Note: For SonicWALL Analyzer documentation, refer to the SonicWALL Analyzer 7.0
Administrators Guide. This and other documentation are available at: http://www.sonicwall.com/us/Support.html
Page 1
Contents
This document contains the following sections:
1
Before You Begin on page 3 Supported Platforms on page 3 Hardware Resource Requirements on page 3 Files for Installation on page 5 Installing SonicWALL Analyzer Virtual Appliance on page 6 About Thick and Thin Provisioning on page 7 Installing with vSphere on page 7 Performing Basic Tasks and Host Configuration on page 14 Powering the Virtual Appliance On or Off on page 16 Configuring Host Settings on the Console on page 16 Configuring Host Settings on the Appliance Web Interface on page 18 Registering and Licensing SonicWALL Analyzer on page 20 Creating a MySonicWALL Account on page 20 Registering / Licensing the SonicWALL Analyzer Virtual Appliance on page 20 Configuring the Deployment Role on page 22 Configuring Deployment Settings on page 24 Introduction to the Management Interfaces on page 27 Overview of the Two Interfaces on page 27 Switching Between Management Interfaces on page 28 Next Steps on page 32 Updating the SonicWALL Analyzer Virtual Appliance on page 33
7 8
Page 2
Supported Platforms
The elements of basic VMware structure must be implemented prior to deploying the SonicWALL Analyzer Virtual Appliance. SonicWALL Analyzer Virtual Appliance runs on the following VMware platforms: ESXi 5.0 ESXi 4.0 Update 1 (Build 208167 and newer) ESX 4.0 Update 1 (Build 208167 and newer) You can use the following client applications to import the image and configure the virtual settings: VMware vSphere Provides infrastructure and application services in a graphical user interface for ESX/ESXi, included with ESX/ESXi. Allows you to specify Thin or Thick (Flat) provisioning when deploying SonicWALL Analyzer Virtual Appliance. VMware vCenter Server Centrally manages multiple VMware ESX/ESXi environments. Provides Thick provisioning when deploying SonicWALL Analyzer Virtual Appliance.
Page 3
Hard disk space: For the 40 GB image Up to 40 GB on any datastore For the 250 GB image Up to 250 GB on any datastore For the 950 GB image Up to 950 GB on a datastore with either a 4 MB or 8 MB block size When using Thick, or Flat, provisioning as the storage type option, the entire amount of disk space is allocated when you import and deploy the SonicWALL Analyzer Virtual Appliance file. When using Thin provisioning, the initial size is very small and will grow dynamically as more disk space is needed by the SonicWALL Analyzer application, until the maximum size is reached. Once allocated, the size will not shrink if the application space requirements are subsequently reduced. Additional disk space provided to SonicWALL Analyzer Virtual Appliance in the virtual environment, beyond the respective limits of 250 GB or 950 GB, will not be utilized. ESX/ESXi can be configured with datastores of varying block sizes. The 4 or 8 MB requirement for the 950 GB deployment is because the block size determines the largest virtual disk that can be deployed, as shown in the table:
Page 4
Page 5
See the following sections: About Thick and Thin Provisioning on page 7 Installing with vSphere on page 7
Page 6
Note: There is some impact on performance with Thin provisioning whenever more disk
space is being allocated. Thin provisioning is not recommended for best performance.
Page 7
3. In the Home screen, navigate to a view that shows the virtual machines running on your ESX/ESXi server.
4. To begin the import process, click File and select Deploy OVF Template.
5. In the Source screen of the Deploy OVF Template window, enter the name of the OVA file to import in the Deploy from a file or URL field. To deploy from a file, click Browse and then select the OVA file to import. To deploy from a URL, type in the URL of the OVA file. Click Next.
Page 8
6. In the OVF Template Details screen, verify the information about the selected file. To make a change, click the Source link to return to the Source screen and select a different file. To continue, click Next.
7. In the End User License Agreement screen, read the agreement, click Accept, and then click Next.
Page 9
8. In the Name and Location screen, enter a descriptive name for the virtual appliance into the Name field, and select the desired location in the Inventory Location field. You may wish to incorporate the disk size as part of the name, as in VP_VM_250GB. Click Next.
9. In the Resource Pool screen, select the resource pool within which to deploy this SonicWALL Analyzer Virtual Appliance and then click Next.
Note: When deploying a 950 GB file, be sure to select a resource pool with a block size
of either 4 or 8 MB.
Page 10
10. In the Datastore screen, select the datastore on which to store the files for the SonicWALL Analyzer Virtual Appliance and then click Next.
