Cisco Cisco Firepower Management Center 2000
16
FireSIGHT System Release Notes
Installing the Update
Note
: If you are using single-VAP VAP groups in an inline deployment, reloading the VAP causes an interruption in
network traffic. Make sure you plan the update for a maintenance window or other time when it will have the least impact
on your deployment.
on your deployment.
After the Installation
After you perform the update on either the Defense Center ormanaged devices, you must reapply device configuration
and access control policies. Applying an access control policy may cause a short pause in traffic flow and processing,
and may also cause a few packets to pass uninspected. For more information, see the FireSIGHT System User Guide.
and access control policies. Applying an access control policy may cause a short pause in traffic flow and processing,
and may also cause a few packets to pass uninspected. For more information, see the FireSIGHT System User Guide.
There are several additional post-update steps you should take to ensure that your deployment is performing properly.
These include:
These include:
verifying that the update succeeded
making sure that all appliances in your deployment are communicating successfully
updating to the latest patch for Version 5.4.1.3, if available, to take advantage of the latest enhancements and
security fixes
security fixes
optionally, updating your intrusion rules and vulnerability database (VDB) and reapplying your access control policies
making any required configuration changes based on the information in
The next sections include detailed instructions not only on performing the update, but also on completing any
post-update steps. Make sure you complete all of the listed tasks.
post-update steps. Make sure you complete all of the listed tasks.
Updating Defense Centers
Use the procedure in this section to update your Defense Centers, including virtual Defense Centers. For the version
5.4.1.3 update, Defense Centers reboot.
5.4.1.3 update, Defense Centers reboot.
Caution:
You must update your DC2000 and DC4000 BIOs to Version 2.0.1b in order to update your appliances to Version
5.4.1.1. Download the BIOs update via the Cisco Support site. CSCus10407
Caution:
Before you update the Defense Center, reapply access control policies to any managed devices. Otherwise,
the eventual update of the managed device may fail.
Caution:
Do not reboot or shut down your appliances during the update until after you see the login prompt. The system
may appear inactive during the pre-checks portion of the update; this is expected behavior and does not require you to
reboot or shut down your appliances.
reboot or shut down your appliances.
Note:
Updating a Defense Center to version 5.4.1.3 removes existing uninstallers from the appliance.
Note:
If you have inline normalization enabled and you update a Defense Center currently running Version 5.3.x to Version
5.4, the update process does not change the behavior of your policies. The system adds user layers as necessary to
preserve the settings that carried over.
preserve the settings that carried over.
To update a Defense Center:
1.
Read these release notes and complete any required pre-update tasks.
For more information, see
.
2.
Download the update from the Support site:
—
for Series 3 and virtual Defense Centers:
Sourcefire_3D_Defense_Center_S3_Upgrade-5.4.1.3-55.sh
Note:
Download the update directly from the Support site. If you transfer an update file by email, it may become
corrupted.