Import 450 Static Routes from ASA to FTD
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-30-2017 04:30 AM - edited 02-21-2020 06:35 AM
Hi All,
I have a customer converting from ASA to FTD.
We are using the Migration Tool to convert the 4000 Access Rules and NAT's, and I am importing all the objects using the REST API.
However, the REST API does not support adding routes at the moment.
Obviously it would be an extremely length process to manually add in 450 Static Routes.
Is there any quick way of doing this? For example, extracting a config file to edit, or some secret API etc etc?
Any ideas welcome!
Thanks,
- Labels:
-
NGFW Firewalls
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-30-2017 08:58 AM
Unfortunately there's no easy way to do this in the current release (6.2.2).
We hope to see that capability next spring but it's not officially confirmed.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2020 02:20 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2020 03:40 AM
You can do it now using CDO (including routes):
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2020 06:01 AM - edited 01-13-2020 06:21 AM
I'm not sure that this would be a supported approach, but have you considered using FlexConfig to deploy the routes?
In theory this would be a straight copy and paste. Lab it first before deploying to production obviously.
Edit - Static routing is blocked within FlexConfig, see below for more info:
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2020 06:12 AM
Guys,
This thread is over 2 years old.
This can now be done with the API.
And no, it cant be done with FlexConfig
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2020 06:16 AM
Commands that are available from the GUI (such as routing) are blacklisted in Flexconfig.
The API is also how CDO pushes configurations to FTD.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2020 06:16 AM
Sorry, Ross. I realised that once I'd replied.
Glad you found a way forward.
