CP防火墙备份与还原
Step1:进入专家模式
======================================================
如果没有设置专家模式的密码,执行下面命令进行设置:
BJ-OFFICE-GW> set expert-password
Enter new expert password:
Enter new expert password (again):
BJ-OFFICE-GW>
Step2:进入备份工具目录
======================================================
[Expert@BJ-OFFICE-GW:0]# cd $FWDIR
[Expert@BJ-OFFICE-GW:0]# cd bin/
[Expert@BJ-OFFICE-GW:0]# cd upgrade_tools/
[Expert@BJ-OFFICE-GW:0]# ls -l
total 73204
-rwxrwx--- 1 admin bin 377032 Oct 10 2018 del_revision_files
-rwxrwx--- 1 admin bin 266484 Oct 10 2018 gtar
-rwxrwx--- 1 admin bin 74116 Oct 10 2018 gzip
-rwxrwx--- 1 admin bin 6937092 Oct 10 2018 ips_upgrade_tool
-rwxrwx--- 1 admin bin 11713680 Oct 10 2018 migrate
-rwxrwx--- 1 admin bin 59429 Oct 10 2018 migrate.conf
-rwxrwx--- 1 admin bin 107 Oct 10 2018 plugin_pack.conf
-rwxrwx--- 1 admin bin 6127476 Oct 10 2018 plugin_pack_compare
-rwxrwx--- 1 admin bin 6276408 Oct 10 2018 plugin_upgrade_matcher
-rwxrwx--- 1 admin bin 18065 Oct 10 2018 ppidb.conf
-rwxrwx--- 1 admin bin 19385024 Oct 10 2018 pre_upgrade_verifier
-rwxrwx--- 1 admin bin 135320 Oct 10 2018 puv_report_generator
-rwxrwx--- 1 admin bin 11713680 Oct 10 2018 upgrade_export
-rwxrwx--- 1 admin bin 11713680 Oct 10 2018 upgrade_import
[Expert@BJ-OFFICE-GW:0]#
Step3:备份
======================================================
[Expert@BJ-OFFICE-GW:0]# ./upgrade_export SMC_20190709.tgz
You are required to close all clients to Security Management Server
or execute 'cpstop' before the Export operation begins.
Do you want to continue? (y/n) [n]? y
Copying required files...
The operation completed successfully.
Location of archive with exported database: /opt/CPsuite-R80/fw1/bin/upgrade_tools/SMC_20190709.tgz
说明:从R80.20后改命令已经没有,由migrate替代,具体用法如下:
migrate export 导出
migrate import 还原
[Expert@BJ-ZHX-FW:0]# ./migrate export SMC_20190714.tgz
You are required to close all clients to Security Management Server
or execute 'cpstop' before the Export operation begins.
Do you want to continue? (y/n) [n]? y
Copying required files...
Compressing files...
The operation completed successfully.
Location of archive with exported database: /opt/CPsuite-R80.20/fw1/bin/upgrade_tools/SMC_20190714.tgz
Step4:使用WINSCP进行下载
======================================================
[Expert@BJ-OFFICE-GW:0]# chsh -s /bin/bash
Changing shell for admin.
Shell changed.
[Expert@BJ-OFFICE-GW:0]#
使用winscp登录FW,下载/opt/CPsuite-R80/fw1/bin/upgrade_tools/SMC_20190709.tgz文件即可。
Step5:还原
======================================================
将备份文件上传到升级备份目录,如下:
[Expert@BJ-ZHX-FW:0]# ./migrate import SMC_20190714.tgz
The import operation will eventually stop all Check Point services (cpstop).
Do you want to continue? (y/n) [n]? y
Extracting the database...
Stopping all Check Point services (cpstop)...
cpwd_admin:
Process DASERVICE terminated
Mobile Access: Stopping MoveFileDemuxer service (if needed)
Mobile Access: MoveFileDemuxer is not running
Mobile Access: Mobile Access blade is disabled or already shut down
Mobile Access: Push notification is disabled or already shut down
Mobile Access: Reverse Proxy for HTTP traffic is disabled or already shut down.
Mobile Access: Reverse Proxy for HTTPS traffic is disabled or already shut down.
Mobile Access: Successfully stopped Mobile Access services
UEPM: Endpoint Security Management isn't activated
Stop Search Infrastructure...
Stopping RFL ...
cpwd_admin:
successful Detach operation
Stopping Solr ...
cpwd_admin:
Process SOLR isn't monitored by cpWatchDog. detach request aborted
Stop SmartView ...
Stopping SmartView ...
cpwd_admin:
successful Detach operation
Stop Log Indexer...
cpwd_admin:
Process INDEXER (pid=13703) stopped with command "kill 13703". Exit code 0.
Stop SmartLog Server...
cpwd_admin:
Process SMARTLOG_SERVER terminated
dbsync is not running
evstop: Stopping product - SmartEvent Server
evstop: Stopping product - SmartEvent Correlation Unit
Check Point SmartEvent Correlation Unit is not running
Stopping SmartView Monitor daemon ...
SmartView Monitor daemon is not running
Stopping SmartView Monitor kernel ...
SmartView Monitor kernel stopped
FloodGate-1 is already stopped.
Set operation succeeded
FireWall-1: cpm stopped
FireWall-1: fwm stopped
Stopping sessions database
FireWall-1: disabling IPv4 forwarding and bridge forwarding
FireWall-1: FW-1 IPv6 kernel module is not loaded
SecureXL device disabled.
