Updated Date: 11/07/2006
This technical note documents how to perform an upgrade install on a 520/540 (D35) platform of the BIG-IP software version 9.2.4 using a CD mounted on an installation server. For information about installing the software, please refer to the instructions below.
The minimum system requirements for this release are:
The supported browsers for the Configuration utility are:
This technical note describes how to upgrade version 4.5.x or 4.6.x software to version 9.2.4 on the 520/540 platform. The 520/540 platforms are not switch-based platforms. Some BIG-IP features and requirements are slightly different, or are not supported, on the 520/540 platforms. The following section describes these features.
When you install BIG-IP version 9.2.4 on a 520/540 platform, the interface 1.1 is converted to the management interface. The interface 1.2 becomes interface 1.1. Other additional interfaces will be numbered as they were in version 4.5.x or 4.6.x. See OTCU section for other details on the numbering changes. The minimal configuration is two built-in interfaces, however, we recommend that you add network interface card (NIC) to bring to the total number of interfaces to at least three.
The minimum memory supported is 512MB. Most 520 platforms shipped with only 256MB of RAM. The recommended amount of RAM is 1GB. To avoid complications stemming from combining dissimilar brands of DIMMs, if you upgrade the memory on a unit, we recommend that you discard the old DIMMs and replace them with a single 512MB or 1024MB DIMM.
BIG-IP Link Controller and BIG-IP GTM/LTM combination installations require a minimum of 768MB of memory. However, the recommended amount of RAM is 1GB.
The front panel LED behavior is the same as version 9.x behavior. For more information, see SOL4263: Change in behavior: Front panel indicator usage in BIG-IP version 9.
The VGA and serial console behave as described after you install BIG-IP version 9.2.4.
For details about obtaining supported network interface cards, contact F5 Networks.
Some switch-based BIG-IP features are not supported on the 520/540 platforms. This section describes these features and their behavior.
The following add-in hardware cards are not supported in this release on the 520/540 platforms:
LACP and STP are not supported on the 520/540 platform. LACP switchboard failsafe is not active on these platforms. The HA Table displays the switchboard failsafe entry as disabled. LACP is enforced when the user attempts to set lacp_enable 'true' on a trunk.
STP is enforced by the global stp mode setting. The allowed modes are passthru and disabled. Note you can view and modify the other stp related parameters without affecting the system operation. These commands include the bigpipe stp commands, bigpipe stp instance commands, and bigpipe interface stp, bigpipe auto edge, and the link type commands.
Most of the bigipipe commands are supported fully by the 520/540 platform, with the following exceptions:
|daemon||Displays the bcm56xxd. Not functional.|
|db boot.netreboot||Cannot enable. Not functional.|
|ha table||Displays switchboard failsafe as disabled. Not functional.|
|interface [stp | auto edge | link type ]||Can be configured. Has no effect.|
|interface pause||Not supported|
|mirror||Port mirror not supported and gives an error when configured.|
|stp||Cannot set mode. Not functional.|
|stp instance||Can be configured. Not functional.|
|trunk||Cannot enable lacp.|
Quiet boot is supported. You can set this variable using the bigdb boot.quiet setting. The D35 Tyan 2515 motherboard does not support a CMOS setting for quiet boot, so user must use the BIOS setup utility to configure the BIOS quiet boot setting. (same as 4.5.x or 4.6.x).
The bigpipe command netboot enable | disable is not supported on the 520/540 platform. You must use the front panel Netboot button.
As in BIG-IP version 4.5.x or 4.6.x, you cannot configure port mirroring on the 520/540 platform.
You can use the command bigpipe baud rate to modify the current serial console (ttyS0), and the grub baud rate setting. This baud rate is maintained across reboots and power cycles. However, the Tyan 251x BIOS does not support a CMOS setting for baud rate. As a result, for the PXE installation, you must use the BIOS baud rate setting (default 19200) for the serial console.
The sensor support for chassis fan, chassis power supply, chassis temperature, and cpu status is not be supported.
Use these procedures to install the version 9.2.4 software.
Warning: A valid service contract is required to complete this installation.
Warning: You must reactivate the license on the BIG-IP system on which you intend to install before you begin the installation.
The process of installing the BIG-IP version 9.2.4 software requires:
The following sections describe how to perform these tasks.
Before you upgrade to BIG-IP version 9.2.4, you need to save your version 4.5.x or 4.6.x configuration data. This file is used by the OTCU to convert your 4.5.x or 4.6.x configuration files to the 9.2.4 configuration file format. In addition, this prevents loss of data if, for any reason, the version 9.2.4 upgrade is not successful.
