Hey Community,
This article describes how to implement a full Active/Active HA Sophos XG on Azure. The deployment makes use of the new Azure standard load balancer with its HA ports feature for outbound load distribution.
Note:
- A separate license will be needed for each instance of the Sophos XG appliance (for BYOL).
- If customers are building their own templates using other IaC tools like Terraform, they need to use different health probe monitoring ports for the external and internal load balancers (E.g. TCP port 4444 and TCP Port 3128)
- Only an active/active solution is supported (no active/passive solution).
- The deployment automates the addition of the needed routes to the load balancers by using Azure automation runbooks.
With special thanks to DavidOkeyode
Regards,
This thread was automatically locked due to age.