ASA Zero Downtime Upgrade

Unanswered Question
Jan 21st, 2010

I've reviewed the zero downtime upgrade documentation and it says that it is supported in several scenarios.  The one most closely related to my upgrade is this scenario:

You can upgrade from a minor release to the next minor release. You cannot skip a minor release.

For example, you can upgrade from 7.0 to 7.1. Upgrading from 7.0 directly to 7.2 is not supported for zero-downtime upgrades; you must first upgrade to 7.1.

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/mswlicfg.html#wp1053398

Now my question - I am upgrading from 8.0(2) to 8.2.1(11).  There is no version 8.1 for my ASA model 5510.  Will I still be able to do a zero downtime upgrade?  If so, will I be able to upgrade directly from 8.0(2) to 8.2.1(11) or do I need to upgrade something like this:

8.0(2) -> 8.0(5)

8.0(5) -> 8.2.1ED

8.2.1ED -> 8.2.1(11)

That is a lot of software upgrades and, if possible, I would like to do this directly and reduce risk.

Thanks,
Joe

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Panos Kampanakis Tue, 01/26/2010 - 18:06

You can go from 8.0.2 to 8.2.1.

Of course you need to make sure both units are not running different minor releases in the end.

I hope it helps.

PK

Kureli Sankar Tue, 01/26/2010 - 20:08

If you read the release note for 8.2.1 it says the following:

http://www.cisco.com/en/US/docs/security/asa/asa82/release/notes/asarn82.html#wp315678

Upgrading Between Major Releases

To ensure that your configuration updates correctly, you must upgrade to each major release in turn. Therefore, to upgrade from Version 7.0 to Version 8.2, first upgrade from 7.0 to 7.1, then from 7.1 to 7.2, and finally from Version 7.2 to Version 8.2 (8.1 was only available on the ASA 5580).

So you can go from 7.2 to 8.2 and there is no mention of 8.0.2, 8.0.4 or 8.0.5

You should be able to do zero downtime upgrade as well.

-KS

Actions

This Discussion