Troubleshooting issue during FMC upgradation

Troubleshooting issue during FMC upgradation

First need to check pre-request , go into proper documentation of respective version and check dependency

Cross verify FMC version must support the latest version of FTD, if not first need to upgrade FMC.

Performing an upgrade readiness test on the ASA platform

The FTD readiness check throws a failure with a reference to a log file (/ngfw/var/log/sf/Cisco_FTD_Upgrade-6.2.2/upgrade_readiness).

In order to access the failure log you need to login to the FTD through SSH and run the “Expert” command, which will take you to “linux shell mode”

admin@ftd:~$ ls -l /ngfw/var/log/sf/Cisco_FTD_Upgrade-6.2.2/upgrade_readiness/

Now we have seen some issues with upgradation, its showing failed.

[220906 13:25:52] FAILED 200_pre/006_check_snort.sh[170906 13:26:03] # UPGRADE READINESS CHECK COMPLETE status : FAILED! #

The reason of failed is  Snort engine check fails. Diving a little more into this can be done in the check Snort log

Now we got the reason of failed of upgradation -

The conclusion is that the FMC version and the Snort engine build depended each other. 

Noted- Before start the upgradation must verify that Snort and FMC versions comfortable eachothers