Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Question on ACB

    Scheduled Pinned Locked Moved General pfSense Questions
    5 Posts 3 Posters 737 Views 2 Watching
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • provelsP Offline
      provels
      last edited by

      When a new, replacement FW is built and a new Device Key is created, what happens to the old backups on Netgate's
      side hooked to the old Device Key? Thanks for reading.

      Peder

      MAIN - pfSense+ 24.11-RELEASE - Adlink MXE-5401, i7, 16 GB RAM, 64 GB SSD. 500 GB HDD for SyslogNG
      BACKUP - pfSense+ 23.01-RELEASE - Hyper-V Virtual Machine, Gen 1, 2 v-CPUs, 3 GB RAM, 8GB VHDX (Dynamic)

      1 Reply Last reply Reply Quote 0
      • stephenw10S Offline
        stephenw10 Netgate Administrator
        last edited by

        The encrypted backups remain on the server in case you need to restore them using the old key.

        As far as I know there is no policy in place to remove them but I expect that will change at some point if the required storage volume became in issue.

        Steve

        provelsP 1 Reply Last reply Reply Quote 1
        • provelsP Offline
          provels @stephenw10
          last edited by

          @stephenw10
          Thanks for the reply. I just happened to think of this when I last rebuilt my home FW. I suppose they could run a routine to delete backups under any Device Key that hasn't been accessed in, say, 3 months, as I'm sure that would indicate the FW is no longer active. Pretty sure anyone using the facility would be backing up once a week if not more often. Thanks again.

          Peder

          MAIN - pfSense+ 24.11-RELEASE - Adlink MXE-5401, i7, 16 GB RAM, 64 GB SSD. 500 GB HDD for SyslogNG
          BACKUP - pfSense+ 23.01-RELEASE - Hyper-V Virtual Machine, Gen 1, 2 v-CPUs, 3 GB RAM, 8GB VHDX (Dynamic)

          1 Reply Last reply Reply Quote 0
          • F Offline
            FSC830
            last edited by

            Just found this thread and I guess it will already answer my question.
            I was forced to install one of my SG-3100 applicances from scratch (for any reasons GUI was unresponsive after update to 22.01, at 2nd SG-3100 all was fine).
            By accident I did not backup the SSH keys, so after new installation the applicance created a new device key for ACB.
            I was able to perform a configuration restore (old device key was known and stored locally), but I was wondering about how to delete the old backups.
            So far as I found here it is not possible to manage the old backups and they will kept on the server!?

            It should be a thought at Netgate to make this backups manageable/deletable, may be in combination with the stored backup password.

            Regards

            1 Reply Last reply Reply Quote 0
            • stephenw10S Offline
              stephenw10 Netgate Administrator
              last edited by

              Yes, it's something we would like to see. A new front-end for accessing and managing backups outside the pfSense interface is something we are working towards.

              Steve

              1 Reply Last reply Reply Quote 2
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.