config report, but it's just a mass of text that would need reformatting, and would likely not be any quicker than doing them manually. 

Thanks

Dave



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    you cannot restore a UTM backup to an XG image. You can I believe export the host list in XML format and import that list into XG.

    All groups and networks will have to be created from scratch.

    The DHCP function on the XG is very simple, you cannot have the same MAC on different networks, you cannot assign multiple names to the same device. All static assignments have to be outside the DHCP scope. XG treats IP4 and IPv6 as two seperate firewalls in most instances except with the SSL/TLS (DPI) functions.

    I don't understand the requirement for 200 hosts, you can use wild cards in the FQDN and FQDN groups and the XG has an extensive host list built-in.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0

    Hi,

    you cannot restore a UTM backup to an XG image. You can I believe export the host list in XML format and import that list into XG.

    All groups and networks will have to be created from scratch.

    The DHCP function on the XG is very simple, you cannot have the same MAC on different networks, you cannot assign multiple names to the same device. All static assignments have to be outside the DHCP scope. XG treats IP4 and IPv6 as two seperate firewalls in most instances except with the SSL/TLS (DPI) functions.

    I don't understand the requirement for 200 hosts, you can use wild cards in the FQDN and FQDN groups and the XG has an extensive host list built-in.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

Children
  • 0 in reply to rfcat_vk

    Thanks. I think you may have misunderstood what i meant about the backup - I've built an XG VM, and I was planning to configure that ahead of time and restore a backup of that to the actual hardware after installing XG fresh. It's not going to be quick to build this, and with lots of schooling and working from home going on, minimising downtime is quite important!

    I wanted a real firewall as I wanted to protect my young son from the bad stuff as much as I could, as well as to learn more about firewalls and networking. The only way I can really do that is to have static DHCP entries (i have 49) and control what those devices can get access to (roblox has 18 host / network entries, netflix 6, etc). I group together all my bluray players (as an example) to manage their connectivity, my son's kit, all our apple devices etc, they all mount up, but i do see a number of them already in XG, and that will help. I'm looking for *anything* that makes life easier than copying data between two web GUIs. 

    rfcat_vk said:
    You can I believe export the host list in XML format and import that list into XG

    I've worked out how to export in confd format, struggling a bit with importing - having copy/paste data in a text file is a huge time saver in itself though, so thanks for the pointer.

    rfcat_vk said:
    you cannot have the same MAC on different networks

    Really? That's an interesting design choice - unnecessary extra work that can result in a negative impact (I want to plug my laptop into different networks and get fixed addresses each time). Any idea why it's like that? I can live without it, but it seems an odd thing to do. Interesting to see that the static addresses need to be outside the scopes on XG - coming from a Microsoft background I never did understand why UTM did it the other way. 

    Dave

  • 0 in reply to Dave Curr

    Hi Dave,

    the DHCP server is global, not network based and yes it ia pain when debugging network issues.

    You should investigate clientless users to be able to manage access and limit ports and web sites that devices can access.

    Further you will need to be ruthless with your ports (services) in your firewall rules to control and stop unwanted access to various proxies and tunnels.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

Unfiltered HTML