07-31-2019 02:59 AM - edited 02-21-2020 09:21 AM
Hi there,
I'm planning to upgrade FTD version from 6.3 to 6.4. Also, My FTDs is running in HA.
As I have checked from the document Upgrading an FTD HA pair on Firepower appliances.
After the first FTD was successfully upgraded, Will the upgrade of second FTD be starting automatically and active state changed also?
However, there is some manually command from the document below that I'm not sure what exactly time I have to execute it.
Switching to Standby
I concern about this because of the FTDs are in production. Customer barely to give me downtime so I'm afraid of packet loss on the FTDs while upgrading.
Thank you
Solved! Go to Solution.
10-04-2020 11:08 PM
When an FTD HA pair is FMC-managed you simply select the HA pair to upgrade. FMC and FTD will work together to perform the individual unit upgrades in the proper order.
It will first upgrade the unit currently in Standby role, sync config and then switch it to Active role. It will then upgrade the formerly Active unit (now operating in Standby). After the HA pair upgrade is completed you should once again re-deploy policy to it to sync everything with FMC.
03-04-2022 09:05 PM
04-04-2023 09:38 AM
Check the job status entries in FMC to see if any error was reported.
This is definitely unusual behavior and may require a TAC case to resolve.
05-24-2023 10:17 AM
Hi Marvin - This upgrade is not the same for the version 7.0.5 platform 2140. it will NOT automatically upgrade the primary or secondary as active/standby unit. it is required to push the image to both FTD's and start installing the standby unit first. once done make sure you don't have any deployment pending on FMC, then failover unit to the secondary unit and start upgrade the same way as you did the legacy standby unit. and redeploy to synch with FMC.
I hope it make sense
05-25-2023 06:28 AM
@syed.akbarzada I have a couple of customers running 2100 series with FTD image in HA setup and your observation does not match my experience. I have upgraded them multiple times from FMC and it always worked as one upgrade to the pair and then FMC takes care of everything.
10-04-2020 07:42 AM
10-04-2020 11:48 PM
Hi Mohammed,
Thanks for the reply.. i've checked and 6.4.0 is supported for ASA-5555-X, also team doesn't want to upgrade to 6.5 currently. that's why we've to upgrade the ASA-FTD to 6.4.0.9
please correct me if i'm not wrong
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide