Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
255
Views
0
Helpful
1
Replies

ASA FO Pair - Sourcefire upgrade

dclee
Level 1
Level 1

‎10-14-2015 05:59 AM - edited ‎03-11-2019 11:44 PM

We currently run a pair of ASA5555x's in FO for our prod perimeter protection.

I have bought all of the required licenses and hard drives to upgrade the firewalls to run the Firepower services.

Both firewalls currently run the Cisco IPS module.

Hoping someone can provide me an upgrade gameplan to get this done. Is this upgrade something I can schedule with TAC ?

I have a maint window end of this month to get it done, where I can live without both firewalls if needed..

Both firewalls currently running 9.1(2), pretty sure I have to get to at least 9.3(2) for the firepower upgrade.

A few questions

- Should I break the FO pair before hand and upgrade the inactive 5555x first ?

- Do I need to uninstall the current IPS modules in both firewalls first ? Whats the best way to do this ?

- Harddrive installation ( 2 each) are hot swappable right ?

Any help or advice would be appreciated.

cheers

Dave

Labels:
0 Helpful
1 Reply 1

Rishabh Seth
Level 7
Level 7

‎10-14-2015 06:07 AM

Hi,

 

>> You should break the failover and upgrade the install the FirePOWER module.

>> ASA can run only one module at a time, uninstall IPS before installing FirePOWER.

>> The SSD is not hot swappable.

 

For more details you can refer following link:

http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html

 

In case you run into any issues you can reach out to TAC.

 

Hope it helps!!!

Thanks,

R.Seth

Mark the answer as correct if it helps in resolving your query!!!

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card