General Discussion Does any one know if XG is roughly at feature parity with the UTM yet?

UTM Firewall requires membership for participation - click to join

Thread Info

State Not Answered
Locked Locked
Replies 37 replies
Subscribers 10 subscribers
Views 5636 views
Users 0 members are here

Options

Suggested

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Does any one know if XG is roughly at feature parity with the UTM yet?

R Hartes over 3 years ago

Does any one know if XG is roughly at feature parity with the UTM yet?

Thanks

Richard.

This thread was automatically locked due to age.

Top Replies

LuCar Toni over 3 years ago in reply to dirkkotte +2

That is correct. SFOS is far ahead of the feature set of UTM (from a security perspective). But it is based on the perspective, you are looking at.

SFOS has plenty of next generation features and security features, which UTM does not have.

There are certainly some features, SFOS does not offer (yet) but UTM has. Some are explained here: IPv6 DHCPv6-PD, LetsEncrypt, some UI features. But for most of those scenarios, you could build some (better?) solutions with SFOS. For example LetsEncrypt could be usable with Wildcard Certificate integration with DNS providers.

But if Security and next generation features are interesting, SFOS is pulling ahead. MTR Integration, TLS1.3 Decryption, IPS Integration, Web Integration, Unified Firewall Rule set, Sync-Sec Security etc.

There are other features like XML Import/Export, which are one of the most powerful settings in SFOS. SD-WAN Routing, Central Integration etc.
Jump to answer

0 Steve Weißflog over 3 years ago in reply to LuCar Toni

We tried reflashing of an XGS116 by bootable USB stick (we tried also another USB Device and also front+back panel USB port of appliance) and Installer HW-19.0.1_MR-1-365.iso - Did NOT work as described! Device seems not to boot from USB-Stick. You see Status blinking for about 3 Minutes and than status stays green and you see normal HDD activity (blinking blue LED) while booting...

We also tried to push Enter while booting but did not change anything...

Reflashing seems not so be possible without graphic output or any change of boot order or something like that...

Frustrating!
Cancel
Vote Up 0 Vote Down

Cancel
0 LuCar Toni over 3 years ago in reply to Steve Weißflog

Check the console. Status green LED means, it finished the installation, if it started the installation.

And how did you create the installer?

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel
0 Steve Weißflog over 3 years ago in reply to LuCar Toni

We did it this way: https://www.avanet.com/kb/sophos-xg-firewall-os-auf-einer-sg-appliance-installieren/

We also tried an iodd bootable usb device (same we use for flashing UTMs) and we mount the the installer ISO with thad device (HW-19.0.1_MR-1-365.iso).

The Status LED just blinks for 2-3 Minutes and you see the blue HDD LED also blinking some times but than the status led stays green after 2-3 minutes - I think reflash should take more than 2-3 minutes...
Cancel
Vote Up 0 Vote Down

Cancel
0 LuCar Toni over 3 years ago in reply to Steve Weißflog

What does the console say? You can use the USB to connect to serial. https://support.sophos.com/support/s/article/KB-000035769?language=en_US

Sophos is recommending Etcher for the Stick: docs.sophos.com/.../index.html

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel
0 Steve Weißflog over 3 years ago in reply to LuCar Toni

I´ll check console now

We already used Etcher for USB flashing as you see in the avanet-Link...
Cancel
Vote Up 0 Vote Down

Cancel
0 Steve Weißflog over 3 years ago in reply to LuCar Toni

OMG the reason was an old XG Appliance AC-Adapter that we used in our workshop - Seems the USB ports of the appliance didn´t work correctly with that power adapter - appliance in all worked normal! With original power adapter everything worked as expected with(re) flashing devices with USB...Just the XGS 116 console output didn`t work correctly - XGS126 console output works as expected...
Cancel
Vote Up 0 Vote Down

Cancel
0 LuCar Toni over 3 years ago in reply to Steve Weißflog

You should compare the Watt coverage of both appliances. XGS has a higher power consumption compared to the XG/SG Hardware due the fact, there are two Chips running.

__________________________________________________________________________________________________________________
Cancel
Vote Up 0 Vote Down

Cancel