I suspected that was the case.
Generally speaking, I haven't had that many issues with reinstalling, though I've found it's best to just nuke and repave and slap in the config file.
Even then, I wouldn't want to have to walk a non tech through a reinstall unless the backup was very current.
An install from scratch otoh is easy enough I had considered at one point just sending each site a refurb quad port to stick in a safe place.
Just add pc.
I just picked some nice used supermicros from ebay - dual 5620's so they have the AES-NI extensions.
In half depth chassis they just fit in my wall mount racks.
By the time I have these deployed, I hope to find just a few more, so with completely mirrored hardware and interface assignments, a monkey can restore them.
With a pair of 'new' refurb Intel ssd's, I only have about $250 into each unit, so keeping a shelf spare or two for overnight shipment is doable.
We do only very light touch filtering, known malware sites, slapping down unencrypted bittorrent and so forth, and I'm finding I spend close to zero time babysitting the filtering as opposed to having to hover over Sophos constantly.
My pci scans are due, and for the first time I can remember, I'm actually looking forward to it.