Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

ASA upgrade- 8.2.2 to 9.0.3- upgrade path?????

Hi,

I want to upgrade ASA 5520 from 8.2.2 to 9.0.3.

what will be correct and best upgrade path.

can we do like this.

8.2.2>8.4.6>9.0.3.

can any suggest me the best upgrade path or the above listed is the right one.

Regards,

Vivek

3 REPLIES
Hall of Fame Super Silver

The supported method (per the

The supported method (per the release notes) would be to first migrate to 8.3(x) then to 8.4(x) then to 8.6(x) and finally to 9.0(x). ("x" being the current maintenance release within that minor release.)

However my experience is that the path you suggest also works. I would suggest 9.0(4) (or better yet 9.1(5)) as your final target unless there's some specific reason you have for only going to 9.0(3).

You will need to ensure you have 2 GB of RAM to upgrade a 5520 to 8.3 or higher. (Reference

When you make that first upgrade to 8.3+, stop and verify all your NAT and access-list functionality. The parser will automatically migrate the command syntax but the success in doing so is not always 100%. Check the log file (automatically written to disk0) in addition to independently verifying the functions.

New Member

Hi Marvin,Thanks.The 9.0.3 is

Hi Marvin,

Thanks.

The 9.0.3 is star marked or you can say recommended by Cisco, so few customers choose to go with that rather than any other versions.

i will like you input on below.

Should i go ?

1-8.2.2>8.4.6>9.0.3.

or

2-8.2.2>8.3.x>8.4.x>9.0.3

04

3-8.2.2>8.3.x>8.4.x>8.6.x>9.0.3

 

Hall of Fame Super Silver

OK.If it was me I'd go with

OK. 9.0(3) is "starred" but 9.0(4) also fixes 145 bugs that affect 9.0(3).

If it was me I'd go with option 1. But then I've upgraded over 100 ASAs in my time and only had to call the TAC about 2-3 times on it - each time it ended up being an unpublished software bug-related issue.

If you want the safest and completely Cisco-supported method the last one is what is recommended.

211
Views
0
Helpful
3
Replies