I need to upgrade the Cisco IDS 4235 4.1(5) S247 to the Cisco IPS 6.0 version .Pleasel et me know if i have to upgrade the BIOS Version and ROMMON Version for the same .Also let me know as to til what version of 6 i can upgrade the IDS Device to ?
1) If i want to see the BIOS Version , do i need to connect the sensor to a PC so that i can access via Hyperterminal and then reboot and see the BIOS Current version OR i can access sensor via SSH and then reboot and go to ROMMON Mode and see the BIOS Version ?
2) Following is written in Cisco Document for IDS 4235
"You cannot upgrade the BIOS from a console connection. You must connect a keyboard and monitor to the appliance so that you can see the output on the monitor."
Does the above mean that i cannot access the sensor via Hyperterminal and upgrade the BIOS? If this is true , please let me know as to how can i upgrade remotely as the sensor is not physcially near to me
Note : I will be sending the BIOS update diskette to the onsite person having physical access to the sensor . Also onsite person may not be a tech savvy person , hence this question
If the IDS-4235 (or IDS-4250) is already running version 4.1, then it likely already has the latest A04 BIOS. The upgrade to the A04 BIOS was needed when going from 3.x versions to 4.x versions. No BIOS upgrade is needed to go from 4.x versions to 5.x or 6.x versions.
Upgrading from version 4.1 to version 5.x or 6.x on your IDS-4235 does Not require a license, BUT is Not free either. It DOES technically require a maintenance contract (or direct purchase of the upgrade) for your upgrade to be legal.
Technically users should only download and install the upgrade if they have either A) purchased the specific upgrade, or B) have the sensor covered under a Cisco Service for IPS maintenance contract.
The software won't prevent the installation. Cisco just relies on the honor of the customer to not install software that they have either not purchased or do not have a maintenance contract for.
If your sensor IS covered under a Cisco Service for IPS maintenance contract, then you are eligible to download the latest software, install it, and run it. And would also be eligible for a License (included as part of the Cisco Service for IPS contract) so you can upgrade to the latest Signature Update.
If your sensor is Not covered under a maintenance contract, then your sensor is technically not eligble for upgrade.
And you will probably be unable to purchase a new contract.
>>You cant.First you need to purchase the Key >>for IOS upgration( 4.1(5) to 6.0 )
>>After purchasing the key ,Better u can go >>with 5.x and than 6.1
>>I think it will help u.
>>Pl rate this one.
Sorry, this is all wrong. You do not need a license key to download or apply service packs, major/minor packs, or recovery images ONLY signature updates. Also, each new engine update will come with an updated base signature level so you can keep sort of up to date.
I would recommend the 6.0 or 6.1 recovery image (instead of a version by version upgrade 4.x-> 5.x-> 6.x). If your model has a CDROM drive, you can burn this image to a CDR and then the sensor can boot from it and update the system software automagically.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...