Cisco Cisco FirePOWER Appliance 7020

Version 5.3.0.3

Sourcefire 3D System Release Notes

Updating Your Appliances

16. Reapply access control policies to all managed devices.

WARNING!

Do not reapply your intrusion policies individually; you must

reapply all access control policies completely.

Applying an access control policy may cause a short pause in traffic flow and

processing, and may also cause a few packets to pass uninspected. If this

side effect is not ideal for your network setup and connectivity is more

important than inspection unchecking this box will disable inspection

temporarily during policy apply and ensure that no packets are dropped during

the procedure. After policy apply is successful inspection will resume as

normal. For more information, see the Sourcefire 3D System User Guide.

Updating Managed Devices and Sourcefire Software for X-Series

After you update your Defense Centers to Version 5.3.0.3, use them to update

the devices they manage.
A Defense Center must be running at least Version 5.3.0.2 to update its managed

devices to 5.3.0.3. Because they do not have a web interface, you must use the

Defense Center to update Sourcefire Software for X-Series and virtual managed

devices.
Updating managed devices is a two-step process. First, download the update

from the Support Site and upload it to the managing Defense Center. Next, install

the software. You can update multiple devices at once, but only if they use the

same update file.
For the Version 5.3.0.3 update, all devices reboot; Sourcefire Software for

X-Series VAP groups reload. Managed devices do not perform traffic inspection,

switching, routing, NAT, VPN, or related functions during the update. Depending

on how your devices are configured and deployed, the update process may also

affect traffic flow and link state. For more information, see