This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Niels_van_Sluis
Contributor
‎2018-09-05 03:26 AM

Save virtual server configurations on a VSX member

This script will perform a 'show configuration' on all virtual systems on a VSX member and will save the configurations. It will also backup important configuration files.

Important configuration files

The following files will be part of the backup.

$FWDIR/boot/modules/fwkern.conf
$FWDIR/boot/modules/vpnkern.conf 
$PPKDIR/boot/modules/simkern.conf 
$PPKDIR/boot/modules/sim_aff.conf 
$FWDIR/conf/fwaffinity.conf 
$FWDIR/conf/fwauthd.conf 
$FWDIR/conf/local.arp 
$FWDIR/conf/discntd.if 
$FWDIR/conf/cpha_bond_ls_config.conf 
$FWDIR/conf/resctrl 
$FWDIR/conf/vsaffinity_exception.conf 
$FWDIR/database/qos_policy.C 
$FWDIR/conf/sdconf.rec 
$FWDIR/conf/sdopts.rec 
$FWDIR/conf/sdstatus.12 
$FWDIR/conf/securid 
$CPDIR/registry/HKLM_registry.data
/var/ace/sdconf.rec 
/var/ace/sdopts.rec 
/var/ace/sdstatus.12 
/var/ace/securid

Usage

[Expert@fw1:0]# ./backup_configuration_vsx.sh 
Saved configs: /tmp/backup_configuration_vsx-fw1-2018-09-05.tar 
[Expert@fw1:0]#

Download

GitHub - nvansluis/checkpoint-vsx-save-configuration: Script to save configuration of all virtual sy... 

(1)
6 Replies
_Val_
Admin
Admin
‎2018-09-05 04:26 AM

Niels van Sluis‌, please be advised that although you can backup VS config with your script, it has no practical value. The only supported VS config in VSX mode on Gaia is through VSX provisioning scripts being executed from the management (Main Domain in case of MDSM).

Re-applying Gaia commands from your back files is not supported and may lead to various issues on VSX cluster member. For disaster recovery of a VSX cluster member, please always use Gaia backup/restore tools and/or vsx_util reconfigure command on your management server.

0 Kudos
Niels_van_Sluis
Contributor
‎2018-09-06 12:20 AM

I understand, but there are some settings like for example bootp that needs to be added to the clish configuration of the virtual system per VSX member. So it has some added value to backup this information.

genisis__
Leader Leader
Leader
‎2020-11-08 11:01 AM
In response to Niels_van_Sluis

Add some weight, we use multicast through some of our VS's and have specific PIM, IGMP configuration defined in clish for these.

0 Kudos
_Val_
Admin
Admin
‎2018-09-06 12:31 AM

Okay, that's clear. You may also have some other custom config, such as local.arp files and other file based modification. Those are not covered by your script.

0 Kudos
Niels_van_Sluis
Contributor
‎2018-09-09 07:07 AM

The script has been updated. The new version will also backup important configuration files.

_Val_
Admin
Admin
‎2018-09-11 12:51 AM

now we are talking 🙂

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events