SonicWALL GMS Quick start guide

SonicWall®GMS9.1

GettingStartedGuide

SonicWallGlobalManagementSystem9.1GettingStartedGuide

Contents

1

2

Part1.IntroducingGMS

IntroductiontoGMS .................................................................5

Part2.InstallingGMS

BeforeYouBegin ....................................................................7

SystemRequirements.............................

................................ .. ... 7

InstallationQuickStart..........

....................................................... 8

RecordConfigurationInformation ............... ...........................

.............. 8

InstallingtheGMSOV AFile. ................ ..............

............................9

SettingUptheNetworkConfiguration..................

...............................14

ConfiguringtheSystem .................

.............................................16

PerformingBasicTasksandManualHost

Configuration................................. ....18

PowertheVirtualApplianceOn .......

.............................................. ....18

ConfigureHostSettingsontheConsole..................................................19

ConfigureHostSettingsontheApplianceManagementInterface ............................. 20

ViewingtheSettingsSummary...

............... .................. .....................21

EditingTheVirtualMachineSettings......... .................. ...............

........... 22

SettingtheInstallMode...................................

.............. . . . .........23

SingleServerDeployment.............. ........

................................ ........ 23

DistributedDeployment........

................................ .. .....................25

RegisteringGMS. . ................................ .........

........................33

GMSRegistration .........................

............... ............................. 33

AddingDevices.. . .

................................................................35

BasicMode.................................. ..

......................................35

AdvancedMode..........

................................ .. .......................... 36

Part3.UsingGMS

UsingtheGMSManagementInterface........................................ .........41

CentralizedManagementandMonitoring............................................

....41

DistributedIntelligentPlatformMonitoring........................... ...............

..... 47

NavigatingtheGMSManagementInterface ................ .................. ......

....... 52

ConsoleView ................................ .........

............................... 53

UnderstandingGMSIcons.......... ......

.............................................. 54

HOMEView ..

.....................................................................56

HOMEView(FlowBased) ............................

..................................56

HOMEView(SyslogBased) ............

............... .................. ................ 58

Contents

SonicWallGlobalManagementSystem9.1GettingStartedGuide

Contents

3

HOMEView(ManagementOnly) .............. .................. ........................ 60

MANAGEView.......................................

............................. .62

Updates....................

................................ ........................ 62

CurrentStatus.......................... ................

............................. 62

Tools....................

............... .................. .. ........................ 63

Connectivity ............ .............................

................................63

Policies.................

................................ .. .......................... 63

SystemSetup................. .................. ...

..................................63

SecurityConfiguration..............

............... .................. .. ................64

LogsandReporting............... .................. .. ............

....................64

REPORTSView ............................

.............. . . ................ .........65

REPORTSView(FlowBased) ......

......................................................65

REPORTSView(SyslogBased)..................... .....................

................ 67

ANALYTICSView................................

...................................68

Status...............

............... ................................................ 68

Sessions.....................................

................................ .. .....69

Flows..........

................................ ..................................... 70

NOTIFICATIONSView.............................

..................................71

Tools................

............... ................................................71

SonicWallSupport................ . ................ ...

............................. .73

AboutThisDocument............ ......

................................ .. ............. 74

SonicWallGlobalManagementSystem9.1GettingStartedGuide

IntroducingGMS

Part1

4

IntroducingGMS

• IntroductiontoGMS

SonicWallGlobalManagementSystem9.1GettingStartedGuide

IntroductiontoGMS

1

5

IntroductiontoGMS

SonicWall®GlobalManagementSystem(GMS)isaWeb‐basedapplicationthatcanconfigureandmanage

thousandsofSonicWallfirewallappliancesandNetMonitornon‐SonicWallappliancesfromacentrallocation .

