Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1448
Views
0
Helpful
2
Replies

FTD HA Cluster Only Partially Upgraded

mumbles202
Level 5
Level 5

‎07-09-2021 06:58 AM - edited ‎07-09-2021 07:10 AM

Working on a pair of 2130s managed by an FMC that were running 6.2.3.12 and went to upgrade them to 6.6.4 last night.  Did a push first, selected the cluster and confirmed both showed as complete.  Started the install and after completion of the task I have this message:

 

Update complete, not connected to peer (unable to get status from device)

 

Connecting to the FTD if I go into system support diagnostic-cli you get the warning that the HA peer has a different version of code, almost lost an ASA HA cluster when only the standby unit has been upgraded.

 

When I go into /ngfw/var/log/sf/ and look for the 6.6.4 directory to get the logs it doesn't exist.  If I go to /ngfw/var/sf/updates on the FTD that didn't upgrade the file is there.

 

The cluster had been working fine for years and had no pending deployments/tasks prior to launching the upgrade.  

0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎07-09-2021 01:14 PM

That's quite odd and obviously not expected behavior.

If it were me, I'd take that issue straight to Cisco TAC.

0 Helpful

mumbles202
Level 5
Level 5
In response to Marvin Rhoads

‎07-12-2021 08:18 AM

Thanks.  Yea, ended up having to failover to the upgraded FTD and do the upgrade on the 6.2.3 unit via the CLI.  I'll keep an eye out for this the next time I need to do another upgrade on the pair.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top