cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1081
Views
5
Helpful
9
Replies

Firesight virtual appliance system requirments

jack samuel
Level 1
Level 1

Dears,

I have 2 queries below:

  • I am looking for the firesight virtual defence center version 5.4.X and 6.0 system requirements for VM ware
  • As such that ASA  in failover mode we don't have to configure the standby asa becz all configuration is taken from primary is there any same concept for firepower module.

Thanks

2 Accepted Solutions

Accepted Solutions

Marvin Rhoads
Hall of Fame
Hall of Fame

1. The installation guides provide details on the VM requirements.

http://www.cisco.com/c/en/us/support/security/defense-center/products-installation-guides-list.html

2. We register both modules to FirePOWER and put them in a device group. Policies are then applied to the group so synchronization is taken care of by the FirePOWER Management Center (new name for Defense Center / FireSIGHT Management Center as of version 6.0).

View solution in original post

Hi,

Yes you can upgrade , but you have to follow a path :

1 : Upgrade to 5.3.0.1

2 : Upgrade to 5.3.1

3 : Upgrade to 5.4.0

4 : Upgrade to 5.4.1

5 : Upgrade to 6.0.0.0

Regards,

Aastha Bhardwaj

Rate if that helps!!!

View solution in original post

9 Replies 9

Marvin Rhoads
Hall of Fame
Hall of Fame

1. The installation guides provide details on the VM requirements.

http://www.cisco.com/c/en/us/support/security/defense-center/products-installation-guides-list.html

2. We register both modules to FirePOWER and put them in a device group. Policies are then applied to the group so synchronization is taken care of by the FirePOWER Management Center (new name for Defense Center / FireSIGHT Management Center as of version 6.0).

Dear Marvin

I have a license for firesight management 5.3 can I upgrade to latest 6.0

Thanks

Hi,

Yes you can upgrade , but you have to follow a path :

1 : Upgrade to 5.3.0.1

2 : Upgrade to 5.3.1

3 : Upgrade to 5.4.0

4 : Upgrade to 5.4.1

5 : Upgrade to 6.0.0.0

Regards,

Aastha Bhardwaj

Rate if that helps!!!

Dears,

I want to upgrade firepower services software also,,  so which path I have to follow for the boot image and for the system software ???

Thanks

For the ASA-based FirePOWER Services software modules ("sfr"), you generally only need the system image and/or sensor patch.

If you are building the image from nothing - in that case your would need the boot image.

Dear marvin,

so what I understand from your reply is that with boot image of 5.3 I can install system image of 5.4.X and 6.0.X . I don't have to match  the boot image with the system image.

pls confirm my thoughts are correct.

thanks

samueljack  

That's correct - you only need the boot image when you have a blank or otherwise re-initialized target system.

Once you have a working sfr module (any version) you no longer need to worry about having a boot image - you work only with system images and patches/upgrades going forward.

Dear Marvin

Thanks for the reply, My ASA has come with 5.3.1-152 sfr pakage, from this version I can jump to. 5.3.1-152> 5.4 >5.4.0.6> 6.0.0.1 ????  As per the release notes for 6.0.

http://www.cisco.com/c/en/us/td/docs/security/firepower/60/relnote/firepower-system-release-notes-version-600.html#pgfId-378288

I cannot find release notes for firepower 5.4. I can only see the firesight system release notes 5.X and so on.

Please confirm

Jack,

The release notes etc. are all on the support page - this one is a bit tricky to find as it's separate from both the ASA and FireSIGHT pages.

http://www.cisco.com/c/en/us/support/security/asa-firepower-services/tsd-products-support-general-information.html

You can go from 5.4.0.6 to 6.0.0. That  is confirmed here:

http://www.cisco.com/c/en/us/td/docs/security/firepower/60/relnote/firepower-system-release-notes-version-600.html#pgfId-378288

FirePOWER updates do take a while - there are notes on how long in the release notes. Several hours is not unusual.

If you watch the detailed logs in the file system, you an see there are many scripts that run sequentially to update quite a few subsystems and migrate the data to a new db schema.

Review Cisco Networking for a $25 gift card