wedge os upgrade 3 to 4 guide
DESCRIPTION
Wedge Os Upgrade 3 to 4 GuideTRANSCRIPT
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
11/16/2012
WEDGEOS-U324G
Suite 238, 3553 31st Street N.W.
Calgary, Alberta T2L 2K7, Canada
Tel. +1.403.276.5356. Fax. +1.403.276.5568
www.wedgenetworks.com
© Copyright 2012 Wedge Networks. All rights reserved.
No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Wedge Networks Inc.
WedgeOS Upgrade Guide
Version WEDGEOS-U324G
November 16, 2012
Trademarks
BeSecure is a pending Trademark of Wedge Networks. Other product and company names used in this document are used for identification purposes only, may be trademarks of other companies, and are the property of their respective owners.
WedgeOS and associated software are protected by, or for use under, the following U.S. Patent#: 7,630,379.
Regulatory Compliance
FCC Class A Part 15 CSA/CUS
For technical support, please visit http://www.wedgenetworks.com/
Send information about errors or omissions in this document or any Wedge Networks technical documentation to
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | Table of Contents iii
TABLE OF CONTENTS
TABLE OF CONTENTS .................................................................................................. III
1 INTRODUCTION ....................................................................................................4
1.1 UPGRADE METHODS ................................................................................................. 4
1.1.1 General Upgrade Caveats ............................................................................. 4
1.1.2 HTTP Upgrade Caveats ................................................................................. 5
1.1.3 USB Upgrade Caveats ................................................................................... 5
1.2 COMMENTS AND TECHNICAL SUPPORT .......................................................................... 5
1.3 ABOUT THIS UPGRADE GUIDE ..................................................................................... 5
2 UPGRADE STEPS ....................................................................................................6
2.1 BEFORE STARTING THE UPGRADE PROCESS ..................................................................... 6
2.1.1 Obtain Upgrade Access Credentials .............................................................. 6
2.1.2 Attach a Serial Cable .................................................................................... 6
2.1.3 Backup Configuration and Other Files .......................................................... 6
2.2 UPGRADE WEDGEOS ................................................................................................ 6
2.3 AFTER UPGRADE VERIFY CORRECT OPERATION ............................................................... 8
2.4 CHECK FOR NEWLY RELEASED 4.0.2 UPDATES ............................................................... 8
3 MANUAL NETWORK SELECTION/CONFIGURATION ...................................................9
3.1 SELECTING A NETWORK DEVICE ................................................................................. 11
3.2 MANUAL CONFIGURATION OF IP ADDRESS ................................................................... 11
4.0.2 WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
4 Introduction | Wedge Networks
1 INTRODUCTION This guide explains how to safely upgrade a BeSecure appliance running WedgeOS version 3.1.8 to the latest 4.0.2 version.
1.1 Upgrade Methods
There are two upgrade methods available: HTTP and USB. The HTTP upgrade method is the easiest and
preferred method. This method will download all files required for the upgrade. The USB upgrade
method requires a specially built USB drive that contains most of the files needed for upgrade. The USB
upgrade requires a couple special steps to succeed and direct support from Wedge will be required. If
you think you may have issues with using the HTTP upgrade method, contact Wedge technical support to
inquire if the USB upgrade method is suitable in your situation.
1.1.1 General Upgrade Caveats
Unsupported Hardware Platforms
The hardware platforms 1005NX and 1005D are not supported by version 4.0.2 and cannot be upgraded.
Unsupported Configuration
User accounts containing capital letters are no longer supported on 4.0.2. These accounts will not be
restored during the upgrade process.
Restoring the MAC/VLAN transparency setting on the Network page is not supported. If the MAC/VLAN
transparency setting was previously enabled in 3.1.8, then this setting must be manually re-enabled after
the upgrade is complete.
Interruption of Upgrade Process
The upgrade process is a multi-stage process and will normally reboot WedgeOS three times. If problems
are encountered (ex. download failures) extra reboots may be required. The upgrade can take a while,
and manual interruption of the upgrade process could potentially make the WedgeOS device unusable.
Do not interrupt the upgrade process without contacting Wedge technical support first.
