This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Khanh134752
Explorer
Tuesday
Jump to solution

SMS, Backup

Hi everybody
I want to transfer all my GW to another SMS, is there any way to keep the configuration, policies and objects intact through the new SMS?

2 Solutions

Accepted Solutions
PhoneBoy
Admin
Admin
Tuesday
Jump to solution

There are two ways to do this:

  • Using migrate_server which will take your existing SMS configuration and migrate to a NEWLY installed SMS (with no configuration) on different hardware/VM. This is by far the cleanest way to go since SIC will be re-established once policy is installed from the new SMS.
  • If you are importing to an existing SMS that already has configuration, you will need to use something like ExportImportPolicyPackage which will copy most of the rules/objects, but will require some manual steps, including re-establishing SIC.

 

View solution in original post

0 Kudos
the_rock
Legend
Legend
Tuesday
Jump to solution

Migrate server is what you need, just use that as Phoneboy said. Related sk is https://support.checkpoint.com/results/sk/sk135172

I would simply use example shown, works just fine, just make sure to use right versions and obviously, file name can be anything you prefer.

Andy

View solution in original post

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
Tuesday
Jump to solution

There are two ways to do this:

  • Using migrate_server which will take your existing SMS configuration and migrate to a NEWLY installed SMS (with no configuration) on different hardware/VM. This is by far the cleanest way to go since SIC will be re-established once policy is installed from the new SMS.
  • If you are importing to an existing SMS that already has configuration, you will need to use something like ExportImportPolicyPackage which will copy most of the rules/objects, but will require some manual steps, including re-establishing SIC.

 

0 Kudos
Nguyen134854
Explorer
Wednesday
In response to PhoneBoy
Jump to solution

Can this method be used in case I change the IP of SMS?

 

0 Kudos
Bob_Zimmerman
Authority
Authority
Wednesday
In response to Nguyen134854
Jump to solution

Sure. The IP of the management doesn't matter much. It's a little easier if you make a new secondary management object with the new address, and push policy to make all of the firewalls aware of it ahead of time.

Note that the new management MUST have the same hostname as the old management. Changing a management's hostname is pretty painful since it's tied to the management's certificate authority.

0 Kudos
the_rock
Legend
Legend
Tuesday
Jump to solution

Migrate server is what you need, just use that as Phoneboy said. Related sk is https://support.checkpoint.com/results/sk/sk135172

I would simply use example shown, works just fine, just make sure to use right versions and obviously, file name can be anything you prefer.

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events