Stopping Critical Alerts Sensor
SVN Foundation: cpd stopped
SVN Foundation: multiportal daemon stopped
Stopping cpviewd
cpwd_admin:
Process HISTORYD terminated
cpwd_admin:
Process SXL_STATD terminated
SVN Foundation: cpWatchDog stopped
SVN Foundation stopped
Importing files...
generating INSPECT code for GUI Clients
initial_management:
Compiled OK.
initial_management:
Compiled OK.
The import operation completed successfully.
Do you wish to start Check Point services? (y/n) [y]? y
CP防火墙备份与还原的更多相关文章
- MySQL八、备份和还原
MySQL 八.数据库备份和还原 1.二进制日志相关配置 1)查看使用中的二进制日志文件列表,及大小 SHOW {BINARY | MASTER} LO ...
- 转 MySQL 数据备份与还原
MySQL 数据备份与还原 原贴:http://www.cnblogs.com/kissdodog/p/4174421.html 一.数据备份 1.使用mysqldump命令备份 mysqldum ...
- MySQL 备份与还原详解
相关阅读: MySQL备份和恢复具体实施 http://www.linuxidc.com/Linux/2012-12/76257.htm MySQL备份与恢复的三种方法总结 http://www.li ...
- mysql 利用binlog增量备份,还原实例
mysql 利用binlog增量备份,还原实例 张映 发表于 2010-09-29 分类目录: mysql 标签:binlog, mysql, mysqldump, 增量备份 一,什么是增量备份 增量 ...
- 文件操作 系统备份和还原,压缩,解压 tar dump/restore
基本操作命令: ls -a 显示指定目录下的目录和文件,包括隐藏的文件和目录 ls -l 将文件和目录详细列出来,包括文件状态,权限,拥有者,文件名,文件大小等 改变工作目录命令 cd cd .. 进 ...
- MySQL的备份和还原
MySQL的备份和还原 备份:副本 RAID1,RAID10:保证硬件损坏而不会业务中止: DROP TABLE mydb.tb1; 备份类型: 热备份.温备份和冷备 ...
- MySQL(十四)之数据备份与还原
前言 上一篇分享了关于MySQL事务的知识,在我们数据库中最重要的就是数据了,所以数据的备份就显的特别的重要! 为什么要备份数据? 在生产环境中我们数据库可能会遭遇各种各样的不测从而导致数据丢失, 大 ...
- 挖一挖MongoDB的备份与还原(实现指定时间点还原和增量备份还原)
一 研究背景需求 目前作者所在公司的MongoDB数据库是每天凌晨做一次全库完整备份,但数据库出现故障时,只能保证恢复到全备时间点,比如,00:30 做的完整备份,而出现故障是下午18:00,那么现 ...
- svn服务器的搭建备份和还原和svnmanager的使用
svn服务器的搭建备份和还原和svnmanager的使用 一.svn服务端软件的安装和配置 1.安装svn版本库软件 # yum install -y subversion 2.建立svn版本库数据存 ...
随机推荐
- uml图的五种关系 标签: uml 2016-12-18 21:47 221人阅读 评论(25) 收藏
统一建模语言 Unified Modeling Language (UML)又称统一建模语言或标准建模语言,是始于1997年一个OMG标准,它是一个支持模型化和软件系统开发的图形化语言,为软件开发的所 ...
- redis :read error on connection
最近做了一个多人竞拍的小功能 因为以前没做过 所以踩了很多坑用的是 mysql + php + redis 实现的竞拍功能 这里先说一下踩得第二个坑redis 的原因 真是欲哭无泪 解决完一个 ...
- 【算法】[leetcode] permutations的讨论(转载)
原题是找到一组数的全排列 Given a collection of numbers, return all possible permutations. For example,[1,2,3] ha ...
- HDU 5672 String【尺取法】
题目链接: http://acm.hdu.edu.cn/showproblem.php?pid=5672 题意: 有一个10≤长度≤1,000,000的字符串,仅由小写字母构成.求有多少个子串,包含有 ...
- mysql带有子查询的like查询
SELECT * FROM by_app_categories WHERE c_name LIKE CONCAT('%', (SELECT `name` FROM b_catelist WHERE t ...
- Android中使用Apache common ftp进行下载文件
版权声明:本文为博主原创文章,未经博主同意不得转载. https://blog.csdn.net/birdsaction/article/details/36379201 在Android使用ftp下 ...
- @雅礼集训01/10 - T1@ matrix
目录 @description@ @solution@ @accepted code@ @details@ @description@ 给定一个矩阵.求它的所有子矩阵中本质不同的行的个数之和. inp ...
- 模板—点分治A(容斥)(洛谷P2634 [国家集训队]聪聪可可)
洛谷P2634 [国家集训队]聪聪可可 静态点分治 一开始还以为要把分治树建出来……• 树的结构不发生改变,点权边权都不变,那么我们利用刚刚的思路,有两种具体的分治方法.• A:朴素做法,直接找重心, ...
- LightOJ 1269 Consecutive Sum (Trie树)
Jan's LightOJ :: Problem 1269 - Consecutive Sum 题意是,求给定序列的中,子序列最大最小的抑或和. 做法就是用一棵Trie树,记录数的每一位是0还是1.查 ...
- Project Euler Problem 15-Lattice paths
组合数,2n中选n个.向右走有n步,向下走有n步.共2n步.有n步是向右走的,计算向右走的这n步的所有情况,即C(2n,n). 或者,每一步,只能从右边或者上边走过来,只有这两种情况,即step[i] ...