Deployment

Prev Next

You can follow the steps below to complete the VMware deployment and setup, but please contact us if you have any questions or require more support.

  1. Login to your VMware ESXi console.

  2. In the Virtual Machines page in ESXi select Create / Register VM to open the new virtual machine window.

  3. Click Select creation type.

  4. Select Deploy a virtual machine from OVF or OVA file and click Next.

Step 1

  1. Click Select OVF and VMDK files.
  • Enter a name for your Glasswall Halo VM
  • Browse and select the Glasswall Halo v2 OVA provided by Glasswall. Enter an appropriate name for the virtual machine.

Step 2

  1. Click Select storage.
  • Select your storage type and datastore

Step 3

  1. Click Deployment options.
  • Select the appropriate settings for the Network mappings and Disk provisioning.
  • Uncheck Power on automatically

Step 4

  1. Click Finish and wait for the import to complete.

  2. For the best support and feature functionality it is suggested that the image be upgraded to the HOST client OS compatibility.

  • Select Upgrade VM Compatibility under the Actions tab.
  • Select the appropriate minimum level of compatibility from the drop-down (in our example it is ESXi 6.7/8.0).

Note: this process might negatively impact the performance of other client systems on the host, so it might be best to perform it in less critical windows.

  1. Please note the acknowledgement of potential performance impact and click Yes.

Step 5

Edit Settings (Virtual Hardware)

11a. Select Edit Settings and from the Virtual Hardware tab, modify:

  • vCPU to (minimum) 16
  • Memory to 32 GB Ram
  • Hard disk 1 to (minimum) 500 GB SSD/HD.

Step 6

12a. Click Save.

Edit Settings (VM Options)

11b. Select the VM Options tab to open and amend the server settings.

Note: With the upgrade completed you can now select the correct Guest Operating System.

  • Select Linux as Guest OS and Red Hat Enterprise Linux 9 (64-bit) as the Guest OS Version.

12b. Click Save.

Step 7

Launch machine

  1. Verify that the Compatibility, CPUs and Memory allocation are all correct.
  2. Power on and launch the virtual machine.
  3. Login with your provided credentials.

Password Change

  1. For security purposes, you are required to change the default password shared from Glasswall upon your first login. Once the shared credentials are added, add a new password for the virtual machine.

Note: your new password should be at least 15 characters long, with a combination of uppercase letters, lowercase letters, numbers, and special characters. There also shouldn't be any repeating characters.

Network Manager Configuration

Note: if your network has a DHCP server, the virtual machine will be assigned an IP address automatically and this step can be skipped.

Per your network defined configurations and boundaries

  1. Before configuring the virtual network's network you need to know the MAC address of the ethernet the machine is running.
  2. Run nmcli in the console to determine which network the virtual machine is using.
  3. Once you know which network to edit, run the following command to launch the Network Manager tool and select Edit a connection.
nmtui

Step 8

  1. Based on your configuration requirements:
    1. Add Network Adapter or Edit Connection.
    2. In our example we edit the connection the virtual machine is using.

Step 9

  1. Select Show for the IPv4 Configuration, this will provide options to edit IP Addresses, Gateway, DNS Servers.

Note: if you would like to setup your OVA without internet access, your DNS IP range should be set the same as your VM IP.

  1. Enter the required information, then scroll to the bottom and click OK.

Step 10

  1. Navigate back to theNetwork Manager TUI main screen, then select Activate a connection and ensure your connection is set to activated.

Step 11

Step 12

  1. Exit and execute the following command:
sudo systemctl restart NetworkManager

Initiate Glasswall Halo Services

Note: if your network has a DHCP server, this step can be skipped as the RKE2 server will be started automatically by cloud-init.

  1. Execute the following command to launch Glasswall Halo:
bash start_halo.sh
  1. Once the script has completed, confirm all the Glasswall Halo services and Pods are running using the following command:
kubectl get pods

Access Glasswall Clean Room

  1. Depending on your network configuration and/or domain configuration, you can now access Clean Room through the domain name and/or IP address assigned to your virtual machine.

  2. Run the following command to confirm network status:

sudo netstat -tlnp

Step 13

Step 14

Access Glasswall Swagger API Endpoints

Navigate to the following URL to access the Glasswall Halo API endpoints:

https://[Your Domain or IP]/swagger/index.html

Step 15



Note: don't forget to enter your own domain or IP address into the URL.

Validating Deployment

You are able to validate the deployment by using our API Health Check feature.