Changing from Sophos UTM to OPNsense

Started by kosta, February 07, 2021, 03:06:21 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
February 07, 2021, 03:06:21 PM Last Edit: February 07, 2021, 03:56:33 PM by kosta
Hello,

so, it's time. I am completely new to OPNsense. My Sophos has reached 50 IP limit, I have a new server at home with VMware, connecting my NAS with 4 IPs to the new switch, some new IOT devices. Yeah... it's time.
And this is coming to a very very bad time. I have lots of work from home, and the deal is that I *have* to change, or I just might won't be able to work suddenly, because Sophos blocks me.
So, I will go forward, and dump the Sophos as soon as I have managed to start the VM with the backup, for the reference. Beside that, it's gonna be a very bumpy ride, I guess.
I have a site-to-site with our Sophos UTM in the company, which I don't even know if it's gonna work.
Then I also have some specific routing stuff for my telephone at home (3CX).
Basic stuff, internet, is going to work, no doubt.

Anyway, I know I have a very good manual for the UTM.

I am fairly good in networking stuff and understanding what goes where, I have a Aruba 1930 which I have in the company too, using VLANs, etc. So not really a noob here, but I'm sure many things will just not be understandable for me in the OPNsense.

I already have it in a VM, so I did find some basic stuff like interfaces, DNS, DHCP, but apart from that...

What is the best way to get the OPNsense known? Learn it...? I see online documentation, which seems very good. A lot to take in. Any other recommendations you have for me?
February 07, 2021, 05:50:16 PM #1
Another question:
Any chance to get Sophos AP15 to work with the OPNsense?
Most likely not, it's why I already ordere Unify... but hell, doesn't hurt to ask.
February 08, 2021, 04:44:07 AM #2
I would be interested to know too for the sophos AP.  I have AP 55C and would be great if I can re-purpose it for usage with OPNsense.
February 08, 2021, 08:20:42 AM #3
Just FYI: it did work a while, but after some time, all WLAN ceased, and they are "dead". I see no way to configure them.
I ordered Ubiquiti AP yesterday already.
December 18, 2022, 09:00:38 PM #4
Hi Kosta! Just wanted to let you know that I am in a very similar place as you were last year: coming from Sophos UTM, consistently exceeding the 50-ip limit with all my IoT devices, with a site-to-site IPsec VPN with another UTM at the office, Lets Encrypt, a number of WAF/Web Protection rules, and a home lab vSphere infrastructure.

I now have OPNSense set up behind my UTM, and am double-NATing my VLAN of IoT devices to hide them from Sophos. So I no longer have the IP problem, per se. But I eventually would like to just move completely to OPNSense. How has the transition gone for you? I wonder if you have any links/pointers/gotchas to share around setting up the VPN and the WAF. I hope it's worked out for you!



Print
Go Up Pages1
User actions