The Device management section is used to configure the basic LogAn settings:
-
Diagnostics
-
Server operations
-
Backup
-
Settings export and import
Diagnostics
This section contains the server diagnostics settings that LogAn technical support will need to resolve eventual problems.
Name |
Description |
---|---|
Diagnostic details |
It is recommended to set Diagnostic details to Error (errors only) or Off (disabled), unless UserGate technical support asked you to set different values. Any values other than Error (errors only) or Off (disabled) will negatively affect LogAn performance. |
Diagnostics logs |
|
Remote assistance |
|
Server operations
In this section, you can perform the following server maintenance actions:
Name |
Description |
---|---|
Server operations |
|
Updates channel |
Here you can select the update channel for LogAn software:
|
Server updates |
Displays available UserGate server updates. Starts the server update process and allows to create a restore point. View a changelog for the update. |
Offline updates |
Download a file for offline updates. |
Upstream proxy settings to check licenses and updates |
Configure the upstream HTTP(S) proxy server settings for license and software updates for the UserGate server. You must specify the IP address and port of the upstream proxy server. If necessary, specify login and password for authentication on the upstream proxy server. |
The UserGate company is continuously working to improve its software and provides LogAn product updates as part of the Security Update license module subscription (for more details on licensing, see the chapter SIEM Licensing). If there are any updates, a notification to that effect will display in the Device management section. As a product update can take quite a while, it is recommended to account for the potential LogAn downtime when planning update installation.
To install updates, follow these steps:
Name |
Description |
---|---|
Step 1. Create a backup file. |
Создать резервную копию состояния LogAn, как это описано в разделе Системные утилиты. This step is always recommended before applying updates because it will allow you to restore the previous state of the device, should any problems arise during the update process. |
Step 2. Install the updates. |
In the Device management section, if the New updates available notification is present, click Install now. The system will install the downloaded updates, and when the installation completes, LogAn will reboot. |
System backup management
This section allows you to manage UserGate backups, i.e. to set backup export rules, to create a backup, and to restore a UserGate device.
To create a backup, follow these actions:
Name |
Description |
---|---|
Step 1. Create a backup |
Under Device management ➜ System backup management, click Create backup. The system will save the current server settings in a file named: backup_PRODUCT_NODE-NAME_DATE.gpg, where PRODUCT is the product type: NGFW, LogAn, or MC; NODE-NAME is the UserGate node name; DATE is the date and time when the backup was created as YYYY-MM-DD-HH-MM. The time is in UTC time zone. To interrupt the backup process, press the Stop button. The backup record will be displayed in the device event log. |
To restore the device status, follow these steps:
Name |
Description |
---|---|
Step 1. Restore the device state |
In the Device management ➜ System backup management, click Restore from backup and specify the path to the previously created settings file to upload it to the server. Restore will be suggested in the tty console when the device reboots. |
In addition, the administrator can configure a scheduled file upload to external servers (FTP, SSH). To create a schedule for uploading settings, follow these steps:
Name |
Description |
---|---|
Step 1. Create a backup export rule |
In the Device management ➜ System backup management, click Add and enter a name and description for the rule. |
Step 2. Specify the remote server parameters |
In the Remote server tab of the rule, specify the parameters for the remote server:
If using an SSH server, you can use key authorization. To import or generate a key, select SSH key setup and specify Generate key or Import key. Important! If you re-create a key, the existing SSH key will be deleted. The public key must reside on the SSH server in the user keys directory /home/user/.ssh/ in the authorized_keys file. When initially configuring the SSH backup export rule, connection verification is mandatory (Check connection button). When the connection is verified, the fingerprint is placed in known_hosts. The files are not sent without verification. Important! If you change the SSH server or reinstall it, the backup files will be unavailable, because the fingerprint has changed. This protects you from spoofing. |
Step 3. Select the upload schedule |
In the Schedule tab of the rule, specify when the settings should be uploaded. If specifying the time in the crontab-format, enter it as follows: (minutes: 0-59) (hours: 0-23) (days of the month: 1-31) (month: 1-12) (days of the week: 0-6, where 0 is Sunday) Each of the first five fields can be defined using:
|
Exporting and importing settings
The administrator can save the current LogAn settings in a file and later restore them on the same or another LogAn server. This is different from a backup in that importing/exporting the settings does not preserve the current state of all system components --- only the current settings are saved.
To export the settings, follow these steps:
Name |
Description |
---|---|
Step 1. Export the settings. |
Under Device management ➜ Settings export and import, click Export and select Export all settings or Export network settings. The system will save:
nodename is the LogAn node name version is the LogAn version. YYYYMMDD_HHMMSS is the date and time of the settings export in the UTC timezone. Examples: logan_core-logan_core@ranreahattha_6.2.0.13494RS-1_20211227_091350.bin; network-logan_core-logan_core@ranreahattha_6.2.0.13494RS-1_20211227_091407.bin. |
To apply the exported settings, follow these steps:
Name |
Description |
---|---|
Step 1. Import the settings. |
In the Device management ➜ Settings export section, click or tap Import, and browse to the path of the settings file created earlier. The settings will be applied to the server, after which the server will reboot. |
In addition, the administrator can configure a scheduled settings upload to external servers (FTP, SSH). To create a schedule for uploading settings, follow these steps:
Name |
Description |
---|---|
Step 1. Create an export rule. |
Under Device management ➜ Settings export and import, click Add and enter a name and description for the rule. |
Step 2. Specify the remote server parameters. |
In the Remote server tab of the rule, specify the parameters for the remote server:
|
Step 3. Select the upload schedule. |
In the Schedule tab of the rule, specify when the settings should be uploaded. If specifying the time in the CRONTAB format, enter it as follows: (minutes: 0-59) (hours: 0-23) (days of the month: 1-31) (month: 1-12) (days of the week: 0-6, where 0 is Sunday) Each of the first five fields can be defined using:
|