Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1597
Views
5
Helpful
4
Replies

Migrating Context to another Multiple Mode ASA FW

johnlloyd_13
Level 9
Level 9

‎08-14-2020 04:18 AM - edited ‎08-14-2020 04:22 AM

hi,

i'll be migrating customer context from one multiple mode ASA FW to another.

can someone confirm the steps below or advice if there's an alternative or easy way to do it?

1.transfer context .cfg file to the new FW

2.pre-configure the subinterface/VLAN under system context in the new FW

3.remove the context in the old FW under 'system' context with 'no context CUST-A'

4.configure the context in the new FW under 'system' context, allocate-interfaces, and point the transferred .cfg file using 'config-url disk0:/CUST-A.cfg'

5.remove the subinterface/VLAN on the old FW under 'system' context

 

i just don't want to shutdown the multiple 'inside' subinterfaces inside the customer context since some context have 'management' interface to ISE/TACACS (for solarwinds polling/config backup) and i remembered or not sure i got locked out last time when i did this.

 

 

1 person had this problem
0 Helpful
4 Replies 4

waldemar.jesus
Level 1
Level 1

‎12-04-2020 01:41 AM

Hi johnlloyd_13, 

Had you the opportunity to test this procedure? We have the similar need and we don't find any procedure with this scope.

We'll try to open a Cisco TAC case but before to do this you're response would be appreciate.

Thanks in advance.

0 Helpful

johnlloyd_13
Level 9
Level 9
In response to waldemar.jesus

‎12-04-2020 03:14 AM

yes, my steps worked just fine. i suggest to use ASDM to transfer the .cfg context config files so it's easier.

if you're pre-configuring the new context, i also suggest to 'shutdown' the interfaces. so that during the actual cutover, you can just unshut them and then do a 'no context <context>' under system in the old ASA.

waldemar.jesus
Level 1
Level 1
In response to johnlloyd_13

‎12-04-2020 04:53 AM

Thanks a lot for your quick answer.

 

I'll share with the community the results of my experience, because i'm very surprised about the littel information about this topic there is.

 

Regards!!

0 Helpful

johnlloyd_13
Level 9
Level 9
In response to waldemar.jesus

‎12-04-2020 05:36 AM

i've cutover context and non-context mode ASA configs quite a lot.

it's just a confirmation in my head that i want to put it out here. unfortunately i didn't get a reply but it's alright as everyone else can find this.

i also advise to open a pro-active TAC case and ask the engineer to standby in case you need help. you get what you've paid for the smartnet

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card