Data Cleared on Upgrade
The upgrade does not save the existing log files and the event reporting database. The logs can be saved
by generating, downloading, and saving a problem report. See Section 4.5.2 of the User Manual on
generating a problem report. It is not possible for users to backup the event reporting data on 3.1.8. If
you have enabled event reporting and wish to backup the event reporting data, contact Wedge technical
support before upgrading.
The configuration, policies and licenses will be preserved during the upgrade process.
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | Introduction 5
1.1.2 HTTP Upgrade Caveats
Explicit HTTP Proxy Not Supported
Using an explicit HTTP Proxy is not supported for the upgrade process. A direct connection to the internet
must be available, allowing access to both port 80 and 443 to the updates.wedgenetworks.com
System Update server.
DHCP Server Should be Available During the upgrade process WedgeOS will attempt to configure an interface using DHCP to obtain an IP
address and network configuration. If an IP address cannot be obtained using DHCP, the upgrade process
will stop and wait for user input to enter network configuration information. See Section 3 for details.
1.1.3 USB Upgrade Caveats
USB Drive
To use the USB upgrade method, a specialized USB drive must first be obtained from Wedge technical
support. Please contact Wedge technical support to inquire about the USB upgrade method.
1.2 Comments and Technical Support
If you have any comments or technical issues with any Wedge Networks products or services please send an email to [email protected].
When requesting technical support, please provide the following information:
Name
Company
Phone number
Product name
Product version
Product model
Description of issue
1.3 About This Upgrade Guide
This Upgrade Guide provides the information to upgrade WedgeOS 3.1.8 appliances to version 4.0.2.
Monospace font marks command line text, or text to be typed as is.
Bold is used for emphasis, e.g. labels of on-screen components.
4.0.2 WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
6 UPGRADE STEPS | Wedge Networks
2 UPGRADE STEPS This section describes the steps to upgrade WedgeOS running version 3.1.8 to version 4.0.2.
2.1 Before Starting the Upgrade Process
2.1.1 Obtain Upgrade Access Credentials
The upgrade access credentials (user id and password) are the same ones used for the System Update
process. If you do not already have these access credentials, contact support before continuing with the
upgrade process.
2.1.2 Attach a Serial Cable
It is important to have a working serial cable connected during the upgrade process. Serial console access
is the only way to monitor the upgrade process and if necessary provide user input.
To Connect a Serial Cable
1. Connect your client machine’s serial port or terminal to the BeSecure appliance console port.
This is the 9-pin serial port or the RJ-45 jack labeled or CON.
2. Not all client terminal software will display the upgrade serial console screens correctly. We’ve
found PuTTY (http://www.chiark.greenend.org.uk/~sgtatham/putty/) to work well on Windows
and Linux. The client terminal serial port (ex. COM1 or ttyS0) should be configured with the
following settings:
9600 bps
8 data bits
No parity
1 stop bit
If possible enable logging of all the serial console output.
3. Once the serial port is connected and configured verify that a login prompt is visible before
starting the upgrade process.
2.1.3 Backup Configuration and Other Files It is a good idea to backup the WedgeOS configuration before starting the upgrade. If something goes
wrong during the upgrade, you will have a backup copy of your configuration. See Section 4.1.11 of the
user manual on backing up the configuration.
2.2 Upgrade WedgeOS
To upgrade WedgeOS:
1. Disconnect all but one network cable. The remaining network cable should be connected to a
network that has a DHCP server running.
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | UPGRADE STEPS 7
2. Navigate to the System > System Update page using the WedgeOS management console. At the
bottom of the page expand the upgrade section. You will see the contents of Figure 1.
FIGURE 1: UPGRADE TO 4.0.X PANEL
3. Enter your User ID and Password.
4. Select Default HTTP Server.
5. Click Upgrade. This will download the initial files required to start the upgrade process. You will
see the progress indicator shown in Figure 2.
FIGURE 2: INITIAL UPGRADE PROGRESS
6. Once the progress message indicates the system will reboot (as shown in
Figure 3), the manager interface will no longer be accessible until the upgrade is complete.
