Support Support Downloads Knowledge Base Juniper Support Portal Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[Archive] [STRM/JSA] How to reimage to 2009.2 from any previous version



Article ID: KB17639 KB Last Updated: 05 Oct 2020Version: 4.0
How to re-image a STRM to 2009.2 from any previous version
To reimage the device to the latest STRM Software version.
How to Upgrade the Recovery Partition to restore directly to a specific STRM version.

This information can be found in "Installing STRM" for STRM 2009.2 and above [PDF]  Follow the section on Installing STRM for the Secondary HA Appliance (located in the PDF bookmarks at Installing STRM > Installation Procedures > For Secondary HA Appliance)  Note that if performing a clean install with 2010, steps 2-5 are unneccessary as the script was placed in /opt/qradar/bin during the first 2010 install.

The steps are included below for your convenience:

Step 1: Copy the new 2009.2 ISO to the STRM Appliance using the following command:
scp <iso file name> root@<strm ip>:/root or using a ftp client.
Note: The script can be extracted directly from the 2009.2 ISO.

Step 2: Mount the ISO using the following command:
mount -o loop <iso_file_name> /media/cdrom/
Step 3: Extract the script by running the following command:
rpm2cpio /media/cdrom/post/*branding*.rpm | cpio -idv

Step 4: Move file into the root directory:
mv opt/oem/branding/
Step 5: Unmount the ISO using the following command:
umount /media/cdrom/
Note: If the STRM appliance has been previously managed then IPTables will need to be stopped in order to allow SCP. Run the following command: service tables stop.

Step 6: Run the extracted script using the following command:
./ -r --default --reboot <STRM2009.2.iso_file_name>

The following is an example output that will be displayed within the command line:
[root@vmb63 ~]# ./ -r --default --reboot
INFO :copying CentOS564STRM2009_2_0_148034.iso to /recovery/iso
INFO :Found iso /recovery/iso/CentOS564STRM2009_2_0_1480xx.iso
as Security Threat Response Manager 2009.2.0.1480xx
INFO :Wrote new grub.cfg
INFO :About to reboot
INFO :Press enter when ready

Step 7: Press Enter to reboot the appliance. The following message appears:
Welcome to factory reset option.
You have selected the option to re-install your system. This option returns all system settings to the factory defaults and removes all existing data and configuration. This process is not reversible.
If you do not wish to continue, type REBOOT at the prompt.
If you wish to continue, type FLATTEN at the prompt.

Step 8: Enter flatten and press Enter to continue.
The installer repartitions and reformats the hard disk, installs the OS, and then re-installs STRM. Wait for the flatten process to complete. This process can take up to several minutes, depending on your system. When this process is complete, the normal fresh install process proceeds.

Step 9: When the installation completes, enter SETUP and login to the system with the username root.
Modification History:
01/02/2020 - Modified for Archive. We still leverage this procedure to re-image the JSA series.

Related Links

Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search