Firewall Wizards mailing list archives

Re: Backup Checkpoint Firewall

From: Erick Mechler <emechler () techometer net>
Date: Tue, 17 May 2005 10:32:21 -0700

:: I am working on creating a secure means to backup a CheckPoint FW-1 with
:: AI firewall.  I have procedures for encrypting the information, but what
:: is the best way to get all of the configuration?  Here is what I would
:: like to have:
:: 
::      Text output (preferred, I can encrypt to ASCII if needed)
::      All configuration settings
::      Easy way to import into a new installation
:: 
:: If this is possible, what would be the command to execute to get the
:: backup and the command to import it back in?  If it isn't possible, what
:: is the best way?

I'm assuming you're talking about your mgmt station, although you didn't
specifically say.  If you're religious about making DB revisions each time
you push a policy, then you can backup the entire $FWDIR/conf/db_versions/
directory structure.  If your management station goes away, you can restore
from these backups and SIC information will also be maintained between your 
mgmt station and FW endpoints.

Cheers - Erick
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Backup Checkpoint Firewall Nathaniel Hall (May 17)
- RE: Backup Checkpoint Firewall Paul Melson (May 17)
- Re: Backup Checkpoint Firewall John Adams (May 17)
- Re: Backup Checkpoint Firewall Erick Mechler (May 17)
- <Possible follow-ups>
- Re: Backup Checkpoint Firewall Nathaniel Hall (May 17)
  - RE: Backup Checkpoint Firewall Paul Melson (May 17)