Good morning guys! Currently I’m building up my ESXi 6.7 homelab to run some servers in my home office. No I want to secure my network with in my home office with a Sophos UTM or XG in ESXi.
- Sophos Utm Esxi Setup
- Sophos Esxi Install
- Sophos Xg Esxi 6.7
- Sophos Utm Esxi Install
- Sophos Xg Esxi Download
My ESXi has three NICs for different purposes:
* One for managing the ESXi
* One for incoming traffic
* One for outgoing traffic
* One for incoming traffic
* One for outgoing traffic
But now I need some help to get this working. I’m pretty new to networking with ESXi and I’m really unexperienced with it.
Sophos Utm Esxi Setup
- Sophos for Virtual Environments comprises of two components, the Security Virtual Machine and a thin agent on the Guest Virtual Machine. For VMware vSphere deployments, Sophos for Virtual Environments does not use or require the NSX Guest Introspection agent or NSX Manager appliance.
- The Sophos XG is a next generation firewall packed with enterprise grade features. The team at Sophos have been kind enough to offer a FREE software version of this firewall for home users, which I have managed to install using VMware ESXi.
- Note: Sophos XG Firewall Home Edition as name suggests only for home use and non-production environments. Since I am an IT consultant I prefer to do the most, if not all, of my network testing in my home lab prior deploying it to my customer's production network. So in order to do so I have setup myself a small WM ESXi and couple of VM computers. Now I need a firewall that would do more then.
For further explaination, I did a diagram to show you, what I want to achieve:
Sophos Esxi Install
I'm running 2 Sophos VMs in HA on separate ESXi hosts, each host only has one physical NIC and I do everything with VLANs. My modem plugs into my switch and whichever VM is the current primary will use it. Affinity photo udemy. Sophos delivers both hardware appliances, but it’s also possible to purchase a software license and enables you to install their software in a virtual machine, or on custom-built hardware. To give you an idea about the user-friendly and intuitive interface, you can see the screenshots below.
​
[My desired network](https://preview.redd.it/4ym0oakslir41.png?width=978&format=png&auto=webp&s=56e07e8e0a58a81ac5e9a09cc4e408f8fb3ba092)Sophos Xg Esxi 6.7
All traffic from/to the default network to my homelab should pass the Sophos. But what do i need to setup on ESXi to get this working? Tipps and advices are highly recommended now ?