Getting Started Guide

Similar documents
Getting Started Guide

Document Date: January Version: AHM Page 1 of 20

Sophos XG Firewall Virtual Appliance. Document Date: January Version: AHM Page 1 of 17

Getting Started Guide

Sophos XG Firewall Virtual Appliance - KVM. Document Date: January Version: AHM Page 1 of 19

Sophos Virtual Appliance. setup guide

Guide for Partners. Sophos Central Firewall Manager. Document Date: June June 2016 Page 1 of 15

WatchGuard XTMv Setup Guide

Configuring the SMA 500v Virtual Appliance

Acronis Backup & Recovery 10 Advanced Editions

Preparing the boot media/installer with the ISO file:


KeyNexus Hyper-V Deployment Guide


1) Use either Chrome of Firefox to access the VMware vsphere web Client. FireFox

Cisco UCS C-Series. Installation Guide

SRA Virtual Appliance Getting Started Guide

1) Use either Chrome of Firefox to access the VMware vsphere web Client. FireFox

Overview of USB Flash Drive Based Install Instructions

How to Deploy a Barracuda NG Vx using Barracuda NG Install on a VMware Hypervisor

Virtualized XOS Image Installation - Windows

VX 9000E WiNG Express Manager INSTALLATION GUIDE

Getting Started with Bluesocket vwlan on VMware

Sophos Central Device Encryption. Administrator Guide

Bare Metal. Quick Start Guide. Compact PC. Server Mode (Single-Interface Deployment) Before You Begin

VIRTUALIZATION MANAGER SINGLE SERVER EDITION GETTING STARTED GUIDE

WatchGuard XTMv Setup Guide Fireware XTM v11.8

Installing Cisco MSE in a VMware Virtual Machine

Firewall XG / SFOS v16 Beta

SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide

Virtual Appliance User s Guide

SonicWall SMA 8200v. Getting Started Guide

Clearswift Gateway Installation & Getting Started Guide. Version 4.1 Document Revision 1.4

VX 9000 Virtualized Controller INSTALLATION GUIDE

BIG-IP Virtual Edition and Citrix XenServer: Setup. Version 12.1

Migration Guide. Cyberoam to Sophos Firewall. For Customers with Cyberoam Appliances Document Date: October October 2016 Page 1 of 21

VRX VIRTUAL REPLICATION ACCELERATOR

CIS 231 Windows 7 Install Lab #2

Sun VirtualBox Installation Tutorial

Hands-On Lab. Windows Azure Virtual Machine Roles. Lab version: Last updated: 12/14/2010. Page 1

Installing Cisco CMX in a VMware Virtual Machine

If you re not using Microsoft Hyper-V 2012, your screens may vary.

Quick Guide. Full Install on Hog 4 OS Consoles Jan 4, 2017

Deployment of FireSIGHT Management Center on VMware ESXi

IT Essentials v6.0 Windows 10 Software Labs

Dell Wyse Management Suite. Version 1.3 Migration Guide

Clearswift SECURE Gateway Installation & Getting Started Guide. Version 4.3 Document Revision 1.0

Novell BorderManager 3.7

Acronis Backup & Recovery 11 Beta Advanced Editions

Send the Ctrl-Alt-Delete key sequence to the Guest OS one of two ways: Key sequence: Ctlr-Alt-Ins Menu Sequence: VM / Guest / Send Ctrl-Alt-Delete

ARCSERVE UDP CLOUD DIRECT DISASTER RECOVERY APPLIANCE VMWARE

Install and Configure FindIT Network Manager and FindIT Network Probe on a VMware Virtual Machine

ISO Installation Guide. Version 1.2 December 2015

NetScaler Analysis and Reporting. Goliath for NetScaler Installation Guide v4.0 For Deployment on VMware ESX/ESXi

Network Planning and Implementation

Pocket Guide. Disable Telnet and HTTP behavior For Customers with Sophos Firewall Document Date: November November 2016 Page 1 of 11

Quick Start Guide. KVM Hypervisor. Server Mode (Single-Interface Deployment) Before You Begin SUMMARY OF TASKS VIRTUAL APPLIANCE

MIGRATE2IAAS CLOUDSCRAPER TM V0.5 USER MANUAL. 16 Feb 2014 Copyright M2IAAS INC.

