first commit

projects/firewall-migrations/sophos-central-template/old/Notes.md

@@ -0,0 +1,15 @@
+Capture here all settings which I done in the template
+
+**Serial Number:  C1A1046KXFXKT60**
+
+## Administration
+
+### Device Access
+
+Local service ACL: Close all on WAN Interface except "SSL VPN"
+Local service ACL exception rule: Add "sbx_office". Source Network Host: 213.160.17.158; Services: https, ssh; Action: Allow
+
+### Admin and user settings
+
+### Time
+Custom ntp server: <de.pool.ntp.org> 

projects/firewall-migrations/sophos-central-template/old/template-std-structure.md

@@ -0,0 +1,23 @@
+
+## Templates
+
+### MAIN TEMPLATE
+
+**This template is ALWAYS linked to all customer firewalls and corresponding changes should be done in the template**
+_Such a template enforces implicitly a standard configuration which is the same for every fw. _
+
+- Include configs which hold for ALL customers 
+- These include the following settings:
+	- Hosts and Services
+	- Administration
+	- Web
+
+### New Installations TEMPLATE
+
+- **This template is only used once when configuring a firewall initially**
+- could differ for different customers
+
+### Special TEMPLATES
+
+1. VLANs related settings
+2. intrinsic commercial sophos security features