Re-Register FTDs with FMC

lgrusila1821 · ‎12-28-2018

Hi

We have a deployment of two FTDs in HA.

FTDs have registered to FMC but unfortunately today FMC has crashed and so we have to rebuild it from scratch.,( FMC Running in ESXI)

Unfortunately we dont have a backup of the FMC config.

Is any way to push the config from FTDs to the new FMC ? Is any way not to lose the FTDs config?

Thank you

Abheesh Kumar · ‎12-28-2018

Hi,

There is no such way to configure from FTD to FMC. You need to configure from scratch, while re-registering FTD to FMC you need to do all the configurations again.

If you know the rules just create an ACP policy like previous and add the FTD's then enable the interfaces and do the HA configurations then configure the interfaces with IP and routing part.

Thanks,
Abheesh
PS: Please don't forget to rate and select as validated answer if this answered your question

Sheraz.Salim · ‎12-28-2018

HI.

if this is the case where you FMC crash and not recover able. what are the scenarios.

this HA FTD are working they where the last config was pushed from the FMC. (As of the last config was pushed from the FMC to FTD) so they have these existing config. however there is no way to extract the config from FTD.

if you re-register these HA FTD to new FMC the config on the existing copy of FTD will be over written. you have to build your ACP and other policy again.

I would suggest you to keep your FMC policy default ACP either (Discovery/security and balance) doing this way you will not impact the production traffic. (however, you have to take the risk) and business should take in account of this major impact.

best is make sure this time you setup the backup from FMC to FTP server just in case.

please do not forget to rate.