Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
942
Views
5
Helpful
2
Replies

Cisco ASA 5585 to Firepower 4140

Go to solution
clpaul
Level 1
Level 1

‎07-24-2018 05:51 AM - edited ‎02-21-2020 08:00 AM

     Can I export the rules from the 5585 and import them to the 4140 or do I need to make changes to the existing rules?  Thank!

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
aaron.hackney
Level 1
Level 1

‎07-24-2018 06:00 AM - edited ‎07-24-2018 06:01 AM

Greetings,

 

If your FP 4140 is running ASA software, you can copy the rules directly and they will just work. Note that there may be some interface naming that is different. Other than that, most of your configuration will transfer over just fine.

If you are running FTD software, you will need to either manually recreate your ruleset on the FTD box using FDM or using FMC. Cisco just released this tool to do this migration for you. This tool will migrate your ASA configuration to FTD. I believe this requires an FMC and will not work with FDM only at this time.

Screenshot 2018-07-24 07.59.58.png

If this was helpful, please upvote and marked solved. Thanks!

-A

 

View solution in original post

2 Replies 2

Go to solution
aaron.hackney
Level 1
Level 1

‎07-24-2018 06:00 AM - edited ‎07-24-2018 06:01 AM

Greetings,

 

If your FP 4140 is running ASA software, you can copy the rules directly and they will just work. Note that there may be some interface naming that is different. Other than that, most of your configuration will transfer over just fine.

If you are running FTD software, you will need to either manually recreate your ruleset on the FTD box using FDM or using FMC. Cisco just released this tool to do this migration for you. This tool will migrate your ASA configuration to FTD. I believe this requires an FMC and will not work with FDM only at this time.

Screenshot 2018-07-24 07.59.58.png

If this was helpful, please upvote and marked solved. Thanks!

-A

 

Go to solution
cspaugh
Cisco Employee
Cisco Employee

‎07-24-2018 07:41 AM

clpual,

so that I am clear your looking to migrate from the ASA 5585 to FTD on a Firepower 4140? And your asking if the Migration Tool will copy all your rules over or if you need to take something into account with regards to modifying rules etc before the migration?  here are some possible useful resources around the Migration Tool. The Migration guide and Release notes.  I am not the expert but I can try to find one to help answer further questions if needed. 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card