Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1287
Views
10
Helpful
2
Replies

About backing up ASA 5512, what should I do?

Go to solution
Wayne.spq
Level 1
Level 1

‎06-18-2020 11:19 AM

Hi there,


I have 1 active ASA 5512 firewall(5512-A) and also have 1 spare ASA 5512(5512-B) with no configuration.
I'm wondering if I want to backup all configuration from 5512-A. what configuration should I backup?

 

I only know i should backup startup-config but what else should I backup to?
Because I copied the startup-config from 5512-A to 5512-B, internet is OK but I got some issue on VPN but not sure what I miss. Need some tips!

 

Thank you,
Wayne

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎06-18-2020 11:24 AM - edited ‎06-18-2020 11:31 AM

Hi,

In addition to the configuration, you should backup the ASA software (upgrade the spare if necessary), copy the anyconnect and Asdm images. If you were referring to having issues with a Remote Access VPN, then you need to upload the anyconnect image to the ASA. If a site to site VPN make sure you have the pre shared keys, use the command more system:running-config to view the full configuration including the pre-shared keys - the keys are not displayed when using the normal show run command.

 

HTH

View solution in original post

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-18-2020 07:31 PM

Besides the AnyConnect image(s) @Rob Ingram mentioned, you would need to copy the certificate (including private key) and any VPN profile files (*.xml) to the new ASA.

I find it's easier to take a full backup from ASDM (and restore to the new ASA) to accomplish that than it is to manually copy each necessary file.

View solution in original post

2 Replies 2

Go to solution
Rob Ingram
VIP
VIP

‎06-18-2020 11:24 AM - edited ‎06-18-2020 11:31 AM

Hi,

In addition to the configuration, you should backup the ASA software (upgrade the spare if necessary), copy the anyconnect and Asdm images. If you were referring to having issues with a Remote Access VPN, then you need to upload the anyconnect image to the ASA. If a site to site VPN make sure you have the pre shared keys, use the command more system:running-config to view the full configuration including the pre-shared keys - the keys are not displayed when using the normal show run command.

 

HTH

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-18-2020 07:31 PM

Besides the AnyConnect image(s) @Rob Ingram mentioned, you would need to copy the certificate (including private key) and any VPN profile files (*.xml) to the new ASA.

I find it's easier to take a full backup from ASDM (and restore to the new ASA) to accomplish that than it is to manually copy each necessary file.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card