Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
935
Views
0
Helpful
1
Replies

Firepower Migration Tool: Palo Alto to Firepower 6.7.0.1 troubles

ruben.omez
Level 1
Level 1

‎03-26-2021 07:43 AM

**bleep**, what a mess. Tried to migrate a 600+ rules access policy (no NAT, ...) from Palo Alto to Firepower FMC 6.7.0.1. Already lost 2 days. I better start doing it manually.

 

Last errormessage:

Migration Unsuccessful!

Error while pushing access rule: access-list in bulk[1 - 337]Too many Object Assigned The maximum number of ServiceObject was exceeded Please limit the number of objects to a max of : 50.

 

Did someone from Cisco tried this software before making it public available? Luckily, I'm working on a lab environment before going into prod, but the mess it leaves behind is unacceptable. After all successful validations, it results in partially pushed configurations, making the next attempt another pain in the ass.

It also cannot manage static routes, ...

0 Helpful
1 Reply 1

IvanAlvarenga25979
Level 1
Level 1

‎03-26-2021 08:19 AM

Hi Ruben

 

I tried to do the same before but it didn't work properly. I used the Migration tool from CISCO ASA to Firepower 6.7 FDM and then when I reviewed ACCESS CONTROL and NAT I noticed that a lot of things were missing.

 

It's not worth using this tool. I'd do it manually if I were you. 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card