FIGURE 3: INITIAL UPGRADE REBOOT
4.0.2 WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
8 UPGRADE STEPS | Wedge Networks
7. Monitor the serial console for upgrade progress messages and user input requests. The serial
console upgrade process will stop and wait for user input, if it cannot successfully auto-configure
a network interface. If a dialog box title Network Error or Networking Device is displayed, you
will need to refer to Section 3 to manually configure the network interface used for upgrade.
Otherwise, the interface will be auto-configured and you can continue.
8. If after successful network configuration, if the upgrade process stops with an error message, you
must contact technical support for further instructions.
9. The upgrade process can take a while, and depends on your connection bandwidth. Please be
patient and do not reboot WedgeOS unless instructed by Wedge technical support to do so. In
particular the screen in Figure 4 can be displayed for a long period of time while the upgrade is
progressing.
Once the upgrade installation process is complete WedgeOS will reboot one last time.
FIGURE 4: POST INSTALL SCREEN
2.3 After Upgrade Verify Correct Operation
After the upgrade is complete the WedgeOS management console will be accessible again. Login and
verify that the configuration and policies were restored correctly. You can now reconnect all network
cables that you may have previously disconnected. Verify WedgeOS successfully scans traffic.
2.4 Check for Newly Released 4.0.2 Updates
Navigate to the System Update page and check if there have been any new releases for version 4.0.2. See
Section 4.1.15 of the User Manual for further details on how to do a standard System Update.
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | Manual Network Selection/Configuration 9
3 MANUAL NETWORK SELECTION/CONFIGURATION
Should the upgrade process unsuccessfully auto-configure a network interface, and you see either of the
screens in Figure 5 or Figure 6, the interface will need to be manually configured using the serial console
text-driven interface. The keyboard will be used both to input text and navigate.
Note: If you intend to manually set the network configuration even though DHCP is available to auto-
configure the network device, you must ensure that the network interface cannot contact the DHCP
server. If a DHCP server is detected on an interface, doing manual network configuration will not be
possible for that interface. An option to prevent an interface from contacting the DHCP server is to
disconnect the cable from the interface at this step, but this is not recommended due timing the
disconnection. A better option is to configure the DHCP server to not respond to the interface’s MAC
address.
The following keyboard keys can be used for navigation:
Tab/Alt-Tab Keys to move between elements
Up/Down Arrow Keys to move up and down in lists
Enter Key to select the currently highlighted item
FIGURE 5: NETWORK ERROR
4.0.2 WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
10 Manual Network Selection/Configuration | Wedge Networks
FIGURE 6: NETWORK DEVICE SELECTION
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | Manual Network Selection/Configuration 11
3.1 Selecting a Network Device
At the screen in Figure 7(which may appear immediately or after selecting Retry on the screen shown in
Figure 8):
1. Use the arrow keys to select the network interface that has a network cable attached. The
network interfaces are named eth0, eth1, …, ethN, starting from the left side of the
BeSecure appliance.
2. Use the Tab Key to select the OK button and then hit the Enter Key. If you are not sure which
network interface is the correct interface, select the first one. The upgrade user interface will
allow a return to this screen if network configuration is incorrect and you will be able to try
another interface.
3. The system will attempt to use DHCP to configure an IP address for the interface. If DHCP is not
available on the network that your interface is attached to, you will see the screen in Figure 7. In
this case, you can retry Dynamic IP configuration (DHCP) if desired. Otherwise, you must select
Manual configuration and press the OK button. See Section 3 for instructions if this is necessary.
If this screen is not displayed, set up will proceed and complete.
FIGURE 7: CONFIGURE TCP/IP
3.2 Manual Configuration of IP Address
Manual network configuration requires four pieces of information:
An unused IP address for the upgrade process
Your network mask
The IP address of the default gateway of your network
The IP address of your DNS server Ask your network administrator if you do not know the above information. Enter the network information in the appropriate fields on the screen shown in Figure 8, and select OK.
4.0.2 WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE
12 Manual Network Selection/Configuration | Wedge Networks
FIGURE 8: MANUAL TCP/IP CONFIGURATION
WEDGEOS 3.1.8 TO 4.0.2 UPGRADE GUIDE 4.0.2
Wedge Networks | Manual Network Selection/Configuration 13
© Wedge Networks
www.wedgenetworks.com
+1.403.276.5356
+1.403.276.5568