一、适用场景
适配NGFW 5500-X系列ASA安全防火墙升级固件。
二、升级步骤
升级方式有2种;
A. 采用ROMMON升级
B. 采用SSH升级
本文只介绍采用SSH+Cisco ASDM升级,更方便,快捷,可以远程操作。
2.1 下载firmware固件
Software Download - Cisco Systems
![[Cisco思科] NGFW ASA 5500-X更新Firmware固件_5500-X](https://s2.51cto.com/images/blog/front/202407/539039268817564ae4e169cbf20716a4e1d573.png?x-oss-process=image/watermark,size_14,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_30,g_se,x_10,y_10,shadow_20,type_ZmFuZ3poZW5naGVpdGk=,x-oss-process=image/resize,m_fixed,w_1184)
固件MD5值
MD5 Checksum : c59d357e435763b2cce5af9ddd9d9f01下载完成后,检验MD5数值
![[Cisco思科] NGFW ASA 5500-X更新Firmware固件_5500-X_02](https://s2.51cto.com/images/blog/front/202407/651f3f943525091669e00973e102736fec1096.png?x-oss-process=image/watermark,size_14,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_30,g_se,x_10,y_10,shadow_20,type_ZmFuZ3poZW5naGVpdGk=,x-oss-process=image/resize,m_fixed,w_1184)
核对数值,无误,继续下一步操作
上传文件:ASDM——TOOLS——File Management
![[Cisco思科] NGFW ASA 5500-X更新Firmware固件_upgrade_03](https://s2.51cto.com/images/blog/front/202407/c45fb4c206ef0d2304222369a608f4cde0bce7.png?x-oss-process=image/watermark,size_14,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_30,g_se,x_10,y_10,shadow_20,type_ZmFuZ3poZW5naGVpdGk=,x-oss-process=image/resize,m_fixed,w_1184)
查询设备参数
show moduleupgrade rommon disk0:asa5500-firmware-1118.SPA![[Cisco思科] NGFW ASA 5500-X更新Firmware固件_ASA_04](https://s2.51cto.com/images/blog/front/202407/617a3ed684e4857a50d7635feaa52e9cc0b4c9.png?x-oss-process=image/watermark,size_14,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_30,g_se,x_10,y_10,shadow_20,type_ZmFuZ3poZW5naGVpdGk=,x-oss-process=image/resize,m_fixed,w_1184)
确认后 出现提示时重新加载 ASA, 系统 自动升级 ROMMON 映像,然后重新加载操作系统。期间等待5-10分钟不等。
三、升级验证
重新连接后查询参数:
![[Cisco思科] NGFW ASA 5500-X更新Firmware固件_upgrade_05](https://s2.51cto.com/images/blog/front/202407/213e4e681bf262fa02f5098873dfefd067ec2c.png?x-oss-process=image/watermark,size_14,text_QDUxQ1RP5Y2a5a6i,color_FFFFFF,t_30,g_se,x_10,y_10,shadow_20,type_ZmFuZ3poZW5naGVpdGk=,x-oss-process=image/resize,m_fixed,w_1184)
