I have two offices, both with Cisco ASA 5505 firewalls with a VPN linking the two offices. Our main office is 45 staff while our smaller office has limited personnel use (sporadically occupied during week) and serves as our backup DR site. Firewall policies on the ASA's are pretty straightforward.
I have purchased an XG 210 for the main office and an XG 115 for the small office. Both have Enterprise Protect. Initially, I just want to replicate what the ASAs are doing and then I'll expand into the additional features of the XG firewalls as I learn more about their capabilities.
My question is on initial deployment. I can have some flexibility with our small office because I can just let staff know to work in the main office during the migration. I have a bigger concern about backup replication to the remote office so want to minimize the downtime of the site-to-site VPN.
I'm looking for suggestions on deployment. I figure I'll start with the small office during the work week, get the XG 115 setup there, recreate the site-to-site VPN between the two locations so backups can then occur again, and then over the weekend, I'll use the experience I gained from the XG 115 install to do the XG 210 in our main office.
1) Does this sound like a reasonable migration plan?
2) Are there any issues (or guides) to setting up a site-to-site IPSEC VPN between Sophos XG and Cisco ASA 5505?
This thread was automatically locked due to age.
