In this short but helpful post, I’ll go through the process of upgrading the ASA IOS via the ASDM. This is a pretty painless method if all goes well the only thing you have to do schedule downtime if this box is in production, and grab the ASA IOS image from Cisco. For this post all have been covered let’s get started!
First things first is always backup your configuration before upgrading and I always read the release notes that Cisco provides when I download the IOS image, it’s good reading and important because usually new features are introduced and sometime the ASDM can’t paraphrase and parse the new configuration which way I usually upgrade the ASDM first. There are couple ways of backing the configuration this example is with the ASDM. In this example open up the ASDM client and go to file and select “Show Running Configuration in New Window” this will open up the current running-config in a browser window and from there you can either save the page or copy it to a text editor.
Once the configuration is saved you are ready to go for the upgrade. Select “Tools” and you have two options. If this ASA can go online you can select the first option (Check for ASA/ASDM Updates) which will ask for your Cisco account that is tied with SmartNet, which downloads the IOS or ASDM or both images automatically and installs them with very little effort on your part. For this post we have to one more extra setup to install this IOS we’ll select the “Upgrade Software from Local Computer”
A window comes select what image you are uploading the to the ASA, notice this is also the same method of installing/upgrading the ASDM along with helpful tools like the Cisco AnyConnect VPN Client. This example we selected the ASA image and have browsed our local computer to the ASA image that we downloaded from Cisco our next move is to uploading the image.
Finally another window will show letting you know that the image is setup and goes through the process of telling you how to reload the ASA. Also it reminds you to make sure the ASDM version will work with this new IOS image which would be in the release notes Cisco puts out, from there reload the ASA. Once the ASA reboots open up the ASDM and you’ll notice that we now have the ASA version of 8.4(3)!
Keeping up with versions of the ASA is important but you have to weigh the risks of updating, take this upgrade for example from 8.2 to 8.4 a lot of configurations have changed which is why it is really important to look at the release notes. I hope this information is helpful and if you have any questions or comments let me know.
- Basic Cisco ASA Overview (ciscoskills.net)
- CCNA Security – 640-554 (ciscoskills.net)
- Auto Backup Cisco router/switch using Kron and vsftpd FTP. (ethernuno.wordpress.com)