- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hello friends,
we had a power issue in one of our sites due to UPS issue, checkpoint 5200 appliance running as a gateway rebooted, it came up without security policy , fw stat - showed as "default policy" and it didn't pass any traffic. It also lost the connection with mgmt server. Resetting SIC didn't help, as when I pushed policy I got error "load on module failed". I had to restore the gateway to factory defaults to get it back working. This was the second time we faced such an issue, earlier with a different site. Worked with TAC, they said some DB corruption and did the same (restored to factory defaults) as a fix. Is there a way we can avoid this kind of corruption ?
Thanks,
Nishad
I thought this behavior was no longer happening, we had this type of corruption quite a lot with 2012 appliances (like 2200 and 4x00) in Asian and African countries where power outages are quite often happening. The problem occurs when a writew action is taking place during the power cut. Mostly the only way to recover is a reinstall, either from USB or from a snapshot.
When you're lucky you might be able to recover using fsck while booted in maintenance mode.
I agree. On such sites I with risk of power failure I would always have a snapshot on local and external disk. Then you're back in business fairly quickly - just boot using snapshot
Thank you!
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY