View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

SEC0162 - ASA FirePower Software Update

Rating: 
5
Average: 5 (4 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
The video shows you how to perform a software update on Cisco FireSight System and ASA FirePower managed device. We will cover both methods of getting an update file into the system via online file download and offline manual upload. We will also update the vulnerability database and review Rule and Gelocation updates completed in the previous video.
 
Topic:
  • FireSight System (Defense Center) Software Update
  • ASA FirePower Software Update
  • Vulnerability DB Update
  • Rules Update
  • Geolocation Updates

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.

4 comments

Hi,
i am planning to update Firepower sensors versions (from 6.2 to 6.4). I am wondering if firepower will still keep processing packets during the software upgrade process so not traffic will be dropped? Also if firepower sensor will move to bypass s during the sensor reboot required in the update process the traffic will not be distrupted as I have Inline, hardware bypass enabled...

I dont want to cause traffic affecting during the upgrade of the sensors...
Many thanks for your advices and congrats for your good videos!
regards,Joaquim

I found the answered at Cisco site (https://www.cisco.com/c/en/us/td/docs/security/firepower/upgrade/fpmc-up...)

traffic Behavior depends on Interface Configuration,

in my case, with hardware bypass enabled:
Passed without inspection,although traffic is interrupted briefly at twopoints:
• At the beginning of the upgrade process as link goes down and up(flaps) and the network
card switches into hardware bypass.
• After the upgrade finishes as link flaps and the network card switchesout of bypass.
Inspection resumes after the endpoints reconnect and reestablish link with the device interfaces.

Hello,

Thank you for the video which is really helpful.

Could you tell me please if a license is required for the modules upgrade ?

What should I have as prerequisites before proceeding to the upgrade?

Thank you.

Regards,

If you do not already own Firepower licenses, you need to purchase Threat, URL or Malware subscription. You also need FMC for management either VM (also need lic.) or physical appliance.