How to perform the actual migration from UTM to SFOS

Question

I'm a long-time UTM home user but don't claim to be an expert. So how does one migrate from UTM to SFOS? 
 It would be very beneficial if the Sophos Engineers would provide a tutorial on everything from adding another Sophos appliance to a step-by-step comparison on how things are done differently, section by section when comparing the two. For instance, "This is how you set up WAF rules and policies in the UTM. This is how you accomplish the same thing in SFOS", using real examples. I truly believe a video tutorial series, which shows an actual migration, would help Sophos keep its customer base. 
 Maybe I'm wrong, but I don't think it is possible to create and maintain a set of 'UTM to SFOS' migration scripts which are100% reliable and work for all use-case scenarios. I think the best approach would be to add a SFOS box or VM to an existing UTM environment so that you can manually re-create your current setup on the new SFOS appliance--gradually, portion-by-portion, so that you can thoroughly test each piece that's been moved to the new SFOS appliance while maintaining the rest on the UTM. 
 So let's start with step one. How do you add a new SFOS box or VM to an existing UTM network so that you can access both. Which interfaces do you connect and are there any routes that need to be created?

LuCar Toni · Answer

Sophos works with a Partnerbase to install and migrate the firewalls. Sophos Partners are educated to get those migration in place. In the Channel /Partner business, Sophos educates Partners on the SFOS platform and how to do things there with real world examples. 
 You will actually find a lot of video / guides material on this forums for you use cases and there is no "Migrate A to B" Guide approach. 
 The good part is, some modules are the same, like WAF for example, it takes the same approach of configuration, just via Firewall. You will find Guides on the online help with the approaches here. Another source of approach would be: https://techvids.sophos.com/categories/sophos-firewall 
 The biggest challenge for migrations is the different approaches towards scenarios. For example: Firewall rules are a much more important role on SFOS than on UTM. You control most of the services like IPS, WAF, AppControl etc with a Firewall Rule, while this was modular based in UTM and each thing did it own. 
 How to start here? You find in the online help a guide for each platform: https://doc.sophos.com/nsg/sophos-firewall/20.0/Help/en-us/webhelp/onlinehelp/VirtualAndSoftwareAppliancesHelp/vs_VirtualSoftwareApplianceIntro/index.html 
 SFOS needs two interfaces at start, one to access the webadmin, one to access the internet. Depending on your platform, there are different approaches. For examples in Vmware you could do a Host only adapter for the LAN interface and a NAT Adapter for the WAN. Then you follow the guide. 
 TLDR: Home usage varies highly on the applicable setup. Some home users do it bare metal, some with a hypervisor.

How to perform the actual migration from UTM to SFOS

Top Replies