Knowledge Search


×
 

How to upgrade/load ScreenOS software via the Boot/Diag mode

  [KB5519] Show Article Properties


Summary:

This article explains how to upgrade ScreenOS software via the Boot/Diag mode.

Symptoms:
Environment:
  • Upgrade via the Console.
  • Upgrade on boot up.
  • The firewall has a direct connection to a TFTP server.
  • The ScreenOS version, to which the upgrade has to be performed, is on the TFTP server.
Typically, ScreenOS is upgraded via the WebUI or CLI; for information on upgrading, refer to the following links:


However, if the firewall will not boot up, possibly due to a corrupt ScreenOS image that is loaded on the firewall, then the firewall can be upgraded via the Boot/Diag mode.
Cause:

Solution:
Before upgrading the firmware on a firewall, ensure that the following conditions are met:



To upgrade the ScreenOS firmware on the Juniper Firewall via Boot/Diag mode:

  1. Connect the console from your PC to the firewall.

  2. Start the Terminal Program and reset or power up the firewall.

  3. Interrupt the boot-up sequence by pressing any key when the Hit any key to run loader, Hit any key for Boot/Diag mode, or Hit any key to load new firmware message is displayed. For example:
    NetScreen NS-5XT Boot Loader Version 2.0.0 (Checksum: A1B6FF9B)
    Copyright (c) 1997-2003 NetScreen Technologies, Inc.

    Total physical memory: 64MB
    Test - Pass
    Initialization - Done

    Hit any key to run loader
    Hit any key to run loader
    Hit any key to run loader < Press the 'Enter' key at this point

  4. The Boot / Diag Menu should be displayed. Enter the following information, when prompted: 

    • Self IP address - type the IP address for the firewall that is on the same subnet as the TFTP server.

    • TFTP IP address - type the IP address of the TFTP server.

    • Boot File name - type the file name of the ScreenOS version, to which the upgrade is being performed.


    For Example:
    Serial Number [0052062002000203]: READ ONLY
    HW Version Number [1010]: READ ONLY
    Self MAC Address [0010-db20-4e80]: READ ONLY
    Boot File Name [ns5xt.5.0.0r8.0]: ns5xt.5.0.0r9.0
    Self IP Address [10.100.31.178]: 172.19.50.254
    TFTP IP Address [10.100.31.176]: 172.19.50.129
  5. After entering the above information, the system displays information, which is similar to the following excerpt:
    Save Boot Info (56 bytes) ... Done
    Loading file "ns5xt.5.0.0r9.0"...

    >

    rtatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat
    atatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatatat

    This is an indication that the software load is in progress. The messages will continue for a few pages.

  6. After receiving the Loaded successful message, respond Y to the Program to on-board flash message:
    Loaded successfully! (size = 2,009,852 bytes, transmit rate = 214KB/s)
    Ignore image authentication!
    Program to on-board flash? (y/[n]) Y
  7. After the flash is loaded, respond Y to the Run downloaded program message to complete the process:
    Program flash (offset=0, size=2009852)... +++++++++++++++ Done!
    Run downloaded program? ([y]/n) Y

    Start loading...
    .................................................................
    .................................................................
    .................................................................
    ......
    Done.
Related Links: