Cisco Cisco Firepower Management Center 2000
Firepower System Release Notes
Installing the Update
18
When you update clustered Firepower Threat Defense devices, the primary device completes the update after all
of the secondary devices. You must reboot the device cluster before you deploy configuration from the Firepower
Management Center.
of the secondary devices. You must reboot the device cluster before you deploy configuration from the Firepower
Management Center.
Caution:
Prior to updating a Firepower 9300 Firepower Threat Defense device to Version 6.0.1, you must
update the device to FXOS 1.1.4 or later. The device will experience a disruption in traffic during the update.
This is expected behavior.
This is expected behavior.
After the Installation
After you perform the update on either the Firepower Management Center or managed devices, you must
redeploy your configurations. For more information, see the Firepower Management Center Configuration Guide.
redeploy your configurations. For more information, see the Firepower Management Center Configuration Guide.
Caution:
When you deploy configurations, resource demands may result in a small number of packets
dropping without inspection. Additionally, deploying some configurations requires the Snort process to
restart, which interrupts traffic inspection. Whether traffic drops during this interruption or passes without
further inspection depends on the model of the managed device and how it handles traffic. For more
information, see the Configurations that Restart the Snort Process section of the Firepower Management
Center Configuration Guide.
restart, which interrupts traffic inspection. Whether traffic drops during this interruption or passes without
further inspection depends on the model of the managed device and how it handles traffic. For more
information, see the Configurations that Restart the Snort Process section of the Firepower Management
Center Configuration Guide.
There are several additional post-update steps you should take to ensure that your appliances are performing
properly. These include:
properly. These include:
verifying that the update succeeded
making sure that all appliances in your deployment are communicating successfully
updating to the latest patch for Version 6.0.1.2, if available, to take advantage of the latest enhancements and
security fixes
security fixes
optionally, updating your intrusion rules and vulnerability database (VDB) and redeploying your configurations
making any required configuration changes based on the information in
The next sections include detailed instructions not only on performing the update, but also on completing any
post-update steps. Make sure you complete all of the listed tasks.
post-update steps. Make sure you complete all of the listed tasks.
Updating Firepower Management Centers
Use the procedure in this section to update your Firepower Management Centers, including virtual Firepower
Management Centers. For the Version 6.0.1.2 update, Firepower Management Centers reboot.
Management Centers. For the Version 6.0.1.2 update, Firepower Management Centers reboot.
Caution:
Before you update the Firepower Management Center, redeploy your configurations to any managed
devices. Otherwise, the managed device update may fail.
Caution:
Do not reboot or shut down your appliances during the update until after you see the login prompt.
The system may appear inactive during the pre-checks portion of the update; this is expected behavior and
does not require you to reboot or shut down your appliances.
does not require you to reboot or shut down your appliances.
Note:
Updating a Firepower Management Center to Version 6.0.1.2 removes existing uninstallers from the
appliance.
To update a Firepower Management Center:
Step 1
Read these release notes and complete any required pre-update tasks.
Step 2
Download the update from the Support site:
for Firepower Management Centers and Firepower Management Centers Virtual:
Sourcefire_3D_Defense_Center_S3_Patch-6.0.1.2-37.sh