AWS ELB Characteristics:

Load balancers are used to improve application performance  and we also can make our application high availability:

ELB

Characterstics:

  1. ELB is highly available and highly scalable load balancing service from AWS.
  2. AWS maintains redundant copies of ELB, if any AZ fails it automatically failovers to the ELB in different AZ.
  3. ELB is a region specific i.e it can load balance instance present in same region.
  4. ELB supports both external and internal
  5. ELB does health checks on instance and routes traffic to health instances, if it finds any instance unhealth that instance is taken out of rotation. If ELB finds unhealth instances are healthy, it brings them automatically into rotation.
  6. ELB supports SSL termination.
  7. ELB can be secured using security groups
  8. ELB types:
  9.   A. Classic load balancer (legacy load balancer)
  10.   B. Application load balancer (deisgined for microservices and dockers)
  11.   C. Network Load balancer

 

 

Backup and Restore Fortigate Firewall configurations:

Backing up the configuration using the GUI:

  1. Click on admin in the upper right-hand corner of the screen and select Configuration > Backup.
  2. Direct the backup to your Local PC or to a USB Disk.

The USB Disk option will be grayed out if no USB drive is inserted in the USB port. You can also backup to the FortiManager using the CLI.

  1. If VDOMs are enabled, indicate whether the scope of the backup is for the entire FortiGate configuration (Global) or only a specific VDOM configuration (VDOM).
  2. If backing up a VDOM configuration, select the VDOM name from the list.
  3. Select Encryption.

Encryption must be enabled on the backup file to back up VPN certificates.

  1. Enter a password and enter it again to confirm it. You will need this password to restore the file.
  2. Select OK.
  3. The web browser will prompt you for a location to save the configuration file. The configuration file will have a .conf extension.

Backing up the configuration using the CLI:

Use one of the following commands:

execute backup config management-station <comment>

or:

execute backup config usb <backup_filename> [<backup_password>]

or for FTP, note that port number, username are optional depending on the FTP site:

execute backup config ftp <backup_filename> <ftp_server> [<port>] [<user_name>] [<password>]

or for TFTP:

execute backup config tftp <backup_filename> <tftp_servers> <password>

Use the same commands to backup a VDOM configuration by first entering the commands:

config vdom

edit <vdom_name>

Restoring the configurations:

To restore the FortiGate configuration – GUI:
  1. Click on admin in the upper right-hand corner of the screen and select Configuration > Restore.
  2. Identify the source of the configuration file to be restored : your Local PC or a USB Disk.

The USB Disk option will be grayed out if no USB drive is inserted in the USB port. You can restore from the FortiManager using the CLI.

  1. Enter the path and file name of the configuration file, or select Browse to locate the file.
  2. Enter a password if required.
  3. Select Restore.
To restore the FortiGate configuration – CLI:

execute restore config management-station normal 0

or:

execute restore config usb <filename> [<password>]

or for FTP, note that port number, username are optional depending on the FTP site:

execute restore config ftp <backup_filename> <ftp_server> [<port>] [<user_name>] [<password>]

or for TFTP:

execute restore config tftp <backup_filename> <tftp_server> <password>

The FortiGate will load the configuration file and restart. Once the restart has completed, verify that the configuration has been restored.