Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[ScreenOS] How to upgrade/load ScreenOS software via the Boot/Diag mode

0

0

Article ID: KB5519 KB Last Updated: 20 Mar 2020Version: 11.0
Summary:

This article explains how to upgrade ScreenOS software via the Boot/Diag mode.

Symptoms:
Environment:
  • Upgrade via the Console.
  • Upgrade on boot up.
  • The firewall has a direct connection to a TFTP server.
  • The ScreenOS version, to which the upgrade has to be performed, is on the TFTP server.
Typically, ScreenOS is upgraded via the WebUI or CLI; for information on upgrading, refer to the following links:
 
However, if the firewall will not boot up, possibly due to a corrupt ScreenOS image that is loaded on the firewall, then the firewall can be upgraded via the Boot/Diag mode.
Solution:
Before upgrading the firmware on a firewall, ensure that the following conditions are met:

 

To upgrade the ScreenOS firmware on the Juniper Firewall via Boot/Diag mode:

  1. Connect the console from your PC to the firewall.

  2. Start the Terminal Program and reset or power up the firewall.

  3. Interrupt the boot-up sequence by pressing any key when the Hit any key to run loader, Hit any key for Boot/Diag mode, or Hit any key to load new firmware message is displayed. For example:
    SSG320SSG350 Loader V3.0.6                                                      
    Built Mar 19 2008/09:44:31                                                      
    watchdog_probe, 1266 bus/dev/fn = 0/248 ich = 24d0                              
    boot_drive = 80                                                                 
    start1 = 1488, start2 = 7440                                                    
                                                                                    
    Hit 'X' and 'A' to upgrade bootloadermounting FAT16 partition                   
    file size = 112                                                                 
    size = 112, sizeof(nvram_rec) = 112                                             
                                                                                    
    Hit any key to load new firmware                                                
    Hit any key to load new firmware                        ----------------- Hit enter or any key to enter the boot/diag 
    Hit any key to load new firmware

  4. The Boot / Diag Menu should be displayed. Enter the following information, when prompted: 
     
    • Self IP address - type the IP address for the firewall that is on the same subnet as the TFTP server.

    • TFTP IP address - type the IP address of the TFTP server.

    • Boot File name - type the file name of the ScreenOS version, to which the upgrade is being performed.


    For Example:
    Serial Number []: READ ONLY
    BOM Version Number []: READ ONLY
    Self MAC Address [ff87-ffff-fe00]: READ ONLY
    Firmware File Name [ssg320ssg350.6.3.0r26]: ssg320ssg350.6.3.0r26
    Self IP Address [192.168.160.12]: 192.168.160.12
    TFTP IP Address [192.168.160.101]: 192.168.160.101
  5. After entering the above information, the system displays information, which is similar to the following excerpt:
    Save Boot Info (56 bytes) ... Done
    Loading file "
    ssg320ssg350.6.3.0r26"...

    >

    rtatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat

    This is an indication that the software load is in progress. The messages will continue for a few pages.

  6. After receiving the Loaded successful message, respond Y to the Program to on-board flash message:
    Loaded successfully! (size = 2,009,852 bytes, transmit rate = 214KB/s)
    Ignore image authentication!
    Program to on-board flash? (y/[n]) Y
  7. After the flash is loaded, respond Y to the Run downloaded program message to complete the process:
    Program flash (offset=0, size=2009852)... +++++++++++++++ Done!
    Run downloaded program? ([y]/n) Y

    Start loading...
    .................................................................
    .................................................................
    .................................................................
    ......
    Done.
Modification History:
2020-03-20: Minor, non-technical update.
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search