Collect and archive the version 4.5.x or 4.6.x configuration files, by typing the following command. Note that config.ucs is the name you must use for the UCS file, and the file must be saved at the / partition.
bigpipe config save /config.ucs
Important: If you are upgrading a system that is using zone files with named, you must manually back up all necessary zone files and save them to a remote location. After the upgrade is complete, you can place them on the 9.0 system. There is a new location on the 9.x system for these files: /var/named/config/namedb.
Important: It is critical that you back up the archived configuration files to a remote location. If the upgrade process fails for any reason, you may need to use the remotely-stored file in order to restore your 4.5.x or 4.6.x configuration data.
Before you begin the installation process, you may need to download the installation CD-ROM ISO image from http://tech.f5.com. For details about downloading the ISO image, see SOL167: Downloading software from F5 Networks.
Before you perform a network boot from a CD, you must designate and configure a remote host to be a Pre-boot Execution Environment (PXE) server. This remote host must meet all the following criteria:
Note: You must connect the installation server to the same network to which the BIG-IP unit is connected.
Once you have designated a host, complete the following steps:
Select terminal type? [vt100]
Press Enter to use vt100 emulation, or type the name of the terminal emulator you are using.
Maintenance OS Options Serve Provide network installation services Install Install software onto hard disk Reboot Reboot to your current system Exit Exit to maintenance shell
Use existing DHCP server on subnet [no]?
IP network [10.1.10]?
IP address of server 10.1.10[n] ?
Lower range for clients 10.1.10.[n] ?
Upper range for clients 10.1.10.[n] ?
Note: When you enter the IP address of the server, you need to enter only the last octet. When completing the lower and upper ranges for the clients, enter the network number(s) where the clients are situated.
After you designate and configure a remote host to be a installation server, you are ready to perform the network boot from the console of the platform on which you wish to install the software.
Note: You must connect the installation server directly to the management port on the BIG-IP unit, or to the network to which the management interface is connected.
If the machine is powered down, power it up, and within the first ten seconds use a paperclip to push the NETboot button on the front panel of the IP Application Switch.
If the machine is started and running, type the following two commands in sequence:
bigpipe db boot.netreboot enable
rebootYou may receive the following message after you type the reboot command:
The requested operation is not supported by the hardware.If you see this error message, use a paperclip to push the RESET button on the front panel of the IP Application Switch. Then, within ten seconds, use a paperclip to push the NETboot button.
Press M or Control-SPACE to view menu.Let the timer count down to auto-select the installation options. After the timer counts down, the installer presents the terminal type.
Terminal type? [vt100]Press Enter to continue, or type the terminal type you are using. We recommend that you use vt100.
Note: The syslog option is not present when the controlling terminal is the console. You see this option only when you are performing the installation through an SSH connection.
The software takes only a few minutes to install. Once the installation is complete, the unit reboots to the installation in slot 0 or CF (compact flash). You can use the switchboot utility to specify which installation you want to boot by default. For more information about the switchboot utility, see the BIG-IP version 9.2.4 release notes.
After you complete the installation of the software, and before you license the software, run the config command to configure an IP address, net mask, and gateway on the management port (MGMT). The config command is a command line utility created for this purpose. You can run the config command from the serial console you used during installation.
To run the config command, type the following command:
After you run this utility and add an IP address, net mask, and gateway to your management port, you can log in to the Configuration utility (graphical user interface), and license the unit.
Before you can convert your configuration files or configure the system, you must license the version 9.2.4 software. To activate the license for the system, you must have a base registration key. The registration key is a 27-character string that lets the license server know which F5 products you are entitled to license. If you do not already have a registration key, you can obtain one using the dossier from a licensed 4.5x system (http://license.f5.com).
After you install and license the 9.2.4 software, you can configure the 9.2.4 system from scratch, or you can convert the existing configuration you rolled forward on the system. If you want to configure the new software from scratch, you can skip converting the configuration using the OTCU. This section describes how the OTCU works.
To convert your existing 4.5.x or 4.6.x configuration files to 9.2.4 configuration files, you use the One Time Conversion Utility (OTCU). The OTCU parses 4.5.x or 4.6.x configuration files and uses the data to create a 9.2.4 configuration database. Due to the complexity of the 9.2.4 release, and differences in the 4.5.x or 4.6.x and 9.2.4 feature sets (which depend on your configuration), the OTCU may produce some unexpected results. We ask that you use the OTCU as a starting point for converting your 4.5.x or 4.6.x configuration files. Keep in mind that, in most cases, you will need to examine the resulting configuration files, troubleshoot the contents, and make adjustments where necessary. To view an example of a converted file, see conversion example . The following notes are to help you understand the conversion process and interpret the output of the OTCU.
