How To Backup a SmartCenter



Similar documents
Endpoint Security VPN for Mac

R75. Installation and Upgrade Guide

Endpoint Security VPN for Mac

Multi-Domain Security Management

Remote Access Clients for Windows

Endpoint Security VPN for Windows 32-bit/64-bit

Security Gateway R75. for Amazon VPC. Getting Started Guide

SSL Network Extender R71. Release Notes

HP OpenView Patch Manager Using Radia

Check Point Security Administrator R70

Security Gateway for OpenStack

Upgrade Guide. CA Application Delivery Analysis 10.1

Security Gateway Virtual Appliance R75.40

Gaia Syslog Messages. Technical Reference Guide. 25 February Classification: [Protected]

DDoS Protection on the Security Gateway

FortiAnalyzer VM (VMware) Install Guide

Upgrading Horizon Workspace

DSView 4 Management Software Transition Technical Bulletin

HP OpenView Configuration Server Using Radia

How To Migrate To Redhat Enterprise Linux 4

Change Manager 5.0 Installation Guide

Quick Start Guide. for Installing vnios Software on. VMware Platforms

Matisse Installation Guide for MS Windows. 10th Edition

How To Install A Safesync On A Server

Web Enabled Software for 8614xB-series Optical Spectrum Analyzers. Installation Guide

How To Install Caarcserve Backup Patch Manager (Carcserver) On A Pc Or Mac Or Mac (Or Mac)

New Features Guide. Adaptive Server Enterprise 15.7 SP50

Hillstone StoneOS User Manual Hillstone Unified Intelligence Firewall Installation Manual

Oracle Enterprise Manager

CA arcserve Unified Data Protection Agent for Linux

Database Administration Guide

EMC Data Domain Management Center

CA ARCserve Backup for Windows

Operating Systems Networking for Home and Small Businesses Chapter 2

Dell NetVault Backup Plug-in for SharePoint 1.3. User s Guide

Configure Cisco Emergency Responder Disaster Recovery System

Embarcadero Performance Center 2.7 Installation Guide

CA Nimsoft Monitor. Probe Guide for E2E Application Response Monitoring. e2e_appmon v2.2 series

Using Secure4Audit in an IRIX 6.5 Environment

Synthetic Monitoring Scripting Framework. User Guide

Automated Database Backup. Procedure to create an automated database backup using SQL management tools

vsphere Upgrade vsphere 6.0 EN

Release Version 4.1 The 2X Software Server Based Computing Guide

ACTi NVR Config Converter User s Manual. Version /06/07

Oracle Cloud. What s New for Oracle Compute Cloud Service (IaaS) Topics. July What's New for Oracle Compute Cloud Service (IaaS) Release 16.

NetFlow Collection and Processing Cartridge Pack User Guide Release 6.0

Symantec NetBackup Backup, Archive, and Restore Getting Started Guide. Release 7.5

Pre-Installation Instructions

Database Administration Guide

Secure Web Gateway 11.7 Upgrade Release Notes

Attix5 Pro Server Edition

Configuring and Monitoring SNMP Generic Servers. eg Enterprise v5.6

VMware Mirage Web Manager Guide

Follow this procedure to upgrade your Agility ipath v3.3 hardware to a new 4.0 system.

Database Maintenance ZENworks Mobile Management 2.7.x August 2013

Veeam Cloud Connect. Version 8.0. Administrator Guide

Copyright

Installation and Configuration Guide. Version 5.2

PHD Virtual Backup for Hyper-V

VERITAS NetBackup Bare Metal Restore 6.0

Introduction to Virtual Datacenter

FileMaker Server 14. FileMaker Server Help

CA ARCserve Replication and High Availability

CA ehealth. High Availability and Disaster Recovery Administration Guide. r6.1

CA NetQoS Performance Center

Operating System Installation Guide

Dell NetVault Bare Metal Recovery User s Guide

Cloud ONTAP 8.3 for Amazon Web Services

BrightStor ARCserve Backup for Linux

CA Performance Center

Managing Cisco ISE Backup and Restore Operations

CA Nimsoft Unified Management Portal

Oracle Java Micro Edition Software Development Kit

Zenoss Core ZenUp Installation and Administration

HP Data Replication Solution Service for 3PAR Virtual Copy

Dell NetVault Bare Metal Recovery for Dell NetVault Backup Server User s Guide

Zenoss Resource Manager ZenUp Installation and Administration

Trend Micro Encryption Gateway 5

Arcserve Backup for Windows

Nimsoft Monitor. dns_response Guide. v1.6 series

HP Insight Diagnostics Online Edition. Featuring Survey Utility and IML Viewer

Clustering. Configuration Guide IPSO 6.2

Cisco Unified CM Disaster Recovery System

HP LeftHand SAN Solutions

Adaptive Server Enterprise

Digi Connect Wan 3G Application Guide Update the firmware, backup and restore the configuration of a Digi Connect Wan 3G using a USB flash drive.

