05-16-2013 08:49 AM - edited 03-11-2019 06:44 PM
Good Morning,
Has anyone done an upgrade from firmware 8.21 5o 8.31? I am installing 1GB of memory in my ASA 5510 and in the process I have upgrade the firmware.
- Will the upgrade change my configuration or will I have to change this manually myself at some point
- What is the meaning of "Real IP" I am not sure what the means (reading up on it now)
- What else should I be concerned about during the upgrade?
Thank you for your help with this.
Matt
Solved! Go to Solution.
05-16-2013 09:41 AM
Will the upgrade change my configuration or will I have to change this manually myself at some point?
It will be done automatically
What is the meaning of "Real IP" I am not sure what the means (reading up on it now)
It means that before 8.3 and higher versions when you created ACL's to allow traffic from outside to inside you always point the Natted IP address right? the global one....
Now beginning on 8.3 the whole concept changes and now we must point to the real IP address, the No-natted one.
- What else should I be concerned about during the upgrade?
Well, lot of things You are already aware of the memory, of some changes like the ACL stuff but remember that the entire NAT syntax also changes.
I would personally recommend you to avoid the 8.3 track. Go from the version you are currently now to an 8.4 version (the 8.3 is well known by having bugs)
Recommendations before the upgrade:
Disable the names feature
no names
Disable nat control if configured
no nat-control
Then u are good to go (make sure you have a configuration file saved of the version of 8.2 just in case you need to rollback)
Here is one document, Jounni (member of the CSC created) regarding nat
https://supportforums.cisco.com/docs/DOC-31116
This other is an 8.3 upgrade MUST know, make sure you read this
https://supportforums.cisco.com/docs/DOC-12690
Regards
05-16-2013 09:41 AM
Will the upgrade change my configuration or will I have to change this manually myself at some point?
It will be done automatically
What is the meaning of "Real IP" I am not sure what the means (reading up on it now)
It means that before 8.3 and higher versions when you created ACL's to allow traffic from outside to inside you always point the Natted IP address right? the global one....
Now beginning on 8.3 the whole concept changes and now we must point to the real IP address, the No-natted one.
- What else should I be concerned about during the upgrade?
Well, lot of things You are already aware of the memory, of some changes like the ACL stuff but remember that the entire NAT syntax also changes.
I would personally recommend you to avoid the 8.3 track. Go from the version you are currently now to an 8.4 version (the 8.3 is well known by having bugs)
Recommendations before the upgrade:
Disable the names feature
no names
Disable nat control if configured
no nat-control
Then u are good to go (make sure you have a configuration file saved of the version of 8.2 just in case you need to rollback)
Here is one document, Jounni (member of the CSC created) regarding nat
https://supportforums.cisco.com/docs/DOC-31116
This other is an 8.3 upgrade MUST know, make sure you read this
https://supportforums.cisco.com/docs/DOC-12690
Regards
05-16-2013 10:26 AM
Bravo!!!! This is the perfect answer.
Thank you
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide