Checkpoint NSX vSEC-Controller and vSEC gateway upgrade
I Looking out for detailed Documentation on Checkpoint NSX vSEC-Controller and vSEC gateway upgrade
Currently running vSEC controller R80 target version R80.10 and vSEC gateway R77.30 and Target version R80.10
To strengthen this point:
Vsec R80.10 management uses in some cases, private enhancement (on private build).
We highly recommend management R80.20 or R80.30 where this is built-in. It will save you problems in the future.
We also recommend to customers that already use the private build in R80.10 already, to upgrade the management and enjoy this as built in capability rather than straggle with private fixes on this private take.
Thanks for your quick reply.
Can you please let us know if we can directly upgrade NSX vSEC-Controller from R80 to R80.20 or need to upgrade it to R80.10 then R80.20 and vSEC GW from R77.30 to R80.10 ?
Also please let us know if any special instructions/steps need to be flowed for this upgrade..
Thanks in advance!
According to sk114518 - vSEC Gateway for NSX managed by vSEC Controller, R80.10 CloudGuard Gateway for NSX (T154) managed by R80.20 Management Server is the lasted available version, so why the talk about R80.30 ?
CloudGuard controller is tightly integrated with the management server and is included in R80.20. You can directly upgrade the management server and there is no requirement for a two stage upgrade workflow.
Please follow the upgrade guides for both the controller and the NSX gateways. Note the Prerequisites section.
We do recommend R80.20 or R80.30 over R80.10 (integrated vsec into the management). R80.20 management is a very safe choice.
R80.30 GW has further advantages with integrated updated linux (3.10).
Further to Dorit's posting I'd like to clarify:
- With R80.20/R80.30 management all NSX gateways can be managed
- R80.30 NSX-T management is publicly available
- R80.30 NSX-V management is in early access. Expected GA within 4 weeks (as an extension on top of 80.30 management)