Shopping Cart

No products in the cart.

Sophos Firewall – Getting started and setup

Sophos Firewall is at the heart of one of the world’s best network security platforms. This article describes the steps to get a new Sophos Firewall up and running and correctly configured. It covers the requirements for setting up, registering the firewall, integrating with Sophos Central and activating licenses.

Of course, it’s easier with a video and Sophos has already created a pretty good one.

YouTube video

Requirements for the installation

Before you start setting up the Sophos Firewall, a few prerequisites must be met:

  1. Active Internet connection: The firewall requires a working Internet connection for registration and license retrieval.
  2. DNS configuration: A public DNS server, such as 8.8.8.8 (Google DNS), should be configured.
  3. Enabled port 443: Outgoing traffic via port 443 must be permitted on all upstream devices.

It is optional to create a Sophos Central account in advance. However, this article also shows how to perform this step during setup.

Connections and network configuration

After unpacking the Sophos Firewall, e.g. model XGS116, note the following:

  1. WAN connection: Connect the WAN interface to port 2 to establish the Internet connection.
  2. LAN connection: Connect the LAN interface on port 1 to a local device. The device automatically receives an IP address in the 172.16.16.x subnet.
  3. Management interface (if available): On higher-end models, there is often a dedicated management port (MGMT) with the default IP 10.0.1.1. It is recommended to use this port for the basic setup.

Access to the web interface

To configure the Sophos Firewall, access the web UI via a web browser. Depending on the interface used, one of the following URLs is used:

  • LAN port: https://172.16.16.16:4444
  • Management port: https://10.0.1.1:4444

When accessing for the first time, a warning is displayed about the self-signed certificate, which must be accepted. You will then be taken to the welcome page.

Initial setup with the setup wizard

  1. Set admin password: A new password must be assigned and confirmed for the admin user.
  2. Firmware update: If required, the latest firmware is automatically installed during setup.
  3. Secure storage key: A master key is created for the secure storage that is used to encrypt sensitive data. This key should be stored securely as it cannot be recovered.

Internet connection and DNS check

The next step is to check whether the firewall has a functioning internet connection. If problems occur, the settings can be adjusted manually. It is recommended to use a public DNS server such as 8.8.8.8.

Registering your Sophos Firewall

The Sophos Firewall can be registered either immediately or at a later date. Without registration, the firewall can be used for up to 30 days. Registration takes place via the Sophos Central platform.

Steps to registration:

  1. Claim the firewall in Sophos Central: After registering the firewall, it is claimed in Sophos Central. If you do not yet have a Sophos Central account, you can create one directly during setup.
  2. OTP registration: A One-Time Password (OTP) provided by Sophos Central is used for registration.

Activation of licenses

After registration, licenses for the firewall can be activated. This can be done either via the web admin interface of the firewall or directly in Sophos Central.

  1. Enter the license key: The license key is entered and verified in the licensing tab of the firewall. We normally register the firewall for you if you have opted for the subscription model, so you don’t have to worry about the license.
  2. Manage licenses in Sophos Central: Active licenses can be viewed and new licenses can be added or transferred via the Sophos Central platform.

Connection to the Sophos Central platform

After the firewall has been successfully set up, it is recommended to connect the firewall to Sophos Central. This allows the firewall to be managed and monitored centrally.

Steps to connect to Sophos Central

  1. Firewall management in Sophos Central: In the Sophos Central Dashboard under “Firewall Management”, the firewall can be added by entering the serial number.
  2. OTP authentication: An OTP code is used to complete the registration.
  3. Activate services: Finally, the Sophos Central services are activated on the firewall.

Completion of the installation

After completing the setup, the firewall restarts. After the restart, the licenses can be checked and activated again. Automatic backups of the configuration are also set up and sent by email on a weekly basis.

Support

After the basic setup, the Sophos Firewall is now functional and ready for use. However, it should be noted that the firewall is anything but secure in this state. The real work begins now: The configuration of interfaces, zones, firewall rules, intrusion prevention systems (IPS), as well as the creation of policies and more, are essential to ensure a secure and robust network security solution.

Our long-term plan is to create detailed videos for each of these steps to make configuration easier and guarantee the best possible security. In the meantime, our support team is available to help you set up, optimize or migrate your Sophos Firewall.