If the rollback failed and CDO management is restored, refer to
https://www.cisco.com/c/en/us/
support/docs/security/firepower-ngfw-virtual/215258-troubleshooting-firepower-threat-defense.html
for common deployment problems. In some cases, the rollback can fail after CDO management
access is restored; in this case, you can resolve the CDO configuration issues, and redeploy from
CDO.
Note
Example:
For the threat defense that uses a data interface for manager access:
> configure policy rollback
The last deployment to this FTD was on June 1, 2022 and its status was Successful.
Do you want to continue [Y/N]?
Y
Rolling back complete configuration on the FTD. This will take time.
.....................
Policy rollback was successful on the FTD.
Configuration has been reverted back to transaction id:
Following is the rollback summary:
...................
....................
>
Step 2
Check that the management connection was reestablished.
In CDO, check the management connection status on the
Devices
>
Device Management
>
Device
>
Management
>
Manager Access - Configuration Details
>
Connection Status
page.
At the threat defense CLI, enter the
sftunnel-status-brief
command to view the management connection
status.
If it takes more than 10 minutes to reestablish the connection, you should troubleshoot the connection. See
Troubleshoot Management Connectivity on a Data Interface, on page 158
Power Off the Firewall Using CDO
It's important that you shut down your system properly. Simply unplugging the power or pressing the power
switch can cause serious file system damage. Remember that there are many processes running in the
background all the time, and unplugging or shutting off the power does not allow the graceful shutdown of
your firewall.
You can shut down your system properly using CDO.
Procedure
Step 1
Choose
Devices
>
Device Management
.
Step 2
Next to the device that you want to restart, click the edit icon (
).
Step 3
Click the
Device
tab.
Cisco Firepower 1010 Getting Started Guide
164
Threat Defense Deployment with CDO
Power Off the Firewall Using CDO
Summary of Contents for Firepower 1010
Page 2: ......
Page 168: ...Cisco Firepower 1010 Getting Started Guide 166 Threat Defense Deployment with CDO What s Next ...
Page 189: ... 2022 Cisco Systems Inc All rights reserved ...
Page 190: ......