SophosUTM

Sophos UTM

Administration Guide

Product version: 9.600

Contents

Contents

1 Installation

ii

17

1.1 Recommended Reading

17

1.2 System Requirements

17

1.2.1 UPS Device Support

18

1.2.2 RAID Support

19

1.3 Installation Instructions

19

1.3.1 Key Functions During Installation

19

1.3.2 Special Options During Installation

19

1.3.3 Installing Sophos UTM

20

1.4 Basic Configuration

23

1.5 Backup Restoration

28

2 WebAdmin

30

2.1 WebAdmin Menu

31

2.2 Button Bar

33

2.3 Lists

33

2.4 Searching in Lists

34

2.5 Dialog Boxes

35

2.6 Buttons and Icons

36

2.7 Object Lists

38

3 Dashboard

39

3.1 Dashboard Settings

41

3.2 Flow Monitor

42

4 Management

4.1 System Settings

45

45

4.1.1 Organizational

46

4.1.2 Hostname

46

4.1.3 Time and Date

46

4.1.4 Shell Access

49

4.1.5 Scan Settings

50

4.1.6 Reset Configuration or Passwords

51

4.2 WebAdmin Settings

4.2.1 General

52

52

Contents

4.2.2 Access Control

53

4.2.2.1 User Rights

54

4.2.3 HTTPS Certificate

57

4.2.4 RESTful API

58

4.2.5 User Preferences

59

4.2.6 Advanced

60

4.3 Licensing

4.3.1 How to Obtain a License

62

4.3.2 Licensing Model

63

4.3.3 Overview

66

4.3.4 Installation

67

4.3.5 Active IP Addresses

67

4.4 Up2Date

68

4.4.1 Overview

68

4.4.2 Configuration

70

4.4.3 Advanced

71

4.5 Backup/Restore

72

4.5.1 Backup/Restore

72

4.5.2 Automatic Backups

75

4.6 User Portal

76

4.6.1 Global

78

4.6.2 Advanced

78

4.7 Notifications

79

4.7.1 Global

80

4.7.2 Notifications

80

4.7.3 Advanced

80

4.8 Customization

81

4.8.1 Global

81

4.8.2 Web Messages

83

4.8.2.1 Modifying a Web Message

84

4.8.2.2 Download Manager

85

4.8.3 Web Templates

86

4.8.3.1 Customizing Web Templates

86

4.8.3.2 Uploading Custom Web Templates and Images

87

4.8.4 Email Messages

iii

62

87

UTM 9

Contents

4.9 SNMP

89

4.9.1 Query

89

4.9.2 Traps

90

4.10 Central Management

4.10.1 Sophos UTM Manager

4.11 Sophos Mobile Control

92

92

94

4.11.1 General

95

4.11.2 Compliance Overview

96

4.11.3 Network Access Control

97

4.11.4 Configuration Settings

97

4.12 High Availability

4.12.1 Hardware and Software Requirements

98

99

4.12.2 Status

100

4.12.3 System Status

101

4.12.4 Configuration

101

4.13 Shutdown and Restart

5 Definitions & Users

5.1 Network Definitions

104

106

106

5.1.1 Network Definitions

106

5.1.2 MAC Address Definitions

111

5.2 Service Definitions

112

5.3 Time Period Definitions

114

5.4 Users & Groups

115

5.4.1 Users

115

5.4.2 Groups

117

5.5 Client Authentication

119

5.5.1 Global

119

5.5.2 Client Authentication

120

5.5.3 Sophos Transparent Authentication Suite

121

5.6 AWS Profiles

122

5.7 Authentication Services

123

UTM 9

5.7.1 Global Settings

123

5.7.2 Servers

124

5.7.2.1 eDirectory

124

5.7.2.2 Active Directory

126

iv

Contents

5.7.2.3 LDAP

129

5.7.2.4 RADIUS

131

5.7.2.5 TACACS+

133

5.7.3 Single Sign-On

134

5.7.4 One-time Password

135

5.7.5 Advanced

140

6 Interfaces & Routing

142

6.1 Interfaces

6.1.1 Interfaces

143

6.1.1.1 Automatic Interface Network Definitions

143

6.1.1.2 Interface Types

144

6.1.1.3 Group

145

6.1.1.4 3G/UMTS

145

6.1.1.5 Ethernet

147

6.1.1.6 Ethernet Bridge

149

6.1.1.7 Ethernet VLAN

151

6.1.1.8 DSL (PPPoE)

153

6.1.1.9 DSL (PPPoA/PPTP)

155

6.1.1.10 Modem (PPP)

157

6.1.2 Additional Addresses

159

6.1.3 Link Aggregation

160

6.1.4 Uplink Balancing

161

6.1.5 Multipath Rules

164

6.1.6 Hardware

165

6.2 Quality of Service (QoS)

167

6.2.1 Status

167

6.2.2 Traffic Selectors

169

6.2.3 Bandwidth Pools

172

6.2.4 Download Throttling

173

6.2.5 Advanced

174

6.3 Uplink Monitoring

175

6.3.1 Global

175

6.3.2 Actions

176

6.3.3 Advanced

177

6.4 IPv6

v

142

178

UTM 9

 ................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download