SonicWallGMSis:

• easytoinstall

• easytoconfigure

• easytolicense

• easytoadddevicesto

• easytomonitorandmanage

yourGMSinstancesusingIntelligentPlatformMonitor(IPM)

GMScanbeusedasaManagementConsoleinanEnterprisenetworkcontainingasingleSonicWallappliance,

anditcanalsobeusedasaRemoteManagementSystemformanagingmultiple unitdeploymentsforEnterprise

andServiceProvidernetworksconsistingofhundredsand

thousandsoffirewalls,Emai lSecurityappliances,and

SecureMobileAccess(SMA)appliances.Thisdramaticallylowersthecostofmanagingasecuredistributed

network.GMSdoesthisbyenablingadministratorstomonitorthestatusofandapplyconfigurationstoall

managedSonicWallappliances,groupsofSonicWallappliances,orindividual SonicWallappliances.GMS

also

providescentralizedmanagementofschedulingandpushingfirmwareupdatestomultipleappliancesandto

applyconfigurationbackupsofappliancesatregularintervals.

GMSprovidesmonitoringfeaturesthatenableyoutoviewthecurrentstatusofSonicWallappliancesand

non‐SonicWallappliances,pendingtasks,andlogmessages.Italsoprovidesgraphical

reportingoffirewall,SMA,

andEmailSecurity(ES)applianceandnetworkactivitiesfortheSonicWallappliances.Awiderangeof

informativereal‐timeandhistoricalreportscanbegeneratedtoprovideinsightintousagetrendsandsecurity

events.

NetworkadministratorscanalsoconfiguremultiplesiteVPNsforSonicWallappliances.Fromthe

GMSuser

interface, youcanaddVPNlicensestoSonicWallappliances,configureVPNsettings,andenableordisable

remote‐clientaccessforeachnetwork.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingGMS

Part2

6

InstallingGMS

• BeforeYouBegin

• InstallingtheGMSOV AFile

• SettingUptheNetworkConfiguration

• ConfiguringtheSystem

• SettingtheInstallMode

• RegisteringGMS

• AddingDevices

SonicWallGlobalManagementSystem9.1GettingStartedGuide

BeforeYouBegin

1

7

BeforeYouBegin

ReviewthesesectionsforinformationbeforeinstallingyourSonicWallGMSVirtualAppliance:

• SystemRequirements

• InstallationQuickStart

SystemRequirements

TheSonicWallGMSVirtualAppliancecomeswithabaselicensetomanageeither5,10,or25nodes.Youcan

purchaseadditionallicensesonMySonicWall.Formoreinformationonlicensingadditionalnodes,visit:

https://www.sonicwall.com/en‐us/support/contact‐support/licensing‐assistance.

Todeterminethehardwarerequirementsforyourdeployment,usetheCapacityPlanningToolat



https://www.sonicwall.com/en‐us/products/firewalls/management‐and‐reporting/global‐management‐system.

.

SystemRequirement MinimumRequirements

SonicWallGMSVirtualAppliance • ESXi6.5

• ACPUgreaterthanquadcorelevel

• 16GBRAM(moreisrecommendedforincreasedperformance)

• 250or950GBavailablediskspace(dependingonnumberofdevices)

• thickprovisioning

NOTE:GMSisnotsupportedasaVMwarevirtualmachinerunningina



cloudservice,suchasAmazonWebServicesEC2.

HardDrive •SpindleSpeed:10,000RPMorhigher

•Cache:64MBorhigher

•Transferrate:600MBsorhigher

•AverageLatency:4microsecondsorlower

Java • Java8.0plug‐in

Browser • GoogleChrome42.0andhigher(recommendedbrowserfor

dashboardreal‐timegraphics

display)

• MozillaFirefox37.0andhigher

• MicrosoftEdge41orhigher

• MicrosoftInternetExplorer10.0andhigher

NOTE:InternetExplorerversion10.0inMetrointerfacesofWindows8is

currentlynotsupported.

NOTE:WhenusingInternetExplorer,turnoffCompatibilityModewhen

accessingtheGMSmanagementinterface.

NOTE:InternetExplorerisnot

supportedforAngular‐basedflowreports.

Network • accesstotheInternet

• either:

• anIPaddressautomaticallyassignedthroughDHCP

• astaticIPaddress

SonicWallApplianceandFirmware • SonicOS6.2andhigher

SonicWallGlobalManagementSystem9.1GettingStartedGuide

BeforeYouBegin

8

InstallationQuickStart

InstallingGMSrequiresonlythesemajorsteps:

RecordConfigurationInformation

IfyouwillbeinstallingGMSusingastaticIPaddress,recordthefollowingconfigurationinformationfromyour

systemforyourreferencebeforeproceedingwithyourinstallation.Youmightnotbepromptedforthisifyou

areinstallingusingaDHCP‐generatedIPaddress.

