24
Sophos UTM virtual appliance readme Product version: UTM 9.003 Document date: Thursday, October 11, 2012
| Date post: | 22-Jan-2016 |
| Category: |
Documents |
| Upload: | mari-maria |
| View: | 137 times |
| Download: | 0 times |
Sophos UTMvirtual appliance readme
Product version: UTM 9.003Document date: Thursday, October 11, 2012
The specifications and information in this document are subject to change without notice.Companies, names, and data used in examples herein are fictitious unless otherwisenoted. This document may not be copied or distributed by any means, in whole or in part,for any reason, without the express written permission of Astaro GmbH & Co. KG. Trans-lations of this original manual must be marked as follows: "Translation of the original man-ual".
© 2000–2012 Astaro GmbH & Co. KG.All rights reserved.Amalienbadstraße 41/Bau 52,76227 Karlsruhe,
Germanyhttp://www.astaro.com, http://www.sophos.com
Sophos UTM, Astaro Command Center, Astaro Gateway Manager, and WebAdmin aretrademarks of Astaro GmbH & Co. KG. Cisco is a registered trademark of Cisco SystemsInc. iOS is a trademark of Apple Inc. Linux is a trademark of Linus Torvalds. All furthertrademarks are the property of their respective owners.
Limited WarrantyNo guarantee is given for the correctness of the information contained in this document.Please send any comments or corrections to [email protected].
iii UTM 9 – Virtual Appliance Readme
Contents1 Overview 1
2 Installation 22.1 Important Note on Root Password 22.2 Installation of Desktop Products 22.2.1 Installation of VMware Player 22.2.2 Installation of VMware Workstation 5
2.3 Installation of ESX 4 / vSphere ESX(i) 5 9
3 Support 18
1 OverviewWelcome! This Readme is about how to get Sophos UTM 9 running as a virtual appliancein any VMware virtualization product.
New customers are recommended to download the UTM Virtual Appliance image viahttp://www.sophos.com/en-us/products/free-trials/utm.aspx. You are requested to fill outthe registration form. Then you will be sent an e-mail with the download link and addi-tional information. Later on you will receive latest security and product information by ourUTM team. Already registered users can directly download the virtual appliances from oneof the following locations:
l ftp://ftp.astaro.com/pub/UTM/v9/virtual_appliance/
l http://download.astaro.com/UTM/v9/virtual_appliance/
In addition, Sophos offers a free home use license including all base level components ofUTM at no cost for home users for personal, non-commercial, and non-revenue generatinguse.
Recommended Reading – Once Sophos UTM virtual appliance is installed and run-ning, please refer to the UTM 9 Administration Guide or the online help for further usageinformation, both of which are included in Sophos UTM.
2 Installation
2 InstallationHave any VMware virtualization product installed. Supported VMware virtualization soft-ware is:
l VMware ESX(i) 4
l VMware ESX(i) 5
l VMware Player
l VMware Workstation
If you just want to glance at UTM Virtual Appliance to get a first impression of what UTMreally does, we recommend using VMware Player for its ease-of-use. However, if you areconsidering using UTM Virtual Appliance in a production environment, or if you would liketo conduct performance or load testing with UTM, we recommend using VMwareESX/ESXi, because its network performance is much better.
Download the UTM Virtual Appliance image from http://www.sophos.com/en-us/prod-ucts/free-trials/utm.aspx. If you are using VMware ESX/i, make sure to get one of the ESXoptimized images for ESX Server.
2.1 Important Note on Root PasswordBy default, there is no root password set by Sophos. The proper way to set the commandline passwords and enable SSH functionality is via WebAdmin underManagement > Sys-tem Settings, on the Shell Access tab. However, if this has not been done and a logindirectly at the console is tried for root, specify any password, and you will then be prompt-ed to set this password by confirming it again. From there, root access will be granted.Note that this happens only the first time a direct console login is performed, and if the rootpassword is then later specified from the WebAdmin GUI, it will overwrite the previouslymanually set password.
2.2 Installation of Desktop Products
2.2.1 Installation of VMware Player1. Unzip your downloaded package in your self-defined VMachines directory.
2. Start the VMware Player, open the image and boot it.System boot was successful when you hear five beeps in a row and when the com-mand-line login screen appears.
UTM has a network interface card pre-configured as eth0, whose IP address is192.168.0.1 by default.
2 UTM 9 – Virtual Appliance Readme
Figure 1 UTM virtual appliance login screen as displayed in VMware player
3. Configure your VMnet8 network adapter with the IP address 192.168.0.2 andthe subnet 255.255.255.0.In Windows, this can be done in the Network Connections menu.
4. To edit the network connections, click Start > Control Panel and then double-click Network Connections.
5. Select VMware Network Adapter VMnet8 and change its IP address to192.168.0.2.
UTM 9 – Virtual Appliance Readme 3
2 Installation
2 Installation
Figure 2 Configuring VMware network adapter VMnet8
6. Point your browser to https://192.168.0.1:4444, accept the SSL cer-tificate, and you are ready to go.From here on, configuring Sophos UTM Virtual Appliance is like working with anySophos UTM.
The first time you start UTM's web frontend (called WebAdmin), the initial setup pagewill open.
7. Enter accurate information of your company in the text boxes presented here. Inaddition, specify a password and valid e-mail address for the administratoraccount.
4 UTM 9 – Virtual Appliance Readme
Figure 3 Initial setup screen of WebAdmin
8. Click Perform Basic System Setup to continue logging in.The login page appears.
9. Type admin in the Username field and enter the password you have specifiedon the previous screen.After logging in, the Dashboard of WebAdmin appears, providing you with all systemstatus information of the Sophos UTM unit.
