QRadar Packet Capture software updates use an SFS file, and can update an existing QRadar Packet Capture software or appliance installation to the latest version. These updates are cumulative. 

Requirements
Read the following information before you install the software:

• QRadar Packet Capture 7.4.3 (Build 496) requires Red Hat Enterprise Linux (RHEL) 7.9. You must install RHEL 7.9 before you install QRadar Packet Capture. 
• You must have QRadar Packet Capture 7.2.8 (any patch version) or later to install this update.
• Software installs are NOT supported on a virtual machines (VMs). 
• Complete the update during a scheduled maintenance window. While the system is updating, services do not run and network packets are not recorded. The update typically completes in about 1.5 hours. You can capture on one QRadar Packet Capture appliance while the software is being updated on another appliance.
• To avoid access errors in your log file, close all open QRadar Packet Capture sessions.
• Google Chrome 44.0 and Mozilla Firefox ESR 38.8 and later browsers are supported. Microsoft Internet Explorer 11 is not supported for QRadar Packet Capture appliances.
• Any search output directories in /extraction that are older than 6 hours are removed.
• If the Search store is full, any search output directories that are older than 3 hours are removed.

Instructions for installing QRadar Packet Capture 7.4.3 (Build 496)

Installation instructions are provided in the QRadar Packet Capture Quick Reference Guide on IBM Docs. 

Procedure

1. Install and configure Red Hat Enterprise Linux V7.9.

3. Upgrade the QRadar Packet Capture software.

Where do I find more information?