Install FTD 6.2.3 on Cisco ASA 5506-X

This post will describe the process to install the FTD boot image and FTD system image v6.2.3 on a Cisco ASA 5506-X firewall. The images listed below will be required and can be downloaded from the Cisco website here.

  • FTD Boot Image (ftd-boot-9.8.2.3.lfbff)
  • FTD System Image (ftd-6.2.3-83.pkg)

In order to download the images to the ASA a TFTP, FTP or HTTP server will be required.

  • TFTP Server (e.g. Solarwinds TFTP) required to load the Boot Image
  • FTP or HTTP Server required to load the FTD System Image

Upgrade Boot Image

  • Connect a console cable to the CONSOLE port on the ASA 5506-X
  • Connect the MGMT interface into a switch on the same subnet as the TFTP/FTP/HTTP server and turn on the ASA


  • Interrupt the boot process when prompted, press ESC
  • Erase the disk, type erase disk0:


  • At the rommon prompt, configure address, server, gateway, file settings
    and then enter the set command, e.g:-

    address 192.168.10.10
    server  192.168.10.20
    gateway 192.168.10.20
    file  ftd-boot-9.8.2.3.lfbff
    set


  • Type sync
  • Type tftpdnld


During the upgrade process the device will automatically reboot, once completed, the prompt should be firepower-boot>


Upgrade System Image

  • Copy the FTD image e.g.  ftd-6.2.3-83.pkg to your FTP/HTTP Server (in this instance 192.168.10.10 is an http server from where the image will be downloaded).
  • On the ASA FTD console, at the firepower-boot> prompt type setup


Welcome to Cisco FTD Setup
[hit Ctrl-C to abort]
Default values are inside []

Enter a hostname [firepower]: FTD
Do you want to configure IPv4 address on management interface?(y/n) [Y]: y
Do you want to enable DHCP for IPv4 address assignment on management interface?(y/n) [Y]: n
Enter an IPv4 address: 192.168.10.20
Enter the netmask: 255.255.255.0
Enter the gateway: 192.168.10.10
Do you want to configure static IPv6 address on management interface?(y/n) [N]:n
Stateless autoconfiguration will be enabled for IPv6 addresses.
Enter the primary DNS server IP address: 192.168.10.10
Do you want to configure Secondary DNS Server? (y/n) [n]: n
Do you want to configure Local Domain Name? (y/n) [n]: n
Do you want to configure Search domains? (y/n) [n]: n
Do you want to enable the NTP service? [Y]: n


  • When prompted, press y to apply the changes

Configuration saved successfully!
Applying…
Restarting network services…
Done.

Press ENTER to continue…
firepower-boot>

Do you want to continue? [y/N] y
Erasing disk0 …
Extracting    …
Verifying
Downloading…


  • When prompted, press Enter to reboot the system


After the system has rebooted you will be at the firepower login: prompt, you can determine that the FTD install completed successfully as it confirms the version.

You can now login to the device using the default username is admin and the password is Admin123. Once logged into the device you can configure the device.

 

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.