Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
182
Views
1
Helpful
3
Replies

Migrate FTD to new FMC server

MSJ1
Level 1
Level 1

‎04-29-2024 12:40 PM

Hi 

I need to migrate multiple FTDs management to a newer FMC from current FMC. Current FMC IP is Over VPN to manage the FTD Devices at remote end. In the New plan we will use WAN IP as new Mgmt IP. 

Please provide some reference link so I can review. 

0 Helpful
3 Replies 3

MSJ1
Level 1
Level 1
In response to BlakeBratu

‎04-29-2024 02:47 PM

Hi Blake

@BlakeBratu 

Thanks for your reply. Just to add I want to move the FTD Management from One FMC to another and while moving want to Change management of FTD using Data/WAN Interface. 

Since I am looking for best practice suggestion , should I change the management of FTD through Data Interface before the move or after the move to new FMC.

Will be appreciated if you can provide any best practice suggestion/Blog/Forum Reference to move an FTD to another FMC. 

 

 

0 Helpful

Aref Alsouqi
VIP
VIP
In response to MSJ1

‎04-30-2024 05:29 AM - edited ‎04-30-2024 05:30 AM

Please take a look at "Change the Manager Access Interface from Management to Data" section in this doc:

Secure Firewall Management Center and Threat Defense Management Network Administration - Cisco

However, I think a bit safer approach to achieve this would be to route the management interface traffic via the FTD inside to outside interfaces, essentially using the FTD data interfaces as the gateway for management. In that case you would need to create a static NAT entry to translate/untranslate the traffic going/coming from the management interface to the FMC. You might need to use NAT ID to register the FTD in this case if the FTD traffic will be translated to a public IP used by other translations.

Firepower Management Center Configuration Guide, Version 6.0 - Device Management Basics [Support] - Cisco

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card