Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2751
Views
15
Helpful
7
Replies

ASA migration from 5520 8.2 to ASA 5545 9.x

Go to solution
jyoti_prakash85@yahoo.com
Level 1
Level 1

‎05-03-2019 10:45 AM - edited ‎02-21-2020 09:06 AM

Hi All,

I would like to migrate one old ASA cluster from 5520 version 8.2 to ASA 5545 9.x.

 

I would appreciate if you anyone please help me with the steps to follow. 

 

 

Many thanks

JP

0 Helpful
4 Accepted Solutions

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎05-03-2019 01:49 PM

8.2 to 9.X  is big change.

 

How many Rules you have in the FW, if they are Few Hundreds.

 

i will redo the work by creating new ACL rules in the new ASA (install along with Old FW)

in the maintenance window  do the  Cut over to new ASA ( leave the old one still on, in case any issue you can role over back to OLD ASA)

 

Make sense ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

Go to solution
jyoti_prakash85@yahoo.com
Level 1
Level 1
In response to balaji.bandi

‎05-03-2019 09:34 PM

Thank you, BB for your quick response on this. What about NAT rules and object groups. As I have more than 200 object groups and 200 NAT/ACLs. So do I need to create all of the manually on new ASA?

my old ASA has too many ACLs and NATs. So I am a bit worried about creating them all manually. Does Cisco have a tool for the conversion to 8.3 or later version?

View solution in original post

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jyoti_prakash85@yahoo.com

‎05-04-2019 04:37 AM

Cisco does have a tool but I don't believe it's accessible to end users. Your partner should be able to assist you in creating an conversion. Refer them to https://fwm.cisco.com

 

FWM.PNG

 

If you cannot get access to that, consider the free tools at tunnelsup.com. That can help with pre-migration cleanup and NAT rule conversion.

View solution in original post

7 Replies 7

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎05-03-2019 01:49 PM

8.2 to 9.X  is big change.

 

How many Rules you have in the FW, if they are Few Hundreds.

 

i will redo the work by creating new ACL rules in the new ASA (install along with Old FW)

in the maintenance window  do the  Cut over to new ASA ( leave the old one still on, in case any issue you can role over back to OLD ASA)

 

Make sense ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
jyoti_prakash85@yahoo.com
Level 1
Level 1
In response to balaji.bandi

‎05-03-2019 09:34 PM

Thank you, BB for your quick response on this. What about NAT rules and object groups. As I have more than 200 object groups and 200 NAT/ACLs. So do I need to create all of the manually on new ASA?

my old ASA has too many ACLs and NATs. So I am a bit worried about creating them all manually. Does Cisco have a tool for the conversion to 8.3 or later version?
0 Helpful

Go to solution
jyoti_prakash85@yahoo.com
Level 1
Level 1
In response to balaji.bandi

‎05-06-2019 09:09 AM

Thank you so much, BB. I appreciate your help.
0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to jyoti_prakash85@yahoo.com

‎05-06-2019 09:40 AM

no worries and you welcome.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jyoti_prakash85@yahoo.com

‎05-04-2019 04:37 AM

Cisco does have a tool but I don't believe it's accessible to end users. Your partner should be able to assist you in creating an conversion. Refer them to https://fwm.cisco.com

 

FWM.PNG

 

If you cannot get access to that, consider the free tools at tunnelsup.com. That can help with pre-migration cleanup and NAT rule conversion.

Go to solution
jyoti_prakash85@yahoo.com
Level 1
Level 1
In response to Marvin Rhoads

‎05-06-2019 09:08 AM

Thank you so much for letting me know about this hidden tool :). I appreciate your time and help.

I will contact Cisco in case they can help me.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card