This question is for 24.1.x release, coming from 23.7.12_5.
If I were to do a clean install of 24.1.x and import a 23.7.12 configuration, as opposed to upgrade "in place" what do I have to setup, install or configure manually?
GeoIP/MaxMind setup? schedule? rules etc.?
Intrusion Detection emerging threats telemetry? License? Rulesets? Disbaled and Enabled Rules? etc.
Not using ZenArmor.
Firewall log file viewing templates?
Additional users, roles passwords?
I just did something similar.
I had 23.7.12 running on a bare metal N5105 box from CN.
I migrated to a Proxmox VM on my new server.
24.1.1 was already out.
I did a fresh install of 24.1.1 in the Proxmox VM.
However before downloading the config of my bare metal, I upgraded to 24.1.1 to avoid differences...
What I then did was looking up the network interface names in the new VM. They were called vtnet instead of igc on my bare metal.
I did a search and replace in the configuration backup xml and for example replaced igc0 to vtnet0.
Then I loaded the configuration in the new VM.
After this I had to:
- install the plugins that were also installed before on the other router.
- independently from the opnsense configuration also restore the Zenarmor configuration (there is also a backup-restore functionality)
- I use crowdsec in opnsense also as lapi for servers. I had to reconnect the other servers to the new lapi on the shell.
Everything else worked out of the box.
QuoteHowever before downloading the config of my bare metal, I upgraded to 24.1.1 to avoid differences...
Good tip, thanks.