hi i am replacing my ASA5520(8.2.5 version) with asa5512-x(8.6 version). does any one know how can I upload my old config to the new ASa as when I try it won't accept the commands from the old asa. once its all finished all the commands that I try comes up with unauthorised command.
You wont be able to load the configuration directly to the new ASA since the lowest software level that the new ASA5500-X Series supports is 8.6
If you have a spare ASA that can be updated to 8.3+ software you can load the current 8.2 configuration to that spare ASA and reboot it to new software and let the ASA convert the configuration. I don't personally use this way as I don't trust the ASA to convert the configuration correctly or create a optimal configuration.
Other option is naturally to rewrite the configuration using the new ASA and then replace the old ASA with the new one. Naturally this is harder if you have no expirience of the new ASA software.
The biggest changes are the NAT configuration formats. If you want to read about those you can check these 2 documents and also the official Configuration Guides for ASA.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...