[c-nsp] Any gotchas in upgrading ASA5520 pairs?

NMaio at guesswho.com NMaio at guesswho.com
Fri Sep 25 14:21:10 EDT 2009


Oops wrong quote.

This is the one I intended to send you since you are not going to 8.x code.

"For example, you can upgrade from 7.0 to 7.1. Upgrading from 7.0 directly to 7.2 is not supported for zero-downtime upgrades; you must first upgrade to 7.1."

-----Original Message-----
From: Nicholas Maio 
Sent: Friday, September 25, 2009 2:16 PM
To: 'Scott Granados'; cisco-nsp at puck.nether.net
Subject: RE: [c-nsp] Any gotchas in upgrading ASA5520 pairs?

Yes that is the recommended procedure.  

"You can upgrade from the last minor release of the previous version to the next major release.
For example, you can upgrade from 7.9 to 8.0, assuming that 7.9 is the last minor version in the 7.x release."

Nick

-----Original Message-----
From: Scott Granados [mailto:gsgranados at comcast.net] 
Sent: Friday, September 25, 2009 2:07 PM
To: Nicholas Maio; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Any gotchas in upgrading ASA5520 pairs?

Hi, thanks for the link.  So it looks like I was close.  Am I reading this 
right in that I have to upgrade from 7.0 to 7.1 first then to 7.2?

Thanks
Scott

----- Original Message ----- 
From: <NMaio at guesswho.com>
To: <gsgranados at comcast.net>; <cisco-nsp at puck.nether.net>
Sent: Friday, September 25, 2009 10:19 AM
Subject: RE: [c-nsp] Any gotchas in upgrading ASA5520 pairs?


Scott,
Not sure if is a concern for you but upgrading from 7.0 to 7.2 does not 
allow a zero downtime upgrade.  Check out the section " Performing Zero 
Downtime Upgrades for Failover Pairs" on the following link:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/mswlicfg.html
Nick


-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net 
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Scott Granados
Sent: Friday, September 25, 2009 12:26 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Any gotchas in upgrading ASA5520 pairs?

Hi,
    I have two ASA 5520 devices in a active standby pair.  I'm presently at
firmware 7.0.7 and ASDM 5.0 and want to upgrade to 7.2.4-33.  I've googled
and found some detailed instructions and the process seems simple and
standard, upload the image, change the boot vars, save and restart.  Is this
correct?  Would the following work?
First, upgrade the standby, restart, once back up fail over to standby so
the primary becomes standby and repeat?  Are there any issues with
mismatched images that I will need to be concerned with while the two
devices are in transition?  How about any gotchas from the upgrade of 7.0.7
to 7.2.4 itself anything I need to know?  I didn't see any alerts in the
directions but figured I should check here.  Any pointers would be
appreciated.

Thank you
Scott

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/ 



More information about the cisco-nsp mailing list