Cisco :: Migration From Asa5505 To Asa5510?
Jul 3, 2012i exported config file from asa5505. i changed this file and i imported in my asa5510. can you tell me that config file allright
View 1 Replies
ADVERTISEMENT
Cisco Firewall :: PIX515 To ASA5510 8.4(5) Migration?
Dec 18, 2012We're migrating as mentioned in the subject and this new format is quite a departure from previous iOS versions so I thought I'd post the configs of the PIX and the ASA and ask if someone is willing to compare them and verify that it is correct and should be basically plug and play. The xxx.xxx.xxx are outside IP addresses and the yyy.yyy.yyy are inside addresses. .
Existing PIX config
PIX Version 6.3(4)
interface ethernet0 100full
[Code]......
Cisco VPN :: IPsec L2L VPN Between A ASA5510 And ASA5505
Jul 25, 2011I have set up a IPsec L2L VPN between a ASA5510 and a ASA5505 which is working just fine.Every now and then our management station receives the following syslog message: Session disconnected. Session Type: IPsec, Duration: 2h:23m:23s, Bytes xmt: 3283338, Bytes rcv: 8637607, Reason: Phase 2 Error.I have already searched the forum for this message to exclude all the possible reasons for this message:
- the complete crypto maps are the same on both ends (lifetime, psk, pfs etc)
- the ACL's used in the crypto maps are exactly the opposite of each other
Cisco :: OSPF Within Tunnels In ASA5505 - ASA5510
Jun 27, 2011I have 3 tunnels established (full mesh) with 3 CISCO ASA (all security+), through Internet : - Site A : ASA5510 - Site B&C : ASA5505, There is no main site or client site, each site has more than one network behind it. So I'd like to setup OSPF between all the ASA for them to exchange their route within the tunnel. I thought this was automatic when establishing the tunnel, but it isn't.
View 1 Replies View RelatedCisco Firewall :: 8.2 (ASA5510) / 8.4(2) (ASA5505) - Why Doesn't Route Map / Set IP Next-hop Work
Jan 2, 2012I need to be able to redirect some HTTP traffic to an Ironport WSA (for now) on a DMZ interface, the initial config I'm trying to test is along the lines of the following (don't have access to the ASA at the moment to cut-and-paste):
access-list 101 deny any any neq www
access-list 101 deny tcp host 10.0.2.2 any
access-list 101 permit tcp any any
route-map proxy-redirect permit 101
match ip address 101
set ip next-hop 10.0.2.2
Unfortunately the ASA does not take the "set ip next-hop" command, I get an invalid input error message and if I at the route map config prompt type "?" only the "metric" and "metric-type" commands are listed as available.
This happens both on 8.2 (ASA5510) and 8.4(2) (ASA5505). Since others are able to make this work, I assume there's something else on the ASA that I have to set to enable this command?
Cisco VPN :: Network-access Between ASA5505 And ASA5510 (site-to-site)
May 9, 2011we set up a site-to-site-vpn between a 5505 and a 5510 (both asa8.3.1). We configured both sides using the VPN-Wizard in the ASDM. When we try to ping from the network behind the 5505 (192.168.45.0/24) to any host behind the 5510 (192.168.0.0/24) the tunnel gets established but the ping doesn't get trough. After that we tried to connect via RDP to any host behind the 5510 and it worked well (same with ssh, telnet,vnc etc.). Now we want to map a network-share on a 2008-Server behind the 5510 but it's not working. In the ASDM-Log I see some "denied by inside-access in"-messages for the ports 139 and 445. Isn't it right that the whole traffic in the vpn-tunnel bypasses the acl? Even if we open both ports we can't connect to the network-share?
View 1 Replies View RelatedCisco Firewall :: Difference ASA5510-BUN-K9 And ASA5510-Sec-Bun-K9
Jun 6, 2012ASA 5510 have two model Bun-K9 and Sec-Bun-K9 from the datasheet find out difference Port related and Redundancy. My questions is : Have any major difference for Security service between two model ?
