Re: FTD - Export config vs backup

carl_townshend · ‎01-09-2025

Hi Guys

When backing up the FTD, it appears there are 2 ways of backing up the config, the full backup and the export of the config.

What is the difference between the 2 please? and when would you use one or the other?

Also, I assume in the event of a hardware failure of the FTD, we would have to physically copy the file across to the device locally and run a restore command?

Cheers

ccieexpert · ‎01-09-2025

i would do regular full backups for disaster recovery. Backups have to be on offline storage otherwise if the device dies, then you are out of luck.

whereas export is in JSON format, so it is good when you want to manipulate the config etc to be put on another device.

carl_townshend · ‎01-10-2025

Hi There

So are you saying you could backup and recover with the export? why have they allowed both options, what are people using he export for generally ?

AViftrup · ‎01-10-2025

The config is not meant to be used as a backup method.

Config is meant to be used as an easy way to export/import certain functions/features from one appliance to another one, in a fast and easy way.

Backup method is the correct way to go, as you ensure you capture all necessary configuration information. Including basic LINA and SNORT device settings.
Device configuration is however often not changed that frentently, so in many cases it doesn't needs to be backed up as much as the FMC - but it solely depends on your setup and operational procedures.

But keep in mind when using the backup functionality, that you either automatically or manually off-load the backups off the FTD and the FMC as well. If you're storing backups on the FMC without off-loading to another storage platform, you could end up losing configuration if FMC breaks down as well.