NOTE:SonicWallGMSprovidesmonitoringsupportfornon‐SonicWallTCP /IP‐andSNMP‐enableddevices

andapplications.Seethedocumentationthatcamewithyourdeviceformoreinformation.

123456

Installingthe

GMSOVAFile

SettingUpthe

Network

Configuration

Configuringthe

System

Settingthe

InstallMode

RegisteringGMS

(ConsoleOnly)

AddingDevices

InstallGMS

virtualappliance

onyoursystem.

Ifneeded,

customizethe

configurationfor

GMStooperate

inyournetwork

environment.

Usethe

easy‐to‐use

wizardto

configureGMS

usingthedefault

settings.

Setthemodeto

beusedbyGMS

tomonitoryour

devices:

Flow‐based,

Syslog‐based,no

reporting.

RegisterGMS

usingitsserial

number

and

your

MySonicWall

account.

Addthedevices

youwantto

monitorand

maintainusing

GMSusingeither

Basicor

AdvancedMode.

InformationNeeded Description YourConfigurationInformation

SMTPServerAddress TheIPaddressorhostnameofyourSimple

MailTransferProtocol(SMTP)server.For

example,mail.emailprovider.com.

HTTPSWebServerPort Thenumberofyour

secure(SSL)Web

serverportifcustomized.Thedefaultport

is443.

GMSAdministratorEmail1 TheemailaddressofaGMSadministrator

whoreceivesemailnotifications from

GMS.

GMSAdministratorEmail2 TheemailaddressofanadditionalGMS

administratorwhoreceivesemail

notificationsfromGMS.Thisfieldis

optional.

SenderEmail

Address Theemailaddressfromwhichtheemail

notificationsaresentbyGMS.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingtheGMSOVAFile

2

9

InstallingtheGMSOV AFile

BeforeinstallingtheSonicWallGlobalManagementSystem,pleasereadBeforeYouBeginforthesystem

requirementsandotherusefulinformation.

ToinstallGMS:

1 SelecttheESXiserveronwhichyouwanttodeploythevirtualmachinethatwi llrunGMS.

2 Choosethe.ovafileyouwanttoinstallinthelocationwhereitisstoredandclickNext.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingtheGMSOVAFile

10

3 Changethenameofthevirtualmachineandselectthedatastore.

4 SelecttheESXiresourcetobeusedandclickNext.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingtheGMSOVAFile

11

5The.ovafileyouchosewillbevalidated.Whenthevalidationhasbeencompletedandissuccessful,

clickNext.

6VerifythetemplatedetailsforyourinstallationandclickNext.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingtheGMSOVAFile

12

7AgreetothelicenseagreementbyclickingNext.

8 Choosethedatastore,virtualdiskformat,andvirtualmachine storagepolicytobeusedandclickNext.

ThesewillbecheckedforcompatibilitywithSonicWallGMS.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

InstallingtheGMSOVAFile

13

9 Selectthenetworkinterfacetobeassignedtothevirtualmachine.YoucanusetheIPallocationsettings

defaultvaluesunlessyourlocalnetworkconfigurationrequirescustomsettings.

10 ClickFinishtocompletetheinstallationofGMSfromthe.ovafile.Aprogressbardisplaysshowingthe

statusoftheinstallationcompletion.

11 Select

theinstanceofthevirtualmachineandpoweriton.

TheinstallationofyourGMSisnowcompleted.Next,youwillneedtoconfigurethenetworksettingsforyour

GMS.SeeSettingUptheNetworkConfigurationformoreinformation.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

SettingUptheNetworkConfiguration

3

14

SettingUptheNetworkConfiguration

AfterinstallingGMS,youwi llneedtoconfigureitsnetworksettings.

TosetupthenetworkconfigurationforGMS:

1 Launchtheremoteconsole.

2IfyournetworkconfigurationhasaDHCPserver,anIPaddresswi llbeautomaticallyassignedtothe

virtualmachine

NOTE:IfaDHCPserverisnotpresent,youwillneedtousethecommand‐lineinterfacetomanually

assignanIPaddresstothevirtualmachine.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

SettingUptheNetworkConfiguration

15

3OpenawebbrowserandentertheIPaddressoftheGMSinstallationinthisformat:https://<IP

address>.

