Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
1
Helpful
2
Replies

Convert Cisco ASA from Context to Single Mode

johnlloyd_13
Level 9
Level 9

‎02-24-2025 02:55 AM

hi,

i have a cisco ASA context-based mode that's currently in production.

it has BGP peering with ISP and ipsec VPN in the 'admin' context.

since there's no more customer context configured, plan is to convert back to single/native ASA mode with BGP and ipsec vpn configured.

my question is, do i convert the ASA to single mode, issue a 'write erase' and reconfigure BGP and ipsec VPN?

or 'write erase', convert to single mode then reconfigure?

0 Helpful
2 Replies 2

Sheraz.Salim
VIP Alumni
VIP Alumni

‎02-24-2025 05:57 AM - edited ‎02-24-2025 06:02 AM

To convert your Cisco ASA from context-based mode back to single mode while preserving/keeping your BGP and IPsec VPN configurations in the "admin context", you should first convert the ASA to single mode using the "mode single" command, which will initiate a reboot. After the reboot, the 'admin' context configuration will become the running configuration of the single mode ASA Here and Here . You should then review the configuration to ensure that your BGP and IPsec VPN settings are intact make any necessary adjustments, and save the configuration using the "write memory" command. It's important not to use the "write erase" command before or after the conversion, as this would erase your existing configuration. Do this work in change windows for some un-excepted things show up. Also have the configuration file either on notepad or download it via tftp.

Edit: I have not configure multi-context firewall ASA for long time. So my Knowldege is not fresh and I dont have hardware to test. This is the information I get from the website I have reference already them at above.

please do not forget to rate.

johnlloyd_13
Level 9
Level 9

‎02-24-2025 04:14 PM

hi,

thanks for the info! you've reference the same question i had last year

can't recall if i've done ASA context to single mode conversion before.

but i know the single/native ASA config will be preserved/moved over the 'admin' context when converting single to context mode.

this will be done in a change window, but ASA is just for a backup ipsec VPN so there's really no impact.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card