Cisco Cisco FirePOWER Appliance 7010 Guía De Instalación
Restoring a Device to Factory Defaults
Firepower 7000 Series Getting Started Guide
21
Cisco also recommends that you always run the latest version of the system software supported by your appliance.
After you restore an appliance to the latest supported major version, you should update its system software,
intrusion rules, and Vulnerability Database (VDB). For more information, see the release notes for the update you
want to apply, as well as the Firepower Management Center Configuration Guide.
After you restore an appliance to the latest supported major version, you should update its system software,
intrusion rules, and Vulnerability Database (VDB). For more information, see the release notes for the update you
want to apply, as well as the Firepower Management Center Configuration Guide.
For your convenience, you can install system software and intrusion rule updates as part of the restore process.
For example, you could restore a device to Version 6.0, and also update the device to Version 6.0.0.1 as part of
that process. Keep in mind that only Management Centers require rule updates.
For example, you could restore a device to Version 6.0, and also update the device to Version 6.0.0.1 as part of
that process. Keep in mind that only Management Centers require rule updates.
To obtain the restore ISO and other update files:
1.
Using the user name and password for your support account, log into the Support Site
(
(
2.
Browse to the software download section (
).
3.
Enter a search string in the
Find
area on the page that appears for the system software you want to download
and install.
For example, to find software downloads for Firepower, you would enter
Firepower.
4.
Find the image (ISO image) that you want to download.
You can click one of the links on the left side of the page to view the appropriate section of the page. For
example, you would click
example, you would click
5.4.1 Images
to view the images and release notes for Version 5.4.1 of the Firepower
System.
5.
Click the ISO image you want to download.
The file begins downloading.
6.
Copy the files to an HTTP (web) server, FTP server, or SCP-enabled host that the appliance can access on its
management network.
management network.
Caution:
Do not transfer ISO or update files via email; the files can become corrupted. Also, do not change
the names of the files; the restore utility requires that they be named as they are on the Support Site.
Beginning the Restore Process
Begin the restore process by booting the appliance from an internal flash drive.
After you make sure that you have the appropriate level of access and connection to an appliance, as well the
correct ISO image, use one of the following procedures to restore your appliance:
correct ISO image, use one of the following procedures to restore your appliance:
explains how to start the restore
process for an appliance where you do not have LOM access.
explains how use LOM to start the restore
process via an SOL connection.
Caution:
The procedures in this chapter explain how to restore an appliance without powering it down.
However, if you need to power down for any reason, use the appliance’s web interface, the
system shutdown
command from the CLI on a Firepower device, or the
shutdown -h now
command from an appliance’s shell
(sometimes called expert mode).
Starting the Restore Utility Using KVM or Physical Serial Port
For Firepower devices, Cisco provides a restore utility on an internal flash drive.
Note:
Do not use a KVM console with USB mass storage to access the appliance for the initial setup because the
appliance may attempt to use the mass storage device as a boot device.