Skip to main content

Overview

This process outlines how to backup and restore a configuration by executing line by line changes, while using a graphical user interface. The backup files are stored on a local system as a ZIP file. NOTE : It is important to store this ZIP file in an easily accessible place in case of an emergency. Plan a backup to be taken anytime changes are made to the firewall configuration. If the firewall configuration is in an high-availability (HA) Pair, then ensure that the backup and restore to the Active firewall is enabled. This can verified on the Cisco Adaptive Security Device Manager (ASDM) Dashboard, under the Failover Status field. Look for Primary (Active). If this is not enabled, then login to the other firewall to perform these steps.

Prerequisites

  • Access to MacStadium firewall
  • MacStadium login information
  • The ability to login to the firewall using the Cisco Adaptive Security Device Manager (ASDM) firewall software
NOTE : If a passphrase was set on the backup, then it needs to be available during the restore process.

Backup Process

  1. Establish a VPN connection to the MacStadium environment.
  2. Connect to the firewall using the Cisco Adaptive Security Device Manager (ASDM).
  3. Click the Tools menu, located at the top of the ASDM application and then select Backup Configuration.
    bf56b70-image.png
  4. Select a location to place the backup files.
  5. Enter a name for the backup file.
    db80e7d-image.png
  6. The system shows the local file structure. Select an appropriate place and name for your backup.
    1e9a1d2-image.png
  7. Click Select File.
  8. Accept the defaults of Backup All.
  9. Click Backup.
    761fe82-image (1).png
 * **OPTIONAL** : If the firewall is configured with identity certificates, then select a passphrase to encrypt identity certificates. Document the passphrase that is used as it is needed for future restores.
045969f-image.png
  1. Click OK
 * **NOTE** : The Progress Message can be copied to a text editor for review and validation.
  1. Click Close after backup is completed. A Backup Statistics window opens and displays additional information about the Backup process.
    092cb90-image.png
  2. Click OK
    e98f437-image.png

Restore Process

  1. Establish a VPN connection to the MacStadium environment.
  2. Connect to the firewall using the Cisco Adaptive Security Device Manager (ASDM).
  3. Click on Tools and select Restore Configuration from the dropdown menu.
    bd73198-image.png
  4. Navigate to the location where the backup file was stored.
    ab8c5f7-image.png
  5. Click Select file.
  6. Click Next to proceed.
    576de37-image.png
  7. From the Restore Configurations pop-up page, select the options to restore.
 * **RECOMMENDED SETTINGS:**

   * Running configuration

   * Start-up configuration

   * All Security Images

   * Identity Certificates

   * Leave the remaining default options untouched
0daf363-image.png
  1. Click Restore.
  2. You should now see the below message. Click Yes.
    dc7fa4e-image.png
 * **NOTE** : If applicable, enter the Certificate Passphrase used to backup the identity Certificate, then click the OK.
bb30c48-image.png 
 * **NOTE** : The following message may appear during the Restore Progress. Select Refresh Now or Cancel button. Choosing Cancel will not halt the Restore process.
1d021b9-image.png 10. Once the Restore process is complete, click Close.
  • NOTE :The Progress Message can be copied to a text editor for review and validation.
4431f75-image.png 11. To verify the restore process, close the ASDM application and then relaunch it. 12. Review the configuration that is loaded with the device manager. 13. Close the application.
  • NOTE : The following Unapplied Changes message box may appear:
c58aece-image.png 
   * If the Unapplied Changes message box appears, then click Apply Changes.

   * If the Unapplied Changes message box does not appear, then click Save in the ASDM application.

Additional Notes:

  • If firewall access prevents enables the backup process but does not enable the restore process, then open a MacStadium Support ticket.
  • In the ticket, request that a restore take place for the firewall device.
  • Provide the Firewall IP, the backup file, and permissions to perform the restore in the ticket.
  • Request a specific time for the restore, or it will performed as soon as possible.