What follows is a step-by-step guide of the installation process of Sophos UTM on AWS Software.
Before you begin the installation, please make sure you have the following items available:
In order to navigate through the menus, use the following keys (please also note the additional key functions listed at the bottom of a screen):
- F1: Displays the context-sensitive help screen.
- Cursor keys: Use these keys to navigate through the text boxes (for example, the license agreement or when selecting a keyboard layout).
- Tab key: Move back and forth between text boxes, lists, and buttons.
- Enter key: The entered information is confirmed, and the installation proceeds to the next step.
- Space key: Select or unselect options marked with an asterisk.
- Alt-F2: Switch to the installation console.
- Alt-F4: Switch to the log.
- Alt-F1: Switch to the interactive bash shell.
- Alt-F1: Return to the main installation screen.
Special Options During Installation
Some screens offer additional options:
View Log: Opens the installation log.
Support: Opens the support dialog screen.
To USB Stick: Writes the installation log as zip file to a USB stick. Remember to insert a USB stick before confirming this option. The zip file can be used to solve installation problems, e.g. by the Sophos UTM on AWS Support Team.
Back: Returns to the previous screen.
Cancel: Opens a confirmation dialog window to abort the installation.
Help: Opens the context-sensitive help screen.
Installing Sophos UTM on AWS
Boot your PC from CD-ROM drive or mount the downloaded ISO on a virtual drive.
The installation start screen is displayed.
Note – You can always press F1 to access the help menu. Pressing F3 in the start screen opens a troubleshooting screen.
The Introduction screen is displayed.
Select Start Installation.
The software will check the following hardware components:
As soon as the hardware detection is completed, the Detected Hardware screen is displayed for information purposes.
The Select Keyboard screen is displayed.
Use the Cursor keys to select your keyboard layout, e.g. English (UK), and press Enter to continue.
The Select Timezone screen is displayed.
Use the Cursor keys to select your area, e.g. Europe, and press Enter to continue.
Use the Cursor keys to select your time zone, e.g. London, and press Enter to continue.
The Date and Time screen is displayed.
If date and time are not correct, you can change them here. Use the Tab key and the Cursor keys to switch between text boxes. You can unselect the Host clock is UTC option by pressing the Space key. Invalid entries will be rejected. Confirm your settings with the Enter key.
The Select Admin Interface screen is displayed.
In order to use the WebAdmin tool to configure the rest of Sophos UTM on AWS, select a network interface card to be the internal network card (eth0). Choose one of the available network cards from the list and confirm your selection with the Enter key.
Note – Interfaces having an active connection are marked with [link].
The Network Configuration screen is displayed.
You need to change the gateway value only if you wish to use the WebAdmin interface from a workstation outside the subnet defined by the netmask. Note that the gateway itself must be within the subnet.For example, if you are using a network mask of 255.255.255.0, the subnet is defined by the first three octets of the address: in this case, 192.168.2. If your administration computer has the IP address 192.168.10.5, it is not on the same subnet, and thus requires a gateway. The gateway router must have an interface on the 192.168.2 subnet and must be able to contact the administration computer. In our example, assume the gateway has the IP address 192.168.2.1.1
Confirm your settings with the Enter key.
If your CPU supports 64 bit the 64 Bit Kernel Support screen is displayed. Otherwise the installation continues with the Enterprise Toolkit screen.
Install the 64-bit kernel.
Select Yes to install the 64-bit kernel or No to install the 32-bit kernel.
The Enterprise Toolkit screen is displayed.
The Enterprise Toolkit comprises the Sophos UTM on AWS Software. You can decide to install Open Source software only. However, we advise to also install the Enterprise Toolkit to be able to use the full functionality of Sophos UTM on AWS.
Press Enter to install both software packages or select No to install the Open Source software only.
The Installation: Partitioning screen is displayed.
If you want to cancel the installation and reboot instead, select No.
The Installation Finished screen is displayed.
When the installation process is complete, remove the CD-ROM from the drive and connect the eth0 network card to the internal network. Except for the internal network card (eth0), the sequence of network cards normally will be determined by PCI ID and by the kernel drivers. The sequence of network card names may also change if the hardware configuration is changed, especially if network cards are removed or added.
Then press Enter in the installation screen to reboot Sophos UTM on AWS. During the boot process, the IP addresses of the internal network cards are changed. The installation routine console (Alt+F1) may display the message "No IP on eth0" during this time.
After Sophos UTM on AWS has rebooted (a process which, depending on your hardware, can take several minutes), ping the IP address of the eth0 interface to ensure it is reachable. If no connection is possible, please check if one of the following problems is present:
- The IP address of Sophos UTM on AWS is incorrect.
- The IP address of the administrative computer is incorrect.
- The default gateway on the client is incorrect.
- The network cable is connected to the wrong network card.
- All network cards are connected to the same hub.