Professional Documents
Culture Documents
The specifications and information in this document are subject to change without notice. Companies, names, and data used in examples herein are fictitious unless otherwise noted. This document may not be copied or distributed by any means, in whole or in part, for any reason, without the express written permission of Astaro GmbH & Co.KG. Translations of this original manual must be marked as follows: "Translation of the original manual". 20002012 Astaro GmbH & Co.KG. All rights reserved. Amalienbadstrae 41/Bau 52, 76227 Karlsruhe,
Germany http://www.astaro.com, http://www.sophos.com Sophos UTM, Astaro Command Center, Astaro Gateway Manager, and WebAdmin are trademarks of Astaro GmbH & Co.KG. Cisco is a registered trademark of Cisco Systems Inc. iOS is a trademark of Apple Inc. Linux is a trademark of Linus Torvalds. All further trademarks are the property of their respective owners.
Limited Warranty
No guarantee is given for the correctness of the information contained in this document. Please send any comments or corrections to nsg-docu@sophos.com.
iii
Contents
1 Overview 2 Installation 2.1 Important Note on Root Password 2.2 Installation of Desktop Products 2.2.1 Installation of VMware Player 2.2.2 Installation of VMware Workstation 2.3 Installation of ESX 4 / vSphere ESX(i) 5 3 Support 1 2 2 2 2 5 9 18
1 Overview
Welcome! This Readme is about how to get Sophos UTM9 running as a virtual appliance in any VMware virtualization product. New customers are recommended to download the UTM Virtual Appliance image via http://www.sophos.com/en-us/products/free-trials/utm.aspx. You are requested to fill out the registration form. Then you will be sent an e-mail with the download link and additional information. Later on you will receive latest security and product information by our UTMteam. Already registered users can directly download the virtual appliances from one of the following locations:
l
ftp://ftp.astaro.com/pub/UTM/v9/virtual_appliance/ http://download.astaro.com/UTM/v9/virtual_appliance/
In addition, Sophos offers a free home use license including all base level components of UTM at no cost for home users for personal, non-commercial, and non-revenue generating use. Recommended Reading Once Sophos UTM virtual appliance is installed and running, please refer to the UTM9 Administration Guide or the online help for further usage information, both of which are included in Sophos UTM.
2 Installation
2 Installation
Have any VMware virtualization product installed. Supported VMware virtualization software is:
l
If you just want to glance at UTM Virtual Appliance to get a first impression of what UTM really does, we recommend using VMware Player for its ease-of-use. However, if you are considering using UTM Virtual Appliance in a production environment, or if you would like to conduct performance or load testing with UTM, we recommend using VMware ESX/ESXi, because its network performance is much better. Download the UTM Virtual Appliance image from http://www.sophos.com/en-us/products/free-trials/utm.aspx. If you are using VMware ESX/i, make sure to get one of the ESX optimized images for ESX Server.
2 Installation
3. Configure your VMnet8 network adapter with the IP address 192.168.0.2 and the subnet 255.255.255.0. In Windows, this can be done in the Network Connections menu. 4. To edit the network connections, click Start > Control Panel and then doubleclick Network Connections. 5. Select VMware Network Adapter VMnet8 and change its IP address to 192.168.0.2.
2 Installation
6. Point your browser to https://192.168.0.1:4444, accept the SSL certificate, and you are ready to go. From here on, configuring Sophos UTM Virtual Appliance is like working with any Sophos UTM. The first time you start UTM's web frontend (called WebAdmin), the initial setup page will open. 7. Enter accurate information of your company in the text boxes presented here. In addition, specify a password and valid e-mail address for the administrator account.
2 Installation
8. Click Perform Basic System Setup to continue logging in. The login page appears. 9. Type admin in the Username field and enter the password you have specified on the previous screen. After logging in, the Dashboard of WebAdmin appears, providing you with all system status information of the Sophos UTM unit. Sophos UTM9 comes with an essential license including all base level components of UTM at no cost for home users for personal, non-commercial, and non-revenue generating use.
2 Installation
System boot was successful when you hear five beeps in a row and when the command-line login screen appears. UTM has a network interface card pre-configured as eth0, whose IP address is 192.168.0.1 by default.
2 Installation
4. Configure your VMnet8 network adapter with the IP address 192.168.0.2 and the subnet 255.255.255.0. In Windows, this can be done in the Network Connections menu: 1. Click Start > Control Panel and then double-click Network Connections. 2. Select VMware Network Adapter VMnet8 and change its IP address to 192.168.0.2.
2 Installation
5. Point your browser to https://192.168.0.1:4444, accept the SSL certificate, and you are ready to go. From here on, configuring Sophos UTM Virtual Appliance is like working with any Sophos UTM. The first time you start UTM's web frontend (called WebAdmin), the initial setup page will open. 6. Enter accurate information of your company in the text boxes presented here. In addition, specify a password and valid e-mail address for the administrator account.
2 Installation
7. Click Perform Basic System Setup to continue logging in. The login page appears. 8. Type admin in the Username field and enter the password you have specified on the previous screen. After logging in, the Dashboard of WebAdmin appears, providing you with all system status information of the Sophos UTM unit. Sophos UTM9 comes with an essential license including all base level components of UTM at no cost for home users for personal, non-commercial, and non-revenue generating use.
2 Installation 1. Unzip your downloaded package to a directory of your choice. 2. Open the vSphere Client and log in to the management interface of VMware ESX Server 4 or 5. 3. From the menu select File > Deploy OVF Template. The VMware Deploy OVF Template Wizard opens. 4. Select the option Deploy from file, browse to the folder of your unzipped UTM, select the utm_9.xxx_esx_v5_x64_smp.ovf file and click Next. You get a detailed overview about the appliance.
10
11
12
13
An import dialog window appears and displays the import progress. After the successful import the virtual UTM appliance has three preconfigured network interfaces, which are set to bridged mode.
14
10. Start the virtual UTM and open the Virtual Console to watch the boot process. System boot was successful when you hear five beeps in a row and when the command-line login screen appears. UTM has a network interface card pre-configured as eth0, whose IP address is 192.168.0.1 by default.
15
2 Installation
11. Give a notebook or another client IP address 192.168.0.2 and connect via web browser to https://192.168.0.1:4444. The first time you start UTM's web frontend (called WebAdmin), the initial setup page will open. 12. 1. Enter accurate information of your company in the text boxes presented here. In addition, specify a password and valid e-mail address for the administrator account.
16
2 Installation
2. Click Perform Basic System Setup to continue logging in. The login page appears. 3. Type admin in the Username field and enter the password you have specified on the previous screen. After logging in, the Dashboard of WebAdmin appears, providing you with all system status information of the Sophos UTM unit. Sophos UTM9 comes with an essential license including all base level components of UTM at no cost for home users for personal, non-commercial, and non-revenue generating use.
17
3 Support
3 Support
If you run into problems please contact us through http://www.sophos.com/en-us/support/contact-support/utm-support.aspx or by writing an email to our Support team. Our customer service representatives will be happy to help you. Finally, we recommend to register at http://www.sophos.com/en-us/products/free-trials/utm.aspx to obtain a free license for Sophos UTM or to gain access to latest security and product information. Enjoy, Your Sophos/Astaro Team
18