Restoring from a snapshot is

cisco8887 · ‎08-09-2017

Hi Guys,

I have pair of FTDs which were previously registered to FMC.

I had to remove the HA which also de registered them as a result I had to set a new reg key and register them again

this is all fine but what I can't see is the interface name, bgp and ospf setting set on the devices.

all of those were configured prior to de registering and are still there when I view it using the cli but not seen by FMC.

does FMC override them as soon as I push a new policy down ?

how can I get FMC to pull those details?

Oliver Kaiser · ‎08-13-2017

Some device configuration is deleted when you re-register to FMC.

Unfortunetly this is by design at the moment. See CSCvb95280, CSCvd87084, CSCvf29580...

As of now I am not aware of any workaround for this (poor) behaviour.

regards

Oliver

cisco8887 · ‎08-14-2017

quite poor isn't it . there is alot of ospf and BGP and other routing protocol configs including interfaces which will get lost on re registering the device.

another issue I noticed is once the FMC is restored none of the managed devices receive policies. I restored it from snap shot and even install a new fresh copy and restored the config.

On both occasions, it could not communicate with the devices so how are you meant to manage those devices?

Does this mean if FMC dies, you need to de register the machines and register it again ?

That might work for few FWs but not certainly 100s

Oliver Kaiser · ‎08-17-2017

Restoring from a snapshot is not a supported restore procedure. As for the backup restore I cant confirm this. I have restored successfully in the past and did not face an issue like that. You might want to open a TAC case to clarify this issue.

firepower re register with fmc