FireSight & Firepower devices Upgrade

M.Jallad · ‎11-02-2015

Hi,

We currenlty having one firesight defence center 1500 that is managing firepower 8130 devices deployed inline mode with physical bypass netmods (all DC and 3D devices are running v5.3.0.2 ). we are looking to upgrade to the following versions :

1. DC1500 : to version 5.4.1.3 : the shortest upgrade path as per the release notes : 5.3.0.2 => 5.3.1 => 5.4 => 5.4.1.3.

2. FP8130 : to version 5.4.0.4 : the shortest upgrade path as per the release notes : 5.3.0.2 => after upgrd DC to 5.4 => 5.4 => 5.4.0.4

now my concerns :

- Is there any downtime on traffic passing through the sensors when upgrading ONLY the defence center ?

- Did anyone face issues when upgrading to any of the above releases (on defence centers or sensors).

- Once the upgrade is done on Firepower devices , is there any way we could revert back to original release (downgrade from 5.4 to 5.3.0.2 in our case) ?

Thanks,

Muayad Jallad,

Aastha Bhardwaj · ‎11-02-2015

Hi,

There will be no downtime involved when you are upgrading the Defense centre's. Only thing is that you will not be able to manage your devices from DC during that time.

Only thing that you need to keep in mind while upgrading is to reapply the access control policies and then upgrade. If it fails at some point then we probably might need to check what went wrong , but it will still continue to be running on the old version.

There is no way to downgrade but to reimage the device again to the old version.

Regards,

Aastha Bhardwaj

Rate if that helps!!!