Symantec Backup Exec System Recovery Exchange Retrieve Option User's Guide

Disaster Recovery System Administration Guide for Cisco Unified Communications Manager Release 8.5(1)

Migrating from Microsoft ISA Server 2004/2006 to Forefront Threat Management Gateway (TMG) 2010

Trend Micro Incorporated reserves the right to make changes to this document and to the products described herein without notice.

Matisse Installation Guide for MS Windows

Dell NetVault Backup Plug-in for SQL Server

Installing and Using the vnios Trial

Ahsay Offsite Backup Server and Ahsay Replication Server

Unicenter NSM Integration for BMC Remedy. User Guide

vcenter Configuration Manager Backup and Disaster Recovery Guide VCM 5.3

etrust Audit Using the Recorder for Check Point FireWall-1 1.5

CA Workload Automation Agent for Microsoft SQL Server

CA Cloud Service Delivery Platform

Transcription:

How To Backup a SmartCenter 6 April 2011

2011 Check Point Software Technologies Ltd. All rights reserved. This product and related documentation are protected by copyright and distributed under licensing restricting their use, copying, distribution, and decompilation. No part of this product or related documentation may be reproduced in any form or by any means without prior written authorization of Check Point. While every precaution has been taken in the preparation of this book, Check Point assumes no responsibility for errors or omissions. This publication and features described herein are subject to change without notice. RESTRICTED RIGHTS LEGEND: Use, duplication, or disclosure by the government is subject to restrictions as set forth in subparagraph (c)(1)(ii) of the Rights in Technical Data and Computer Software clause at DFARS 252.227-7013 and FAR 52.227-19. TRADEMARKS: Refer to the Copyright page (http://www.checkpoint.com/copyright.html) for a list of our trademarks. Refer to the Third Party copyright notices (http://www.checkpoint.com/3rd_party_copyright.html) for a list of relevant copyrights and third-party licenses.

Important Information Latest Software We recommend that you install the most recent software release to stay up-to-date with the latest functional improvements, stability fixes, security enhancements and protection against new and evolving attacks. Latest Documentation The latest version of this document is at: http://supportcontent.checkpoint.com/documentation_download?id=11973 For additional technical information, visit the Check Point Support Center (http://supportcenter.checkpoint.com). Revision History Date Description 4/6/2011 First release of this document Feedback Check Point is engaged in a continuous effort to improve its documentation. Please help us by sending your comments (mailto:cp_techpub_feedback@checkpoint.com?subject=feedback on How To Backup a SmartCenter ).

Contents Important Information... 3 How To Backup a SmartCenter... 5 Objective... 5 Supported Versions... 5 Supported OS... 5 Supported Appliances... 5 Related Documentation and Assumed Knowledge... 5 Impact on Environment and Warnings... 6 Take a Snapshot... 6 Snapshot using the CLI Command... 6 Snapshot using the WebUI... 6 Backup Procedure... 7 Backup using the CLI... 7 Backup using the WebUI... 7 Upgrade tools... 7 Upgrade tools using Linux... 8 Upgrade tools using Windows... 8 Additional Backup options... 9 Database Revision Control... 9 Saving Routing and Interface Information... 9 Recommended Backup Schedule... 10 Verifying the Procedure... 11

Objective How To Backup a SmartCenter Objective This guide assists in the recording and storage of current configurations on the SmartCenter to another location. In case of hard drive failure, failed upgraded, database corruption or other system failures the data can easily be restored. It is important to always have a copy of the most recent information in the Security Management server and Security Gateway databases. There are two methods of taking a Snapshot and creating a Backup with SecurePlatform, through the WebUI and CLI. You can use the Upgrade Tools for Linux and Windows. Supported Versions All current Check Point versions Supported OS SecurePlatform Windows Linux Solaris IPSO Supported Appliances All current Check Point Appliances Related Documentation and Assumed Knowledge Experience with command line interfaces (CLI) and WebUI tools. Terminology Standalone - Security Gateway and Security Management on the same machine Distributed - Security Gateway and Security Management on separate machines Related Documentation Refer to: R75 Installation and Upgrade Guide (http://supportcontent.checkpoint.com/documentation_download?id=11648) How To Backup a SmartCenter Page 5

