Jump to:navigation, search
Wiki

Cloud Installation

From Securepoint Wiki
































































Installation of a Securepoint UTM in a cloud
New article: 12.2023
notempty
This article refers to a Resellerpreview
 -

UTM in the Hetzner Cloud

Thumbnail for

Load video
Vimeo

Video-Instructions
The interfaces used by the firmware available at the time of video creation, labeled as eth0, eth1 etc.,
have since been changed. The virtual machines now have the names LAN1, LAN2 etc., as stated in the text.
  
  1. Log in to the Hetzner Cloud administration
  2. Add a server (Consider the equipment)
  3. Select any type
  4. Add local network
  5. Assign a name
  6. Server Create for a fee
  7. Select server
  8. Integrate the Securepoint UTM Interactive Installer ISO image and restart the server
    Call up the console with button
    button Ctrl Alt Del
  9. Carry out installation
  10. When the message Installation done. Remove the install media now appears, Eject the ISO image and
  11. Complete the installation with < OK >(Firewall reboots)
  12. Log in with default login details
    Username: admin
    Password: insecure
      


  • Afterwards: Secure access, establish access to the Internet, enable administration from your own network:

  • The UTM is not reachable via the internal LAN2 interface.
    This is located within the Hetzner cloud in a private network. The administration is only possible via the public IP address on the external interface LAN1 and must be explicitly enabled there.

    • user get Note down Admin ID
    user set id xxx name admin password "strong_Password" Change password
































    Passwords must meet the following criteria:
    • at least 8 characters length
    • at least 3 of the following categories:
      • Upper case
      • Lower case
      • Special characters
      • Digits
    interface set name LAN1 flags [ DHCP DYNADDR ]
    system update interface    		 Enable DHCP
    route new dst 0.0.0.0/0 router LAN1
    system update route    		 Set default route
    Sometimes the following alternative may be necessary:

    interface address set id 1 address IP address
      (Set IP address manually)
    route new dst 172.16.1.1 router LAN1
    route new dst 0.0.0.0/0 router 172.16.1.1
    system update route
      (172.16.1.1 is the IP address of the Hetzner-Gateway)

    manager new hostlist 192.0.2.192/32
    system update rule    		 Own IP address / network IP or host name (DynDNS) from which administration is to take place
    (determine IP address e.g. with http://checkip4.spdyn.de/)
    interface address get Check whether the IP address of the external interface of the UTM corresponds with the address displayed during the installation of the VM
    https://$IP_der_UTM:11115 Open the web interface with a static IP address:
    • Finally:
    • Enter the login data
    • Accept the license agreement and privacy policy
    • Basic settings
    • Importing the license file
    notempty
    Update to the latest UTM firmware version under → Extras →Firmware Updates Button Download latest firmware
    Retrieved from "https://wiki.securepoint.de/index.php?title=Spielwiese/Layouttest&oldid=88070"