Link to home
Start Free TrialLog in
Avatar of Matthew Cioffi
Matthew CioffiFlag for United States of America

asked on

Port OpenBSD PF firewall to Sophos UTM

Hi Folks,

I have been handed an environment that includes an OpenBSD PF firewall that needs to be ported to a hardware firewall.  

I'm looking for some tips on getting this done.

I realize this could be a very wide open question, but where is it best to start?  I have used different Sonicwall firewalls, but never OpenBSD.  Where do I look for the proper rules to recreate in the Sophos?  

Any suggestions are greatly appreciated.

Thanks.
Avatar of gheist
gheist
Flag of Belgium image

If you have block-by-default policy it is pretty straightforward to recover logic of ruleset and repeat it in other firewall.
In opposite case i would suggest by analyzing traffic for some time and trying to figure out which traffic is which business application (i.e. start from nothing)
Avatar of Matthew Cioffi

ASKER

Is there a place I can look at the rules in the current system and attempt to recreate them?

There is a connection between the office and the datacanter that I need to recreate as well.

I'm not familiar with OpenBSD so I could use a little assistance in finding everything.

Thanks.
SOLUTION
Avatar of gheist
gheist
Flag of Belgium image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
ASKER CERTIFIED SOLUTION
Avatar of noci
noci

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Thanks.  This is good start for me.

I'm closing as this will take a week or so for me to work through it.
Sophos is not free, you can ask them to supply scripts to import configuration.