Hi, I need some advice on this.
We don't currently have Sophos UTM but are looking to implement it.
Current setup is as follows:
1) Secure Gateway - Juniper SRX in Active/Passive configuration (handles firewall and routing) This connects to the WAN cisco router and the internal core LAN switch. Also controls Wireless controller for guest and LAN wifi, and VPN. Handles destination NAT to mail server and source NAT to DMZ zone which forwards to Microsoft TMG.
2) Microsoft TMG as a reverse proxy, external clients come from untrust on the SRX and are forwarded to a DMZ address which sends them to the DMZ adapter on the TMG server. We use this to publish sharepoint sites, lync, CRM, and a couple of other websites.
We purchased the UTM licences for the Juniper, I like the SRX but the UTM just doesnt work.
My question is how would I setup Sophos UTM to sit behind the SRX firewall/routers, handle all the UTM scanning (web filtering, IDP), and also become a replacement for TMG so we can publish all our sites securely?
We also load balance these websites for internal uses on a separate internal rule through TMG.
All our internal clients use the Juniper as the gateway.
I have looked at documentation on replacing with TMG and it seems to be focused on using Sophos as your only secure gateway.
Any advice would be great.
Thanks
Ross
This thread was automatically locked due to age.
