Firepower System Release Notes Version 6.0.1 Pre-Installation

Available Languages

Download Options

  • PDF     (289.8 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (77.8 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (74.5 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:June 27, 2018

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Table of Contents

Firepower System Release Notes for Version 6.0. 1 P re Install

Before You Begin

Installing the Update

Updating the Firepower Management Center

Uninstalling the PreInstall

Resolved Caveats

For Assistance

Firepower System Release Notes for Version 6.0.1 Pre-Install

First Published: November 4, 2016

Last Updated: June 27, 2018

This update is for Firepower Management Centers only. The Version 6.0.1 Pre-Install optimizes the update procedure for Version 6.0.1 and decreases the time the update takes to complete. Once you install Version 6.0.1 Pre-Install, update the system to Version 6.0.1. Once you install the Version 6.0.0 Pre-Install, update the system to Version 6.0.1. For more information, see the Firepower System Release Notes Version 6.0.1.

These release notes provide installation instructions and a summary of the defects resolved by the Firepower System Version 6.0.1 Pre-Install.

Even if you are familiar with the update and reimage process, make sure you thoroughly read and understand these release notes, which describes prerequisites, warnings, and installation.

For detailed information on the Firepower System, refer to the online help or download the Firepower Management Center Configuration Guide from the Support site. You must install the Firepower System Version 6.0.1 Pre-Install prior to updating to Version 6.0.1.

For more information, see the following sections:

Before You Begin

Installing the Update

Uninstalling the Pre-Install

Resolved Caveats

Before You Begin

Before you begin the update process for Version 6.0.1 Pre-Install, you should familiarize yourself with the behavior of the system during the update process, as well as with any compatibility issues or required pre- or post-update configuration changes.

A Firepower Management Center must be running at least Version 6.0.0 to install the Version 6.0.1 Pre-Install. If you are running an earlier version, you can obtain updates from the Support site.

The Version 6.0.1 Pre-Install only applies to Firepower Management Centers. Do not install the Version 6.0.1 Pre-Install on managed devices.

Caution: Cisco strongly recommends you perform the update in a maintenance window or at a time when the interruption will have the least impact on your deployment.

For more information, see the following sections:

Installing the Update

Installing the Update

When to Perform the Update

Because the update process may affect traffic inspection, traffic flow, and link state, Cisco strongly recommends you perform the update in a maintenance window or at a time when the interruption will have the least impact on your deployment.

Installation Method

Use the Firepower Management Center’s web interface to perform the update. Do not install the Version 6.0.1 Pre-install on managed devices.

Order of Installation

Update your Firepower Management Centers to Version 6.0.1 Pre-Install and then update the system to Version 6.0.1.

Caution: Do not reboot or shut down your appliances during the update until you see the login prompt. The system may appear inactive during the pre-checks portion of the update; this is expected behavior and does not require you to reboot or shut down your appliances.

After the Installation

There are several additional post-update steps you should take to ensure that your deployment is performing properly. These include:

verifying that the update succeeded

making sure that all appliances in your deployment are communicating successfully

After installing the Version 6.0.1 Pre-Install on the Firepower Management Center and reapplying device configuration, update the system to Version 6.0.1.

The next sections include detailed instructions not only on performing the update, but also on completing any post-update steps. Make sure you complete all of the listed tasks.

Updating the Firepower Management Center

Use the procedure in this section to update your Firepower Management Centers, including virtual Firepower Management Centers.

Caution: Before you update the Firepower Management Center, reapply access control policies to any managed devices. Otherwise, the eventual update of the managed device may fail.

Caution: Do not reboot or shut down your appliances during the update until after you see the login prompt. The system may appear inactive during the pre-checks portion of the update; this is expected behavior and does not require you to reboot or shut down your appliances.

You must install the Pre-Install to your Firepower Management Center prior to updating your system to Version 6.0.1.

1. Read these release notes and complete any required pre-update tasks.

For more information, see Before You Begin.

2. Download the update from the Support site:

Sourcefire_3D_Defense_Center_S3_6.0.1_Pre-install-6.0.0.999-1.sh

Note: Download the update directly from the Support site. If you transfer an update file by email, it may become corrupted.