When you run the OTCU, the files in /otcu.ucs are untarred and placed in /var/tmp/otcu_4.5. These files remain in their original state. They are not altered during the conversion process. Selected files used for the upgrade are moved into /var/tmp/otcu_9.0. For example, /etc/hosts is moved to /var/tmp/otcu_9.2.4/etc/hosts . After the files are moved, they are converted as much as possible into the version 9.x format and then placed in the version 9.0 system. After the conversion is complete, the /otcu.ucs is renamed to /renamed_otcu.ucs. Renaming the file prevents you from being prompted to run the OTCU every time you start the system.
During this process a log file is created and saved as /var/tmp/otcu.log. This file contains everything printed on screen during the installation. This information is useful for understanding what files are converted, and for reviewing or troubleshooting the resulting configuration. The files in /var/tmp/otcu_9.2.4 remain in the state they were in before being moved to the version 9.x system. If you want to refer to your 4.5.x or 4.6.x configuration files, these files are saved in /var/tmp/otcu_4.5. The /var/tmp/otcu_4.5_miscellaneous directory may contain some 4.5.x or 4.6.x files that are not carried forward during the conversion that may be of interest to you. This could include the 4.5.x or 4.6.x license file, inetd.conf file, openssl.conf file, or monitor files that were not converted. You can also find these with the rest of the files located in /var/tmp/otcu_4.5, however they are moved here for convenience.
Warning: You should run the OTCU only one time. If you need to run the OTCU again, we recommend that you reinstall version 9.2.4 and then run the OTCU.
The following 4.5.x or 4.6.x files are removed during the conversion:
/config/default_base.conf (no user alert)
/etc/ssh_host_key (no user alert)
/etc/ssh_host_key.pub (no user alert)
/etc/ssh_config (no user alert)
/etc/sshd_config (no user alert)
/etc/ssh3/hostkey (no user alert)
/etc/ssh3/hostkey.pub (no user alert)
/etc/ssh3/ssh3_config (no user alert)
/etc/ssh3/sshd2_config (no user alert)
/etc/snmptrap.conf (no user alert)
/etc/rc.local (no user alert)
/etc/syslog.conf (no user alert)
/etc/login.conf (no user alert)
/usr/local/www/bigipgui/.users (no user alert)
/config/bigconfig/slapd.txt (no user alert)
/etc/irs.conf, /etc/irs.conf.dns, /etc/irs.conf.nodns (no user alert)
The following 4.5.x or 4.6.x files are moved forward with no conversion:
/root/.ssh/id_dsa.pub (no user alert)
/root/.ssh/id_dsa (no user alert)
/root/.ssh/identify.pub (no user alert)
/root/.ssh/identify (no user alert)
/root/.ssh/authorized_keys (no user alert)
/root/.ssh/authorized_keys2 (no user alert)
/root/.ssh/known_hosts (no user alert)
The following table lists the files that are moved and converted during the OTCU process.
|4.5.x or 4.6.x config files||9.2.4 conversion notes|
|/config/routes||Routes commands are converted to 9.2.4 bigpipe commands.|
|/config/bigconf/httpd.conf||The ServerName line from this file is inserted into the new httpd.conf located at /config/httpd/conf/httpd.conf.|
|/config/bigconfig/ssl.crl/||is moved to /config/httpd/conf/ssl.crl.|
|/config/bigconfig/ssl.crt/||is moved to /config/httpd/conf/ssl.crt.|
|/config/bigconfig/ssl.key||is moved to /config/httpd/conf/ssl.key.|
|etc/named.conf||is converted to BIND version 9, and references to 3-DNS are removed.|
|/etc/snmpd.conf||sysip is deleted and com2sec is changed to com2sec6.|
|/etc/snmpd.conf.disabled||sysip is deleted and com2sec is changed to com2sec6.|
Use the following procedure to convert your existing 4.5.x or 4.6.x configuration data to version 9.2.4.
Note: If at any point you want to go back to version 4.5.x or 4.6.x, you must re-install the 4.5.x or 4.6.x software. For information on how to install the 4.5.x or 4.6.x software, please refer to the applicable 4.5.x or 4.6.x release notes. For instructions on how to reinstall your previous 4.5.x or 4.6.x configuration files, see SOL1493.
The utility prompts you for the following information:
Once the 9.x conversion is complete, the files are moved to their correct locations and loaded.
If you skipped the step to consolidate profiles and rename virtual servers, profiles, pools, and snatpools, you can run the consolidation utility by typing the following command:
You can run the renaming utility by typing the following command:
Note: In order for the renaming to take effect, you must reload the configuration file.