Dic21201821 Dicembre 201821 Dicembre 20180Commentidi Ermanno Goletto

Installazione di Sophos UTM 9.x in Hyper-v

Pubblicato in Security, Virtualization

Se si intende installare Sophos UTM in Hyper-V occorre innanzitutto scaricare l’iso della platform UTM v9 hardware appliance, al momento è disponibile la versione 9.600-5.1 (ssi-9.600-5.1.iso) che può essere scaricata al seguente  UTM Support Downloads.

Per eseguire test o gestire semplici scenari aziendali è possibile richiedere una licenza gratuita dell’edizione Sophos UTM Essential Firewall che prevede le seguenti funzionalità:

The Essential Firewall Edition is a free version of the Sophos UTM software and offers fundamental security functions to help protect any business network. Start today and implement a firewall into your company’s IT environment—without charge and no strings attached.

 

The Essential Firewall edition provides protection for unlimited IP addresses and the following features without any time limitations:

  • Networking: Internet Router, Bridging, DNS server & proxy, DynDNS, DHCP server & relay, NTP support, automatic QoS
  • Network Security: Stateful Packet Inspection Firewall & Network Address translation (DNAT/SNAT/Masquerading)
  • Remote Access: PPTP and L2TP over IPSec support (including iPhone support)
  • Logging/Reporting:Full logging on local hard drive, searching, real-time reports for hardware, network usage and network security, daily executive reports
  • Management:Web-based GUI in local languages, setup wizard, configuration backup & restore, administrator notifications, SNMP support, centralized management using the Sophos UTM Manager (also free of charge)

Esiste anche l’edizione gratuita Sophos UTM Home Edition dedicata ad utenti domestici con le seguenti funzionalità e limitazioni:

Our Free Home Use Firewall is a fully equipped software version of the Sophos UTM firewall, available at no cost for home users – no strings attached. It features full Network, Web, Mail and Web Application Security with VPN functionality and protects up to 50 IP addresses.

 

  • Increase your Internet Bandwidth – You can make easy use of multiple Internet connections at the same time, giving your home more bandwidth.
  • Protect your Kids Web Surfing Habits – Use Web Filtering to stop sites from infecting you with viruses and spyware, keep your kids from surfing to bad sites, and get full reporting on the activity in your home.
  • Solve your Spam Mail Problems – Use Mail Filtering to clean up your inbox and reduce the amount of spam you have to sift through using any POP3 or SMTP setup.
  • Access your Home Network from Anywhere – Dial in using Road warrior VPN access to securely use Remote Desktop, transfer files, and even print, from anywhere in the world, even from your iPhone.
  • Connect to Work or Friends – Create a permanent tunnel to other Unified devices, linking you with a friends network, or having the perfect encrypted link to your office Astaro to work from home!
  • Stop Viruses in Web and Email – Dual Scanning Engines stop viruses in file downloads, email attachments, and embedded in web sites. Sophos catches them at the gateway, before they can get in to assault your computers.
  • And a lot more…

Per quanto riguarda i requisiti e i limiti dell’utilizzo dell’ in ambiente Hyper-V è possibile fare riferimento alla KB Sophos 119230 – UTM virtualization support in cui  sono fornite le seguenti indicazioni:

  • Versioni di Hyper-V supportate:
    • Microsoft HyperV 2008 R2
    • HyperV 3.5 2012 R2
  • Supporto di interfacce di rete virtuali:
    • Microsoft Hyper-V: legacy network adapters are not supported.
  • Requisiti d’installazione per la VM:
    • A basic guideline is at least 2 vCPUs, 4 GB RAM, 100 GB hard disk, 2 NICs and 1 CD-Rom. Adjust these settings accordingly to your requirements.

Per una guida step by step d’installazione è possibile fare riferimento alla seguente How to Deploy Sophos UTM on Hyper-V in 7 Simple Steps in cui viene utilizzata per l’installazione di Sophos UTM Home Edition una VM con le seguenti caratteristiche:

  • Generation 1 Virtual Machine
  • 4 x CPU
  • 4GB RAM Static
  • HDD 127GB Dynamic
  • Attached the downloaded Sophos UTM ISO from Step 1 above as a DVD Drive
  • Configure TWO Network adapters:
    • One Connected to the Internal – Corporate Switch
    • One connected to the External – Internet Switch