Views:

Instructions on how to use the Command Line Interface (CLI) to deploy a Service Gateway virtual appliance with VMware ESXi.

Verify that system requirements are met. For more information, see Service Gateway appliance system requirements.

Procedure

  1. Go to Workflow and AutomationService Gateway Management.
  2. Click Download Virtual Appliance.
    The Service Gateway Virtual Appliance panel appears.
  3. Select VMware ESXi (OVA), and then select I agree to the End User License Agreement.
  4. Select a virtual appliance specification and click Download Disk Image to download an OVA file.
    Tip
    Tip
    Copy the registration token for later steps. The registration token will expire within 24 hours if not used.
  5. Create a virtual machine.
    1. On VMware ESXi, go to Virtual Machines and click Create / Register VM.
      sg-vm-create.jpg
    2. Select Deploy a virtual machine from an OVF or OVA file and click Next.
      sg-vm-select-ova.jpg
    3. Specify a name for the Service Gateway virtual appliance, select the OVA file, and click Next.
      sg-vm-select-ova-2.jpg
    4. Select the disk location and click Next.
      sg-vm-select-storage.jpg
    5. Specify deployment options and click Next.
      sg-vm-deployment-opt.jpg
    6. Review the settings and click Finish.
      sg-vm-complete.jpg
  6. Click Power on to start the virtual machine.
    Service installation during the first launch of the appliance takes approximately 10 minutes.
    sg-vm-power-on.jpg
  7. On the Service Gateway virtual appliance, log on to the Command Line Interface (CLI) with the default credentials.
    User name: admin
    Password: V1SG@2021
  8. Change your password.
  9. Type enable and press the ENTER key to enable administrative commands. Provide your password when asked.
    The command prompt changes from > to #.
  10. Configure the required network settings using the following CLISH commands.
    Configure network primary ipv4.static <interface> <ip_cidr> <gateway> <dns1> [dns2] [cni]
    Configure static IPv4 network settings for the primary network interface
    <interface>: Name of the network interface (for example, eth0)
    <ip_cidr>: IPv4 address of the network interface in CIDR notation
    <gateway>: Gateway router address
    <dns1>: Primary DNS server address
    [dns2]: Secondary DNS server address
    [cni]: Internal network address pool (IP address ending in .0.0)
  11. To register the Service Gateway virtual appliance to Trend Vision One, use an SSH tool, such as the latest version of PuTTY, and using an account with administrator privileges, type the following command.
    register <registration_token>
    You can obtain the token from the same screen you download the virtual appliance on Trend Vision One (step 3).
    Important
    Important
    The virtual appliance only supports UTC time. Ensure your hypervisor is correctly configured.
    Note
    Note
    • If your environment uses a local Network Time Protocol (NTP) server, make sure the NTP server synchronizes with the local time for successful registration.
    • Trend Micro recommends using an SSH client to easily copy and paste the registration token.
  12. Use the CLI to configure other settings, if required.
    For more information on available commands, see Service Gateway CLI Commands.
    For details on setting up a virtual appliance with two network cards, see Service Gateway Virtual Appliance dual network card configuration.