11. In the Disk Format screen, select the format in which to store the virtual disks for the SonicWALL Analyzer Virtual Appliance. Select either Thin provisioned format or Thick provisioned format, and then click Next. For information about Thin and Thick provisioned formats, see About Thick and Thin Provisioning on page 7.
Page 11
12. In the Network Mapping screen, select the networks in your inventory to be used for the SonicWALL Analyzer Virtual Appliance, and then click Next.
13. In the Ready to Complete screen, review and verify the displayed information. To begin the deployment with these settings, click Finish. Otherwise, click Back to navigate back through the screens to make a change.
Page 12
14. In the Deployment Completed Successfully dialog box, click Close. The name of the new SonicWALL Analyzer Virtual Appliance appears in the left pane of the vSphere window.
15. To power on the virtual appliance and perform required host configuration, see Performing Basic Tasks and Host Configuration on page 14. 16. To register and license SonicWALL Analyzer, see Registering and Licensing SonicWALL Analyzer on page 20.
Page 13
Note: This page might incorrectly indicate that VMware Tools are not installed.
A short list of commands is also provided on this page, including Power On and Edit Settings.
Page 14
When using vSphere with vCenter Server, the Migrate and Clone commands are also available.
Page 15
3. Click the Options tab to view and edit the SonicWALL Analyzer Virtual Appliance name, location (datastore), guest power management (for standby), and other settings. 4. Click the Resources tab to view and edit the resource allocation settings. 5. When finished, click OK.
Page 16
2. When the console window opens, click inside the window, type snwlcli at the login: prompt and then press Enter. Your mouse pointer disappears when you click in the console window. To release it, press Ctrl+Alt.
3. The console may display warning messages, which can be ignored, and then displays a second Login: prompt. Type admin at the Login: prompt and press Enter, and then type password at the Password: prompt and press Enter. The SNWLCLI> prompt is displayed.
4. Configure the local IP address for the virtual appliance by typing the following command, substituting your IP address and subnet mask for the values shown here: interface eth0 10.208.112.175 255.255.255.0 5. Configure the default route for the virtual appliance by typing the following command, substituting your gateway IP address for the value shown here: route --add default --destination 10.208.112.1 You can test connectivity by pinging another server or your main gateway, for example: ping 10.208.111.1 ping 10.0.0.1 Press Ctrl+c to stop pinging. 6. Type exit to exit the CLI, and close the console window by clicking the X.
Page 17
Note: If you log out of the appliance management interface without actually cancelling
the wizard, it will start automatically on your next login. You can manually start the wizard at any time by clicking the Wizards button at the top-right corner of the page.
Perform the following steps to complete host configuration for the virtual appliance: 1. Launch a browser and enter the URL of the virtual appliance, such as: http://10.208.112.175 2. On the appliance interface login page, type in the default credentials and then click Submit to log in. The default credentials are: User admin Password password 3. The first time you log in to the appliance, you must change the password. The login page re-displays with the default login credentials prepopulated. Enter a new password for the admin account in the New Password field, and enter it again in the Confirm New Password field. Click Submit.
Page 18
5. In the Network Settings screen, configure the following network settings for the SonicWALL Analyzer Virtual Appliance, and then click Next: Name A descriptive name for this virtual appliance Domain In the form of sonicwall.com; this domain is not used for authentication Host IP Address The static IP address for the eth0 interface of the virtual appliance Subnet Mask In the form of 255.255.255.0 Default Gateway The IP address of the network gateway this is the default gateway and is required for networking purposes. DNS Server 1 The IP address of the primary DNS server DNS Server 2 (Optional) The IP address of the secondary DNS server 6. In the Time Settings screen, select values for the following system settings on the virtual appliance, and then click Next: Time (hh:mm:ss) Hours, minutes, and seconds of current time; this field is disabled if the NTP option is selected Date Month, day, and year of current date; this field is disabled if the NTP option is selected TimeZone Select from the drop-down list Set time automatically using NTP Select this checkbox to use an NTP server to set the virtual appliance time; a default NTP server is pre-configured 7. In the Summary screen, verify the settings. Click Back to make changes on a previous screen, or click Apply to accept the settings. 8. A dialog box warns you that the virtual appliance will reboot. Click OK.
9. Wait for the settings to be applied, possibly for a few minutes. The screen displays a progress bar until it finishes, and then displays the status.
Note: If you modified the DNS settings, the services on the appliance will restart when
the changes are applied, causing a momentary connectivity loss to the Web server. Your browser will be redirected to the appliance management interface login page. If you modified the Time settings, the virtual appliance will reboot. Use your browser to reconnect to the appliance management interface.
Page 19
3. Complete the Registration form and then click Register. 4. Verify that the information is correct and click Submit. 5. In the screen confirming that your account was created, click Continue.
