Note: A product listed in this article has either reached hardware End of Life (EOL) OR software End of Engineering (EOE). Refer to
End of Life Products & Milestones for the EOL, EOE, and End of Support (EOS) dates.
This article provides information on how to configure the remote backup for NSM.
It is recommended to change NSM to run as the nsm user, prior to configuring the remote backup. This change is required, only if you are using NSM 2007 or earlier. For more information, refer to
KB4594 - How Do I Run the NSM Processes as a Non-Root User?
For NSM 2008 or later, you should be using the
nsm user. This user will need to be created on the remote system.
- Configure a trust relationship between the NSM server and the remote backup system. For more information, refer to KB11653 - How to create a trust relationship between two servers (if in HA, make sure to append, instead of replacing, authorized_keys).
- Create the /var/netscreen/dbbackup folder on the Remote Server and ensure that the user ID being used (either nsm or root) is the owner of /var/netscreen.
Note: rsync must be installed on the Remote Server.
In the HA setup, to back up both the systems to the same destination, create 2 different destinations - /var/netscreen/dbbackup and /var/netscreen/dbbackup2.
- Edit /usr/netscreen/HaSvr/var/haSvr.cfg and change the following lines:
highAvail.isRemoteDbBackupReplicationEnabled n (Change to y)
highAvail.remoteSyncIp "" (Remove "" and enter the remote server IP)
If in HA, modify the backup destination on one system:
highAvail.pathDbBackup /var/netscreen/dbbackup (Change to /var/netscreen/dbbackup2 on the secondary)
- Restart the HaSvr process:
/etc/init.d/haSvr restart
- Test the replication by using the following command:
/usr/netscreen/HaSvr/bin/.backupDoRemote
To troubleshoot any errors, check errorlog /usr/netscreen/HaSvr/var/errorLog/backup.log.
2020-10-18: Tagged article for EOL/EOE.