View 3 Replies View RelatedCisco :: Migration From WCS (7.0.230..0) To NCS
Aug 15, 2012I've valid SAU service contract with WCS. Can I migrate from WCS (7.0.230..0) to latest version of NCS by downloading it from software center or I should purchase some SKU for upgrading to NCS?
View 1 Replies View RelatedCisco :: ASA-SM Migration Experience?
May 22, 2012Is anybody deploying ASA Services Module? I am looking for feedback/gotchas/advice for a migration from an ASA-5550 HA pair.I also received confirmation from Cisco that VPN termination is active in the latest 8.5/8.6 code releases, so hopefully should be able to fully retire my 5550's.
View 4 Replies View RelatedCisco :: 800 / WLSE To WCS Migration?
Jun 20, 2011what options are available to a customer with 800 APs that is finally migrating to a centralised model and therefore migrating from WLSE to WCS? Assuming that they move to v8 of WCS can they upgrade their WLSE licenses to WCS?
View 1 Replies View RelatedCisco :: Data Migration From LMS 3.2 To 4.1?
Nov 13, 2011Are there any methods for statistic data importing from old LMS 3.2 to a new LMS 3.1 version? I know about devices invemtory export/import function, but also i want to save all data gathered from previous time.
View 1 Replies View RelatedCisco AAA/Identity/Nac :: ACS 5.2 Best Way To Do Migration
May 19, 2013I have an ACS 5.2 deployment and i want to upgrade it to 5.4 version.I have 2 server in my deplyement:
1/ Primary Server as Authentication server & log collector
2/ Secondary server as Authentication server.
What is the best way to do the migration? Normaly, i can proceed as follows:
1/ Deregidter each server from the deployement ==> Make both the servers standaone
2/ Upgrade the Secondary server.
3/ Upgrade the Primary server (without migrate the log server).
4/ Join Servers to the deployement.
Cisco AAA/Identity/Nac :: Migration From ACS 4.0 To ACS 5.0?
Mar 22, 2011what is the key point to note for migrating data from ACS 4.0 to ACS 5.0? how can I use Migration utility to migrate data from old version to new version??
I have ACS setup running with 1000 devices and more than 2000 users and 60 groups dont want to build new acs from scratch want to import data from old version?
Cisco AAA/Identity/Nac :: ACS Migration From 4.1.1.23 To 5.2?
Jan 14, 2012I need to upgrade my ACS for windows 4.1.1.23 to 5.2 as we have come across the windows 2008R2 AD problem. Now reading the migration document it says I need to go to at least 4.1.1.24 first which will not be a problem, then I need a migation server, so that means I need another ACS server as the migration server. As I already have 2 ACS servers could I use one of them as the Migration server, ie take it out of production?
View 1 Replies View RelatedCisco AAA/Identity/Nac :: ACS 4.2 Migration To 5.3
Jun 11, 2012If we need to migrate ACS 4.2 installed on appliance 1113 to ACS 5.3 what all the prerequisites...?
whether any hardware dependencies and the same configurations on 4.2 could be operated on 5.2 even after appliance changes...?
Cisco :: 7.0.164.3 / Data Migration From WCS To NCS?
Dec 10, 2012I am working on a migration from Windows based WCS 7.0.164.3 to NCS appliance (1.2.1-once it is available). After stopping WCS, I issued the export userdata C:WCS07Migrate. The process completed, but did not create a single zip file. I found 2 files created in the tmp directory.
One contains multiple a folder called tempDirUserDataFromDb - containing multiple xml files; and another file called ImportExport_ca<number> which contains the maps. Was there something incorrect in my command? Can I use still use these files on NCS? Or do I need to redo the export on the WCS?
Cisco :: NCM Features Migration To LMS 4.2
Mar 5, 2013NCM is going away. It is recommend to move to LMS. We already have a LMS deployment. Currently just used for Monitoring/Performance.Trying to figure out how to get the Configuration change piece that we used NCM for into LMS. Not really having any luck.What I am really wanting to do is configuration archive, device config change notices (when a device config changes I can run report to see who and what was changed), and configuration comparisions (between old and new configs)
View 5 Replies View RelatedCisco AAA/Identity/Nac :: ACS Migration From 4.1 To 5.4
Jun 12, 2013I need to Migrate from ACC 4.1(1) to ACS 5.4, Have configured Network Access Restrictions and Networks Access profiles in ACS 4.1(1), can i go for staright away migration and is the same supported in ACS 5.4
View 5 Replies View RelatedCisco Firewall :: PIX To ASA 8.3 Migration?
Mar 8, 2011As we are all aware that the ASA8.3 has quite some changes interms of configuration method.
I would like to know if it is possible to use the pix to Asa conversion tool for 8.3 purpose.
Cisco Wireless :: WCS 7.0 To NCS Migration
Dec 24, 2011I'm trying to get all the templates and Maps I've created in WCS into our new NCS. The instructions say just run the export.bat file on WCS and then Migrate into NCS. I cannot find any export.bat file on version 7.0.220.0 of WCS. Is it only available in WCS version 7.0.164.3 ro 7.0.172.0? Do I have to use the export.bat file or can I just do a regular backup and restore?
View 7 Replies View RelatedCisco :: LMS 3.0 To Prime 1.1/ LMS 4.2 Migration?
Nov 28, 2012A customer is asking to upgrade their LMS 3.0 to Prime 1.1. However, the customer or their previous system's integrator never actually installed LMS 3.0. The licensing and PAK were never used as well. My question is, can I still use the migration top level part # R-PI-1.1-UP-K9 to upgrade LMS 3.0 to Prime 1.1 because there was no licensing ever installed? How would the migration of the current licensing work with the new licensing PAK if that is the case? Or does the customer have to purchase a fresh Prime 1.1 licensing (top level part # R-PI-1.1-K9) because LMS 3.0 was never installed?
View 2 Replies View RelatedCisco :: Migration From Windows LMS 4.0.1 To Appliance 4.1?
Oct 4, 2011Can't see this in the documentation, as only Solaris to soft appliance is mentioned, so does anyone know if you can migrate data from LMS 4.0.1 on Windows 2008 to the soft appliance on LMS 4.1?
View 1 Replies View RelatedCisco :: WLC 4400 To 5500 Migration?
May 30, 2012We have a single 4404 that was setup long before I arrived with Guest networks that timeout and other such tweaks. Is there a document somewhere that shows a way to migrate the old settings to a new 5508 that we are purchasing? By the time the 5508 arrives I will have a very small window to setup the unit before a new wing goes live. I need the new unit as we have reached our limit of licensed AP's on the old 4404. It seems like everyone keeps talking about an easy way but no one says how to do it.
I have never setup one of these units before from scratch so I don't know how long it will take.
Cisco Firewall :: ASA 8.0 Configuration Migration To 8.6
Feb 12, 2013I have old ASA with 8.0 configuration that includes huge number of ACL, NAT , VPNs , we got a new ASA with 8.6 , and we are planning to move the configuration to the new box , I'm wondering what is the best approach to do this , I'm thinking of one of the following scenarios1- downgrade the new ASA to 8.3 , the apply the config , remove the identity nat commands and names then upgrade to 8.6 and after that reconfigure the NAT rules and object groups .2- convert the old config manually to 8.6 code including NAT , object-group ,ACL and apply it to the new ASA ( this is going to be huge task). What are the commands that I have to look at when I convert to 8.6 and will the VPN configuration be affected ?
View 5 Replies View RelatedCisco :: WCS 7.0 To Prime Infrastructure 1.2 Migration?
