Threat Defense Deployment with a Remote Management Center
Procedure
Step 1
At the threat defense CLI, roll back to the previous configuration.
configure policy rollback
After the rollback, the threat defense notifies the management center that the rollback was completed
successfully. In the management center, the deployment screen will show a banner stating that the configuration
was rolled back.
If the rollback failed, refer to
215258-troubleshooting-firepower-threat-defense.html
rollback can fail after the management center access is restored; in this case, you can resolve the management
center configuration issues, and redeploy from the management center.
Example:
> configure policy rollback
The last deployment to this FTD was on June 1, 2020 and its status was Successful.
Do you want to continue [Y/N]?
Y
Rolling back complete configuration on the FTD. This will take time.
.....................
Policy rollback was successful on the FTD.
Configuration has been reverted back to transaction id:
Following is the rollback summary:
...................
....................
>
Step 2
Check that the management connection was reestablished.
In the management center, check the management connection status on the Devices > Device Management >
Device > Management > FMC Access Details > Connection Status page.
At the threat defense CLI, enter the sftunnel-status-brief command to view the management connection
status.
If it takes more than 10 minutes to reestablish the connection, you should troubleshoot the connection. See
Troubleshoot Management Connectivity on a Data Interface, on page
Power Off the Firewall Using the Management Center
It's important that you shut down your system properly. Simply unplugging the power or pressing the power
switch can cause serious file system damage. Remember that there are many processes running in the
background all the time, and unplugging or shutting off the power does not allow the graceful shutdown of
your firewall.
You can shut down your system properly using the management center.
https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw-virtual/
for common deployment problems. In some cases, the
Cisco Firepower 1010 Getting Started Guide
Power Off the Firewall Using the Management Center
81.
87