Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2556
Views
5
Helpful
5
Replies

How to upgrade FMC and Firepower modules

Merlin-Cisco
Level 1
Level 1

‎03-28-2019 04:04 AM - edited ‎02-21-2020 08:59 AM

Hi,

 

Looking to upgrade a standalone FMC and FP modules located at different sites.

 

1. I am unsure of which  model of FMC I am running how can I tell?

Also unsure of the software version the FMC will need to go to. When looking in the cisco software downloads I can see FMC 1000, 2000, 3000 etc but what is mine?

 

Details of FMC below.

ModelSerial NumberSoftware VersionOSSnort VersionRule Update VersionRulepack VersionModule Pack VersionGeolocation Update VersionVDB Version

Cisco Firepower Management Center for VMWare
None
6.2.1 (build 342)
Cisco Fire Linux OS 6.2.1 (build6)
2.9.11 GRE (Build 101)
2019-03-20-001-vrt
2221
2513
2019-03-25-003
build 308 ( 2018-12-14 18:29:02 )

 

 

2. When upgrading the individual FirePower modules on the ASA's is that done via the FMC or on the ASA/FirePower module by CLI?

The firewalls are ASA5512 currently 6.2.0.6-110 software and application version software.

 

Thanks

 

 

0 Helpful
5 Replies 5

Merlin-Cisco
Level 1
Level 1

‎03-28-2019 04:40 AM

Is is the Firepower management center virtual application model i need in software? What newest software is the best recommended?
0 Helpful

Abheesh Kumar
VIP Alumni
VIP Alumni
In response to Merlin-Cisco

‎03-28-2019 05:26 AM

Hi,
As per the details you shared...
You are having a vFMC 6.2.1 and ASA5512x with SFR modules on version 6.2.0.6
The latest Firpower version is 6.3, but ASA 5512x does not support 6.3. So you can Upgrade upto 6.2.3.11 until now.
ASA modules need to upgraded from FMC. The image for upgrading FMC you can get from the download center.

 

Hope This Helps

Abheesh

Merlin-Cisco
Level 1
Level 1
In response to Abheesh Kumar

‎04-05-2019 02:19 AM

Thanks
The latest Firpower version is 6.3, but ASA 5512x does not support 6.3. So you can Upgrade upto 6.2.3.11 until now.
Am I able to go straight to 6.2.3.11from 6.2.1?

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Merlin-Cisco

‎03-28-2019 07:45 AM

You can run FMC at the latest release (currently 6.3.0.2). First upgrade to 6.3.0 and then patch to 6.3.0.2.

As @Abheesh Kumar your 5512-X cannot run anything later than 6.2.3.x.

0 Helpful

johnlloyd_13
Level 9
Level 9

‎04-01-2019 01:02 AM

hi,

for question #1, it depends how many managed devices or sensors are you deploying. virtual FMC can only manage up to 25 sensors.

for #2, i read somewhere you can upgrade "minor" patch from FMC. but i would rather perform any upgrades locally since these images are quite large and can significantly consume WAN BW.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card