Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
378
Views
5
Helpful
2
Replies

PIX Upgrade procedure

jacquesd
Level 1
Level 1

‎03-26-2005 03:58 AM - edited ‎02-21-2020 12:02 AM

Hi all,

I want to do an upgrade of a PIX 515 and its failover unit from 6.1 to 6.3. I just want to make sure I have this right:

1) Get a new activation key from licensing@cisco.com. Does this apply for both primary and secondary? The FAQ states that it is needed 'sometimes' when doing upgrades on the flash. Are they talking about the physical flash card or the image on the flash? If it is only the card itself, would this step be necessary at all?

2) Do a normal 'copy tftp flash'. Is there anything I need to look out for when going from 6.1 to 6.3? I have read release notes but have not seen any issues.

3) Do the same on the failover.

4) Reboot primary

5) Reboot secondary

Thanks!

Jacques

0 Helpful
2 Replies 2

sachinraja
Level 9
Level 9

‎03-26-2005 04:42 AM

Hi Jacques,

why do you require an activation key for upgrading IOS ?? its actually not required.. if you are upgrading from R to UR or from DES to 3DES, you need such activation keys.. anyway, a normal copy tftp flash command will do the trick for you.. there are absolutely no issues on this upgrade...

for minimal downtime, use the following steps:

1)Copy the PIX Firewall binary image (pixnnn.bin) to the root directory of the TFTP server.

2)Power off the Primary (this causes the Secondary to become active).

3)Disconnect all cables from the Primary (including failover cable).

4)Power on the Primary and attach a PC with a TFTP server on it.

5)Use copy tftp flash to upgrade the Primary.

6)Reload the Primary and verify the new version and configuration.

7) Power off the Primary.

8) Reconnect all cables back to the Primary.

9) Quickly power off the Secondary, and then immediately power on the Primary. (Note: Your downtime will occur while the Primary is booting up.)

Once the Primary is up, it will be active and passing traffic.

10)Repeat steps 2 - 7, but for the Secondary PIX.

11) Power on the Secondary; it comes up as Standby.

12) Both PIX devices are now running the upgraded version and back to normal operation

hope this helps.. all the best.. rate replies if found useful...

Raj

jacquesd
Level 1
Level 1
In response to sachinraja

‎03-26-2005 08:49 AM

Hi Raj,

Just double checking. I cannot afford any nasty surprizes on this one!

Thanks a lot!

Jacques

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card