Getting Started Guide

Similar documents
Getting Started Guide

Document Date: January Version: AHM Page 1 of 20

Sophos XG Firewall Virtual Appliance. Document Date: January Version: AHM Page 1 of 17

Sophos XG Firewall Virtual Appliance - KVM. Document Date: January Version: AHM Page 1 of 19

Getting Started Guide

Install and Configure FindIT Network Manager and FindIT Network Probe on a VMware Virtual Machine

VMware Skyline Collector Installation and Configuration Guide. VMware Skyline 1.4

Cyberoam Virtual Security Appliance - Installation Guide for VMware Player. Version 10

SRA Virtual Appliance Getting Started Guide


VMware Skyline Collector Installation and Configuration Guide. VMware Skyline Collector 2.0

WatchGuard XTMv Setup Guide

Quick Start Guide ViPR Controller & ViPR SolutionPack

ITCorporation HOW DO I INSTALL A FRESH INSTANCE OF ANALYZER? DESCRIPTION RESOLUTION. Knowledge Database KNOWLEDGE DATABASE

Sophos Virtual Appliance. setup guide

LiveNX All- In- One on ESXi INSTALLATION GUIDE

KEMP360 Central - VMware vsphere. KEMP360 Central using VMware vsphere. Installation Guide

SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide

OpenManage Integration for VMware vcenter Quick Installation Guide for vsphere Web Client Version 3.2

Quick Start Guide ViPR Controller & ViPR SolutionPack

OpenManage Integration for VMware vcenter Quick Install Guide for vsphere Client, Version 2.3.1

Installing and Configuring vcenter Support Assistant

Gnostice StarDocs On-Premises API Virtual Appliance

WatchGuard XTMv Setup Guide Fireware XTM v11.8

Deployment of FireSIGHT Management Center on VMware ESXi

Contents. Limitations. Prerequisites. Configuration

OpenManage Integration for VMware vcenter Quick Install Guide for vsphere Client, Version 2.3

Free Download: Quick Start Guide

akkadian Provisioning Manager Express

VMware ESX ESXi and vsphere. Installation Guide

MaaS360.com. MaaS360 On-Premises. Database Virtual Appliance Setup Guide

Getting Started with Bluesocket vwlan on VMware

Resiliency Replication Appliance Installation Guide Version 7.2

OpenManage Integration for VMware vcenter Version Web Client Installation Guide

OpenManage Integration for VMware vcenter Quick Installation Guide for vsphere Web Client Version 3.1

NetScaler Analysis and Reporting. Goliath for NetScaler Installation Guide v4.0 For Deployment on VMware ESX/ESXi

VELOCITY. Quick Start Guide. VMware vsphere / vsphere Hypervisor. Server Mode (Single-Interface Deployment) Before You Begin

UDP Director Virtual Edition Installation and Configuration Guide (for Stealthwatch System v6.9.0)

HiveManager Virtual Appliance QuickStart

ClearPass Policy Manager 6.3

OpenManage Integration for VMware vcenter Quick Install Guide for vsphere Client Version 3.0

Security Gateway Virtual Edition

OpenManage Integration for VMware vcenter Using the vsphere Client Quick Install Guide Version 2.0

Quick Start Guide. VMware vsphere / vsphere Hypervisor. Router Mode (Out-of-Path Deployment) Before You Begin

Installing Cisco MSE in a VMware Virtual Machine

Installing Cisco Virtual Switch Update Manager

KEMP 360 Central for vsphere. Installation Guide

Deploy the ExtraHop Discover Appliance with VMware

Configuring the SMA 500v Virtual Appliance

akkadian Global Directory 3.0 System Administration Guide

OneSign Virtual Appliance Guide

Dell Storage Compellent Integration Tools for VMware

NSFOCUS WAF (VM) User Guide

Forcepoint Sidewinder Control Center, Virtual Appliance. Installation Guide 5.3.x. Revision A

If you re not using VMware vsphere Client 5.1, your screens may vary.

