Algo Sec Vm Appliance

AlgoSec VM Appliance

1 www.AlgoSec.com Security. Visibility. Governance.

Installing and Using the AlgoSec VM Appliance



1 Introduction The AlgoSec Firewall Analyzer (AFA) and AlgoSec FireFlow products can be run from a VMware virtual machine. This machine includes a hardened Linux installation and the AFA, and optionally the FireFlow, application(s), and can be run from a Windows or Linux machine. To install and use the AlgoSec VM Appliance, please follow the instructions hereafter.

2 Prerequisites: VMware Before installing the AlgoSec VM Appliance you need to have a working copy of a VMware product such as VMware Player, VMware Workstation, VMware Server, VMware ESX or VMware ESXi. If you do not have VMware installed, please follow these instructions:

1. Download VMware Player from http://www.vmware.com/download/player/ 2. Simply run the installation file, using all the suggested default values.



3 Installing the AlgoSec VM Appliance – VMware Player/Server

These instructions are suitable for VMware Player / Server. If you have VMware ESX or VMware ESXi: please skip to Section 4 “Installing the AlgoSec VM Appliance – VMware ESX/ESXi” below. 1. Download the AlgoSec VM Appliance (zip file) to your Windows Computer. 2. Extract the contents of the zip file. A directory named “AlgoSec_VM_Appliance” will be

created. 3. Run VMware Player, go to File > Open, navigate to the “AlgoSec_VM_Appliance”

directory, and choose the file “AlgoSec.vmx”.

4. The VM will start its power‐up sequence, and the AlgoSec login screen will appear.



4 Installing the AlgoSec VM Appliance – VMware ESX/ESXi

These instructions are suitable for VMware ESX or VMware ESXi. If you already followed the instructions for VMware Player/Server: please skip to Section 5 “Basic Configuration of the AlgoSec System” below.

1. Download the Algosec ESX (zip file) to your windows computer. 2. Extract the contents of the zip file. A directory named “AlgoSec_ovf” will be created. 3. Open the vSphere client and connect to your ESX host / vCenter. 4. In file ‐> deploy OVF template, navigate to the AlgoSec_ovf/AlgoSecAppliance

directory, and chose the file “AlgoSecApplaince.ovf”; press “next”

5. Press “Next” through the next 2 screens





6. In the next screen, choose “Thin provisioned format”

7. Review the Virtual Machine parameters and press OK to create it.



8. After the virtual machine is created, power it on. After the VM finishes its power‐up sequence, the AlgoSec login screen will appear on the console.

5 Basic Configuration of the AlgoSec System 1. After the appliance powers up you can login to the Linux system:

Username: afa Password: afa

You are now in a virtual machine running the Linux operating system.

2. A browser with a welcome note and on‐screen instructions will be opened. The instructions will be different if only AFA is installed on the VM appliance, or in case both AFA and FireFlow are installed. For an AFA only installation, skip to paragraph 3 below. For an AFA and FireFlow installation, skip to paragraph 4 below.



3. If only AFA is installed on the VM appliance, the following screen appears:

a. Follow this link to the AFA Web interface. A first‐time setup wizard will guide you through the next steps

b. Define an AFA administrator account. You will be requested to fill in your name, email address, and a password

c. Define a mail server

d. If you haven't done so already, request a license (www.algosec.com) and proceed to section 6 below: “Installing the License”.



4. If both AFA and FireFlow are installed on the VM appliance, the following screen appears:

a. Run fireflow_setup_config.sh. It will guide you through the next steps.

b. If you haven't done so already, request a license (www.algosec.com) and

proceed to section 6 below: “Installing the License”.



6 Installing the License Next you need to install the license that you received from AlgoSec:

1. Open a Web Browser (Internet Explorer / Firefox /etc.).

2. Browse to the AFA web interface – the URL is displayed on the Linux screen. It will be something like:

https://<ip‐address‐of‐vm>/afa

The AlgoSec login screen appears

3. Login using the administrator account as defined in step 5 “Basic Configuration of the AlgoSec System” above.

4. Click on the License link at the top

5. Click on the Install License button, browse to the license file, and click OK.



7 Upgrading the AlgoSec VM Appliance In case you wish to upgrade the AlgoSec software version to the newest release, you can do so inside your existing VM.

7.1 Upgrade AlgoSec Firewall Analyzer 1. Download the new AFA release from the AlgoSec website – Select the “'Latest

upgrade for an installed AFA VMware or hardware appliance” version. Tips:

a. The file size should be around 200MB ‐ do not download the full pre‐installed VM.

b. The file name should be, e.g., fa-5.#-##.i386.run

2. Copy the fa-5.#-##.i386.run file to the VMware appliance using “WinSCP”

3. Login to Linux OS on the VM as “root”. The AlgoSec VM Appliance root login information is: User: root Password: algosec

4. Open a terminal on the Linux VM and change the permissions of the file by typing chmod u+x fa-5.#-##.i386.run

5. Run the file by typing ./fa-5.#-##.i386.run



7.2 Upgrade FireFlow

1. Download the new FireFlow release from the AlgoSec website – Select the “'Update existing FireFlow VMware of hardware appliance – Linux installer kit” Tips:

a. The file size should be around 7MB ‐ do not download the full pre‐installed VM.

b. The file name should be, e.g., algosec-ticketing-2.#-##.i386.run

2. Copy the algosec-ticketing-2.#-##.i386.run file to the VMware appliance using “WinSCP”

3. Login to Linux OS on the VM as “root”. The AlgoSec VM Appliance root login information is: User: root Password: algosec

4. Open a terminal on the Linux VM and change the permissions of the file by typing chmod u+x algosec-ticketing-2.#-##.i386.run

5. Run the file by typing ./ algosec-ticketing-2.#-##.i386.run

Documents

Algo Sec Vm Appliance