cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
340
Views
0
Helpful
3
Replies

Migrate FMC 2500 to FMC 2700

Hi all!

We are trying to migrate an from FMC 2500 deployment to SFMC 2700. Our scenario in our 2500 FMC is the following:

- Version 7.0.5
- devices managed by this FMC:
·  FTD v7.0.6.2
·  SFR ASA5516-X v7.0.6
·  SFR ASA5500-X v6.6.7.1

Reading the official documentation about the migration from FMC 2500 chassis to 2700 chassis

https://www.cisco.com/c/en/us/td/docs/security/firepower/fmc_model_migration/b_FMC_Model_Migration_Guide/m_fmc_migration_workflow.html

we have to upgrade the FMC 2500 version to the special release 7.4 for taking a backup and restore it in the new chassis.

The problem is the following, we need the FMC 2500 in version 7.0 to keep the service given to the SFR ASA 5500-X in version 6.6.7.1. We can't upgrade this FMC 2500. Only we can work with the backup for a restore or the Import/Export objects.

Could you help me giving us your best procedure to take the configuration from FMC 2500 in version 7.0 and import it in the new FMC 2700 chassis in version 7.4?

Thank you!!

Regards

3 Replies 3

Marvin Rhoads
Hall of Fame
Hall of Fame

Is the policy for 6.6.7.1 pretty basic (i.e. just a Firepower service module with a few ACP entries)? If so, I would just keep run that on an FMCv 7.0.x that you stand up for only as long as the time until you retire that past-end-of-support device. May even for both sets of devices with SFR modules.

Then do the model migration as noted for the rest of the devices (FTD and possibly the 5516-X firepower modules).

Hi Marvin,

I take the chance for a question of mine

In caso of migration to FMC2700 the upgrade to 7.4 is needed because target FMC doesn't support release 7.0, but in case of migration from FMC2500 to, for example, FMCv300, is it allowed to migrate maintaining same 7.0 release?  

That's correct - you can do model migration within the same release to any supported model.

The problem with the 2700 is that versions prior to 7.4 aren't supported on it.

Review Cisco Networking for a $25 gift card