Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1733
Views
0
Helpful
2
Replies

FMC backup/restore integrity

anazarenko
Level 1
Level 1

‎01-02-2020 07:28 AM - edited ‎02-21-2020 09:48 AM

Hi,

 

i am trying to:

 

backup the full config of FMC

untar the backup

gunzip the table structure file

modify the file

gzip it

tar the backup

upload back to FMC.

 

And the file appears in "Firepower management backup" list.

Does it mean that there's no integrity check for backup files?

 

 

0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-02-2020 06:50 PM

There's not a MD5 or similar integrity check. You would only know when you attempt to use the modified file and the restore fails that it had been tampered with.

0 Helpful

anazarenko
Level 1
Level 1
In response to Marvin Rhoads

‎01-03-2020 04:28 AM

Hi

 

unfortunately i managed to deploy  the tampered backup file to FMC without single error.

I have changed the varchar size for uuid field in my backup and I can see it now in FMC mysql:

 

mysql> desc firewall_policies;
+-------------------------+---------------------------------+------+-----+---------+----------------+
| Field | Type | Null | Key | Default | Extra |
+-------------------------+---------------------------------+------+-----+---------+----------------+
....
| uuid | varchar(37) | NO | PRI | | |

 

 

Lack of integrity check in backup files in such a great product looks very surprising for me.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card