Ziemlich versteckt gibts einen Hinweis, was die XG (noch) nicht kann:
https://community.sophos.com/cfs-fi...002D00_xg_2D00_migration_2D00_faq_2D00_na.pdf
"Are there UTM 9 features I need that are not in XG
Firewall?
There are a few feature gaps you should be aware of. If you are dependent on any of these
features, you will want to wait until the gaps are closed in a subsequent release of XG
Firewall. Watch the Sophos Corporate Blog for XG Firewall updates and news.
Here are the most significant initial feature gaps:
Ì Multi-node clustering of 3 or more appliances is not supported initially
(two appliance clustering for Active-Active or Active-Passive is supported)
Ì Clustering of “w” (integrated wireless) models is not supported initially
Ì Site-to-Site RED Tunnels are not supported initially
(RED devices are fully supported in XG Firewall but not RED tunnels between firewalls)
Ì A couple of Advanced Web Protection features are not supported
initially including block page override using a password and categorybased
quota time policies (global quotas are supported)
Ì Two-Factor Authentication is not supported initially
Ì Sophos Mobile Control integration is not supported initially
Ì Sophos Endpoint Deployment and Management from within the UTM
is not supported (customers are encouraged to switch to Sophos
Cloud Endpoint to take advantage of Security Heartbeat™)"
Es bleibt aber ein trauriger Zustand, dass Sophos keine "Feature-Vergleichsmatrix" zeigt - was eigentlich Standard sein sollte...