How to Install Endian Enterprise Software - Step by Step

April 3, 2018 | Author: Gerard Simms | Category: Ip Address, Domain Name System, Computer Network, Installation (Computer Programs), Data Transmission
Share
Report this link


Comments



Description

How to Install Endian Enterprise Software – Step by StepThis guide describes step-by-step how to install the Endian Enterprise UTM software onto your own hardware – to make an Endian UTM Appliance. It also has includes tips to help when installing Endian as a Virtual Machine. Table of Contents Part 1 – Obtain Image......................................................................................................................2 Part 2 – Installing onto Hardware....................................................................................................3 Part 3 - Management Console Initial Setup.....................................................................................8 Part 4 – Network Setup Wizard.....................................................................................................11 Step 1 – RED Interface..............................................................................................................11 Step 2 – Choose Network Zones...............................................................................................11 Step 3 – Network Zone and Interface Setup (Network Preferences)........................................13 Step 4 – Internet Access Preferences........................................................................................14 4.1 Internet – Ethernet Static................................................................................................14 4.2 Internet – Ethernet DHCP..............................................................................................15 4.3 Internet – PPPoE............................................................................................................16 4.4 Internet – ADSL (USB, PCI)..........................................................................................17 4.5 Internet – ISDN..............................................................................................................18 4.6 Internet – ANALOG/UMTS Modem.............................................................................19 4.7 Internet – Gateway.........................................................................................................20 Step 5 – Configure DNS Resolver............................................................................................20 Step 6 – Default Admin Email..................................................................................................21 Step 7 – Apply Configuration...................................................................................................21 Step 8 – End..............................................................................................................................21 Part 4 – Endian Network Registration...........................................................................................22 No Existing Account.................................................................................................................22 Use an Existing Account...........................................................................................................23 Registration Page......................................................................................................................24 Endian Enterprise Installation Guide Page 1 Part 1 – Obtain Image Download the ISO image – this will generally be provided by your Endian Distributor as a link to the Endian download site. This file is probably around 170MB in size, and download time will depend on the speed of your Internet connection. This image will have a registration code built it to it (although you can register it using another code). Burn the ISO file to a CD as an image1. 1 This is different to just copying the file to the disk. You need to burn the image to the CD so that it will boot. This can be done with 'ISO Recorder Power Toy”, Nero or other CD software. Endian Enterprise Installation Guide Page 2 TAB to get to Ok button. and you will see the system loading..Part 2 – Installing onto Hardware Prepare your hardware device – minimum specifications are available at http://www. Be aware your file system will be overwritten if you proceed further! Press Enter to continue. Then choose your Language (arrows to move up and down.endian. Attach the CD ROM on the host..com/en/products/software/ If Installing on a Virtual Machine: Choose the Guest Operating System to be Redhat Enterprise Linux 5 (32-bit). and Enter key to accept): Endian Enterprise Installation Guide Page 3 . Insert the Endian bootable ISO disk into the CDROM drive and boot the system. 4 to 8 GB of disk space should be sufficient. press TAB and Ok Endian Enterprise Installation Guide Page 4 . After the key is entered.Follow the screens: When prompted for your Activation Key – enter it to continue (including dashes). you can use a serial cable to install and manage the software. or NO to stop now. If you don't have an ethernet connection. You can choose this now. The installer will proceed to partition the disk and install the system: Wait for the installer to complete all of its tasks Endian Enterprise Installation Guide Page 5 .Choose YES to continue. 255. The default IP is 192.15 with a subnet mask of 255. you have completed the installation: Remove the boot CD (you wont need it any more – but keep it handy in case you ever need to reinstall your system!) Press Enter to reboot the new Endian hardware! Endian Enterprise Installation Guide Page 6 . If you are not sure of an appropriate IP and mask.0. you can change it later. It just makes it easier to connect later if you have the correct address for your network now.0 You should change both of these to match your local (internal) network. you will be prompted to configure the minimum settings. If you reach the next screen.When the system is installed. it's okay. The first setting is the IP address.255.168. If Installing on a Virtual Machine on vmware: You should also install the vmware tools onto the Guest Operating System. Endian Enterprise Installation Guide Page 7 . You are now ready to connect with the Management Console. the console should present you with a menu (as shown below) which gives you the option to exit to sell. This will allow vmware to communicate and control the guest system. change admin password or restore to factory defaults. Reboot. change root password.When the system has rebooted. then “Get Certificate” and then “Confirm Security Exception”. For Internet Explorer: Select “Continue to this website” You should then see the Endian Welcome Screen. Endian Enterprise Installation Guide Page 8 . then “Add Exception”. Click the button labelled “>>>” to continue.Part 3 . Open your web browser and type in http://your. or untrusted connection.Management Console Initial Setup After you have configured the system via the console. CERTIFICATE WARNINGS For Firefox: Select “I understand the risks”. Choose your language and Timezone and then click the “>>>” button. continue through the warnings. you can then continue the configuration using a web browser.address.ip.here If you received warnings about a certificate. This is particularly useful if you are recovering from a system crash. select the “I accept” checkbox and then the “>>>” button. you won't have a backup. Endian Enterprise Installation Guide Page 9 . if this is a first-time install. Next you have the opportunity to restore from a backup. select “No” in the drop list and then “>>>”.You should take time to understand the licensing agreement. However. The default password for both is 'endian' but you have the chance to change it now.The next screen gives you the opportunity to change the passwords. Fill out the four password fields and then select “>>>”. The Endian has two passwords for management. one is for the Web Management Front end. Endian Enterprise Installation Guide Page 10 . and the other is for Secure Shell (SSH). is the demilitarized zone (DMZ). Step 1 – RED Interface The first step is to define what type of Internet (public) connection you have. Although the Network Setup is primarily conducted now. Blue.is the untrusted network segment. you can always re-run this wizard later if you need to reconfigure settings on the live Endian firewall. Wireless networks are often not secure so the purpose is to trap all wirelessly connected machines into their own zone without access to any other zone except RED (by default).Part 4 – Network Setup Wizard Now you move directly to the 'Network Setup Wizard' where you can configure the key components of the network.is the trusted network segment.is the wireless zone (WLAN). ORANGE . You can attach a hotspot or WiFi access point to an interface assigned to this zone. he or she is trapped within the DMZ and cannot gain sensible information from local machines in your GREEN zone. Green. Endian Enterprise Installation Guide Page 11 . This depends on what you connect to. If an attacker manages to break into one of your servers. Step 2 – Choose Network Zones This step allows you to configure optional. NETWORK ZONES GREEN . If you host servers. BLUE . it is wise to connect them to a different network than your GREEN network. additional Network Zones. The number of zones available depends on the number of network interfaces available – and you can have up to four zones: Red. RED . and Orange. which represent the public and private networks respectively. However. You have no choice. 2 This is because the hardware had only one Network Interface. there a no extra zones available. In the first diagram below. and you cannot select an ORANGE or BLUE zone2. Endian Enterprise Installation Guide Page 12 . the ORANGE and BLUE networks. none. one or the other. the Endian will need a RED zone and a GREEN zone. and that was already allocated to the Red zone. In step two. a system with 4 or more interfaces will give you the option for each of the optional ORANGE and BLUE zones.As a minimum. You can choose. you specify if you want to use one of the optional zones. or both: On the next page (after clicking “>>>”) you can setup each of the zone interfaces. Here you set the IP address. You can select multiple interfaces for the same zone if you wish (this can provide some load sharing). the subnet mask. additional IP addresses. Be sure to scroll down and complete the setup for each of the zones! The diagram above shows the setup for the GREEN zone – although the same setup will be repeated on the same page for each optional zone you confirmed in the previous page (ORANGE and BLUE). Endian Enterprise Installation Guide Page 13 . and the domain name of the system.Step 3 – Network Zone and Interface Setup (Network Preferences) Zone Interface Setups Warning: This can be a long page. and you select which physical network card is associated with this zone (in the 'Interfaces' section). especially if you have all 4 zones defined. It is handy to make the hostname as an identifiable name for this system. At the bottom of the page you need to define the hostname. which ever check-box you select will become the RED interface. but. Endian Enterprise Installation Guide Page 14 . RED zone network interface In the Interfaces section. You must define a 'Default Gateway' which is an address which must be directly reachable from this Endian interface.1 Internet – Ethernet Static If you need to define a static ethernet address for your Internet connection.1 through to 4. You cannot select multiple physical interfaces for the RED zone. the Endian pre-selects a physical interface as the RED interface (denoted by the red colored square). The RED square won't change immediately. You can also define the MTU and a spoofed MAC address for the RED interface. the setup screen is similar as for the GREEN. All options are shown in sections 4.Step 4 – Internet Access Preferences This step depends on what type of Internet connection you chose earlier.7 here: 4. and you select which physical network card is associated with this zone (in the 'Interfaces' section). ORANGE and BLUE zones. additional IP addresses. Set the IP address. However you can change the RED interface by clicking one of the other available check-boxes. the subnet mask. but. RED zone network interface In the Interfaces section. The RED square won't change immediately. automatically (from the DHCP allocation) or manually. ORANGE and BLUE zones. which ever check-box you select will become the RED interface. However you can change the RED interface by clicking one of the other available check-boxes.2 Internet – Ethernet DHCP This is for when you use a DHCP allocated address on your Internet connection. The setup screen is similar as for the GREEN. Endian Enterprise Installation Guide Page 15 . You can also define the MTU and a spoofed MAC address for the RED interface. You must define how the DNS server is defined. the Endian pre-selects a physical interface as the RED interface (denoted by the red colored square).4. RED zone network interface In the Interfaces section.4. However you can change the RED interface by clicking one of the other available check-boxes.3 Internet – PPPoE PPPoE connections