Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
786
Views
0
Helpful
1
Replies

Generate plain-text ACP information from Firepower

supportgns
Level 1
Level 1

‎06-04-2021 03:12 PM

Hi,

My customer recently decided to switch from Cisco to Palo Alto as perimeter firewall solution. The design decision was to keep the same security policies and this implies PA provider needs the backup of existing ACPs in our Firepower solution.

In our case, Firepower is installed as an ASA module and the ASA configurations (NAT rules, VPN, everything visible through ASDM) have been translated to the new firewall by the PA engineer. However, this hasn't been possible with our ACP deployed in FMC. I can't find some command like "show run" in the FMC nor FirePOWER modules; we tried to read some ACP configuration from backup and troubleshooting files, but PA engineer says that's not what he needs.

Is there, then, any other way to extract the ACPs in a plain-text format?

Thanks.

0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-04-2021 08:40 PM

There's no way to get the ACP in a plain text file per se. You can get a human-readable file from FMC by clicking the "Generate report" icon for the ACP in question. That will generate a PDF of the ACP.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card