Ok, thanks. Yes there is a failover pair. I have already read that part and the config guide 4.0 but I dont understand how exactly to do the downgrade. Once I copy the new version, the old one is erased or not. If not, the downgrade steps are to load the 3.x configuration and erase the 4.0 version?

There is a procedure in the url below on how to upgrade failover pairs..

See http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/swcnfg_f.html#wp1042136

I've already read all relationed about upgrading/downgrading FWSM on that document. After to do it, I don't have clear the question 2 and 3 from my first post.

Regards

2. There is only one image stored in flash, when you copy the new one you can only boot to that one.

You can save the 3.x config in your flash and if you go to 4.0 and there are problems you can revert back to 3.x and just copy the save config from 3.2 to the running config.

I hope it helps.

PK

There are 2 application partitions in the blade. cf:4 and cf:5 are the application partitions on the FWSM.

Some people load 4.x in one and 3.x in the other. So, you can have both codes on the same blade.

You just have to issue the command

hw-module module mod_num reset cf:4

or

hw-module module mod_num reset cf:5

to boot into which ever image you want to.

http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/configuration/guide/swcnfg_f.html#wp1048848

-KS

pkampana, if there are problems with the new version, how can I to load the 3.1(4) version again?, it's not available on downloads section. Does it exist any way to save it before upgrading?.

kusankar, I know about partitions on FWSM but I dont have clear the next, once loaded the new version on cf:5 partition, how can I load the configuration stored on cf:4 partition, as well, the commands on 3.1(4) are differents on 4.1(10).

Thanks a lot for your support

Thanks for the link kampana. The only doubt I have is...imagine I reload the FWSM with cf:5 partition and load on it the new version, the next step is to paste the config, how could I do it?, from the flash?, from a TFTP/FTP/HTTP server?.

Thanks so much,

Francisco

All is clear now.

Thanks for your attention,

Francisco

I havent been looking at a fwsm irl for a while so sorry for a perhaps stupid question...

Bit, is cf:3 and cf:4 two different compact flash-cards on the module? In that case, can I prepare the config by (during uptime) remove the cf-cards and manipulate/change the boot files and then re-insert them? And then during maintenance-time just reboot them?

If so, can I swap between 3.x-code (and its corresponding config) on one cf-card and 4.x-code (and itś config) on another card by swapping the cards and do a reboot?

I guess these cf-cards are plain fat32?

Or are they all internal on-board so they are impossible to reach without ejecting the fwsm-module from the chassi?

Br Jimmy

Jimmy,

If the flash goes bad, we can't even RMA just the flash. We RMA the entire blade.

So, what you are thinking to do is not possible.

-KS