Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6517
Views
21
Helpful
6
Replies

How to see configuration on FMC 1000

Go to solution
adeebtaqui
Level 4
Level 4

‎09-12-2018 07:14 AM - edited ‎02-21-2020 08:13 AM

How to see running configurations on FMC of integrated FWs like FPR2110?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
adeebtaqui
Level 4
Level 4

‎09-13-2018 01:31 AM

1- From the FMC GUI, you can go to device management page 2- Click on the troubleshooting utility icon 3- From there is some nice feature in advanced troubleshooting, one of them is sending show commands including “show run”

View solution in original post

6 Replies 6

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-12-2018 06:19 PM

There's no single running-configuration. On the managed sensor itself you can use "show running-configuration" but that will only give you the "LINA" bits (i.e. parts of the configuration derived from the classic ASA code base). 

 

In FMC, various pieces are used to control the device configuration - Platform settings, NAT configuration, remote access and site-site VPN, Access Control and related policies (prefilter, DNS, SSL, Intrusion, Identity).

Go to solution
adeebtaqui
Level 4
Level 4
In response to Marvin Rhoads

‎09-12-2018 11:00 PM

Can we not get a complete runn-config? Similar to CLI

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to adeebtaqui

‎09-12-2018 11:13 PM

You can get a show running-configuration (from the device itself - not from FMC), but it won't suffice to tell you everything about the policies in effect on the device.

 

 

Go to solution
adeebtaqui
Level 4
Level 4
In response to Marvin Rhoads

‎09-12-2018 11:16 PM

So the best way to analyse and check the present configurations is to go to different tabs on GUI of fmc for policies , routes etc

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to adeebtaqui

‎09-12-2018 11:19 PM

Depends on your goal. If you want to check a given packet flow then you can do that from GUI or cli. Same with a NAT rule (actually that one is best from  cli). If you need to check an Intrusion policy that's pretty much completely via GUI. 

Go to solution
adeebtaqui
Level 4
Level 4

‎09-13-2018 01:31 AM

1- From the FMC GUI, you can go to device management page 2- Click on the troubleshooting utility icon 3- From there is some nice feature in advanced troubleshooting, one of them is sending show commands including “show run”
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card