Sophos UTM 9 comes with an essential license including all base level componentsof UTM at no cost for home users for personal, non-commercial, and non-revenue gen-erating use.
2.2.2 Installation of VMware Workstation1. Unzip your downloaded package in your self-defined VMachines directory.
2. Start your VMware Workstation and open the image.The virtual UTM appliance has three preconfigured network interfaces, which are setto bridged mode.
UTM 9 – Virtual Appliance Readme 5
2 Installation
2 Installation
Figure 4 Open UTM virtual appliance in VMware workstation
3. Customize this setting so that it fits your environment and needs.
Figure 5 How to change UTM virtual appliance in VMware Workstation
System boot was successful when you hear five beeps in a row and when the com-mand-line login screen appears.
UTM has a network interface card pre-configured as eth0, whose IP address is192.168.0.1 by default.
6 UTM 9 – Virtual Appliance Readme
Figure 6 UTM virtual appliance login screen as displayed in VMware workstation
4. Configure your VMnet8 network adapter with the IP address 192.168.0.2 andthe subnet 255.255.255.0.In Windows, this can be done in the Network Connections menu:
1. Click Start > Control Panel and then double-click Network Connections.
2. Select VMware Network Adapter VMnet8 and change its IP address to192.168.0.2.
UTM 9 – Virtual Appliance Readme 7
2 Installation
2 Installation
Figure 7 Configuring VMware Network Adapter VMnet8
5. Point your browser to https://192.168.0.1:4444, accept the SSL cer-tificate, and you are ready to go.From here on, configuring Sophos UTM Virtual Appliance is like working with anySophos UTM.
The first time you start UTM's web frontend (called WebAdmin), the initial setup pagewill open.
6. Enter accurate information of your company in the text boxes presented here. Inaddition, specify a password and valid e-mail address for the administratoraccount.
8 UTM 9 – Virtual Appliance Readme
Figure 8 Initial setup screen of WebAdmin
7. Click Perform Basic System Setup to continue logging in.The login page appears.
8. Type admin in the Username field and enter the password you have specifiedon the previous screen.After logging in, the Dashboard of WebAdmin appears, providing you with all systemstatus information of the Sophos UTM unit.
Sophos UTM 9 comes with an essential license including all base level componentsof UTM at no cost for home users for personal, non-commercial, and non-revenue gen-erating use.
2.3 Installation of ESX 4 / vSphere ESX(i) 5The zip packages for VMware ESX 4 and vSphere ESX(i) 5 contain two virtual machinerelated files.
We use for all architectures the Open Virtualization Format (OVF).Do the following:
UTM 9 – Virtual Appliance Readme 9
2 Installation
2 Installation
1. Unzip your downloaded package to a directory of your choice.
2. Open the vSphere Client and log in to the management interface of VMware ESXServer 4 or 5.
3. From the menu select File > Deploy OVF Template.The VMware Deploy OVF Template Wizard opens.
4. Select the option Deploy from file, browse to the folder of your unzipped UTM,select the utm_9.xxx_esx_v5_x64_smp.ovf file and click Next.You get a detailed overview about the appliance.
Figure 9 Import from file
10 UTM 9 – Virtual Appliance Readme
5. Click Next.
Figure 10 Import overview
UTM 9 – Virtual Appliance Readme 11
2 Installation
2 Installation
6. Enter a name and click Next.
Figure 11 Name the appliance
12 UTM 9 – Virtual Appliance Readme
7. Select a host or cluster to deploy to and click Next.
Figure 12 Target of the deployed template
UTM 9 – Virtual Appliance Readme 13
2 Installation
2 Installation
8. Click Finish to start the import.
Figure 13 Finish the Import Wizard
An import dialog window appears and displays the import progress.
After the successful import the virtual UTM appliance has three preconfigured networkinterfaces, which are set to bridged mode.
Figure 14 Import progress window
14 UTM 9 – Virtual Appliance Readme
9. Customize this setting according to your environment and needs.
Figure 15 Network settings of the virtual UTM
10. Start the virtual UTM and open the Virtual Console to watch the boot process.System boot was successful when you hear five beeps in a row and when the com-mand-line login screen appears.
UTM has a network interface card pre-configured as eth0, whose IP address is192.168.0.1 by default.
UTM 9 – Virtual Appliance Readme 15
2 Installation
2 Installation
Figure 16 Virtual Console of UTM
11. Give a notebook or another client IP address 192.168.0.2 and connect viaweb browser to https://192.168.0.1:4444.The first time you start UTM's web frontend (called WebAdmin), the initial setup pagewill open.
12.1. Enter accurate information of your company in the text boxes presented here. Inaddition, specify a password and valid e-mail address for the administratoraccount.
16 UTM 9 – Virtual Appliance Readme
Figure 17 Initial setup screen of WebAdmin
2. Click Perform Basic System Setup to continue logging in.The login page appears.
3. Type admin in the Username field and enter the password you have specifiedon the previous screen.After logging in, the Dashboard of WebAdmin appears, providing you with all systemstatus information of the Sophos UTM unit.
Sophos UTM 9 comes with an essential license including all base level componentsof UTM at no cost for home users for personal, non-commercial, and non-revenue gen-erating use.
UTM 9 – Virtual Appliance Readme 17
2 Installation
3 Support
3 SupportIf you run into problems please contact us through http://www.sophos.com/en-us/sup-port/contact-support/utm-support.aspx or by writing an email to our Support team. Our cus-tomer service representatives will be happy to help you.
Finally, we recommend to register at http://www.sophos.com/en-us/products/free-tri-als/utm.aspx to obtain a free license for Sophos UTM or to gain access to latest securityand product information.
Enjoy,
Your Sophos/Astaro Team
18 UTM 9 – Virtual Appliance Readme