Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
461
Views
1
Helpful
4
Replies

ASA config conversion tool

lijomathai
Level 1
Level 1

‎09-26-2023 06:34 PM

Hi, is there any config conversion tool for concerting Firewall config from traditional  ASA 5510 box to firepower 2110 ASA appliance. Both boxes are running on 9.x ASA code

0 Helpful
4 Replies 4

Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-26-2023 07:57 PM

There's no tool for this. The configurations are compatible with only the change of interface numbering. So, you can do a few manual edits of the running-config from the 5510 and then just load it on the 2110.

0 Helpful

lijomathai
Level 1
Level 1

‎09-28-2023 08:47 AM

Thanks for the response, one more query, Do I need to cater for any license for IPsec in the new 2110 Firepower ASA? My current 5510 ASA have couple of IPsec and SSL VPN configured, so i want to port over the same to this new Firepower appliance.

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to lijomathai

‎09-28-2023 10:45 AM

You need only the free 3DES-AES license for IPsec VPN. That should automatically appear if your license token had the option to allow export controlled functionality.

SSL VPN will require you to assign Smart licenses by enabling AnyConnect. You must have the licenses in your Smart account. If you have the classic AnyConnect PAK-based licenses in the software.cisco.com LRP you can ask TAC to share them with your smart account. If they are so old that you don't have them there then you would need to purchase new AnyConnect / Secure Client licenses.

MHM Cisco World
VIP
VIP

‎09-28-2023 10:51 AM

I THINK You need migrate tool for config from asdm to fmc. 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card