Gaia: Backup and Restore From CLI (Clish)
This article provides a quick tutorial on how to make a Gaia: backup and restore from the CLI (Clish shell) in Gaia. Depending which version of Gaia you are using, you may or may not have the option to perform a backup or restore from the Web GUI under the “Maintenance” section or you may only have SSH access – having the skill to do this from the command line is important either way.
For the methods below the following apply:
- x.x.x.x should be replaced by the IP of the server
- myuser should be replaced by a valid username for the server.
- mybackupfile.tgz should be replaced by the name of your backup file
- You will be prompted for the password on the command line if you are using FTP or SCP
The add backup command is what we use to initiate a backup from the CLI. We also need to pass a parameter to define where the backup is to be saved: local, FTP, TFTP or SCP:
- To save a backup locally:
add backup local
- To save a backup on a remote server using FTP:
add backup ftp ip x.x.x.x username myuser password plain
- To save a backup on a remote server using TFTP:
add backup tftp ip x.x.x.x
- To save a backup on a remote server using SCP:
add backup scp ip x.x.x.x username myuser password plain
- You can use the show backups command to see the status of any current and completed backups.
- Backup configurations on Check Point appliances are stored in /var/log/CPbackup/backups/
- Backup configurations on Open Servers are stored in /var/CPbackup/backups/
To restore a backup we use the set backup restore command and as with the backup, we pass the relevant parameters:
- To restore a local backup:
set backup restore local <TAB>
- To restore a backup from a remote server using FTP:
set backup restore ftp ip x.x.x.x file mybackupfile.tgz username myuser password plain
- To restore a backup from a remote server using TFTP:
set backup restore tftp ip x.x.x.x file mybackupfile.tgz
- To restore a backup from a remote server using SCP:
set backup restore scp ip x.x.x.x username myuser password plain
- Restore is only allowed using the same Gaia version on the source and target computers.
- Restore is only allowed using the same appliance type on the source and target computers.
- The backup file name generated by the backup command should not be renamed and must not contain spaces.
- When backing to an SCP or FTP server, the backup file is put in the user’s home folder. When restoring from SCP or FTP the backup file is taken from the user’s home folder.
- This is not applicable to VSX – to backup and restore VSX, see sk100395 for details.