02-28-2018 09:13 AM - edited 02-21-2020 07:27 AM
Hello
We have an urgent situation to try and get our Cisco Firewalls/Firepower devices up to the latest 6.2.2.x version.
We currently have the following environment with devices running in HA (Active-Standby) so 2 devices of each below.
Firepower Management Center = 6.2.0.3
2 x FTD 4110 > Firepower = 6.2.0.2 , FXOS = 2.1(1.72)(1)
2 x ASA5516X-SFR > ASA = 9.5.3, Firepower = 6.1.0.3
2 x ASA5516X with FTD > Firepower = 6.2.0.2
What are the upgrade procedures (and version path) to get all these devices up to version 6.2.2.x
Cisco's Compatibility Matrix is not the most clear.
Thanks
03-30-2018 10:38 AM
Thanks Marvin, I just wanted to make sure it wasn't . . . . .
Run Pre-install for FMC from 5.4.1.8 to 6.0
Sourcefire_3D_DefenseCenter_S3_6.0.0_Pre-install-5.4.1.999-21.sh
Run Pre-install to upgrade sensor to 6.0
Cisco_Network_Sensor_6.0.0_Pre-install-5.4.0.999-2.
Upgrade FMC to 6.0
Sourcefire_3D_Defense_Center_S3_Upgrade-6.0.0-1010.sh
Upgrade Network Sensor to 6.0.0-1005
Cisco_Network_Sensor_Upgrade-6.0.0-1005.sh
I really appreciate your help.
04-05-2018 10:00 AM
DO NOT attempt this upgrade. Follow Marvin's advice and re-image the modules/sensors ONLY.
We use the FMC virtual appliance and it saved days of work taking this shortcut. We ran into way too many issues trying to upgrade the sensors.
Take VM snapshot before upgrading
Disconnect the SFR modules in the FMC
Upgrade FMC only all the way to 6.2.2 following the upgrade migration path.
Re-image modules directly to 6.2.2
Add modules in FMC.
Deploy.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide