This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Peter2
Participant
‎2021-02-10 03:33 AM

Security Manager Recovery

I have two 3800 appliances running as cluster now. But the security manager server is completely crashed without any backup.

I am new to Check Point systems. Please advise how can I rebuild the server and retrieve the configuration from the firewall. 

thanks.

12 Replies
_Val_
Admin
Admin
‎2021-02-10 05:59 AM

SW version?

 

Peter2
Participant
‎2021-02-10 06:24 AM
In response to _Val_

the firewalls are R80.40

0 Kudos
G_W_Albrecht
Legend Legend
Legend
‎2021-02-10 07:30 AM

If the SMS is crashed completely without a backup, the configuration is lost - you can not restore it from the compiled policy on the gateways.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Peter2
Participant
‎2021-02-10 05:17 PM
In response to G_W_Albrecht

I only have the admin password of the gateway. After build a new SMS, how can I modify the gateway to use the new server. 

0 Kudos
genisis__
Mentor Mentor
Mentor
‎2021-02-11 01:56 AM
In response to Peter2

I've had a similar scenario.  SMS harddrive crashed no backup.  We engaged Checkpoint Professional services to extract the policies from the gateways and the import these into the a clean build SMS.

The have the tools to do this.

G_W_Albrecht
Legend Legend
Legend
‎2021-02-11 02:09 AM
In response to genisis__

Yes, that is possible - but not a cheap solution,so i prefer backups 8).

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
genisis__
Mentor Mentor
Mentor
‎2021-02-11 03:25 AM
In response to G_W_Albrecht

I agree - but in our case with the customer we had little choice.   I suspect it take 1 or 2hrs to do by Professional services but then charge the whole day.

0 Kudos
JC_S
Employee
Employee
‎2022-11-01 11:44 AM
In response to G_W_Albrecht

Professional Services actually CAN do that now

0 Kudos
genisis__
Mentor Mentor
Mentor
‎2022-12-04 04:43 AM
In response to JC_S

I agree,

We had to get PS involved to rebuild a manager and policy using the policy from the gateways! 

0 Kudos
ANARINE
Participant
‎2024-04-09 01:50 AM
In response to genisis__

Is there additional charge for this service from cp?

0 Kudos
genisis__
Mentor Mentor
Mentor
‎2024-04-09 02:00 AM
In response to ANARINE

Yes - we specifically had to engage PS, which indeed cost.

0 Kudos
PhoneBoy
Admin
Admin
‎2021-02-10 06:08 PM

You may be able to piece together the configuration from various files in $FWDIR/state.
However, it will be a manual process.
Check Point Professional Services can also assist with this.

However, if you want to start over, you can build a new management server and make a new configuration.
You will have to go to each gateway and use cpconfig to perform a SIC reset.
This will allow you to establish SIC from the new management server and push a new policy to the gateways.

Note that resetting SIC generally causes an outage. 

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top