McAfee M-1250 Upgrade Guide - Page 46

Sensor software upgrade: Manager vs. TFTP server

Get McAfee M-1250 - Network Security Platform PDF manuals and user guides View all McAfee M-1250 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 46 highlights

5 Performing Signature Set and Sensor Software upgrade Updating Sensor software image See also Upgrading the Manager on page 3 Sensor upgrade requirements on page 43 Reviewing the upgrade considerations on page 44 Sensor software upgrade: Manager vs. TFTP server As indicated in the previous section, the Sensor software can be updated either from the Manager or via a TFTP server. While both the methods are supported, if the Sensors are deployed inline in your production network, McAfee recommends updating the Sensor software using the Manager interface for a major upgrade (for example, from 5.1 to 6.0) A Sensor reboot is required whether you do an upgrade using TFTP or from the Manager. When updating a Sensor from the Manager interface, both the Sensor software and the signature set are bundled together and transferred to the Sensor. The Sensor updates its Sensor software image, and saves the bundled signature set. When the sensor is rebooted, it deletes the old signature set, and applies the saved signature set that was received along with the Sensor software image. When updating a Sensor via TFTP, only the Sensor software is transferred to the Sensor. Once the Sensor software update is complete, reboot the sensor. On reboot, the Sensor deletes the currently loaded signature set, and contacts the Manager for the latest signature set. Until the sensor receives the signature set from the Manager, the Sensor cannot process traffic and raise alerts. There will be a Sensor downtime during the Sensor software upgrade process. The downtime is longer in case of an upgrade using TFTP [vs. when upgraded using the Manager] due to the additional time required to download the signature set. Fail-open kits reduce the downtime impact of reboot considerably. See the following sections: • Sensor Software and Signature Set Upgrade using the Manager • Sensor software upgrade using a TFTP server See also Sensor Software and Signature Set Upgrade using Manager 6.0 on page 46 Sensor software upgrade using a TFTP server on page 48 Sensor Software and Signature Set Upgrade using Manager 6.0 Task 1 If you have not already done so, download the latest signature set from the McAfee Network Security Update Server (Update Server). From the Resource Tree, go to Manager | Update Server | Signature Sets. See the Manager Server Configuration Guide for details. For a list of currently supported protocols, see KB61036 at mysupport.mcafee.com. Do not push the signature set to your Sensors at this point; it will be sent with the Sensor software in Step 4. 46 McAfee® Network Security Platform 6.1 Upgrade Guide

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
See also
Upgrading the Manager
on page 3
Sensor upgrade requirements
on page 43
Reviewing the upgrade considerations
on page 44
Sensor software upgrade: Manager vs. TFTP server
As indicated in the previous section, the Sensor software can be updated either from the Manager or
via a TFTP server. While both the methods are supported, if the Sensors are deployed inline in your
production network,
McAfee recommends updating the Sensor software using the Manager interface for a major upgrade
(for
example, from 5.1 to 6.0)
A Sensor reboot is required whether you do an upgrade using TFTP or from the Manager.
When updating a Sensor from the Manager interface, both the Sensor software and the signature set
are bundled together and transferred to the Sensor. The Sensor updates its Sensor software image,
and saves the bundled signature set. When the sensor is rebooted, it deletes the old signature set,
and applies the saved signature set that was received along with the Sensor software image.
When updating a Sensor via TFTP, only the Sensor software is transferred to the Sensor. Once the
Sensor software update is complete, reboot the sensor. On reboot, the Sensor deletes the currently
loaded signature set, and contacts the Manager for the latest signature set. Until the sensor receives
the signature set from the Manager, the Sensor cannot process traffic and raise alerts.
There will be a Sensor downtime during the Sensor software upgrade process. The downtime is longer
in case of an upgrade using TFTP [vs. when upgraded using the Manager] due to the additional time
required to download the signature set.
Fail-open kits reduce the downtime impact of reboot considerably.
See the following sections:
Sensor Software and Signature Set Upgrade using the Manager
Sensor software upgrade using a TFTP server
See also
Sensor Software and Signature Set Upgrade using Manager 6.0
on page 46
Sensor software upgrade using a TFTP server
on page 48
Sensor Software and Signature Set Upgrade using Manager 6.0
Task
1
If you have not already done so, download the latest signature set from the McAfee Network
Security Update Server (Update Server). From the Resource Tree, go to
Manager
|
Update Server
|
Signature Sets
. See the
Manager Server Configuration Guide
for details. For a list of currently
supported protocols, see KB61036 at mysupport.mcafee.com.
Do not push the signature set to your Sensors at this point; it will be sent with the Sensor software
in Step 4.
5
Performing Signature Set and Sensor Software upgrade
Updating Sensor software image
46
McAfee
®
Network Security Platform 6.1 Upgrade Guide