Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
645
Views
0
Helpful
3
Replies

ASA 5540 failover pair, upgrade question

Fedor.Malikh
Level 1
Level 1

‎10-24-2013 12:09 AM - edited ‎03-11-2019 07:55 PM

Hi,

We have an active / standby failover pair of ASA 5540 running 8.2 version in a production environment.

We have a task of upgrading ASA software to version 8.4.

We're quite familiar with the process of upgrading and looked through zero downtime manuals available.

The only question is what should we do with NAT, which should be completely rewritten according to 8.3 syntax.

Is it possible to upgrade like this:

- upgrade ios of the standby unit

- change NAT statements on a freshly upgraded standby ASA

- make that ASA with 8.3 active

- upgrade the second ASA

Thanks in advance.

Labels:
0 Helpful
3 Replies 3

Marius Gunnerud
VIP
VIP

‎10-24-2013 01:24 AM

Yes this is possible but the 8.2 version will need to be the last minor release version.

http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/admin_swconfig.html#wp1380398

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Mariusz Bochen
Level 1
Level 1

‎10-24-2013 01:32 AM

Hi,

You don't have to do anything with NAT as it will be automatically converted from 8.2 NAT configuration into the new syntax.

Regards

Mariusz

0 Helpful

Fedor.Malikh
Level 1
Level 1
In response to Mariusz Bochen

‎10-24-2013 03:22 AM

Thank you both.

I'm a little bit afraid of automatic nat convertion - does it really work well and there is nothing to worry about?

Thank you.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card