Good morning guys! Currently I’m building up my ESXi 6.7 homelab to run some servers in my home office. No I want to secure my network with in my home office with a Sophos UTM or XG in ESXi.
Good morning guys! Currently I’m building up my ESXi 6.7 homelab to run some servers in my home office. No I want to secure my network with in my home office with a Sophos UTM or XG in ESXi. My ESXi has three NICs for different purposes:. One for managing the ESXi. One. Sophos iView is a dedicated reporting appliance that extends and enhances the UTM’s on-box reporting helping customers meet compliance reporting requirements, providing consolidated reporting across multiple UTMs, nearly limitless views and customization options, and a convenient backup and long-term storage solution for all your UTM reporting data.
My ESXi has three NICs for different purposes:
* One for managing the ESXi
* One for incoming traffic
* One for outgoing traffic
But now I need some help to get this working. I’m pretty new to networking with ESXi and I’m really unexperienced with it.
For further explaination, I did a diagram to show you, what I want to achieve:
​
[My desired network](https://preview.redd.it/4ym0oakslir41.png?width=978&format=png&auto=webp&s=56e07e8e0a58a81ac5e9a09cc4e408f8fb3ba092)All traffic from/to the default network to my homelab should pass the Sophos. But what do i need to setup on ESXi to get this working? Tipps and advices are highly recommended now 🙂
View Reddit by Disane87 – View SourceSophos provides a free home user UTM. This is a direct update to the older Astaro ASG that I was running. I recently had to convert over to the new system. I run it on my FreeBSd server so prefer to use Virual Box to run my VM's. I ran into a bit of an issue getting the UTM onto the network, but now it's working perfectly. Here are some simple instructions to get it working.
First of all register and download the VMware x86 or x64 zip file(not the ESX version). Onew downloaded unzip this file and grab all the *.vmdk files. The other files can be discarded.
Now go into Virtual box and create a new VM. Select Linux as the OS and configure it as desired with the following changes.
- Add a new IDE disk and browser for and select the base VMDK file. (The one without a -s###.)
- Add two network cards and change both to use Bridged Networking and change the device driver to Intel PRO/1000 MT Server.
Sophos Utm Vmware Guest Operating System
This should be all that is needed to get things working, though I would suggest removing the audio hardware. Also the UTM shouldn't need much memory, 350-500MB depending on the features you plan to enable.Now you can boot up the VM. If you plan to run it as a service you can but for now you need to start it directly in VirtualBox so you can get at the console. Once booted up the system will list and IP to access it at but this won't actually work due to our VM/Nic setup. So instead go into the UTM's console and logging as root. The password will be blank and you will need to change it.
Now on the UTM do the following to reconfigure the default network settings. Tab completion will work here. Also be sure to substitute you settings for the following variables:
$ADDRESS (eg: 192.168.1.5) Internal Ip for the UTM.$NETMASK
(eg: 24) See here for help.$BROADCAST (eg: 192.168.1.255) Subnet part of Ip filled in with 255 for the rest.$NETWORK (eg: 192.168.1.0) Subnet of the Ip filled in with 0's.$INTERFACE Use tab compleation for this and choose witch NIC you want as your internal.Each set of commands above will print out the new config when the
w line is entered so you should be able to identify any errors or problems. Once finished you can reboot the UTM by typing reboot.Sophos Utm Vmware Install
Now if everything is working you should be able to navigate to https://$ADDRESS:4444 and setup the UTM. If you get any error about not being able to change your active connection then one of the settings above must not match or the the itfhw in the last step didn't get set right.Sophos Utm Vmware Os Type