Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 449 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

In place Upgrade from Sophos UTM to XG Next Gen FW

Timothy O'Brien

Hi All,

We are in the process of trying to migrate off our old Sophos UTM FW and onto our new XGS firewalls. We have a mid sized organisation running multiple vlans through the UTM. Our idea is to have the XG and SG running in parallel to test vlans and basic routing without impacting the current business. We would also like to introduce new domain controllers on new vlans on the XG to minimise risk to existing authentication.

We keep getting stumped on how we would implement this with existing vlans. Sure, we can place the XG into the same vlan and give an IP but without the XG taking over the gateway we can never truly test traffic routing. Has anyone else done a similar migration, can you point any documentation or suggestions on how we should go about this?

Thank you!



This thread was automatically locked due to age.
Parents
  • 0

    You can do the same VLAN and other IPs. Then migrate the clients you want to test from DHCP to static. In static IP leasing you can change the gateway to your SFOS appliance and test the new routing. 

    But this could potentially lead to problems, if the target system is trying to send the data back to UTM causing invalid routing and asymmetrical routing. You can workaround this potentially with SNAT for your internal network. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Thank you Lucar. Do you mean that we should essentially create two gateways on a vlan and statically assign the devices to migrate them across?

Reply Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?