Upgrading BIGIP-F5 LTM from 10.2.2 to 11.5.3
Good day everyone,
My company has had a "hands-off" approach when it comes to maintaining our F5s. They've been working flawlessly for the past couple of years without any issues what-so-ever. However, a recent security audit uncovered some vulnerabilities that we'd like to patch with some of the latest fixes included in version 11.5.3. I've been tasked with performing the upgrade, and I'd like to share my upgrade strategy with the community to see if any experienced admins here can share their thoughts.
We currently have a pair of devices operating in an Active/Standby configuration.
Upgrade Plan
-
Force current standby device to offline status
-
Reactive License on standby device
-
Perform upgrade by installing 11.5.3 base image to an unused volume.
-
Once the upgrade to 11.5.3 is complete, I plan to install the 11.5.3HF1 hotfix
-
Change the default boot partition to the new volume I selected in step 3.
-
Reboot the standby device
-
Fail-over from the Active device to the standby device and test.
-
If all is well perform the upgrade on the other device.
Are there any glaring holes in my plan?
I appreciate your thoughts.
Thank you