This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Best Practices for PAN-OS Upgrade without downtime

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Best Practices for PAN-OS Upgrade without downtime

Go to solution
NetworkGeek
L2 Linker

‎03-24-2017 12:41 AM

Hello all,

 

i have Active /passive firewalls

 

how can i upgrade PAN-OS without downtime ??

 

1-when i upgrade active , it will reboot then passive will be active ..

 

2- When i upgrade the new active is it will be back to old active again ?? what about OS mismatching is it have any impact on HA

 

3- If both devices will be for VPN ? Tunnel will be down with failover ?

0 Likes Likes
17 REPLIES 17

Go to solution
jdprovine
L4 Transporter
In response to markk96

‎01-26-2018 01:12 PM

@markk96

 

When I have left it mismatched for no more than 12 hours it won't let me commit changes

0 Likes Likes

Go to solution
jdprovine
L4 Transporter
In response to OtakarKlier

‎01-26-2018 01:15 PM

@OtakarKlier

 

I do a suspend when I fail the primary over to upgrade it and then again on the secondary when I fail back to the primary. But in the past I have not had to suspend the secondary when I go to upgrade it when it is already in the passive position.

0 Likes Likes

Go to solution
markk96
L3 Networker
In response to jdprovine

‎01-26-2018 01:17 PM

I use Panorama, I have not had any issues commiting to them after leaving them mismatched for 24 hours.

0 Likes Likes
  • 13037 Views
  • 17 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks