Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1810
Views
0
Helpful
2
Replies

asa revert to last policy step

Mary
Level 1
Level 1

‎01-16-2018 09:51 PM - edited ‎02-21-2020 07:09 AM

i made change in asa access rule policy, now some problem happen, may i know the steps to revert to the last policy version in live production server? thanks

Labels:
0 Helpful
2 Replies 2

James Leinweber
Level 4
Level 4

‎01-17-2018 10:31 AM - edited ‎01-17-2018 10:36 AM

Unfortunately, easy reversion requires advance planning.
* if you have a text copy of the previous configuration, you can revert to it with a reload:
prep: copy running-config old-config.txt
(make changes, decide to revert)
revert: copy old-config.txt saved-config
reload

* if you were making access-list changes, keep before & after versions of the lists
old config:
access-list outside-ingress-01
...
access-group outside-ingress-01 in interface outside
prep:
access-list outside-ingress-02
...
go live:
access-group outside-ingress-02 in interface outside
revert:
access-group outside-ingress-01 in interface outside

* if you were making a policy change, keep before & after versions
policy-map global_policy_1
...
policy-map global_policy_2
...
and then switch foward with:
service-policy global_policy_2 global
or backward with:
service-policy global_policy_1 global

Sadly, the common theme is that you have to plan how you might revert before making the change.
-- Jim Leinweber, WI State Lab of Hygiene

0 Helpful

johnlloyd_13
Level 9
Level 9

‎01-17-2018 11:40 PM

hi,

do you know what config you've applied so you can roll-back?

issue a show history and negate the recent policy command changes.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card