Yes  GE0/0/0 have public ip, and I'm not sure GE0/0/1 have public ip or not but seems like public, I checked but I'm not sure if NAT is present there in HPE, how to verify if NAT is present in hpe or not ?

If only plain IP routing is configured on HPE, then you should take care to configure:

- same IP address on interface to your ISP

- same ip routes that you have on the HPE

- same NAT that you have on the HPE

Can you share the config of the HPE after redacting the passwords? Maybe we can answer the question regarding the NAT.

Regarding the migration from HPE to Cisco 8200L, as long as you do it in a scheduled maintenance window you should be fine. If it doesn't work switch back the cables in the HPE.

I have attached hpe router running config

And below I got from ISP

Wan ip
Ip 172.24.178.169
Mask 255.255.255.252
Gw 172.24.178.170

DNS 218.248.114.193

Usable Public ip pool
117.239.115.145 to 158

Can you please share with me the running config for cisco 8200L

I will then test out.

I am surprised at how much like Cisco this posted config is. Based on what is posted here these are the things you will need to do on your 8200L

- an outside interface, which has an IP address with /30 mask, specify nat outside. In the config there is an access list applied for this interface. But the acl permits everything. So I question the value of it. An acl like this is to prevent unwanted traffic. Either figure what traffic you do not want to allow in and write an acl for that. Or just don't have the acl on the interface.

- an inside interface which has an IP address with /29 mask which is the pool of addresses specified by the ISP, specify nat inside.

- there is a static default route with the ISP neighbor on the outside interface as the next hop.

- there is configured address translation using an access list to identify which traffic to translate. I must admit that I am surprised by this part of the configuration. The addresses given for the inside interface are already Public IPs. So why are they being translated?

And I am a but puzzled about the relationship of this to the Sophos firewall and the network inside of it.

I was thinking the same thing - how similar the config is to a cisco device. In my opinion, the config posted is not from the HPE device. I think @juggs posted the config from the new 8200 router (how he thinks it should be). In this case we are working with the wrong information.

If I'm wrong in my assumption, I apologise in advance. 

My bad let me come up with the hpe config. 

Please find attached hpe rtr config.

From the config of the HPE you provided, there is a thing I'm not clear about - in the GigabitEthernet0/0 interface you have outbound NAT configured

nat outbound address-group 1
nat outbound 2001 address-group 1

but there is no configuration for address-group 1 and ACL 2001.

Another thing is about routing - I see a default route pointing to the ISP, but I do not see a route pointing to your LAN.

Can you explain these two issues?

I agree with LG that there are some strange things in the HPE config. On the interface connecting to ISP is a /30 which provides 2 usable addresses, and this is fairly common when connecting to ISP. The addresses on this interface are Private IPs, which is perhaps surprising but not a problem. On the other interface is a /29 which provides 6 usable addresses. These addresses are Public and appear to be a block of Public addresses provided for the customer to use. What really puzzles me is that the configuration appears to be translating those Public addresses into Private address.