How to back up the Network IPS

Technote (FAQ)


Question

What are the instructions to back up your Network IPS device?

Answer

Important: When performing administration tasks via ssh or local console, configuration changes made to your IBM appliance by any user other than admin could degrade appliance performance. Installing or activating other services or applications may also impact appliance performance or security. IBM Infrastructure Security Support will not support configuration changes made using the root user account unless specifically directed by a support engineer or IBM documentation. The following DCF Technote content is supported. Any further changes made that are not included in this document will place your product into an unsupported state and IBM product support may require you to reimage your appliance to restore it to a supported state.


There is a built-in method provided with the Network IPS device that allows you to backup the appliance. This is accessible via the 'admin menu' by logging onto the appliance with the admin account/password via SSH or running the su admin command when logged into the appliance with the root account. Be aware that only one full system backup can be kept locally on the device. Running a system backup will overwrite any previous full system backups.

Note: It is a good practice to make a backup of the system settings after each firmware upgrade and/or after applying any IBM directed patch so the most current backup is available, if needed.


Creating a full system backup:

  1. Connect to the device using direct console access or through SSH.

  2. At the login prompt, log on to the device use the admin credentials.

  3. From the Configuration Menu, select Appliance Management.

  4. In the Appliance Management Menu, select Backup Current Configuration. You will then receive the following warning:

    This will write all configuration settings to a backup
    partition on the appliance. You will not have remote access
    to the appliance for approximately 5 minutes while the
    backup process completes.

    The appliance will be rebooted.
    Would you like to proceed with the backup?

  5. If you select OK, the appliance will be brought down during the backup. This will result in a brief network outage during the reboots of the appliance. Schedule accordingly for this.

  6. (Optional) To move the backup to a remote location, use a secure copy program (such as WinSCP) to copy the following files from the /restore/0/images/

    Note: For versions 1.x, 2.x, and 3.x, these files will be in /backup/images/.
    • cachestruct.tar
    • image_sda1_.000
    • image_sda1_.000.md5
    • image_sda3_.000
    • image_sda3_.000.md5
    • image_sda5_.000
    • image_sda5_.000.md5
    • info



Restoring a backup from a remote system:

Note: If the files are already present on the system, start with step 3.
  1. Copy the files specified below from the remote location to the /restore/images/ directory using a secure copy program. You must use the root account when using secure copy. Do not overwrite the files grub.cmd and partimage.

    Note: For versions 1.x, 2.x, and 3.x, these files will be in /backup/images/.
    • cachestruct.tar
    • image_sda1_.000
    • image_sda1_.000.md5
    • image_sda3_.000
    • image_sda3_.000.md5
    • image_sda5_.000
    • image_sda5_.000.md5
    • info

  2. Reboot the device.

  3. At the login prompt, log on to the device use the admin credentials.

  4. From the Configuration Menu, select Appliance Management.

  5. From the Appliance Management Menu, select Restore Configuration From Backup. You will then receive the following warning:

    Appliance will be restored from the system backup dated:
    YYYY/MM/DD HH:MM:SS (date when backup was completed)

    You will not have remote access to the appliance approximately
    for 5 minutes while restore operation completes.
    Would you like to proceed with restore?

  6. Select OK at the confirmation screen to proceed with the restore process.

  7. The appliance will automatically reboot to begin the restore process.

  8. The appliance will reboot again after the restore process has completed.


If the above information does not resolve your issue, contact IBM Security Systems Customer Support.

Related information

A Spanish translation is available


Cross reference information
Segment Product Component Platform Version Edition
Security Proventia Virtualized Network Security Platform Firmware 3.1, 3.3, 4.1, 4.3, 4.4, 4.5, 4.6

Historical Number

4541

Rate this page:

(0 users)Average rating

Document information


More support for:

IBM Security Network Intrusion Prevention System
Documentation

Software version:

1.8, 2.5, 3.3, 4.1, 4.2, 4.3, 4.4, 4.5, 4.6, 4.6.1, 4.6.2

Operating system(s):

Firmware

Reference #:

1436111

Modified date:

2013-10-28

Translate my page

Machine Translation

Content navigation