Cisco Cisco FirePOWER Appliance 7020
Version 5.2.0.1
Sourcefire 3D System Release Notes
11
Updating Your Appliances
13. If the rule update available on the Support Site is newer than the rules on your
Defense Center, import the newer rules.
For information on rule updates, see the Sourcefire 3D System User Guide.
For information on rule updates, see the Sourcefire 3D System User Guide.
14. If the VDB available on the Support Site is newer than the VDB on your
Defense Center, install the latest VDB.
Installing a VDB update with detection updates may cause a short pause in
Installing a VDB update with detection updates may cause a short pause in
traffic flow and processing, and may also cause a few packets to pass
uninspected. For more information, see the Sourcefire 3D System User
Guide.
IMPORTANT!
For the update to Version 5.2.0.1, Sourcefire recommends
installing VDB build 156 or later.
15. Reapply device configurations to all managed devices.
TIP!
To reactivate a grayed-out Apply button, edit any interface in the device
configuration, then click Save without making changes.
16. Reapply access control policies to all managed devices.
WARNING!
Do not reapply intrusion policies individually; you must reapply
all access control policies completely.
Applying an access control policy may cause a short pause in traffic flow and
processing, and may also cause a few packets to pass uninspected. For more
information, see the Sourcefire 3D System User Guide.
Updating Managed Devices
After you update your Defense Centers to Version 5.2.0.1, use them to update
the devices they manage.
Updating managed devices is a two-step process. First, download the update
Updating managed devices is a two-step process. First, download the update
from the Support Site and upload it to the managing Defense Center. Next, install
the software. You can update multiple devices at once, but only if they use the
same update file.
For the Version 5.2.0.1 update, only Series 3 managed devices reboot. Managed
For the Version 5.2.0.1 update, only Series 3 managed devices reboot. Managed
devices do not perform traffic inspection, switching, routing, NAT, VPN, or related
functions during the update. Depending on how your devices are configured and
deployed, the update process may also affect traffic flow and link state. For more