Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Swapping SSDs during ASA replacement

Hello, 

I have several 5516 and 5506 ASAs to replace. Replacing with "one to one".Someone told me that Firepower software portion sticks to hardware, so if I swap SSD from an old ASA to a new one, SFR module won't boot up. I tested that myself between two new ASAs swapping SSDs, SFR booted just fine. I wounder if there are any issues and it's allowed to swap the SSD during replacement. 

Thank you!

5 REPLIES
Hall of Fame Super Silver

If Firepower is installed on

If Firepower is installed on an SSD it can be swapped and will boot following a hard (power cycle) or soft reload.

Obviously a blank SSD won't automagically install the software. :)

Community Member

Re: If Firepower is installed on

I will be replacing ASA5516-FPWR-K9 and I have been told that the SSD has to be partitioned and re-imaged, is this correct?

Hall of Fame Super Silver

Re: If Firepower is installed on

It depends on its current state and the version of software that's installed.

 

When the ASA finishes booting and initializing the module, run "show module sfr detail" to see the current status.

 

You don't normally have to partition the SSD but you do need to ensure it has the proper version of software for compatibility with your FMC (the module can't be at a higher level than FMC) and general operational considerations (i.e. you should run the latest versions in most cases).

Community Member

Re: If Firepower is installed on

Thanks for the quick response!  I am replacing a ASA5516-FPWR-K9 with another ASA5516-FPWR-K9.  I plan on a FMC backup and copying the image, configuration from the ASA to a USB.  Can the SSD just be moved to the new device? 

 

I am surprised that the Cisco does not supply a set of instruction for a RMA replacement...

Highlighted
Hall of Fame Super Silver

Re: If Firepower is installed on

An FMC backup only backs up FMC itself or sensors running Firepower OS (i.e., 3D series). It won't backup a Firepower service module.

 

An ASA firepower module needs to be bootstrapped and registered to FMC. Then you can apply Platform and Access Control policies to it.

 

I haven't tried just moving the SSD. It's worth a shot. I agree the documentation on that is lacking.

578
Views
10
Helpful
5
Replies
CreatePlease to create content