Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
643
Views
0
Helpful
4
Replies

How to backup a 3100 cluster?

red2play
Level 1
Level 1

‎12-29-2022 10:31 AM

On the documentation, you can't backup a cluster.  How do I backup the configurations on the FTDs on the FMC?  I do get that the configurations are mostly on the FMC's but do they cover everything?

Backup is not supported for:

  • threat defense clusters

  • The threat defense virtual for the public cloud

Labels:
0 Helpful
4 Replies 4

Rob Ingram
VIP
VIP

‎12-29-2022 10:55 AM - edited ‎12-29-2022 10:57 AM

@red2play IMO the FMC backup should be sufficient and no need to backup the FTD. The FMC has the policies which are deployed to the FTD.

If an FTD fails and is replaced, you just need to define the mgmt IP address and register to the FMC, which then re-deploys the policies from the FMC.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎12-29-2022 12:21 PM

Most of the config for the FTD stored in FMC, so I would suggest to take the backup of FMC (out of the box)

Also check some limitation guidelines for the backup and restore :

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/admin/710/management-center-admin-71/tools-backup.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-03-2023 05:31 AM

The newest release of FMC (i.e., version 7.3 as of this posting) include support for cluster backup. References:

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/roadmap/management-center-new-features-by-release.html#Cisco_Concept.dita_99a036dd-7071-4aa7-8bb6-e3e3567dd8c7

https://www.cisco.com/c/en/us/td/docs/security/secure-firewall/management-center/admin/730/management-center-admin-73/tools-backup.html#concept_042F458B5E1243F19CA97E67F6B21197

While it's true that the FMC backup includes all policies and objects, individual node configurations (interfaces, routing, cluster settings etc.) are included in a device or cluster backup.

0 Helpful

red2play
Level 1
Level 1
In response to Marvin Rhoads

‎01-03-2023 07:27 AM

Thank you, this is the answer I was looking for because if a physical node fails, how would you recover the node with an FMC backup?  I know you can transfer the policies individually but its not the same as a node backup.  Thank you.  I can take this to management.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card