4LogintheGMSconsoleusingthedefaultadministrationaccount:

• Username:admin

• Password:password

SonicWallGlobalManagementSystem9.1GettingStartedGuide

ConfiguringtheSystem

4

16

ConfiguringtheSystem

Thissectionguidesyouthroughthe configurationoftheIPaddress,gatewayaddress,preferredtimesetting,

andthedomainforyourGMSinstallation.

ToconfiguretheGMSsystem:

1IfyouarenotalreadyloggedintoGMS,loginusingthedefaultadministrationaccount.

ThefirstpageoftheSystemConfigurationTooldisplays.

2 ClickNexttoproceedwiththeconfiguration.

3WhenconfiguringwithDHCP,youcanupdatethevaluesforthehostName,Domain,andtheDNSservers

tothose

requiredforyournetworkenvironment.TheHostIPaddress/SubnetmaskandtheDefault

SonicWallGlobalManagementSystem9.1GettingStartedGuide

ConfiguringtheSystem

17

gatewayareautomaticallypopulatedbytheDHCPserver.Youcanopttoselectthe“Static”radiobutton

toconfigureastaticHostIPaddress/SubnetmaskandtheDefaultgatewayaddress.ClickNext.

4Ifnecessary,updatetheTime,Date,andTimeZoneforyourGMSinstallationandclickNext.

5Verify

thesettingsprovidedbyyoursystem.Ifyouneedtochangeanyoftheconfigurationsettingsthat

youenteredonpreviouspages,clickBack.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

ConfiguringtheSystem

18

• Ifnochangesarerequired,youcanclickCanceltocontinuewithsettingupGMSwithout

restartingthevirtualmachine.

• Ifyouneedtochangeanysettingsfromtheirdefaultvalues,clickApplytoacceptyour

configurationsettings.Ifyouneedtochangeanyoftheconfigurationsettingsthatyou

enteredon

previouspages,clickBack.

Thevirtualmachinemightrebootafteryouapplyyourconfigurationsettings.Ifitdoes,youwill

needtoenteryourusernameandpasswordagaininordertocontinue.

PerformingBasicTasksandManualHost

Configuration

ThissectiondescribeshowtomanuallypoweronandconfigurebasicsettingsontheGMSVirtualA pplian ce,

includingvi rtualhardwaresettingsandnetworkingsettingswhennoDHCPserverisavailable.

ThefollowingtasksarerequiredtoconfigureyourGMSVirtualAppliancebeforeregisteringit:

1 PowertheVirtualApplianceOnonpage

18

2 ConfigureHostSettingsontheConsoleonpage19

3 ConfigureHostSettingsontheApplianceManagementInterfaceonpage20

Thischapteralsocontainsinformationon:

• ViewingtheSettingsSummaryonpage21

• EditingTheVirtualMachineSettingsonpage22

PowertheVirtualApplianceOn

TherearemultiplewaystopowertheGMSVirtualApplianceon(oroff).

Topowerthevirtualapplianceon(oroff),completeoneofthefollowingsteps:

NOTE:IftheDHCPserverhasbeenconfiguredcorrectly,thevaluesfortheDNS‐relatedfieldsarefilledin

automatically.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

ConfiguringtheSystem

19

• Right‐clicktheSGMSVirtualApplianceintheleftpaneandnavigatetoPower>PowerOn(orPower>

PowerOff)intheright‐clickmenu.

• SelecttheGMSVirtualApplianceintheleftpaneandthenclickPoweronthevirtualmachine(orShut

downthevirtualmachine

)ontheGettingStartedtabintherightpane.

• SelecttheGMSVirtualApplianceintheleftpaneandthenclickPowerOn(orShutdownguest)onthe

Summarytabintherightpane.

ConfigureHostSettingsontheConsole

AfterpoweringontheGMSVirtualAppliance,completethefollowingstepstoopentheconsoleandconfigure

theIPaddressanddefaultroutesettings:

1InvSphere,right‐clicktheGMSVirtualApplianceintheleftpane.

