Set up a virtual Airwall Gateway in Microsoft Hyper-V

The virtualization server role for Windows Server 2012 R2 is called Hyper-V Manager. The following documentation show the steps to implement and manage a secure Airwall Gateway and overlay network on Hyper-V network.

Required Licenses

An Airwall 300v license for each virtual Airwall Gateway you are setting up.

Prerequisites

  • An existing installation of Microsoft Hyper-V, v2012 or later
  • An Airwall Gateway .vhdx file. Download the .vhdx file from Latest firmware and software.
  • The Conductor you are connecting to configured and available.

Install the Airwall Gateway in Hyper-V

  1. Open a Hyper-V Manager Console from within your Windows Machine.
    • Hyper-V Manager in Windows Server 2012 or Windows Server 2012 R2:
      1. In the lower left-corner, select the Windows icon.
      2. Search for Hyper-V Manager and open it.
    • All other versions:
      1. Right-click in the lower left-hand corner and select Run. Type virtmgmt.msc to open the Hyper-V Manager snap-in.
  2. Go to the Actions pane and select New > Virtual Machine to create a virtual machine for your Airwall Gateway.
    Note: A wizard takes you through the steps to create a New Virtual Machine.
  3. Select Specify Name and Location and give your Airwall Gateway a Name.
  4. Leave Store the virtual machine in a different location unchecked and click Next.
  5. For Specify Generation, select Generation 1, and select Next.
  6. Set the Startup memory to at least 1 gigabyte of ram (1024).
    Note: Consider how much memory you want to assign your virtual machine, as this is the machine that both contains your data and runs the operating system.
  7. Do not check the Use Dynamic Memory box. Select Next.
  8. In Configure Networking, from the Connection drop-down, select Not Connected. You add this connection later.
  9. Select Next.
  10. Under Connect Virtual Hard Disk, select Use Existing virtual hard disk, browse to the location where you saved the vhdx file downloaded from Tempered. Select it and click OK.
  11. Click Next to complete the set up and view the Summary page. You are now ready to add your network adapters.
    Important: Do not start the machine until you set up the hardware using the procedure below.

Add Network Adapters

Once you are finished installing the Airwall Gateway software, you are ready to add the network adapters to the machine that will serve as your Airwall Gateway.

  1. From the Virtual Machines list, find your Airwall Gateway machine and select Action > Settings.
  2. Add a minimum of two Network Adapters. To set the first network adapter, select Add Hardware > Network Adapter and click Add.
  3. Configure the first adapter to connect to your underlay. Leave the VLAN ID and Bandwidth Management options unchecked and click OK.
  4. Return to Add Hardware and configure the second private adapter to connect to your overlay. Leave the VLAN ID and Bandwidth Management options unchecked and click OK.
    Note: You can have up to two private isolated links. If you are using HA, you can create another adapter and set it to private. For more information on HA, see Airwall Edge Service High Availability (HA).
  5. Click the plus (next to the overlay Network Adapter, and select Advanced Features, and check Enable MAC address spoofing.
    Check Enable MAC address spoofing in the Network Adapter on Hyper-V
  6. Select the Airwall Gateway machine and open the Networking tab to review your settings. Your settings should be similar to this example:

Configure the virtual Airwall Gateway

Connect your virtual Airwall Gateway to your Conductor and configure it.

  1. In Hyper-V, select your virtual Airwall Gateway and then select Action > Connect.
  2. Log in to Airshell.
  3. Configure the Conductor and other settings. For more information, see Configure an Airwall Gateway with the airsh Setup Wizard.