Currently running an ASA 5512X HA pair on 9.4(4)16, want to upgrade to the latest recommended release, 9.8(2)33. Would prefer to do a zero downtime upgrade as business runs 24-hours so out of hours is not really possible.
From my knowledge I have a few options:
-
Upgrade from 9.4(4)16 > 9.4(4)33 > 9.5(3)9 > 9.6(4)8 > 9.7(1)4 > 9.8(2)33 over the course of 5 days, one upgrade per day (zero downtime).
-
Upgrade from 9.4(4)16 > 9.4(4)33 > 9.5(3)9 > 9.6(4)8 > 9.7(1)4 > 9.8(2)33 in one session (zero downtime).
-
Upgrade from 9.4(4)16 > 9.4(4)33 > 9.8(2)33 (downtime).
Option 3 is a not preferred due to downtime. I prefer option 2 as it will be quicker and the risk the same as option 1, but CAB is concerned about the "big bang" approach and would prefer a step-by-step upgrade path.
Firstly, are all the upgrade paths correct? I believe it follow Cisco's guidelines. Secondly, which option would you chose and why (pros/cons)?
No comments:
Post a Comment