Impact on Environment and Warnings Impact on Environment and Warnings The Snapshot and Backup process is recommended to be run during a maintenance window. Take a Snapshot A Snapshot, including drivers, will be created and is only available for SecurePlatform. The Snapshot can be used to backup up both Security Gateways and Security Management servers. The Snapshot will generate a large file. Note - The Snapshot can only be restored to the same machine that is in the same state (same OS, same CP version, same patch level). For UTM-1 and Power-1 appliances, you can only take a Snapshot with the WebUI. The snapshot must stay on the appliance. Snapshot using the CLI Command To take a Snapshot with the CLI: Run: snapshot The Snapshot uses default backup settings and place the file in the directory /var/cpsnapshot/snapshots when no flags are set. Additional flags for file name or tftp server can be used. Use the command snapshot -h for help and a listing of available flags. To restore the system from the Snapshot file: Run: revert The system is restored to the configuration as set in the Snapshot. Use the revert -h for help. Snapshot using the WebUI To take a Snapshot with the WebUI: 1. Login to https:///mgmt:4434. 2. Click Appliance -> Image management-> Create. To restore: 1. Login to https://<ip_address>/mgmt:4434. 2. Select the snapshot. 3. Select revert. Take a Snapshot Page 6

Backup using the CLI Backup Procedure A Backup of the Check Point configuration and networking/os system, such as routing data, is restored. It is only available on SecurePlatform. The Backup can be used to restore both Security Gateways and Security Management servers. The file will be slightly smaller than the file generated by Snapshot. The restoration must be done to the same machine, same OS, same Check Point version and patch levels. Backup using the CLI To Backup the system with the CLI: Run: backup If no flags are used the default Backup settings will place the file in the directory: /var/cpbackup/backups. On the UTM-1 and Power-1 appliances, the file will be stored in /var/log/cpbackup/backups. Additional flags for file name or tftp server can be used. Use the command backup -h for help and a listing of available flags. To restore the system from the Backup file: Run: restore The system is restored to the configuration as set in the Backup file. Use the restore -h for help. Backup using the WebUI To create a Backup from the WebUI: 1. Login to https://<ip_address>/mgmt:443. 2. Click Device -> Backup You can choose to either perform the Backup now or schedule a Backup. Note - The Backup can only be restored from the command line interface. Upgrade tools Upgrade tools will perform a Backup for all Check Point configurations, but not OS configuration data. You can backup Check Point configuration on the Security Management server independent of hardware, OS or Check Point version. You can also restore to a higher Check Point version only. Depending on the size of your policy, the created file is smaller than a Snapshot or Backup file. If the system is not running on high CPU you can do a backup on live system without interruption of the services. The Upgrade tools are also available for Solaris and IPSO. This utility is used through the command line. Backup Procedure Page 7

Upgrade tools using Linux Upgrade tools using Linux To export on Linux: 1. Enter: cd $FWDIR/bin/upgrade_tools 2. Enter:./upgrade_export filename To import on Linux: 1. Enter: cd $FWDIR/bin/upgrade_tools 2. Then enter:./upgrade_import filename The command upgrade_import will stop all active Check Point services. Upgrade tools using Windows To export on Windows: 1. Enter: cd c:/windows/fw1/bin 2. then enter: upgrade_export <filename> To import on Windows: Enter: upgrade_import <filename> Upgrade tools Page 8

Database Revision Control Additional Backup options Database Revision Control This utility creates a version of your current policies, object database, IPS updates. It is useful for minor changes or edits performed in the dashboard. Note - It cannot be used to restore the system in cases of failure. To perform database revision control, in the dashboard go to: File >Database revision control >Create You can create a database revision when you install a policy. Saving Routing and Interface Information You can save the routing and interface information from your machines with these commands: netstat -rn > routes.txt ipconfig -a > ipconfig.txt ifconfig > ifconfig.txt copy /etc/sysconfig/netconf.c <location> Additional Backup options Page 9

Saving Routing and Interface Information Recommended Backup Schedule We recommend that you schedule backups for: Snapshot Backup at least once before any major changes (for example an upgrade) Backup Backup approximately every two months, depending on frequency of network/ policy changes, as well as before every major change upgrade_export Backup approximately every month, depending on frequency of network/ policy changes, and before every upgrade or migration Recommended Backup Schedule Page 10

Saving Routing and Interface Information Verifying the Procedure It is highly recommended to test your Backup procedures and confirm that all data has been restored correctly. The backup and upgrade_export options are used for this. Verifying the Procedure Page 11

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information