Threat Defense Deployment with CDO
Note
Example:
For the threat defense that uses a data interface for manager access:
> configure policy rollback
The last deployment to this FTD was on June 1, 2022 and its status was Successful.
Do you want to continue [Y/N]?
Y
Rolling back complete configuration on the FTD. This will take time.
.....................
Policy rollback was successful on the FTD.
Configuration has been reverted back to transaction id:
Following is the rollback summary:
...................
....................
>
Step 2
Check that the management connection was reestablished.
In CDO, check the management connection status on the Devices > Device Management > Device >
Management > Manager Access - Configuration Details > Connection Status page.
At the threat defense CLI, enter the sftunnel-status-brief command to view the management connection
status.
If it takes more than 10 minutes to reestablish the connection, you should troubleshoot the connection. See
Troubleshoot Management Connectivity on a Data Interface, on page
Power Off the Firewall Using CDO
It's important that you shut down your system properly. Simply unplugging the power or pressing the power
switch can cause serious file system damage. Remember that there are many processes running in the
background all the time, and unplugging or shutting off the power does not allow the graceful shutdown of
your firewall.
You can shut down your system properly using CDO.
Procedure
Step 1
Choose Devices > Device Management.
Step 2
Next to the device that you want to restart, click the edit icon (
Step 3
Click the Device tab.
If the rollback failed and CDO management is restored, refer to
support/docs/security/firepower-ngfw-virtual/215258-troubleshooting-firepower-threat-defense.html
for common deployment problems. In some cases, the rollback can fail after CDO management
access is restored; in this case, you can resolve the CDO configuration issues, and redeploy from
CDO.
Power Off the Firewall Using CDO
https://www.cisco.com/c/en/us/
149.
).
Cisco Firepower 1100 Getting Started Guide
155