Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 33 replies
  • Subscribers 29 subscribers
  • Views 21005 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

VM setup for XG Firewall Home Edition

RayGo1975

I am using ProxMox VE on an HP pavilion laptop with one internal NIC and a USB-NIC adapter.

In my ProxMox setup I have the internal NIC (eno1) bridged to vmbr0 and the USB-NIC (enx.....) bridged to vmbr1. In creating the VE for Sophos XG Firewall Home Edition I have 6 GB of memory, 64 GB of disk space and two Network Interfaces, net0 (vmbr0) and net1 (vmbr1) see attached screen shot of the VM configuration.

In the e-mail I got with my serial number it says:

1. Install the downloaded image on your preferred hardware or virtual environment (Note the installation will overwrite the previous operating system and all files).

2. Connect the WAN interface (port 2) on the device to your internet connection.

3. Connect a computer to the LAN interface (port 1) and access the setup screen at 172.16.16.16:4444 (Note: It may take a few minutes for the necessary services to start before the setup screen is ready)

I have done number one. but I have not figured out which interface is port 1 and which is port 2. I have tried plugging the internal NIC (eno1) into my router and the USB-NIC into my laptop I am using to manage the VM. That did not work so I tried it the other way around, still no luck. 

When I try to go to the IP address given I get "This site can't be reached". 

You really need to write some instructions for the home user who is clueless about networks and things related to firewalls.

Here is a screen shot of my ProxMox network setup:

Any and all help is greatly appreciated.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    the first thing that I see is all the ports are on the same network. The WAN port needs to be on its own network connection to the modem.

    Try disconnecting one cable and see which port goes inactive?

    Did you install from the ISO or the VM OVF file?

    If you installed from the ISO then you would have been asked to identify which port is LAN and which is WAN. At this stage leave the WAN port disconnected and see which port the LAN shows as active in the Proxmox.

     

    Further I think you will have performance issues with one CPU core for your XG further downgraded by being a low performing laptop CPU.

    Ian

  • 0 in reply to rfcat_vk

    First thank you for your quick reply.

    rfcat_vk said:
    the first thing that I see is all the ports are on the same network. The WAN port needs to be on its own network connection to the modem.

    I thought I might have to plug it directly into the modem but I had not tried that yet. Once I do that I know my network will be down while I get this setup. Can I use a 1 to 2 splicer so I can keep my router plugged in while I get this going? In rereading your reply I am guessing I can not do that, would be nice if I could.

    rfcat_vk said:
    Did you install from the ISO or the VM OVF file?

    I installed from the ISO, never saw an option for VM OVF. where can I find the OVF file? 

    rfcat_vk said:
    If you installed from the ISO then you would have been asked to identify which port is LAN and which is WAN.

    It never asked me to identify which port is LAN and which is WAN.

    rfcat_vk said:
    Further I think you will have performance issues with one CPU core for your XG further downgraded by being a low performing laptop CPU.

    I am not that concerned with performance issues, I am doing this to keep my IT skills up, well expanding them a bit, I retired after 27 years in IT. I started out as a operator on the old main frames worked into programming, system programmer and ended as a Unix administrator. Never did much with networking so this has been quite a learning experience. 

Reply
  • 0 in reply to rfcat_vk

    First thank you for your quick reply.

    rfcat_vk said:
    the first thing that I see is all the ports are on the same network. The WAN port needs to be on its own network connection to the modem.

    I thought I might have to plug it directly into the modem but I had not tried that yet. Once I do that I know my network will be down while I get this setup. Can I use a 1 to 2 splicer so I can keep my router plugged in while I get this going? In rereading your reply I am guessing I can not do that, would be nice if I could.

    rfcat_vk said:
    Did you install from the ISO or the VM OVF file?

    I installed from the ISO, never saw an option for VM OVF. where can I find the OVF file? 

    rfcat_vk said:
    If you installed from the ISO then you would have been asked to identify which port is LAN and which is WAN.

    It never asked me to identify which port is LAN and which is WAN.

    rfcat_vk said:
    Further I think you will have performance issues with one CPU core for your XG further downgraded by being a low performing laptop CPU.

    I am not that concerned with performance issues, I am doing this to keep my IT skills up, well expanding them a bit, I retired after 27 years in IT. I started out as a operator on the old main frames worked into programming, system programmer and ended as a Unix administrator. Never did much with networking so this has been quite a learning experience. 

Children
  • 0 in reply to RayGo1975

    Vmware is a little bit tricky.

    Simply verify, which MAC Addresses are actually used by which port. 

    Then login via Vmware Console (Console Port) into XG, switch to Advanced shell (Option 5 - Option 3) and check via 'ifconfig', which Port is actually mapped to which Vmware Port. 

    Ifconfig shows you the MAC, so you can verify this.