This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
deepak07
Explorer
‎2025-05-28 05:50 AM

Checkpoint Gateway Refresh from 4600 series to 6200 series

Hi everyone

 

Need your help in checkpoint hardware refresh, 

My current management server (CMA) is on already on R81.20 and gateway cluster is on R80.20 (checkpoint 4600 appliance) .
I want to upgrade my hardware checkpoint gateways from exiting 4600 Checkpoint cluster with a new checkpoint 6200 (R81.20)

Current CMA is on R81.20, and Cluster Gateways (Checkpoint 4600 series appliance) is on R80.20
Required CMA is on R81.20, and change cluster Gateways (Checkpoint 6200 series appliance) on R81.20

Earlier i was thinking of using snapshot backup but this backup can only restore on same hardware.

I am not getting any SK for my requirement.

Appreciate your help

0 Kudos
5 Replies
G_W_Albrecht
Legend Legend
Legend
‎2025-05-28 06:05 AM

See here: sk108902: Best Practices - Backup on Gaia OS

@PhoneBoy  - can we move this to Quantum Security GWs ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2025-05-28 07:52 AM
In response to G_W_Albrecht

Done 👍 

CCSM R77/R80/ELITE
0 Kudos
deepak07
Explorer
‎2025-05-28 10:58 PM
In response to G_W_Albrecht

@G_W_Albrecht @Chris_Atkinson @PhoneBoy 

Yes... as per the above SK, we can not use snapshot backup (because snapshot can be restored on same type of machine). Also can use use migrate_server export (its only running on management server).

 

could you please guide, how to proceed with the configuration migration from Checkpoint 4600 series (R80.20) to 6200 series appliance (81.20)

0 Kudos
Chris_Atkinson
Employee Employee
Employee
‎2025-05-29 07:27 AM
In response to deepak07

The SK linked above is clear that the appliances should run the same version for a gaia backup to work.

Parallel build may make more sense than alternatives due to the generational gap / steps.

Do you believe the config of this appliance is particularly strange or complex?  CLI config replication could be the path.

CCSM R77/R80/ELITE
0 Kudos
PhoneBoy
Admin
Admin
‎2025-05-29 03:58 PM

Most of the configuration is actually on your management server.
Which means if you configure the gateways with the same OS configuration, reset SIC on the gateway objects, and push policy, you're done.
For the OS configuration, you can backup/restore that configuration by following: https://support.checkpoint.com/results/sk/sk102234 
Note this does not account for any changes made via expert mode, most of which would be different given the significant differences between R80.20 and R81.20.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events