This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
gajendra229
Explorer
‎2023-06-05 10:39 AM
Jump to solution

I have to create a new mgmt server and decommission the old one

I have to create a new mgmt server and decommission the old one,

Whats the best practice to do that, currently i have mesh tunnel between each gateway running.

Planning to setup first the connectivity between new management server and gateways then decommission the old one, how can i achieve this without much impact.

 

What are the steps to install all database/configuration from old mgmt server to the new mgmt server

0 Kudos
2 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
‎2023-06-05 11:24 AM
In response to gajendra229
Jump to solution

Use the migration tools, same as you would for an upgrade.
The only difference is the target version would be the same.
See: https://support.checkpoint.com/results/sk/sk135172

Once you're happy with the migrated configuration, the way to convert your existing gateways to use the new management is simple: push policy from the new management server.
This should not require any downtime, though scheduling this during a maintenance window is recommended.

View solution in original post

0 Kudos
PhoneBoy
Admin
Admin
‎2023-06-05 02:45 PM
In response to gajendra229
Jump to solution

The export (executed on the current management server) and import (executed on the new management server after transferring the tgz file from the export) are single commands listed in the SK I mentioned.
See also: https://support.checkpoint.com/results/sk/sk163814 

View solution in original post

13 Replies
the_rock
Legend
Legend
‎2023-06-05 10:50 AM
Jump to solution

You should probably follow below to move config over first.

Andy

https://support.checkpoint.com/results/sk/sk135172

0 Kudos
gajendra229
Explorer
‎2023-06-05 11:09 AM
In response to the_rock
Jump to solution

the_rock its talk about the upgrade and all but i dont want to upgrade now
i want to build up a new mgmt server in private cloud and connect all the gateway to it and decomission the older mgmt server

0 Kudos
the_rock
Legend
Legend
‎2023-06-05 11:10 AM
In response to gajendra229
Jump to solution

K, got it. Well, if you want to do it that way, sounds like a lot of manual work, because everything would need to be done from scratch...rules, creating all the objects.etc...

Andy

0 Kudos
gajendra229
Explorer
‎2023-06-05 11:17 AM
In response to the_rock
Jump to solution

How to move all the configuration from the old mgmt server to the new mgmt server?

0 Kudos
the_rock
Legend
Legend
‎2023-06-05 11:22 AM
In response to gajendra229
Jump to solution

What exact config?

Andy

0 Kudos
gajendra229
Explorer
‎2023-06-05 11:25 AM
In response to the_rock
Jump to solution

All, see i have to migrate from old mgmt server (which need to be decommsion) to the new mgmt server

so i can have the same config that old mgmt server has?

0 Kudos
the_rock
Legend
Legend
‎2023-06-05 11:35 AM
In response to gajendra229
Jump to solution

What I gave you is pretty much what @PhoneBoy advised. Copy config and you wont even need to recreate any objects.

0 Kudos
PhoneBoy
Admin
Admin
‎2023-06-05 11:24 AM
In response to gajendra229
Jump to solution

Use the migration tools, same as you would for an upgrade.
The only difference is the target version would be the same.
See: https://support.checkpoint.com/results/sk/sk135172

Once you're happy with the migrated configuration, the way to convert your existing gateways to use the new management is simple: push policy from the new management server.
This should not require any downtime, though scheduling this during a maintenance window is recommended.

0 Kudos
gajendra229
Explorer
‎2023-06-05 11:40 AM
In response to PhoneBoy
Jump to solution

You got what help I need but i am doing it first time so dont understand much on this , anywhere its given in layman terms?

as i understand i need to go under below points

Note for the Advanced Upgrade

Here the steps given in SK...
1) i have to export the config from old mgmt server ?
2) i have to import that in new mgmt server?

 

where i need to run verify and what it will verify?

0 Kudos
the_rock
Legend
Legend
‎2023-06-05 11:45 AM
In response to gajendra229
Jump to solution

Everything you asked is in the sk Phoneboy provided. Please read it carefully, because instructions are clear. It shows what to install on existing server (no need if versions will be same), then how to verify and commands to export and import to new server (with tgz file generated)

Andy

 

https://support.checkpoint.com/results/sk/sk135172

0 Kudos
PhoneBoy
Admin
Admin
‎2023-06-05 02:45 PM
In response to gajendra229
Jump to solution

The export (executed on the current management server) and import (executed on the new management server after transferring the tgz file from the export) are single commands listed in the SK I mentioned.
See also: https://support.checkpoint.com/results/sk/sk163814 

gajendra229
Explorer
‎2023-06-06 04:23 AM
In response to PhoneBoy
Jump to solution

I am getting this error while importing to new management server



Database migration between Standalone and Management only machines is not supported

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top