You can upgrade the CN-Series firewall from PAN-OS 10.1.x to PAN-OS 10.2.x.,11.0.x or
11.1.x. You can also upgrade CN-Series firewall from PAN-OS 10.2.x to 11.0.x or
11.1.x. However, there is no direct upgrade path for the CN-Series when going from
PAN-OS 10.0. to PAN-OS 10.2. Instead, you must delete your existing CN-Series
firewall deployment and then redeploy.
you begin, ensure the CN-Series YAML file version is compatible
with the PAN-OS version.
For statically provisioned PVs, to delete the PVs (typically
used on-premises deployments) you must explicitly delete the pan-cn-pv-local.yaml
file and the directories that contain data on each node which hosts
the CN-MGMT pods.
Use the command
rm -rf /mnt/pan-local1/*
deleting the PVs for pan-local 1 through 6.
For dynamically provisioned PVs, such as on the Managed Services/Cloud
Platforms, when you delete the PVCs, the PVs are automatically deleted.