Re: [FW-1] Problems creating NG FP3 backup

Subject:	Re: [FW-1] Problems creating NG FP3 backup
From:	"Tam, Stephen" <Stephen.Tam AT ATCOITEK DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Fri, 23 May 2003 09:16:21 -0600

At a minimal, backup the following files:

$FWDIR/conf/Objects_5_0.C
$FWDIR/conf/rulebases_5_0.fws
$FWDIR/conf/fwauth*.*

Or better yet, backup the entire $FWDIR/conf folder.

The ICA and SIC related files that should be copied to the new
management are:

$FWDIR/conf/InternalCA.*
$FWDIR/conf/ICA*.*
$FWDIR/conf/crls/*.*
$CPDIR/conf/sic_cert.p12

In addition to the above files, you also need to backup and import the
following registry:

HKLM\SOFTWARE\CheckPoint\SIC (export this key and then import it on the
target machine)

-----Original Message-----
From: Erickson, Karen PSC [mailto:Karen.Erickson AT PSC.STATE.WI DOT US]
Sent: Friday, May 23, 2003 8:18 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] Problems creating NG FP3 backup


We have a Windows 2000 machine with NG FP3 in production and are trying
to create a duplicate backup to put in place in case the other ever goes
down.  The gateway and management are on the same machine.  I have
rebuilt the backup box 3 times as there are varying ideas about how to
create the backup machine.  Each time I was not able to open the Smart
DashBoard-got an error  message that the "Connection cannot be
initiated. Make sure the Server <> is up and running".  It is. The
backup is a duplicate of the production machine as far as hardware,
name, IP addresses and which NIC they are associated with. So far I have
(1) moved over FW1 directory-didn't work (2) moved over FW1 and CPShared
directories-nope (3) rebuilt (because I have been told once the policy
editor is opened the certificate is created so it must be rebuilt). .
.with virgin copies of the FW1 and CPShared directories saved to
overwrite if necessary (although I do not know if this will make a
difference if once the policy editor is opened it's time to redo the
machine again).  Any suggestions?  I have been told what I am trying to
do may not be possible because of the certificates that are created in
NG.  Thanks. Karen Erickson Office of Information Technology Public
Service Commission of Wisconsin 608-266-0038

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Problems creating NG FP3 backup, Erickson, Karen PSC [FW-1] RE : [FW-1] Problems creating NG FP3 backup, Yann PERRIN Re: [FW-1] Problems creating NG FP3 backup, Efes Re: [FW-1] Problems creating NG FP3 backup, SRAE Re: [FW-1] Problems creating NG FP3 backup, Tam, Stephen <=

Previous by Date:	[FW-1] Problems creating NG FP3 backup, Erickson, Karen PSC
Next by Date:	Re: [FW-1] Problem in restoring NG FP3 Management Server, Efes
Previous by Thread:	Re: [FW-1] Problems creating NG FP3 backup, SRAE
Next by Thread:	[FW-1] Mgmnt NG-FP3 + 4.2 module: Bidirectional FTP broken?, Rupert Moosmann
Indexes:	[Date] [Thread] [Top] [All Lists]