Note: MySonicWALL registration information is not sold or shared with any other
company.
When you log in to the SonicWALL Analyzer Virtual Appliance after running the Host Configuration Tool, the Register button is displayed in the top right corner of the page. A Register link is also available at the top of the page. The registration process requires that the virtual appliance have access to the Internet. To register your SonicWALL Analyzer Virtual Appliance, perform the following steps: 1. In a browser, log in to the appliance management interface using the new password for the admin account. 2. On the System > Status page, the Registration Pending notification across the top of the screen indicates that the system is not registered, the Serial Number status is UNKNOWN, and the License status displays Not Licensed. To begin registration, click the Register button or Register link. 3. In the License Management page, type your MySonicWALL user name and password and then click Submit. 4. On the second License Management page, type ANALYZER (all capital letters) into the Serial Number field and leave the Authentication Code fields blank. 5. Type a friendly name for the system into the Friendly Name field. The friendly name is displayed on MySonicWALL to more easily identify the installation on this system. Click Submit.
Note:
6. The License Management page displays a completion screen. Click Continue.
7. The Deployment > Roles page is displayed. Although there is only one possible role for a SonicWALL Analyzer deployment, you must still configure certain fields on this page and then click Update to fully activate the application. For instructions on configuring these settings, continue with the procedure described in Configuring the Deployment Role on page 22.
Page 21
Note the following when selecting values for these fields: Database User Do not use any special characters, and do not use 'sa', 'root', or 'admin'. Database Password Do not use any special characters. Admin Login If using MySQL, the default Admin Login is 'root'. This cannot be changed. Admin Password Do not use any special characters. When finished entering the database parameters, click Next. In a SonicWALL Analyzer installation, the Deployment > Roles page provides a way to configure the syslog port and the database settings, and to test database connectivity.
Page 22
1. To set the syslog port, enter the port number into the Syslog Server Port field. 2. Under Database Configuration, to provide credentials with which SonicWALL Analyzer will access the database, enter the account user name into the Database User field, and enter the account password into both the Database Password and Confirm Database Password fields. Please note the following when selecting values for these fields: Database User Do not use any special characters, and do not use 'sa', 'root', or 'admin'. The maximum length is 20 characters, and the user name is case-sensitive. Database Password Do not use any special characters. The maximum length is 20 characters, and the password is case-sensitive. 3. To test connectivity to the database server, click Test Connectivity. A popup will display the status. 4. Under Administrator Credentials, if using MySQL, the default Admin Login is 'root'. This cannot be changed. Enter the administrator account password into both the Admin Password and Confirm Admin Password fields. The Admin Password cannot use any special characters, is case-sensitive, and is limited to 20 characters. 5. When finished, click Update to apply the changes. To revert the fields on the page to their default settings, click Reset. 6. Click OK in the Role Configuration dialog box to apply the Analyzer role to this virtual appliance.
Page 23
7. Wait for the settings to be applied. The screen displays a progress bar until it finishes, and then displays the status. This phase can take 15 minutes or more.
See the following sections: Configuring Web Port Settings on page 24 Configuring SMTP Settings on page 25 Configuring SSL Access on page 26
Page 24
Note: Changing the Web port settings will cause the virtual appliance to restart.
4. After the virtual appliance restarts, use the new port to access the /appliance management interface. For example: If you changed the HTTP port to 8080, use the URL: http://<IP Address>:8080/appliance/ If you changed the HTTPS port to 4430, use the URL: http://<IP Address>:4430/appliance/
2. Select the Use Authentication checkbox, and enter your SMTP server username and password. 3. In the Sender address field, enter the email address that will appear as the From address when email alerts are sent to the administrator. 4. In the Administrator address field, enter a valid email address for the administrator who will receive email alerts. 5. Click the Test Connectivity button to verify your SMTP server configuration settings. 6. Click Update to apply the SMTP settings.
SonicWALL Analyzer Virtual Appliance 7.0 Getting Started Guide Page 25
Page 26
Page 27
Note: The admin account on the appliance interface can have a different password
than the admin account for SonicWALL Analyzer.
Dashboard
The Dashboard tab provides administrators with a centralized location to create Universal Scheduled Reports for Firewall, SRA, and CDP reporting solutions.
For more information on configuring Universal Scheduled Reports, refer to the Using the Dashboard Panel chapter in the SonicWALL Analyzer 7.0 Administrators Guide.
