Sorry for hijacking this old one, but I think I have the same question as Eber_Aparecido_ and I am still looking for an answer.

Using the scheduled backup (System Backup via Clish), a Gateway does create (and in our case SCP) a backup regularly, but I did not come across a way to get informed when a backup schedule failed.

So it might be months until you realize, that even though you have had a successful backup-schedule in the past, that the most up to date backup is some months old.

Except checking clish "show backup status" (either by hand, cronjob or SNMP Extension) I do not see a way to alert the admin, that a backup failed.

Is there a possibility to monitor this, ideally via SNMP?

Our current setup is R80.20 - R80.40, but since the backup schedule did not really change I don't think this is version relevant.

Hi MR_K,

In the next version (R81.20) we plan improvements in UI of backup.
The status of each schedule backup task should be added.
In case of failure it will be clearly seen in UI.

Regards,
Dov

Correct - cronjob is most handy. SNMP OIDs exist for real-time monitoring of selected counters, but not backup status - same in treshholds for email alerts of SVMonitor.

That is rather easy in GAiA WebGUI:

- in System Management > Mail Notification configure your mail server

- in System Management > Job Scheduler, add a job with command "show backup status" to run at selected intervals, default daily

- in Email Notification add your email address

- output of command "show backup status" will be emailed to you in selected intervals

Or better would be to check only last successfull backup (show backup last-successfull). Also I am not sure if clish command can be used. Maybe "clish -c '' " is needed.

Maybe - but i would just try and get my solution 8) but good points indeed !

Thanks for that idea, definitely would work, I am just hesitant to use it since we have over 50 Firewalls in our network and we would have to request a SMTP exception for each one (as well as requesting changes every time the number or IPs change), that's just not very practical with those numbers.

That actually sounds like a very good idea.
Running the check backup status on all gateways simultaneously either via Mail Notification or SNMP extension.

I have to look into this how well we can do that regularly (we had some issue with filtering which gateways shall be addressed and which not).
Thanks a lot!

I use a bit of one line command instead of a show command which could run by job scheduler just after scheduled backup after  my morning tea. As the "show" commands needs a bit thinking and I only like to think once therefor I only filter to the result. Can I kindly ask you to check it?

My script:

[[ ($(clish -c "show backup last-successful" | sed -n '/scp /,$p' | grep -e 'Date' | cut -d" " -f3) == $(date +"%d-%b-%Y")) ]] && echo Backup Successful || echo Backup Failed

Hi, configured this as this looked like a nice quick solution. It is sending the mail but mail server requires a TLS connection from gateway to mail server.  To set this up I need to enable MTA and import TLS certificate from the mail server. No other possibility to import certificate without enabling MTA ? No need for mail inspection functionality. 

kind regards,

Mikel

The underlying mechanisms used to send mail from the OS do not assume TLS currently.
This would need to be handled as an RFE.

MTA would provide an SMTP server that could be available unencrypted and forwarded to the real SMTP server encrypted.

Thanks for the reply. Submitted the RFE 🙂