Deploying the Cisco ASA 1000V

Hands-on Lab Manual. Introduction. Dell Storage Hands-on Lab Instructions. Estimated Completion Time: 30 minutes. Audience. What we will be doing

Dell Storage Integration Tools for VMware

Installing and Configuring vcloud Connector

Installing vrealize Network Insight. VMware vrealize Network Insight 3.3

Global Management System (GMS) Virtual Appliance 6.0 Getting Started Guide

vrealize Network Insight Installation Guide

Installing the Cisco IOS XRv 9000 Router in VMware ESXi Environments

SonicWall SMA 8200v. Getting Started Guide

VMware vrealize Log Insight Getting Started Guide

Deploy the ExtraHop Trace Appliance with VMware

CCC VMware Workstation Installation Guide Document Version build 007

Installing the Cisco Nexus 1000V Software Using ISO or OVA Files

Deploy the ExtraHop Discover Appliance with VMware

Installing Cisco CMX in a VMware Virtual Machine

vapp Deployment and Configuration Guide

VMware vfabric Data Director Installation Guide

EMC VSI for VMware vsphere Web Client

Installing vrealize Network Insight

EventTracker: Virtual Appliance

Getting Started Guide for SmartZone 3.4

EventTracker: Virtual Appliance

Installing Your System Using Manual Deployment


Platform Compatibility... 1 Known Issues... 1 Resolved Issues... 2 Deploying the SRA Virtual Appliance... 3 Related Technical Documentation...

vrealize Suite Lifecycle Manager 1.0 Installation and Management vrealize Suite 2017

UDP Director Virtual Edition

Dell Storage Compellent Integration Tools for VMware

Cisco IMC Supervisor Installation Guide for VMware vsphere and Microsoft Hyper-V, Release 2.0

Installing and Configuring vcloud Connector

EventTracker: Virtual Appliance

HyTrust Appliance Installation Guide

Installing vrealize Network Insight. VMware vrealize Network Insight 3.5


System Administration Guide

Storage Manager 2018 R1. Installation Guide

StarWind Virtual Storage Appliance v2.0 Installation Guide with VMware vsphere

VMware vsphere: Install, Configure, and Manage v6.5 Pod. Installation and Configuration Guide

Dell SonicWALL Analyzer 8.2 Virtual Appliance. Getting Started Guide

RealPresence Platform Director

Firewall XG / SFOS v16 Beta

Product Version 1.1 Document Version 1.0-A

Proofpoint Threat Response

All rights reserved. All trademarks are the property of their respective owners.

OpenManage Integration for VMware vcenter Version 4.3. Web Client Installation Guide

Transcription:

Getting Started Guide Sophos XG Firewall Virtual Appliance Document Date: August 2017 Version: 21082017AHM Page 1 of 18

Contents Change Log...3 Copyright Notice...4 Preface...5 Minimum Hardware Requirement...5 Installation Procedure...5 Step 1: Download and Extract OVF Image...5 Step 2: Access ESX/ESXi Host via vsphere Client...5 Step 3: Deploy OVF Template...7 Step 4: Power on... 11 Configuring XG Firewall... 12 Activation and Registration... 12 Step 1: License Agreement... 12 Step 2: Register Your Firewall... 13 Step 3: Finishing the basic setup... 14 Basic Configuration... 15 a. Setting up Interfaces... 15 b. Creating Zones... 15 c. Creating Firewall Rules... 15 d. Setting up a Wireless Network... 15 Version: 21082017AHM Page 2 of 18

Change Log Date December 23, 2015 July 06, 2016 August 21, 2017 Change Description Rectified a broken link in Step 1 of the Installation Procedure section. Updated the images for SFOS MR-3. Updated content for Activation and Registration. Version: 21082017AHM Page 3 of 18

Copyright Notice Copyright 2016-2017 Sophos Limited. All rights reserved. Sophos is a registered trademark of Sophos Limited and Sophos Group. All other product and company names mentioned are trademarks or registered trademarks of their respective owners. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner. Version: 21082017AHM Page 4 of 18

Preface Welcome to the Getting Started Guide for Sophos XG Firewall Virtual Appliance (referred to in this document as XG Firewall ) for VMware ESX/ESXi platform. This guide describes how you can download, deploy and run XG Firewall as a virtual machine on VMware ESX/ESXi. Minimum Hardware Requirement 1. One vcpu 2. 2GB vram 3. 2 vnic 4. Primary Disk with a minimum of 4GB space 5. Report Disk with a minimum of 80GB space XG Firewall will go into fail-safe mode if the minimum requirements are not satisfied. Note: To optimize the performance of your XG Firewall, configure vcpu and vram according to the license you have purchased. When configuring a number of vcpus, make sure that you do not exceed the maximum number specified in your license. Installation Procedure Prerequisite: Make sure that VMware ESX/ESXi version 5.0 or later is installed in your network. For VMware ESX/ESXi installation instructions, refer to the VMware documentation: http://www.vmware.com/support/pubs/vsphere-esxi-vcenter-server-pubs.html Step 1: Download and Extract OVF Image Download the.zip file containing the OVF image from https://secure2.sophos.com/enus/products/next-gen-firewall/free-trial.aspx and save it in your machine. Step 2: Access ESX/ESXi Host via vsphere Client Log in to the ESX/ESXi host server on which you want to deploy the OVF template through VMware vsphere Client. Note: In this guide, we are using VMware vsphere client to connect to the ESX/ESXi host server on which the OVF template is to be deployed. Version: 21082017AHM Page 5 of 18

