Copy ASA 5500 Config to backup Firewall

glennl · ‎10-08-2008

I have 2 ASA 5510's and would like to copy the config from 1 to the other. What is the best way to do this?

Matthew Warrick · ‎10-08-2008

When you say "backup firewall" do you mean an offline firewall on a shelf or a properly configured and cabled failover partner?

glennl · ‎10-08-2008

A backup sitting on a shelf.

Richard Burts · ‎10-08-2008

Glenn

There are at least 2 approaches to consider:

- a simple cut and paste. on the configured one do show running-config, copy the text into a text file, and on the backup on go into config mode and paste the config.

- use tftp to copy the running config from the configured one to a server (perhaps on your laptop or PC). Then configure the backup with an IP address (it is easier if you configure it in the subnet of the tftp server) and connect it so that it can communicate with the server. Use tftp to copy the config from the server to the backup.

The simple cut and paste works ok if there not shared key entries (like for VPN) or other values hidden in the text file. The tftp copy will be complete, including any key values, and should be used if you are not sure that the cut and paste will get everything that you need.

HTH

Rick

HTH

Rick