are used if you have a direct ADSL connection. You must define how the DNS server is defined. Don't confuse this option with the ETHERNET STATIC or ETHERNET DHCP options used to connect to ADSL routers that handle the PPPoE themselves. You may select additional IP addresses. which ever check-box you select will become the RED interface. automatically (from the DHCP allocation) or manually. Endian Enterprise Installation Guide Page 16 . Here you need to define your login details. the Endian pre-selects a physical interface as the RED interface (denoted by the red colored square). but. Note that this option is only needed if your modem uses bridging mode and requires your firewall to use PPPoE to connect to your provider. The RED square won't change immediately. authentication method. you can connect a USB or PCI ADSL modem to the Endian.4 Internet – ADSL (USB. In the first substep. select a modem driver: And then a connection type: And then all of the ADSL login details: You must define how the DNS server is defined.4. PCI) For the ADSL option. automatically (from the DHCP allocation) or manually. Endian Enterprise Installation Guide Page 17 . You must define how the DNS server is defined. however you need to specify ISDN phone numbers here.5 Internet – ISDN If you chose an ISDN interface. the setup is similar to ADSL. Endian Enterprise Installation Guide Page 18 . automatically (from the DHCP allocation) or manually.4. 4. AP name. the wireless adapter will be the default Internet connection – although a common approach is to use a wireless connection as the fallback connection in case your main connection fails. A failover connection is setup later. Endian Enterprise Installation Guide Page 19 . when the Endian has been fully configured. Specify the serial port and modem type. And then select the baud rate. and login authentication provided by your wireless provider.6 Internet – ANALOG/UMTS Modem The UMTS modem option allows you to connect a dial-up modem. wireless dongle or other UMTS wireless adapter to connect to the Internet. In this setup. Another. The second firewall’s GREEN IP address can then be used as a backup uplink on the first firewall. If you choose this option. Both addresses can be the same. One example would be if you want to use only a specific service of the firewall.for some scenarios this does make sense though. then this will be fixed as 'automatic' and cannot be set here. Endian Enterprise Installation Guide Page 20 . more sophisticated example is an Endian UTM Appliance whose BLUE zone is connected through a VPN to the GREEN interface of a second Endian UTM Appliance. you will need to specify to DNS server addresses.7 Internet – Gateway In this case the Endian UTM Appliance has no RED interface. Otherwise.4. If you specified 'automatic DNS resolution' in the previous step. This is unusual since a firewall normally needs to have two interfaces at least . you will need to configure a default gateway. Step 5 – Configure DNS Resolver Now you define how the DNS is resolved. although it is advisable to have separate DNS servers for reliability. You can go back by clicking the “<<<” button if you would like to make changes.Step 6 – Default Admin Email System events can be emailed to an administrator. Step 7 – Apply Configuration This is the final step before your selections are committed to the Endian. The 'smarthost' is the email server which will deliver the emails. Otherwise. This is an optional step. click “OK. apply configuration” and wait for the settings to be saved. Step 8 – End Endian Enterprise Installation Guide Page 21 . If this is your first registration. it is possible to bypass this screen (by clicking the “Cancel” button) and you can configure the Endian system. so choose 'Yes'. Endian Enterprise Installation Guide Page 22 . so choose 'No'. If you already have other Endian units. However. Click on the link. the Endian asks you if you have an existing EN (Endian Network) login. So it is recommended that the registration process is completed as soon as possible. The Endian Network registration process is important in order to receive system updates. and another browser window will open. asking you to create your account. This prompting screen will continue to be displayed until a successful registration has been completed. and support. No Existing Account By choosing 'No' you will be asked to setup an Endian Network account before proceeding. you probably won't have an existing account. anti-spam and anti-virus updates. it makes sense to collate them into the same account.Part 4 – Endian Network Registration When you first connect after configuring the system. After clicking the 'Continue' button. And click 'Create Account' to complete the process. Use an Existing Account By choosing 'Yes' you will be taken directly to the Registration Page. including the dashes and as capitals. This will associate your login with this system. Even though it prompts you to 'click here' to connect to the Endian Network. fill out the form specifying all of your account details. Endian Enterprise Installation Guide Page 23 . The activation code must be written in exactly as provided. Simply close the browser window and return to the Endian device Registration Page. there is no need to at this stage.Enter your activation code into the field. Make sure the activation code entered on the form matches the activation code which was configured on the Endian at install-time. The other settings are self-explanatory! If the system keeps returning to the same page. The username should be the same as your Endian Account login (described in the previous section). here are some tips: • • • • • Make sure the Internet connection is working properly. Check if there are any firewalls between the Endian unit and the Internet? Make sure DNS resolution is working. Page 24 Endian Enterprise Installation Guide . it implies there is some problem connecting back to the Endian Network. Make sure your account name and password are exactly as setup previously on the Endian Network. In that case.Registration Page Complete the Registration Page. You may need to reconfigure the Endian using the Network Setup Wizard. you should contact your reseller for assistance. within the System > Endian Network location – you can check out the registration status of the device. Endian Enterprise Installation Guide Page 25 . On successful registration. you will be able to see your Endian firewall when you logon with your account onto the Endian Network. the web management interface. Also.Failing all of these checks. From the Endian Network you can manage and update the device.
Copyright © 2024 DOKUMEN.SITE Inc.