Go to File Deploy OVF Template to open the downloaded.ovf file in the vsphere Client. Select the sf_virtual file and click Open, as shown in the image below. Version: 21082017AHM Page 6 of 18

Step 3: Deploy OVF Template 1. Select the location of the.ovf file for XG Firewall and click Next to continue. 2. Verify the OVF template details and click Next to continue. Version: 21082017AHM Page 7 of 18

3. Specify a name and location for the OVF template to be deployed and click Next to continue. 4. Select the host/cluster within which you want to deploy the OVF template and click Next to continue. Version: 21082017AHM Page 8 of 18

Note: Here, we are deploying the OVF template on a single/standalone server. The configuration may be different in a cluster environment. 5. Select the format in which you want to store the virtual disks from the available options: Thin Provision: It uses the minimum required space for the OVF template, saving the rest for other use. Thick Provision: It uses the entire allotted virtual disk for OVF template installation, wiping out additional data on the disk. In case of VMware ESXi 5.0 or later, three storage options are available: Thin Provision, Thick Provision Lazy Zeroed and Thick Provision Eager Zeroed. For more information, refer to http://www.vmware.com/. Version: 21082017AHM Page 9 of 18

Click Next to continue. Select the networks to be used by the OVF template and click Next to continue. Version: 21082017AHM Page 10 of 18

Verify the deployment settings for the OVF Template and click Finish to initiate the deployment process of XG Firewall. This installs XG Firewall on your machine. Step 4: Power on Right-click the deployed XG Firewall and go to Power Power On. Version: 21082017AHM Page 11 of 18

Enter the administrator password: admin to continue to the Main Menu. Configuring XG Firewall Browse to https://172.16.16.16:4444 from the management computer. Click Start to begin the wizard and follow the on-screen instructions. Note: The wizard will not start if you have changed the default administrator password from the console. Activation and Registration Step 1: License Agreement You must accept the Sophos End User License Agreement (EULA) to proceed further. Version: 21082017AHM Page 12 of 18

Step 2: Register Your Firewall Enter the serial number, if you have it. You can also use your UTM 9 license if you are migrating. Otherwise, you can skip registration for 30 days or start a free trial. You will be redirected to the MySophos portal website. If you already have a MySophos account, specify your login credentials under Login. If you are a new user, sign up for a MySophos account by filling in the details under Create Sophos ID. Complete the registration process. Version: 21082017AHM Page 13 of 18

Step 3: Finishing the basic setup Post successful registration of the device, the license is synchronized and the basic setup is done. Click Continue and complete the configurations through the wizard. When you finish the process, the Network Security Control Center appears. You can now use the navigation pane to the left to navigate and configure further settings. Version: 21082017AHM Page 14 of 18

Basic Configuration a. Setting up Interfaces 1. You can add network interfaces and RED connections in the Configure > Network > Interfaces menu. 2. You can add wireless networks in the Protect > Wireless > Wireless Networks menu. SSIDs will also be shown in the interfaces menu once created. 3. You can add access points in Protect > Wireless > Access Points. b. Creating Zones Zones are essential in creating firewall rules and, therefore, central to the security model in XG Firewall. If you wish to create custom zones in addition to the default zones, go to Configure > Network > Zone. You can use these custom zones when creating interfaces, and security policies. c. Creating Firewall Rules You can create the following types of firewall rules in Protect > Firewall > Add Firewall Rule. Two types of firewall rules are available: 1. Business Application Rule: To secure a server or service, and allow internal or external users access to it, use a business application rule. 2. User/Network Rule: To control user access to web and application content, or to control traffic by source, service, destination, zone, and user, use a user/network rule. d. Setting up a Wireless Network 1. Go to Protect > Wireless > Wireless Networks. 2. Click Add to add a new wireless network. 3. Configure the wireless network as shown in the image. Version: 21082017AHM Page 15 of 18

The wireless network will be added successfully. 4. Similarly, add another wireless network for guest access. You can see both these wireless networks in Protect > Network > Wireless Networks. 5. Go to Protect > Wireless > Access Point Groups. 6. Click Add to add a new access point group. 7. Add both the wireless networks, and the new access point. Version: 21082017AHM Page 16 of 18

If new APs have been installed, you can view these in Control Center. 8. Click the pending APs to accept the new access points. Version: 21082017AHM Page 17 of 18

9. Configure the settings of the new APs as shown in the image. 10. Click Save. Version: 21082017AHM Page 18 of 18

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback