Backup Recovery upgrade netscreen SSG140 Boot Loader and ISO

 

Steps:   . Backup and recovery configuration file and ISO . Upgrade the new versions of boot loader and ISO  Backup and recovery configuration file and ISOAs a result of backup and recovery, I Will repost a special article on the Internet for your backup. I will not talk nonsense here to prevent network interruptions in the case of Juniper firewall equipment failure, so as to ensure uninterrupted operation of your business, this section describes the rapid recovery of Juniper firewall faults.
I. device restart:If the Juniper firewall is abnormal during work, you can use the reset command to restart the firewall through the console cable to reset the system, during the restart, you can view the firewall startup information on the operating terminal. Ii. Operating System Backup:During routine maintenance, you can back up the firewall operating system screnos to a local device by starting the tftp server and running: save software from flash to tftp x. x. x. x filename
Iii. Operating System Recovery: When the firewall is abnormal, you can quickly restore the firewall operating system in two ways. Command Line: save software from tftp x. x. x. x filename to flash, or select the Firmware Update (screnos) option under Configuration> Update> screnos/Keys on the web, and select the local screnos File in the Load File column, click the apply button. The firewall restarts automatically after the screnos file is uploaded.
Iv. configuration file backup:
During routine maintenance, you can back up the firewall configuration information to the local device for fault recovery. There are three ways to operate:
1. Start the tftp server and run: save config from flash to tftp x. x filename on the command line.
2. Remotely telnet/ssh to the firewall through the Super Terminal, and record the get config configuration information to the local device through log record.
3. Back up the Configuration File on the web page: Configuration> Update> Config file. Click save to File.
V. configuration file recovery:
If the current configuration information of the firewall is incorrect, you need to quickly restore the configuration information. There are three ways to perform this operation:
1. Start the tftp server and run: save config from tftp x. x filename to flash under the command line. After the configuration file is uploaded, run the reset command to restart the server.
2. Restore the Configuration File through the web page: Configuration> Update> Config File, select Replace Current Configuration, and select the backup Configuration File for recovery from the local device, after you click apply, the system restarts to make the new configuration take effect.
3. Remotely telnet/ssh to the firewall through the Super Terminal, clear the firewall configuration through the unset all command, restart the firewall, and paste the backup configuration command into the firewall.
6. Restore the factory value:Connect the console cable to the firewall, restart the firewall using the reset command, and use the 16-bit serial number of the firewall as the account/password to log on to the firewall. This allows you to quickly restore the firewall configuration to the factory value.
VII. Hardware troubleshooting:
When a fault occurs in the firewall and the configuration fault and screnos software fault have been ruled out, you can switch to the slave device through NSP to resume network operation and further locate the hardware fault. Switch Mode: 1. Unplug the active/standby firewall's upstream/downstream network cable. You only need to unplug the HA connection of the active/standby firewall when the power is off. 2. You can also run the following command on the master device: exec NSP sealing group id 0 mode backup, and manually run the firewall active/standby switchover.
8. device repair RMA): If Juniper confirms that the firewall has a hardware fault, please contact the device agent in time. The device agent will perform RMA device repair for damaged parts or equipment during the warranty period according to the repair process ). Upgrade the new versions of boot loader and ISOFirst connect to ssg140 through the console, first upgrade bootloader and then upgrade ISOlogin: ys_adminpassword: SSG140-JL-CNC-> resetSystem reset, are you sure? Y/[n] YIn reset... juniper Networks SSG-140 Boot Loader Version 3.2.3 (Checksum: ECD688CB) Copyright (c) 1997-2006 Juniper Networks, Inc. total physical memory: 512 MB Test-Pass Initialization-Done Hit any key to run loaderHit any key to run loader The above Hit any key to run loader is prompted" You need to press any key quickly. Do not press enter to avoid the subsequent settings going down by default. Press the wrong button and use the keyboard direction key to return it.Serial Number [0185082008002503]: read onlyhw Version Number [1010]: READ ONLYSelf MAC Address [0021-5924-5d80]: READ ONLYBoot File Name [ssg140.5.4.0r11.0. bak]:- Update SSG140 Boot Loader File NameSelf IP Address [10.10.10.18]: 122.141.26.196 Write ssg140 Ip address AddressTftp ip Address [10.10.10.254]: 122.141.26.25 Write TFTP Ip AddressSave loader config (56 bytes)... DoneThe configured TFTP server is connected to port 1 Loading file "-"... rReceiving data block... #448 Loaded Successfully! (Size = 233,074 bytes) Ignore image authentication! Save to on-board flash disk? (Y/[n]/m) Yes! Saving system image to on-board flash disk... Done! (Size = 233,074 bytes) Run downloaded system image? ([Y]/n) Yes! Start loading ............... done. **************************************** * ************************* ========== ======================================= ** (c) 1997-2006 Juniper Networks, Inc. ** All Rights Reserved *** ------------------------------------------------------ ** SSG140 Boot Loader Version: 3.2.5 ** Compile Date: Apr 10 2009; Time: 18:38:16 ****!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!! !!!!!!! **!! **! Please don't power off during update .! **! Otherwise, the system can not boot again .! **!! **!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!! * ****** DON't power off during boot loader update ******* * DON't power off during boot loader update ****************************** **************************************** ** Check on-board Boot Loader... update needed! Are you sure you want to update Boot Loader? (Y/n) YRead product information of on-board boot flash device: manufacturer ID = 01 Device ID = 4f Boot flash device is Am29LV040B Erase on-board boot flash device ................. done Update Boot Loader .................................... ........................................ ........................................ ........................................ ........................................ ........ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ .................... Done Verify Boot Loader... done Boot Loader has been updated successfully! Please hit any key to reboot the system... juniper Networks SSG-140 Boot Loader Version 3.2.5 (Checksum: E0C51885) Copyright (c) 1997-2006 Juniper Networks, Inc. total physical memory: 512 MB Test-Pass Initialization-Done Hit any key to run loader And press any key to update SSG140 ISO.Serial Number [0185082008002503]: read onlyhw Version Number [1010]: READ ONLYSelf MAC Address [0021-5924-5d80]: READ ONLYBoot File Name [-]: ssg140.6.2.0r3.0 Update SSG140 ISO File NameSelf IP Address [122.141.26.196]: tftp ip Address [122.141.26.133]: Because of the record function, press enter directly.Ip mask [255.255.255.0]: 255.255.255.255.192 Fill in the subnet maskGw ip Address [122.141.26.htm]: 122.141.26.193 Enter GatewaySave loader config (108 bytes)... DoneThe configured TFTP server is connected to port 1 Loading file "ssg140.6.2.0r3.0"... R Importing takes several minutesLoading ing data block... #23280 Loaded Successfully! (Size = 11,926,107 bytes) Ignore image authentication! Save to on-board flash disk? (Y/[n]/m) Yes! Saving system image to on-board flash disk... Done! (Size = 11,926,107 bytes) Run downloaded system image? ([Y]/n) Yes! Start loading ...................................... ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ............................. ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................................ ........................ Done. juniper Networks, IncSecurity Services Gateway Sys Tem SoftwareCopyright, 1996-2008 min_pfn = 13000, max_pfn = 1c000, mem_size = 1c000000 bootmap_size = 3800 Version 6.2.0r3.0Load Manufacture Information... done Initialize FBTL 0 .. doneLoad NVRAM Information... (5.4.0) DoneInstall module init vectorsThe device is storing the firmware into reserved flash sectors. please do not power off the device during this operation. doing so cocould result in loss Of firmware. ++ ++ ++ The device successfully completed the operation. IXP23XX XScale Initialing... IXP23XX XScale Initialing... successfully! Install modules (011c0000, 01e1f150 )... PPP IP-POOL initiated, 256 pools Initializing DI 1.1.0-ns System config (2019 bytes) loaded Done. load System Configuration ..................................... unsupported command-set zone "VLAN" block ............................... ........................................ ........................................ ............................... doneplatform = 24, cpu = 12, version = 18 offset = 20, address = 5800000, size = 11926029 date = 18e6, sw_version = 31008000, cksum = dc34455cBackup image... donesystem init done .. login: ethernet0/1 interface change physical state to Upethernet0/2 interface change physical state to UpSystem change state to Active (1) login: ys_adminpassword: SSG140-JL-CNC-> get system versionEncoding: 1 Version: 6.2.0.1.0.0.0.0 Indicates that the upgrade is successful.DM Version: 1

This article from the "technology lies in tossing" blog, please be sure to keep this source http://viong.blog.51cto.com/844766/355022