Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
279
Views
1
Helpful
2
Replies

Orphaned FTD recovery tool

yegorboyko
Level 1
Level 1

‎12-07-2023 01:58 AM

Hello Everyone,

If your FMC is died some day and you have only FTD without any management this tool may be yours last hope instrument to recover configuration and put it back to new FMC.

What is supported for now:

  • Security zone migration;
  • Network object migration;
  • Service objects migration;
  • Access rules and Policies migration;
  • Object NAT migration;
  • Manual NAT migration;

Limitation: FTD LINA configuration not containing SNORT rule information and information related to SNORT engine will not be recovered.
Tool is still in development progress.

https://github.com/henzelis/ftd_to_fmc_converter 

 

0 Helpful
2 Replies 2

MHM Cisco World
VIP
VIP

‎12-07-2023 02:06 AM

https://www.cisco.com/c/en/us/td/docs/security/firepower/70/configuration/guide/fpmc-config-guide-v70/backup_and_restore.html

Cisco doc.

You can back up:

  • FMCs

  • FTD standalone devices, native instances, container instances, and HA pairs

  • FTDv for VMware devices, either standalone or HA pairs

Backup is not supported for:

  • FTD clusters

  • FTDv implementations other than FTDv for VMware

  • NGIPSv

  • ASA FirePOWER

If you need to replace a device where backup and restore is not supported, you must manually recreate device-specific configurations. However, backing up the FMC does back up policies and other configurations that you deploy to managed devices, as well as events already transmitted from the devices to the FMC.

0 Helpful

yegorboyko
Level 1
Level 1

‎12-07-2023 04:30 AM

You are right!
Based on the unavailability of FTD recovery methods under FMC lost, this tool has created for people who has a lot of Access Control Rules and has dropped an FMC database. It was created like a last hope tool based on my own experience. 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card