Apr 9, 2013WCS 7.0 to Prime Infrastructure 1.2 migration?I am so confused on the migration procedure as I found the documents in Cisco kind of contradictory.Some document said it is required to upgrade WCS to NCS 1.1 before to go to prime infrastructure 1.2.And the other document said WCS can directly upgrade to prime infrastructure 1.2.
View 13 Replies View RelatedCisco Application :: CSS To ACE Migration Tool In A4(2.0)
Sep 28, 2011I'm currently working on migration from CSS to ACE. The ACE appliance is running A4(2.0) code. And i couldn't find the CSS to ACE conversion tool in the Web gui.
View 2 Replies View RelatedCisco VPN :: Migration From ASA 5505 To 5510
Jun 27, 2012my company has the asa 5505 working as the remote access vpn server. my company needs more licenses for vpn than the asa 5505 give it. because of my company purchased the asa 5510. i must migrate configuration from the asa 5505 to the asa 5510. i exported configuration file from asa 5505. i made the changes on them and imported them in the asa 5510. my asa5510 doesn't work. i putted configuration files from asa 5505 and 5510.
View 10 Replies View RelatedCisco AAA/Identity/Nac :: Data Migration From ACS 4.2 To 5.2?
Jul 1, 2012We have to ACS cisco Box running software as 4.2 & 5.2. We want to upload all the data present in 4.2 ACS to 5.2 ACS.
View 6 Replies View RelatedCisco :: WCS 7.0 Cannot Edit AP Migration Template
Jun 24, 2010Have upgraded WCS to 7.0 due to a Mesh network feature we needed, but now see I can no longer edit the AP migration templates. The interface allows me to create or delete them but the command dropdown box does not show an Edit option. So now for every AP I want to migrate I need to create a new template before I can select the AP's and migrate them. I still need to migrate about 220 APs....
Looking though the function it tells me to click on the Migration Template name. However neither in MS IE nor Firefox this works, there is no link activated.
Cisco Firewall :: Migration PIX 515 8.0(3) To ASA 5525-X
May 28, 2012I have a PIX 515 with version 8.0(3). We buy a ASA 5525-X for replace the PIX.
The question is, what is the better method to migrade the configurations? Manually?
What is the better version for 5525-X? 8.6.1?
Cisco :: WCS 7.0.220.0 Database Export For NCS Migration?
Apr 14, 2013I have done a WCS 7.0.220.0 to NCS migration prior to moving to Prime 1.2. I followed the instructions to export the WCS database via the export.bat all command and exported the database. However, when I import this zip fileto NCS there do not seem to be any of the original WCS templates. All the maps and AP details have migrated but no templates.
I have tried the export again and ploughed through the resultant zip file looking for anything that looks like template files but there is nothing immediately apparent that looks like templates.
Cisco Application :: 6513 - Migration From CSM To ACE
Mar 13, 2012clearing catalyst 6513 configuration from CSM module sections?
I am planning to migrate from CSM to ACE module in 6513 and interesting if is it safe just to do the following:
1) powerdown CSM module with command:
no power enable switch 1 module 3
2) clear in 6513 configuration CSM sections starting from line "module ContentSwitchingModule 3"
Is that enough to clear CSM configuration?
Also to return the CSM module back to the service will it be enough just to restore cleared config's sections and power on the module again?
Cisco AAA/Identity/Nac :: Migration From ACS 3.3 To A New Machine
Jun 13, 2011I'm planning migration from ACS 3.3 to a new machine, so I'm thinking about new Cisco ISE.I have the following question: ACS 3.3 acts as AAA RADIUS with LDAP repositoriy for wireless deployment, using PEAP-GTC. Is possible, with ISE, to use a different EAP method, such as PEAP-MsCHAPv2 or EAP-TTLS?
In ACS 5.X I think it's only supported PEAP-GTC and EAP-TLS when identity repository is LDAP. Is the same in Cisco ISE?