I am trying to perform a test disaster recovery onto a new server and when I restore the following files I receive a message that tht the server is not started when I try to connect to the firewall with the Policy editor. If I replace all of these files except the rulebases_5_0.fws I can connect to it, but of coarse there are no Rules. The server is Win2K SP3 and the FW-1 version is NG with FP2. If anyone has any thoughts it would be greatly appreciated.
To restore the FireWall-1 NG Management Server with backup files:
1. Backup the following files:
$FWDIR/conf/Objects_5_0.C
$FWDIR/conf/rulebases_5_0.fws
$FWDIR/conf/fwauth.NDB
(on Windows machines this file is only the pointer to the real user database file, for example, fwauth.NDB522. In this case take the real database file -fwauth.NDB522, and rename it to fwauth.NDB)
The ICA and SIC related files that should be copied to the new management are:
$FWDIR/conf/InternalCA.*
$FWDIR/conf/ICA*.*
$CPDIR/conf/sic_cert.p12
In addition to the above files, you also need to backup and import the following:
Unix: /opt/CPshared/registry/HKLM_registry.data (copy everything under 'SIC').
Win32: HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\SIC (export this key and then import it on the target machine)
From NG FP2, you should also copy all the files from: $FWDIR/conf/crls
Copying the above files will save you the need to issue a new root certificate and new modules certificates.
2. Uninstall the Management Server.
3. Reinstall FireWall-1 NG Management Server.
4. Reset SIC on the enforcement module/s through cpconfig.
5. Stop the FireWall-1 NG Management Server (cpstop).
6. Copy the backup files to the $FWDIR/conf $CPDIR/conf directories respectively.
7. Start the FireWall-1 management machine.(cpstart).
To restore the FireWall-1 NG Management Server with backup files:
1. Backup the following files:
$FWDIR/conf/Objects_5_0.C
$FWDIR/conf/rulebases_5_0.fws
$FWDIR/conf/fwauth.NDB
(on Windows machines this file is only the pointer to the real user database file, for example, fwauth.NDB522. In this case take the real database file -fwauth.NDB522, and rename it to fwauth.NDB)
The ICA and SIC related files that should be copied to the new management are:
$FWDIR/conf/InternalCA.*
$FWDIR/conf/ICA*.*
$CPDIR/conf/sic_cert.p12
In addition to the above files, you also need to backup and import the following:
Unix: /opt/CPshared/registry/HKLM_registry.data (copy everything under 'SIC').
Win32: HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\SIC (export this key and then import it on the target machine)
From NG FP2, you should also copy all the files from: $FWDIR/conf/crls
Copying the above files will save you the need to issue a new root certificate and new modules certificates.
2. Uninstall the Management Server.
3. Reinstall FireWall-1 NG Management Server.
4. Reset SIC on the enforcement module/s through cpconfig.
5. Stop the FireWall-1 NG Management Server (cpstop).
6. Copy the backup files to the $FWDIR/conf $CPDIR/conf directories respectively.
7. Start the FireWall-1 management machine.(cpstart).
