Hi all! Today we will talk about how to get an enterprise-class product with full functionality to your home absolutely free.
For home I use the following functions:
- I filter the web traffic of home users (the modern Internet, even with legitimate use, can be insidious for home users);
- I organize a connection between the apartments and the dacha (this allows you to drive a multicast movie stream in 4K from the minidlna server through a VPN tunnel to a TV in another apartment (UpLinks 100 Mbps each))
- securing local Nextcloud server with WAF
Interesting? Then welcome under cat.
We are all aware that there are a lot of dangers for the average user on our beloved Internet. Many of us are faced with the fact that their households (children, parents, grandparents) pick up various infections on their home computers, and then we, as βtyzhprogrammersβ, have to clean up all this rubbish with a red-hot iron (format c:). Also, whoever has home servers, sooner or later wondered about protecting them from "kull hackers", evil bots, hacking through exploits, etc. 99% of these problems can be preventively filtered out even on the firewall, preventing, for example, mom from going from Yandex search results to a bad site with a bunch of viruses, or seeing and blocking an attempt to exploit a known exploit in an old version of apache or a plugin in WordPress, if you suddenly didnβt have time update it on their home server, or the developers did not have time to bury a critical vulnerability in their product.
βAnd what is this solution that closes all these problems?β You ask, and I will answer - this is , please love and respect. Here is the information about the product and briefly about the vendor:
Sophos was founded in 1985 in Oxford, UK. The company has over 3300 employees. The company has development centers and offices around the world. Deals exclusively with products to ensure comprehensive security at all levels of the network: the only one in the world that is the leader of the Gartner quadrants in several areas at once: UTM and antiviruses.
Sophos XG Firewall is an enterprise level solution that belongs to the NextGen Firewall (NGFW) class. The main difference from the classic Firewall is that the user is in the center of protection, and not protocols or ports, as in the classic Firewall.
Functionality and license names:
It should be noted that full-fledged Web Application Firewall, anti-spam and flexible reporting for all modules are already built into the product.
Don't let the word "licenses" scare you. For commercial use, the product is indeed paid. But for home use, the product is completely free. "Where's the catch?" - you ask. Everyone knows that we only have free cheese ... And here we come to the most interesting thing, to the limitations of the free home version, yes, of course, there are limitations:
- you can not install the home version for commercial use;
- cannot be installed on a machine with more than 4 cores and 6 GB of RAM;
- you can't use the sandbox.
And that's it, there are no more restrictions. Neither in terms of functionality, nor in terms of the number of users, nor in signature databases, or in anything else. There are no more differences from the purchased product with a FullGuard license. And there is no trick. Take and use.
You do not believe? Then I suggest you download it and see for yourself. So what does it take to make this miracle product work?
- Iron server or virtual machine with no more than 4 cores and 6 GB of RAM (by the way, this is enough to ensure the safety of more than 30 active users and not even break a sweat)
- SSD drive at least 64 GB
- At least 2 network interfaces (LAN and WAN)
Supported virtualization platforms:
- VMware
- Hyper-V
- KVM
- Citrix XenApp
- Microsoft Azure
For each of these platforms, there is already a pre-configured virtual machine with pre-installed tools and drivers for the hypervisor.
Let's proceed directly to the process of obtaining our home license. We will need any foreign VPN. All further actions must be performed from under the ip address of another country.
The first step is to create a personal account on the Sophos website, from where we can later download distributions, manage licenses, etc. You can do it very simply by following this link:
An authorization window will open in front of you, we will need to click on the Create Sophos ID button:
Then fill in all the fields and click on Register
Next, go to your mail, follow the link in the letter, create a password and log in to our new personal account. That's it, we've created an account.
We go to the page of free products from Sophos using this link
Scroll to the Sophos XG Firewall Home Edition section and click Download. On the next page, click on the Get Started button
Fill in information about yourself:
The main thing is that the email you specify here matches the email you used to register your Sophos portal.
After these steps, you will see this message about a successful request:
On this page you can immediately download the Software version of XG. Click on the Download button, accept the license agreement and click on Submit. This will start downloading the Sophos XG Firewall .iso image, which can be deployed on any x86 hardware.
And you should receive an email with a home license key for Sophos XG Firewall
If you need an image of a virtual machine, then do the following:
Go directly to the portal itself and log in with our account that we created earlier.
Next, click on the left menu on Network Protection -> Download Installers and we get to a page from where you can download both the Software disk image and Sophos XG Firewall virtual machine images.
Choose which version is right for your hypervisor.
Click on the Download button and see the page with the license agreement, accept and click next, everything is the same as the Software version.
As a result, we received an installation disk with the system and a license key with full functionality up to 2999.
Then you can begin to solve your specific household tasks. You can start by reading the Getting Starting Guide for the Software version at and . Then go to official and open .
Thank you for your time.
If you have any questions about the commercial version of XG Firewall, you can contact us - the company , Sophos distributor. It is enough to write in free form on .
Source: habr.com