Firewall Wizards mailing list archives

Re: Upgrade Pix Software

From: Brian Ford <brford () cisco com>
Date: Mon, 11 Dec 2000 14:33:45 -0500


Hi Chris,

From: "Christoph" <puetzc () yahoo com>
To: <firewall-wizards () nfr net>
Sent: Tuesday, December 05, 2000 11:42 AM
Subject: [fw-wiz] Upgrade Pix Software

Hi all,
I am planning on upgrading my Pix Software to the
latest version. Never done that before.


You are in luck.  It is pretty easy.


Will that mean that I completely have to reconfigure
everything and that my current setup will be wiped
out?


No, your configuration will either remain the same or possibly be translated to accommodate changes in the command 
syntax.  It is a good practice to make sure that you create a backup of the firewall configuration before you upgrade.


I am trying to get a start into the upgrade process -
any helpful suggestions are appreciated!!


My best advice would depend on two questions.  What type of PIX are you using (and are you using a failover 
configuration)? AND  What version of PIX OS are you using and what version are you upgrading to?

There are PIXen (PIX, PIX Classic, 510, 520) out there that have floppy drives.  Upgrading the software version on 
those models (v4.x to v4.4) is as easy as inserting a floppy with the new OS installed.  However if you are upgrading 
to a new major version of code (from 4.x to 5.x) you need to look at the amount of FLASH and DRAM memory in the 
particular model of PIX you have first. In a v4.x to v5.x OS install you would use a v4.x boot helper floppy to get the 
v5.x kernel on board the PIX and finally TFTP to move the full 5.x image.

If you are upgrading a v5.0 or later PIX  (no matter what model hardware) you will need to use TFTP.   Newer versions 
of PIX hardware (515, 506, 525, and 535) are not equipped with floppy drive and you would use the TFTP protocol from an 
inside interface to upgrade the OS.

If you have multiple PIX in a failover configuration you will need to arrange for a change-control action (a short 
shutdown) to upgrade the failover PIX.

Another suggestion.  Memory is not cheap.      8-0    Talk to your Account Manager or reseller before upgrading the 
flash and or DRAM on a PIX Classic, 510 or 520 to accommodate the new v5.x OS.  We do offer trade-ins to migrate 
customers to the latest PIX hardware platform.


Thanks!

Christoph


I hope this helps,

Brian

 


Brian Ford
brford () cisco com


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Upgrade Pix Software Christoph (Dec 08)
- Re: Upgrade Pix Software Nuno Fernandes (Dec 09)
  - Re: Upgrade Pix Software John Adams (Dec 10)
    - Re: Upgrade Pix Software Nuno Fernandes (Dec 10)
    - Re: Upgrade Pix Software Joe Dauncey (Dec 12)
    - Re: Upgrade Pix Software Nuno Fernandes (Dec 12)
- <Possible follow-ups>
- Upgrade Pix Software Christopher J. Wargaski (Dec 12)
- Re: Upgrade Pix Software Brian Ford (Dec 14)