Installation and Configuration Guide

Senstar Symphony. 7.2 Installation Guide

Sophos Firewall Configuring SSL VPN for Remote Access

MT LoadMaster Cisco UCS C-Series. Multi-Tenant LoadMaster for Cisco UCS C-Series Rack Server. Installation Guide

Collaboration Management Suite. Installation manual

Sophos SafeGuard File Encryption for Mac Quick startup guide. Product version: 7

Quick Start Guide. Microsoft Hyper-V Hypervisor. Router Mode (Out-of-Path Deployment) Before You Begin SUMMARY OF TASKS

HySecure Quick Start Guide. HySecure 5.0

Using iscsi with BackupAssist. User Guide

Quick Start Guide. KVM Hypervisor. Router Mode (Out-of-Path Deployment) Before You Begin SUMMARY OF TASKS VIRTUAL APPLIANCE

Sophos for Virtual Environments. startup guide -- Sophos Central edition

CCC VMware Workstation Installation Guide Document Version build 007

How to Install ESX 4.0 on Workstation as a VM

Quick Start Guide. KVM Hypervisor. Bridge Mode (In-Line Deployment) Before You Begin SUMMARY OF TASKS VIRTUAL APPLIANCE

akkadian Provisioning Manager Express

Clearswift SECURE Gateway Installation & Getting Started Guide. Version Document Revision 1.0

Configure Windows Server 2003 Release 2 Server Network File Share (NFS) as an authenticated storage repository for XenServer

Cyberoam Virtual Security Appliance - Installation Guide for VMware Player. Version 10

If you re not using Microsoft Hyper-V 2012, your screens may vary.

NBC-IG Installation Guide. Version 7.2

Virtual Appliance Deployment Guide

Endpoint web control overview guide

VMware ESX ESXi and vsphere. Installation Guide

XIA Configuration Server

DOCUMENTATION. UVM Appliance Azure. Quick Start Guide


StarWind Virtual SAN Configuring HA Shared Storage for Scale-Out File Servers in Windows Server 2012R2

Sidewinder. Hardware Guide Models S1104, S2008, S3008. Revision E

Image Backup and Recovery Procedures For Windows 7

Sophos for Virtual Environments Startup guide -- Enterprise Console edition. Product version: 1.1

StarWind Virtual SAN Configuring HA Shared Storage for Scale-Out File Servers in Windows Server 2016

Installing and Configuring vcloud Connector

Upgrading from TrafficShield 3.2.X to Application Security Module 9.2.3

Comodo Network Center Software Version 1.1

VIRTUALIZATION MANAGER ENTERPRISE EDITION GETTING STARTED GUIDE

ITCorporation HOW DO I INSTALL A FRESH INSTANCE OF ANALYZER? DESCRIPTION RESOLUTION. Knowledge Database KNOWLEDGE DATABASE

Silver Peak EC-V and Microsoft Azure Deployment Guide

NVIDIA Licensing Information

F5 iworkflow and Citrix XenServer: Setup. Version 2.0.1

Imaging your Classmate (Veteran Image

StarWind Virtual SAN Compute and Storage Separated with Windows Server 2012 R2

Microsoft Hyper-V 2012

Transcription:

Getting Started Guide Sophos Firewall Software Appliance Document Date: August 2017 August 2017 Page 1 of 13

Contents Change Log...3 Copyright Notice...4 Preface...5 Minimum Hardware Requirement...5 Recommended Hardware Requirement...5 Installation Procedure...5 Step 1: Download Software Image (ISO)...5 Step 2: Creating an Installer...5 Step 3: Installing Sophos Firewall...6 Step 4: Booting...6 Configuring Sophos Firewall...7 Activation and Registration...7 Step 1: License Agreement... 7 Step 2: Register Your Firewall... 7 Step 3: Finishing the basic setup... 8 Basic Configuration...9 a. Setting up Interfaces...9 b. Creating Zones... 10 c. Creating Firewall Rules... 10 d. Setting up a Wireless Network... 10 August 2017 Page 2 of 13

Change Log Date Change Description November 16, 2015 In step 5, rectified an error in the command for creating installer on OS X. December 23, 2015 August 21, 2017 Rectified an error in Minimum Hardware Requirement and Recommended Hardware Requirement sections. Updated content for Activation and Registration. August 2017 Page 3 of 13

Copyright Notice Copyright 2016-2017 Sophos Limited. All rights reserved. Sophos is a registered trademark of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner. August 2017 Page 4 of 13

Preface Welcome to the Getting Started Guide for Sophos Firewall (SF) Software Appliance (referred to in this document as Sophos Firewall ). This guide describes how to download, deploy and run Sophos Firewall as a Software Appliance on custom hardware. Minimum Hardware Requirement The device will go into fail-safe mode if the minimum requirement is not satisfied 2 Network Interface cards 1 GB RAM 10 GB HDD/SSD size Recommended Hardware Requirement 2 GB RAM 64 GB HDD/SSD size Installation Procedure Step 1: Download Software Image (ISO) Download the software image (ISO) from https://sophos.com/en-us/products/next-genfirewall/free-trial.aspx. You can install the downloaded ISO file on custom hardware, using an Installer. To create the Installer, see Creating an Installer. Step 2: Creating an Installer To install the software, you need to write the ISO to a standard USB thumb drive. On Windows: 1. Download the Win32 Disk Imager utility from http://sourceforge.net/projects/win32diskimager/. 2. Run the utility, and browse the downloaded ISO file. The application will look for.img files. Change the file filter to (*.*), then locate and select the Sophos Firewall ISO file. 3. Select the USB thumb drive on which you wish to install the ISO. The thumb drive should have at least 1GB space. Writing the ISO to it will erase its current data. 4. Once the process is complete, your thumb drive is ready to use. On OS X: 1. Open the Disk Utility included on OS X. 2. Locate the thumb drive in the list of disks. 3. On the partitions tab, change the volume scheme to 1 partition, and the format to Free Space, then click apply. 4. You need to convert the downloaded ISO file into a new format. Open a terminal window, and go to the path where the ISO is stored. August 2017 Page 5 of 13

