cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
219
Views
0
Helpful
1
Replies

Redeploy FDM HA-FTD into FMC

davparker
Level 1
Level 1

I'm about to wrap up deploying our first two HA-FTDs using FMC. I have two additional sites that have HA-FTDs that are locally managed FDM. On the FMC, I'm using nested ACPs. Much of the config for our organization is in the Base-ACP with site specific config in the Site1-ACP. We have full connectivity between each site. To redeploy the locally managed HA-FTDs in Site2 I'm thinking I could break HA leaving the site up and running, then add the removed FTD into FMC and start configuring the sensor for Site2. When ready as much as possible, then join the second FTD into FMC as a secondary in HA config and reconfigure the outside/inside interfaces with the original IPs. I could reroute the Internet traffic through another site during the transition, but due to bandwidth constraints, I'd like to leave Site2 up as long as possible. I'm thinking I could wrap up the HA config on the redeployed HA-FTD in a weekend. Has anyone done something like this? Does this seem reasonable?

Thanks - David

1 Accepted Solution

Accepted Solutions

@davparker from a high level that plan sounds ok.

To migrate the FDM device you can delete the local manager using the command configure manager delete, you can then run configure manager add <FMC IP Address> <KEY> to define the FMC as the central manager. This should wipe the configuration except the management interface, so you won't need to wipe the device, unless you were using the opportunity to upgrade the version.

View solution in original post

1 Reply 1

@davparker from a high level that plan sounds ok.

To migrate the FDM device you can delete the local manager using the command configure manager delete, you can then run configure manager add <FMC IP Address> <KEY> to define the FMC as the central manager. This should wipe the configuration except the management interface, so you won't need to wipe the device, unless you were using the opportunity to upgrade the version.

Review Cisco Networking for a $25 gift card