Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1124 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do you test Sophos XG Backups?

GavinDaniels

Hello All,

I am interested in how people may be testing and verifying the config backups from Sophos XG Firewalls.

I have my customers units email me a backup of the config on a weekly basis, and I just rely on them being recoverable. But after having a failed upgrade, and looking to revert to the last backup, I found that using the last couple of backup files resulted in putting the firewall in 'Fail Safe Mode'

I went back a couple more weeks and found the backups from then were functional.

But it does put into question how to test the backup files, and ensure that they are going to be usable in the event of an issue.



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    While there's no native way to do it, you can test them 2 ways:

    1) Create a 30 day trial of Sophos XG in VM with same version and same or more amounts of interfaces. It should restore in the VM without a problem

    2) Open the backup with openssl and see the contents

  • 0 in reply to Antonio Cienfuegos S

    Hello Antonio

    Thanks for the response.

    But I already have 15 hidden trial versions in my Sophos Account from all the training courses.

    I am supposed to up that by another 12 per year?

    There is some flaw in the backup which got introduced. 2 weekend backups in a row were corrupt, 4 previous were all ok.

    I have the issue in with support at present, but they can't get their head around the seriousness of the issue. It may only be related to V17.5.MR9 (which the unit was running before the upgrade to V17.5.MR14 which uncovered the issue)

    But Support must have some way of validating backup files.

  • 0 in reply to GavinDaniels

    The way 1 will not work, you can´t restore a Backup of XG Models with more than 8 NIC into a VM/ESX.
    There is only the hardway with a new Hard Disk inside and a complete reinstall...

    And you can´t Restore Backups from old Releases like 17.5.14 into 17.5.14-1 if you had some Rules and SMTP Settings configured.
    Will work with a blank config ...

Reply
  • 0 in reply to GavinDaniels

    The way 1 will not work, you can´t restore a Backup of XG Models with more than 8 NIC into a VM/ESX.
    There is only the hardway with a new Hard Disk inside and a complete reinstall...

    And you can´t Restore Backups from old Releases like 17.5.14 into 17.5.14-1 if you had some Rules and SMTP Settings configured.
    Will work with a blank config ...

Children
No Data