Gustavo,
The problem is with the backwards compatibility folders upon import. To get
around this you can use the manual process for migrating a CMA. You might
try this procedure.
1) Export each CMA as follows:
2) Login to the MDS as root.
3) Create a directory somewhere which will hold each CMA's exported
configuration.
4) Under that directory, create a directory for each customer.
5) mdsenv <cma>
6) cd $CPDIR
7) cp -R database /path/to/customer/database.cpdir
8) cd $FWDIR
9) cp -R conf /path/to/customer
10) cp -R database /path/to/customer
11) Create the customers and CMAs using the same names. Do not start any
CMAs.
12) CMA by CMA, right click, then choose "import customer management
add-on".
13) In the dialog that appears, type the appropriate path for that
customer's files. Do not enter any of the subdirectories, such as conf or
conf.cpdir, as this will cause the import to fail.
14) Apply appropriate licensing to the MDS and each CMA, and start all the
CMAs. Verify that the MDG shows the CMAs as started.
15) Apply any global policies needed.
Jason
On 2/15/06, cisco4ng <cisco4ng AT yahoo DOT com> wrote:
>
> Gustavo,
>
> Can you do this:
>
> 1) Perform an mds_restore on the new provider-1,
> 2) upgrade it to NGx R60A,
> 3) I've been told by Checkpoint that with this method, you will be able to
> manage
> VPM-1 Edge device from Provider-1 NGx R60A
>
>
>
> Gustavo Vianna <gustavo.vianna AT COMSAT.COM DOT BR> wrote:
> You are right! Using mds_backup / mds_restore scripts I have already done
> in the same way that you described and worked fine. But there is a fact that
> I forgot to mention. The current installation is based on a lot of
> updates... NG FP1, FP3 and now NG+AI R55. The problem is that with this old
> installation I can´t manage VPN-1 Edge devices from Provider-1. There is no
> support in current Provider-1 installation. So a fresh R55 installation was
> the solution for this issue. I don´t know if there is another way to do
> that... suggestions?!
<snip>
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
