Buy or Renew
Buy or Renew
We are currently experiencing Knowledge Base board outages and are working to resolve. Thank you for your patience.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
583
Views
10
Helpful
3
Replies

ASA migration tools

carl_townshend
Spotlight
Spotlight

‎05-31-2018 09:09 AM - edited ‎02-21-2020 07:49 AM

Hi All

Are there any ASA migration tools or checkers you can use when say moving from a 5520 to 5545?

cheers

Labels:
0 Helpful
3 Replies 3

Karsten Iwen
VIP
VIP

‎05-31-2018 12:48 PM

For my migrations, I never used any tools as I typically don‘t like what they produce. I would look at two different scenarios:

1) the old ASA is running a version < 8.3: then I would first update to 8.4, but dump all the NAT-config and rewrite that from scratch. Then update to 9.1, take that config to the new platform and update to the desired version (I would typically go for 9.8x at the moment).

2) If you are already on 8.3 or newer, update to 9.1 and then move to the new platform, same as above.

carl_townshend
Spotlight
Spotlight
In response to Karsten Iwen

‎05-31-2018 02:34 PM

So are you saying just copy and paste in the running config from the old box ?

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-31-2018 11:06 PM

Karsten has a good point, but I have had good results migrating the NAT configuration using the free tool at tunnelsup.com. They also have a config cleanup tool to identify unused objects and ACLs.

 

Cisco does have a tool (fwmig) available to partners that works ok for larger migrations. If you're working with a partner SE they should be able to help you with that as an option.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card