Managing Sophos Firewall

Learn about the interfaces through which you can manage Sophos Firewall.

Administrative interfaces

You can manage Sophos Firewall through the following firewall consoles or central management applications:

  • Web admin console: A web-based application to configure, monitor, and manage Sophos Firewall. Access the console through any browser using HTTPS.

    https://<LAN IP address of Sophos Firewall>

  • Command-line interface: The CLI allows you to manage and monitor certain components of Sophos Firewall, as well as to diagnose and troubleshoot issues. Sophos Firewall offers SSH access to the CLI. Access it in one of the following ways:
    • Go to the web admin console and select admin > Console in the upper-right corner.
    • Use an SSH client, such as PuTTY.

    Sophos Firewall closes idle SSH sessions after 15 minutes.

  • Sophos Central: A web-based application to manage Sophos Firewall as well as endpoints and servers, among others.
  • Sophos Firewall Manager (SFM): You can centrally manage distributed Sophos Firewall devices using SFM.

Administrative access

As an administrator, you can access Sophos Firewall through HTTPS or SSH services. The administrator sign-in profile defines which administrative interfaces you can use to access Sophos Firewall.

Sophos Firewall is shipped with one administrator account and four administrator profiles.

Administrator type

credentials

Console access


Super administrator


Web admin console

CLI console

Full privileges for all configurations performed through either of the consoles.

Note Change the password of the “admin” user immediately after deployment.

Management ports

Sophos Firewall 1U and higher appliance models have one or more management ports. You can use these to access the web admin console and the CLI console. For information about how to configure the management ports, see How to configure management ports.