5. Run the command: hdiutil convert -format UDRW -o sf.img.dmg SW-SFOS_15.01.0-376.iso 6. The converted ISO will be renamed sf.img.dmg. 7. Run the diskutil list and locate the path of the USB device. 8. Write the converted ISO to your thumb drive, using the following command for reference: Note: dd if=./sf.img.dmg of=/dev/rdisk9 bs=1m In this command, the USB thumb drive s path is /dev/disk9. Make sure that you use the actual path. The = path adds an r before the device path name. This is deliberate, and enables RAW disk access. You may leave the r out, but the process will take place much more slowly. You may need to run sudo dd <rest of command> for the imaging to work on your system. 9. The process will take a few minutes to complete. When you are returned to the command prompt, the thumb drive is ready, and can be ejected. 10. If you face a problem, see http://borgstrom.ca/2010/10/14/os-x-bootable-usb.html for detailed instructions. Step 3: Installing Sophos Firewall For the thumb drive to boot, you may need to change the BIOS settings since this is a Software Appliance. You will also need to connect a monitor, keyboard, and a serial cable to the system to complete the installation. You will be prompted twice to start the installation. Step 4: Booting When the prompt appears, type y <enter> to start the installation procedure. The installation progress will be shown on the screen. When the installation is complete, remove the thumb drive, and reboot the device. The device will take a few minutes to boot the first time. The system is now running Sophos Firewall Software Appliance. August 2017 Page 6 of 13

Configuring Sophos Firewall Browse to https://172.16.16.16:4444 from the management computer. Click Start to begin the wizard and follow the on-screen instructions. Note: The wizard will not start if you have changed the default administrator password from the console. Activation and Registration Step 1: License Agreement You must accept the Sophos End User License Agreement (EULA) to proceed further. Step 2: Register Your Firewall Enter the serial number, if you have it. You can also use your UTM 9 license if you are migrating. Otherwise, you can skip registration for 30 days or start a free trial. August 2017 Page 7 of 13

You will be redirected to the MySophos portal website. If you already have a MySophos account, specify your login credentials under Login. If you are a new user, sign up for a MySophos account by filling in the details under Create Sophos ID. Complete the registration process. Step 3: Finishing the basic setup Post successful registration of the device, the license is synchronized and the basic setup is done. August 2017 Page 8 of 13

Click Continue and complete the configurations through the wizard. When you finish the process, the Network Security Control Center appears. You can now use the navigation pane to the left to navigate and configure further settings. Basic Configuration a. Setting up Interfaces 1. You can add network interfaces and RED connections in the Configure > Network > Interfaces menu. 2. You can add wireless networks in the Protect > Wireless > Wireless Networks menu. SSIDs will also be shown in the interfaces menu once created. August 2017 Page 9 of 13

3. You can add access points in Protect > Wireless > Access Points. b. Creating Zones Zones are essential in creating firewall rules and, therefore, central to the security model in XG Firewall. If you wish to create custom zones in addition to the default zones, go to Configure > Network > Zone. You can use these custom zones when creating interfaces, and security policies. c. Creating Firewall Rules You can create the following types of firewall rules in Protect > Firewall > Add Firewall Rule. Two types of firewall rules are available: 1. Business Application Rule: To secure a server or service, and allow internal or external users access to it, use a business application rule. 2. User/Network Rule: To control user access to web and application content, or to control traffic by source, service, destination, zone, and user, use a user/network rule. d. Setting up a Wireless Network 1. Go to Protect > Wireless > Wireless Networks. 2. Click Add to add a new wireless network. 3. Configure the wireless network as shown in the image. The wireless network will be added successfully. 4. Similarly, add another wireless network for guest access. August 2017 Page 10 of 13

You can see both these wireless networks in Protect > Network > Wireless Networks. 5. Go to Protect > Wireless > Access Point Groups. 6. Click Add to add a new access point group. 7. Add both the wireless networks, and the new access point. August 2017 Page 11 of 13

If new APs have been installed, you can view these in Control Center. 8. Click the pending APs to accept the new access points. August 2017 Page 12 of 13

9. Configure the settings of the new APs as shown in the image. 10. Click Save. August 2017 Page 13 of 13

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback