Thank you so much

Basavaraj Ningappa · ‎05-31-2015

Hello folks

I would need your expert advice on asa upgrade from 8.2 to 8.4.

I have gone through so many discussions here and i'm still thinking that, Can we upgrade asa from 8.2 to 8.4 directly ? or we have to upgrade asa to 8.3 first and then to 8.4 ?

Please let me know what is the best practice to do this up gradation

I was thinking that i shall do from 8.2 to 8.4 i can directly upgrade

Marvin Rhoads · ‎05-31-2015

Also check the memory in your ASA. 8.4 required additional memory which did not ship by default in older hardware.

Akshay Rastogi · ‎05-31-2015

Hi,

Yes, You could directly upgrade from 8.2 to 8.4.

- First check if you have a memory on ASA as per the link below to upgrade to version 8.3 or above :

http://www.cisco.com/c/en/us/products/collateral/security/asa-5500-series-next-generation-firewalls/product_bulletin_c25-586414.html

- Before upgrading please keep in mind that you disable nat-control by 'no nat-control' command.

- Remove access-list element from NAT Exempt Access-list which is having 'any' keyword in source or destination address. Create Manual NAT statement later for that element.

- perform 'no names' before upgrade. This would save you from any name conflict in Object and Object Group which automatically creates during upgrade.

Contact Cisco TAC to troubleshoot if any issue occurs after upgrade.

Please let me know if you have any query on this.

Regards,

Akshay Rastogi

Basavaraj Ningappa · ‎05-31-2015

Thank you so much

Upgrading ASA from 8.2 to 8.4