Project

General

Profile

Actions

Feature #16855

open

GUI option to reset MIM device identity

Added by dylan mendez about 2 months ago. Updated 1 day ago.

Status:
Feedback
Priority:
Normal
Assignee:
-
Category:
Multi-Instance Management
Target version:
Start date:
Due date:
% Done:

100%

Estimated time:
Release Notes:
Default

Description

We've seen a couple tickets where importing a config into another firewall will cause it to be unable to register to a Nexus controller if both exported and imported config firewalls are trying to communicate since the Nexus data identifiers are stored in the config file.

We should put a warning on this checkbox also to use the option if using Nexus and planning to import the config into a separate firewall.

Actions #1

Updated by Kris Phillips 26 days ago

  • Status changed from New to Confirmed

I can confirm this would be very helpful. Several customers have restored config backups from one firewall to another one and forgotten to remove the <mim> section from the config. This causes things like the encryption keys to be the same for multiple firewalls and cause registration issues until you manually delete this section from the config and blow away the Nexus database.

Actions #2

Updated by Marcos M 25 days ago

The issue is that there's no straightforward way to regenerate the necessary keys in case of a conflict between MIM devices. The solution to this is better left to the Nexus GUI.

Actions #4

Updated by Marcos M 1 day ago

  • Subject changed from Add option to skip Nexus registration data from config.xml export. to GUI option to reset MIM device identity
  • Status changed from Confirmed to Feedback
  • Target version set to 26.07
  • % Done changed from 0 to 100

There is now a GUI option in Nexus to reset the MIM device identity - System > Advanced > Netgate Nexus click the page menu then Reset MIM.

Actions

Also available in: Atom PDF