3. Select System > Updates.

4. Upload the Pre-Install to the Firepower Management Center by clicking Upload Update.

5. Click Choose File in the Updates box, select the Pre-Install from the local file system, then click Upload to upload the file to the Firepower Management Center.

The Product Updates sub-tab will then appear again.

6. Click Install to begin installing the Pre-Install.

Note: The Firepower Management Center does not reboot.

The update process begins. To view the task status, click the System Status icon, then click on the Tasks tab. However, after the Firepower Management Center completes its necessary pre-update checks, you are logged out. When you log back in, the Upgrade Status page appears. The Upgrade Status page displays a progress bar and provides details about the script currently running. If the update fails for any reason, the page displays an error message indicating the time and date of the failure, which script was running when the update failed, and instructions on how to contact Support. Do not restart the update. If you encounter any other issue with the update (for example, if a manual refresh of the Update Status page shows no progress for several minutes), do not restart the update. Instead, contact Support.

Caution: If you encounter any other issue with the update (for example, if a manual refresh of the Update Status page shows no progress for several minutes), do not restart the update. Instead, contact Support.

7. After the update finishes, clear your browser cache and force a reload of the browser. Otherwise, the user interface may exhibit unexpected behavior.

8. Log into the Firepower Management Center.

9. Select Help > About and confirm that the software version listed is the version you updated from.

10. Verify that the appliances in your deployment are successfully communicating and that there are no issues reported by the health monitor.

Note: Although reapplying policy is not required, Cisco recommends reapplying device configuration before updating the system to Version 6.0.1.

Uninstalling the Pre-Install

If you need to uninstall the Version 6.0.1 Pre-Install, you must uninstall updates locally.

Use the following procedure to uninstall the Version 6.0.1 Pre-Install update from Firepower Management Centers and virtual Firepower Management Centers.

Uninstalling the Version 6.0.1 Pre-Install update results in a Firepower Management Center running the version the appliance updated from. For information on uninstalling a previous version, refer to the Firepower System Release Notes for that version.

To uninstall the update from a Firepower Management Center:

1. Log into the device as admin, via SSH or through the virtual console.

2. At the bash shell prompt, type sudo su -.

3. Type the admin password to continue the process with root privileges.

4. At the prompt, enter the following on a single line:

install_update.pl --detach /var/sf/updates/Sourcefire_3D_Defense_Center_S3_6.0.0_Pre-install_Uninstaller-999-1.sh

The uninstallation process begins.

Caution: If you encounter issues with the uninstallation, do not restart the uninstallation. Instead, contact Support.

5. After the uninstallation finishes, log into the managing Firepower Management Center and select Devices > Device Management. Confirm that the device where you uninstalled the update has the correct version listed.

6. Verify that the appliances in your deployment are successfully communicating and that there are no issues reported by the health monitor.

Resolved Caveats

You can track defects resolved in this release using the Cisco Bug Search Tool ( https://tools.cisco.com/bugsearch/). A Cisco account is required. The following sections list the issues resolved in the Version 6.0.1 Pre-Install.

Improved Firepower Management Center performance when rebooting during the update. (CSCuz23081)

Optimized the update to skip enterprise objects that do not need conversion or integrity checks. (CSCuz71471, CSCuz71485)

Optimized the automated process to check available disk space. (CSCuz71421)

Improved troubleshoot generation. (CSCuz71430, CSCva71569)

Improved the SQL update process. (CSCuz71492)

Improved the update process for main database tables and large amounts of scan data from network maps. (CSCuz98801)

Removed the file system integrity check during the update. (CSCvb64157)

For Assistance

Thank you for choosing the Firepower System.

Cisco Support

For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and gathering additional information about Cisco ASA devices, see What’s New in Cisco Product Documentation at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html.

Subscribe to What’s New in Cisco Product Documentation, which lists all new and revised Cisco technical documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds are a free service.

If you have any questions or require assistance with Cisco ASA devices, please contact Cisco Support:

Visit the Cisco Support site at http://support.cisco.com/.

Email Cisco Support at tac@cisco.com.

Call Cisco Support at 1.408.526.7209 or 1.800.553.2447.

Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)

Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.

© 2016 Cisco Systems, Inc. All rights reserved.

  Printed in the USA on recycled paper containing 10% postconsumer waste.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products