Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 4 replies
  • Subscribers 28 subscribers
  • Views 2547 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG and Azure Site Recovery

Calyps

Has anyone ever used Azure Site Recovery to fail over an Sophos XG to another site along with all the servers behind it?  To do this I need to backup the firewall inside Azure but this is not supported as far as I can see.  Any ideas how else I can build a disaster recovery environment in Azure using Sophos XG?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Aditya Patel

    Thanks for the reply Aditya.  Active-Active solution is not required and neither does the client want to pay for another firewall licence and another running instance of the firewall in the DR resource group.  

    I would rather work on a scripted firewall deployment in the DR environment and then restore the original firewall backup to this DR firewall.  The next question is then how to move the XG Firewall licence from one Azure XG deployment to a new Azure deployment in case of a disaster. I presume I can first run the DR firewall with an evaluation licence and then redeploy the production licence. 

    Any further insights would be appreciated. 

  • 0 in reply to Calyps

    The point is, you can go with a manual process, called License Transfer.

    https://community.sophos.com/kb/en-us/126360

    But you can only perform this three times!

     

    XG attaches the License / Subscription to the Serialnumber. 

    You "could" boot another appliance with the same serial, but most likely this will break the license process. 

  • 0 in reply to LuCar Toni

    Thanks LuCar,  Sounds like the licence transfer process comes from the physical days and needs some updating for the world of cloud. 

    At the moment I`m really regretting not just going with Azure Firewall.

     

    Could you give me a bit more information on booting another appliance with the same serial number?

     

    Thanks!