Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1123 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How do you test Sophos XG Backups?

GavinDaniels

Hello All,

I am interested in how people may be testing and verifying the config backups from Sophos XG Firewalls.

I have my customers units email me a backup of the config on a weekly basis, and I just rely on them being recoverable. But after having a failed upgrade, and looking to revert to the last backup, I found that using the last couple of backup files resulted in putting the firewall in 'Fail Safe Mode'

I went back a couple more weeks and found the backups from then were functional.

But it does put into question how to test the backup files, and ensure that they are going to be usable in the event of an issue.



This thread was automatically locked due to age.
Parents
  • 0

    Hey.

    So I had to reboot the firewall today. And guess what. Fail-Safe Mode

    I ended up having to restore the backup from 1 month ago, which had 2 changes from the current running firmware. An IP Address range added to a VPN Tunnel, and OTP enabled.

    I have restored the backup, added the IP Range to the IPSec tunnel, and have rebooted the firewall without issue.

    I have also downloaded and upgraded the Firewall to V17.5.MR15 which has just been released. No issue.

    While the customers office is closed later this week, I will enable OTP and then give the unit a reboot and see if it returns to FailSafe Mode.

    But there is an issue there, and since I placed an urgent support call to Sophos regarding the Fale Safe mode, maybe they will take more of a look at the problem

Reply
  • 0

    Hey.

    So I had to reboot the firewall today. And guess what. Fail-Safe Mode

    I ended up having to restore the backup from 1 month ago, which had 2 changes from the current running firmware. An IP Address range added to a VPN Tunnel, and OTP enabled.

    I have restored the backup, added the IP Range to the IPSec tunnel, and have rebooted the firewall without issue.

    I have also downloaded and upgraded the Firewall to V17.5.MR15 which has just been released. No issue.

    While the customers office is closed later this week, I will enable OTP and then give the unit a reboot and see if it returns to FailSafe Mode.

    But there is an issue there, and since I placed an urgent support call to Sophos regarding the Fale Safe mode, maybe they will take more of a look at the problem

Children
No Data