Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2454
Views
0
Helpful
3
Replies

Migrating configuration from ASA to Firepower

Go to solution
baskervi
Level 1
Level 1

‎09-23-2020 01:17 PM

We're looking at migrating our ASA-5510 to a Firepower 2110. Is there a path to convert the existing configuration to something that can be imported into the Firepower? Thanks

0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎09-23-2020 01:19 PM

@baskervi 

You can use the Firepower Migration Tool (FMT) to migrate the ASA configuration to FTD.

https://www.cisco.com/c/en/us/products/security/firewalls/firepower-migration-tool.html

 

HTH

View solution in original post

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎09-23-2020 01:21 PM

you have FTD Migration tool, but if the rule base is not too big, I do it manually and you get the opportunity to review the rules and get rid of organically grown unnecessary rules. when you moving to a new kit.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Rob Ingram
VIP
VIP

‎09-23-2020 01:19 PM

@baskervi 

You can use the Firepower Migration Tool (FMT) to migrate the ASA configuration to FTD.

https://www.cisco.com/c/en/us/products/security/firewalls/firepower-migration-tool.html

 

HTH

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎09-23-2020 01:21 PM

you have FTD Migration tool, but if the rule base is not too big, I do it manually and you get the opportunity to review the rules and get rid of organically grown unnecessary rules. when you moving to a new kit.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
baskervi
Level 1
Level 1

‎09-23-2020 01:36 PM

Thanks, both of you. I'll experiment with the tool to see how it goes. We have about 40 explicitly defined rules, but we were liberal with object-groups. It seemed pretty tedious to do this manually, but we do need to review the rules. We'll clean up the configuration as much as possible before running through the tool. Take care.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card