2 SelectOpenRemoteConsoleintheright‐clickmenu.

3Whentheconsolewindowopens,clickinside

thewindow, typesnwlcliatthelogin:prompt.

4PressEnter.Yourmousepointerdisappearswhenyouclickintheconsolewindow.Toreleaseit,press

Ctrl+Alt.

5Theconsolemightdisplaywarningmessagesthatcanbeignored,andthendisplaysasecondLogin:

prompt.TypeadminattheLogin:prompt.

6Press

Enter.

7EnterpasswordatthePassword:prompt.

8PressEnter.The

SNWLCLI>promptisdisplayed.

9ConfigurethelocalIPaddressforthevir tualappliancebyenteringthefollowingcommand,substituting

yourIPaddressandsubnetmaskforthevaluesshownhere:

interface eth0 10.208.112.175 255.255.255.0

YoucanalsoconfigureIPv6addressatthisstepbyusingtheinterfacecommand.Or,usethe/appliance

(System)interfaceNetwork>SettingsscreentodotheIPv6configuration.

10 Configurethedefaultrouteforthevirtualappliancebytypingthefollowingcommand,substitutingyour

gatewayIPaddressforthevalueshown

here:

route --add default --destination 10.208.112.1

Youcantestconnectivitybypinginganotherserveroryourmaingateway,forexample:

NOTE:ThisfeatureisonlyapplicablewhenaDHCPServerisnotavailabletograntanIPtothedeployed

virtualmachine,orwhenyouwishtoconfigureaStaticIP.

SonicWallGlobalManagementSystem9.1GettingStartedGuide

ConfiguringtheSystem

20

ping 10.208.111.1

ping 10.0.0.1

PressCtrl+ctostoppinging.

11 Enterexittoexitthe CLI.

12 ClosetheconsolewindowbyclickingtheX.

ConfigureHostSettingsontheAppliance

ManagementInterface

AfterconfiguringtheIPaddressanddefaultroutesettingsontheGMSVirtualApplianceconsole,thenextsteps

aretoconfigurethe hostname,network,andtimesettingsintheappliancemanagementinterface.

TheHostConfigurationTool isawizardthattake syouthroughseveralbasicstepstogetyourGMS

Virtual

Applianceconfiguredforyournetwork.

Thewizardstartsautomaticallyaft eryouloginforthefirsttime.Youcancancelthewizardatthistime,which

leavesthedefaultconfigurationonthevirtualapplianceandpreventsthewizardfromautomaticallystarting

again.

Tocompletehostconfigurationforthevirtualappliance,completethefollowingsteps:

1 LaunchabrowserandentertheURLofthevirtualappliance,suchas:

https://10.208.112.175

2Ontheapplianceinterfaceloginpage,enterthedefaultcredentials:

User—admin

Password—password

3 ClickSubmittologin.

4Thelog inpagere‐displayswiththedefaultlogincredentialspre‐populated.

5 ClickSubmit.

6TheHostConfigurationToolwizardstartsautomatically.IntheIntroductionscreen,clickNext.

7IntheNetworkSettingsscreen,

configurethefollowingnetworksettingsfortheGMSVirtualAppliance.

•Name–Adescriptivenameforthisvirtual appliance

•Domain–Inthe formof“sonicwall.com”;thisdomainisnotusedforauthentication

•HostIPAddress–ThestaticIPaddressfortheeth0interfaceofthevirtualappliance

• SubnetMask–

Intheformof255.255.255.0

•DefaultGateway–TheIPaddressofthenetworkgateway–thisisthedefaultgatewayandis

requiredfornetworkingpurposes.

•DNSServer1–TheIPaddressoftheprimaryDNSserver

NOTE:ThiswizardcanbeskippedifnochangesarerequiredorwhenanIPhasalreadybeendynamically

assigned.

NOTE:Ifyoulogoutoftheappliancemanagementinterfacewithoutactuallycancellingthewizard,it

startsautomaticallyonyournextlogin.

YoucanmanuallystartthewizardatanytimebyclickingWizardsatthetop‐rightcornerofthepage.

Page is loading ...

SonicWALL GMS Quick start guide

SonicWALL GMS Quick start guide

Related papers

Other documents