Minimum Downtime Upgrade of a VSX Cluster

Best Practice - Use the Central Deployment in SmartConsoleClosed Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on.. For more information, see the R81.10 Security Management Administration Guide > Chapter Managing Gateways > Section Central Deployment of Hotfixes and Version Upgrades.

Important - Before you upgrade a VSXClosed Virtual System Extension. Check Point virtual networking solution, hosted on a computer or cluster with virtual abstractions of Check Point Security Gateways and other network devices. These Virtual Devices provide the same functionality as their physical counterparts. ClusterClosed Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing.:

Step

Instructions

1

Back up your current configuration (see Backing Up and Restoring).

Important - Back up both the Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server. and the VSX Cluster Members. Follow sk100395.

2

See the Upgrade Options and Prerequisites.

3

Upgrade the Management Server and Log Servers.

4

See Planning a Cluster Upgrade.

5

Schedule a full maintenance window to make sure you can make all the custom configurations again after the upgrade.

The procedure below describes an example VSX Cluster with three VSX Cluster Members M1, M2, and M3.

However, you can use it for clusters that consist of two or more Cluster Members.

Procedure:

For more information, see the: