Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.macstadium.com/llms.txt

Use this file to discover all available pages before exploring further.

Overview

This process outlines how to backup and restore a configuration by executing line by line changes, while using a graphical user interface. The backup files are stored on a local system as a ZIP file.
It is important to store this ZIP file in an easily accessible place in case of an emergency. Plan a backup to be taken anytime changes are made to the firewall configuration.
If the firewall configuration is in a high-availability (HA) Pair, then ensure that the backup and restore to the Active firewall is enabled. This can be verified on the Cisco Adaptive Security Device Manager (ASDM) Dashboard, under the Failover Status field. Look for Primary (Active). If this is not enabled, then login to the other firewall to perform these steps.

Prerequisites

  • Access to MacStadium firewall
  • MacStadium login information
  • The ability to login to the firewall using the Cisco Adaptive Security Device Manager (ASDM) firewall software
If a passphrase was set on the backup, then it needs to be available during the restore process.

Backup Process

  1. Establish a VPN connection to the MacStadium environment.
  2. Connect to the firewall using the Cisco Adaptive Security Device Manager (ASDM).
  3. Click the Tools menu, located at the top of the ASDM application and then select Backup Configuration.\ ASDM Tools menu with Backup Configuration option highlighted
  4. Select a location to place the backup files.
  5. Enter a name for the backup file.\ ASDM Backup Configuration dialog with file name and location fields
  6. The system shows the local file structure. Select an appropriate place and name for your backup.\ Local file browser for selecting backup file save location
  7. Click Select File.
  8. Accept the defaults of Backup All.
  9. Click Backup.\ ASDM Backup Configuration dialog with Backup All option and Backup button
Optional: If the firewall is configured with identity certificates, then select a passphrase to encrypt identity certificates. Document the passphrase that is used as it is needed for future restores.
ASDM passphrase field for encrypting identity certificates in backup
  1. Click OK
The Progress Message can be copied to a text editor for review and validation.
  1. Click Close after backup is completed. A Backup Statistics window opens and displays additional information about the Backup process.\ ASDM Backup Statistics window showing backup progress and details
  2. Click OK\ ASDM backup completion confirmation dialog

Restore Process

  1. Establish a VPN connection to the MacStadium environment.
  2. Connect to the firewall using the Cisco Adaptive Security Device Manager (ASDM).
  3. Click Tools and select Restore Configuration from the dropdown menu.\ ASDM Tools menu with Restore Configuration option highlighted
  4. Navigate to the location where the backup file was stored.\ Local file browser for selecting the backup ZIP file to restore
  5. Click Select file.
  6. Click Next to proceed.\ ASDM Restore Configuration Next button to proceed after file selection
  7. From the Restore Configurations pop-up page, select the options to restore.
Recommended settings:
  • Running configuration
  • Start-up configuration
  • All Security Images
  • Identity Certificates
  • Leave the remaining default options untouched
ASDM Restore Configurations dialog with recommended restore options selected
  1. Click Restore.
  2. You should now see the below message. Click Yes.\ ASDM restore confirmation prompt asking to proceed with the restore
If applicable, enter the Certificate Passphrase used to backup the identity Certificate, then click OK.
ASDM Certificate Passphrase prompt during restore process
The following message may appear during the Restore Progress. Select Refresh Now or Cancel button. Choosing Cancel will not halt the Restore process.
ASDM restore progress message with Refresh Now option 10. Once the Restore process is complete, click Close.
The Progress Message can be copied to a text editor for review and validation.
ASDM restore progress log showing completion 11. To verify the restore process, close the ASDM application and then relaunch it. 12. Review the configuration that is loaded with the device manager. 13. Close the application.
The following Unapplied Changes message box may appear:
ASDM Unapplied Changes message box after restore
  • If the Unapplied Changes message box appears, then click Apply Changes.
  • If the Unapplied Changes message box does not appear, then click Save in the ASDM application.

Additional Notes:

  • If firewall access enables the backup process but does not enable the restore process, then open a MacStadium Support ticket.
  • In the ticket, request that a restore take place for the firewall device.
  • Provide the Firewall IP, the backup file, and permissions to perform the restore in the ticket.
  • Request a specific time for the restore, or it will be performed as soon as possible.