Page 28
The Analyzer management interface is described further in the following sections: Navigation Tabs on page 30 Left Pane on page 30 Center Pane on page 30 Right Pane on page 31
Page 29
Navigation Tabs The SonicWALL Analyzer management interface navigation tabs are located at the top of the management interface. The navigation tabs are Dashboard, Firewall, SRA, CDP, and Console. The Console tab provides tools to customize options found in the other SonicWALL Analyzer tabs and to manage SonicWALL Analyzer settings that affect the environment globally. Left Pane The left pane of the SonicWALL Analyzer management interface provides a tree control that displays the current Analyzer view and a list of managed appliances within the current tab. The left pane is only displayed for the following appliance tabs: Firewall, SRA, and CDP. The current category and view are indicated by a blue highlighting. The left pane tree control provides the ability to switch between views and displays the current state of each appliance under management. A single box in the tree control indicates a node at appliance or unit level. Two boxes in the tree control indicates a node at a group level. A global node at the top of the tree control is indicated by a three-box icon. The color and additional images superimposed on these icons provide useful status information.
Note: If there is only one appliance visible in the Left Pane, then the Left Pane will
automatically collapse to present a larger screen for the rest of the UI. Center Pane The center pane displays for the three appliance tabs: Firewall, SRA, and CDP. A navigational tree control that provides access to the configuration options available based on navigational tab and left pane selections. The center pane provides reporting on the global, group, or appliance level, and is only available for Firewall, SRA, and CDP. The current selection in the center pane is indicated by the highlighted item. For example, the figure to the left displays the current selection Data Usage > Timeline. The center pane options change based on the navigational tab and left pane selections, and selections in the center pane modify the display in the right pane.
Page 30
Right Pane The right pane displays the report that you selected in the middle pane for the view or unit that you selected in the TreeControl. For most reports, a search bar is provided at the top of the pane. Above the search bar, a time bar is provided. You can view the report for a particular time by clicking right and left arrows, or clicking on the center field to get a drop-down menu with more options. Click on icons in the upper left corner to send the report to a PDF or UDP file. These files can then be printed for reference. A quick link to the Universal Scheduled Reports menu is also provided, allowing you to set up scheduling and other functions.
Page 31
Next Steps
After installation, registration, and role configuration, the next steps in setting up your SonicWALL Analyzer deployment are performed in the SonicWALL Analyzer management interface. See the SonicWALL Analyzer Administrators Guide for complete information about configuring SonicWALL Analyzer reporting. This guide and other related documents are available on: http://www.sonicwall.com/us/Support.html Suggested next steps include the following: Provisioning units Log into each appliance that will be monitored by SonicWALL Analyzer, and license it for SonicWALL Analyzer. Adding units In the SonicWALL Analyzer management interface, right-click in the left navigation pane and select Add Unit to add a SonicWALL appliance to Analyzer reporting. Scheduling reports Use the Dashboard > Universal Scheduled Reports panel of the SonicWALL Analyzer management interface to set up a reporting schedule for your managed appliances.
Page 32
3. Click Browse and select the sw_gmsvp_vm_eng_7.0.xxxx.yyyy.gmsvpupdater.sh file on your local system. The file must be for the virtual appliance (be sure it has vm in the file name). 4. Click Apply to update your virtual appliance with the new software.
Page 33
Copyright Notice
2012 SonicWALL, Inc. All rights reserved. Under the copyright laws, this manual or the software described within, cannot be copied, in whole or part, without the written consent of the manufacturer, except in the normal use of the software to make a backup copy. The same proprietary and copyright notices must be affixed to any permitted copies as were affixed to the original. This exception does not allow copies to be made for others, whether or not sold, but all of the material purchased (with all backup copies) can be sold, given, or loaned to another person. Under the law, copying includes translating into another language or format. Specifications and descriptions subject to change without notice.
Trademarks
SonicWALL is a registered trademark of SonicWALL, Inc. Microsoft Windows 7, Windows Vista, Windows XP, Windows Server 2003, Windows Server 2008, Internet Explorer, and Active Directory are trademarks or registered trademarks of Microsoft Corporation. Adobe, Acrobat, and Acrobat Reader are either registered trademarks or trademarks of Adobe Systems Incorporated in the U.S. and/or other countries. VMware, ESX, ESXi, vSphere, and VMware vCenter Server are trademarks or registered trademarks of VMware, Inc. Firefox is a trademark of the Mozilla Foundation. Other product and company names mentioned herein may be trademarks and/or registered trademarks of their respective companies and are the sole property of their respective manufacturers.
Page 34
Page 35
Page 36
Notes
Page 37
Page 38
SonicWALL, Inc. 2001 Logic Drive San Jose CA 95124-3452 T +1 408.745.9600 F +1 408.745.9300 www.sonicwall.com
Rev B
2 /1 2
%:/".*$4&$63*5:'035)&(-0#"-/&5803,