Scribd
Upload
15 views4 pages

75 Backup+Restore+Theory

Uploaded by

SUBHANKAR DAS
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
15 views4 pages

75 Backup+Restore+Theory

Uploaded by

SUBHANKAR DAS
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 4

WWW.TGMACAD.

COM

Backup and Restore:


➢ Backup and recovery is the process of duplicating data and storing it in a secure
place.
➢ Purpose of backup is to create copy of data that can be recovered in the event of
failure.
➢ Taking backup is one of the basic but important task for any system including
Checkpoint. Backup can be done either from the Checkpoint command-line interface
(CLI) or GUI.
➢ Restore can be done either from the Checkpoint command-line interface (CLI) or GUI.
➢ Check Point Network Firewall Backup can be an on-demand backup or run on a
schedule. Perform an on-demand backup on Firewall when you want to back up data
immediately.
➢ You can schedule System backups on Check Point to run once, daily, weekly, or
monthly.
➢ Backup using in the Gaia portal for snapshot management and system
backup/Restore.
➢ You can schedule backups both from Command Line as well as the GUI Gaia web
Portal.
➢ There are many type of Backup Options in Check Point Snapshot, Save Config &
Backup.
➢ The snapshot creates a binary image of the entire root (lv_current) disk partition
firewall.
➢ Snapshot option includes Check Point products, configuration, and operating system
OS. System Backup option in checkpoint can be used to backup current system
configuration.
➢ Configuration changes you enter using CLI are applied immediately to the running
system. To ensure that these changes remain after you reboot, that is, to save your
changes CLI.

+91 8319893647, 8949286526 +91 9828507227, 8949286526


WWW.TGMACAD.COM

For complete backup of the system and maximum confidence, Check Points recommends
combining all three methods as part of the backup plan (Snapshot Management, System
Backup/Restore, Save/Load Configuration). This will allow multiple restore points,
redundancy and reliability of overall restore procedure. Snapshot after a fresh installation,
before an upgrade, and before a hotfix installation. Scheduled Backup monthly or weekly,
depending how frequently you perform changes in your configuration and policy.
Save/Load Configuration whenever required.

Snapshot:
The snapshot creates a binary image of the entire root (lv_current) disk partition. This
includes Check Point products, configuration, and operating system. Starting in R77.10,
exporting an image from one machine and importing that image on another machine of the
same type is supported. The log partition is not included in the snapshot. Therefore, any
locally stored FireWall logs will not be saved. Snapshot - after a fresh installation, before an
upgrade, and before a hotfix installation. Snapshot is the best way to restore your entire
configuration however it is very extensive in size and took more CPU and memory to create
and restore snapshot. Snapshot can be used to backup both your firewall and management
modules. The disadvantages of this utility are that the generated file is very big, and can only
be restored to the same device, and exactly the same state (same OS, same Check Point
version, same patch level). A snapshot is very large which includes entire Root partition and
some /var/log partition. Snapshot is better when needing to include Hotfixes and to restore
from a different version.

System Backup and Restore:


System Backup can be used to backup current system configuration. A backup creates a
compressed file that contains the Check Point configuration including the networking and
operating system parameters, such as routing and interface configuration etc., but unlike a
snapshot, it does not include the operating system, product binaries, and hotfixes. You can
store backups locally, or remotely to a TFTP, SCP or FTP server. You can run the backup
manually or on a schedule. Does not included an operating system if the Backup and Restore
is used for a new Hardware, OS has to be installed first then can use this backup file. Backup

+91 8319893647, 8949286526 +91 9828507227, 8949286526


WWW.TGMACAD.COM

is better when trying to get it done in least amount of time also supporting automatic
scheduling.

Comparison of Backup Methods:

Requirements Snapshot Backup


Time 30 - 60 minutes 5 - 30 minutes
Size of output file on SG 5-100 GB Depends on configuration
Size of output file on SMS 5-100 GB 5-100 GB
Backup Gaia OS configuration Yes Yes
Backup Products configuration Yes Yes
Backup Hotfixes Yes No (*)
Backup Check Point logs No No
Automatic scheduling No Yes
Restore from different version Yes No
Close SmartConsole GUI clients No Yes
Stop Check Point services No No
Require reboot No No

Recommended steps in case of Disaster Recovery:


1. Revert to a Snapshot - restores the Check Point version with all the setup details,
including type (management/gateway) and installation of hotfixes.
2. Restore from Backup - restores latest system configuration with all recent network and
security configuration.
3. Compare the output of Clish command "show configuration" to the saved configuration
to verify that Gaia OS configuration was restored properly.
4. Install policy on this machine (if it is a Security Gateway / StandAlone).

+91 8319893647, 8949286526 +91 9828507227, 8949286526


WWW.TGMACAD.COM

+91 8319893647, 8949286526 +91 9828507227, 8949286526

You might also like