Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Example for Upgrading a Switch Using Smart Upgrade
When a large number of switches need to be upgraded to the latest version, you can configure smart upgrade to upgrade the switches in a more convenient manner.
Networking Requirements
On the network shown in Figure 9-4, the switches reside on a public network. Smart upgrade needs to be configured to enable the switches to download system software and patches from the HOUP.
Configuration Roadmap
- Create an SSL policy and bind a CA certificate to the policy.
- Configure smart upgrade, including binding the SSL policy and enabling smart upgrade.
- Check the switch status.
- Perform smart upgrade immediately.
Procedure
- Create an SSL policy and bind a CA certificate to the policy on SwitchA. The configurations of SwitchB and SwitchC are similar to that of SwitchA, and are not mentioned here.
<HUAWEI> system-view [HUAWEI] ssl policy houp [HUAWEI-ssl-policy-houp] trusted-ca load pem-ca houp_root.cer [HUAWEI-ssl-policy-houp] quit
- Configure smart upgrade on SwitchA. The configurations of SwitchB and SwitchC are similar to that of SwitchA, and are not mentioned here.
[HUAWEI] smart-upgrade ssl-policy houp //Bind an SSL policy to smart upgrade. [HUAWEI] smart-upgrade enable //Enable smart upgrade. [HUAWEI] smart-upgrade information telephone 111111111 email abcd@huawei.com //Set the contact number and email address for smart upgrade.
- Check the version status and network connectivity of SwitchA.
# Check the connectivity between SwitchA and the HOUP, and the version status of SwitchA.
[HUAWEI] display smart-upgrade information Info: Loading the information, please wait . Configuration: URL : houp.huawei.com HTTPS port : 443 Bind SSL policy : houp Verify HTTPS server : true Telephone : 1****1111 Email : ****@huawei.com Version information: Refresh time : 2019-01-23 12:24:06 Check version result : needUpdate //When the software version of the switch is not optimal, you are advised to perform an upgrade. (If network connectivity between the switch and HOUP fails, netError is displayed.) Recommended software version : V200R019C10 Recommended patch version : V200R019SPH001 Upgrade description : Firmware and Patch Description in English:1)description:2)CC+SPH Software package name : S600-V200R019C10.cc Software package size(B) : 120101636 Patch package name : S600-V200R019SPH001.pat Patch package size(B) : 14910 Upgrade information: Upgrade Time : 2019-01-23 11:13 Upgrade status : success Cancellation status : - Software download time : - Software download progress(%): - Software download speed(KB/s): - Patch download time : - Patch download progress(%) : - Patch download speed(KB/s) : - Last upgrade time : 2019-01-23 11:13 Last upgrade result : success Local information: Device name : S628X-PWR-E ESN : 2102351XFR12xxxxxxxx Software version : V200R019C10 Patch version : V200R019SPH
- Perform smart upgrade on SwitchA. The configurations of SwitchB and SwitchC are similar to that of SwitchA, and are not mentioned here.
[HUAWEI] smart-upgrade right-now Info: Getting version information from houp, please wait ... Info: If you want to stop the upgrade, please press CTRL + C. Info: Downloading file basic-soft.cc ... Info: The file already exists, check whether it can be resumed from the breakpoint. Info: Resume from the 15728640 bytes breakpoint. Info: Current percent is 100%. Info: 104372996 byte(s) received in 197.329 second(s) 516.53 Kbyte(s)/sec. Info: Downloading file basic-soft.cc.asc ... Info: Current percent is 100%. Info: 490 byte(s) received in 0.201 second(s) 2.38 Kbyte(s)/sec. Info: Downloading file basic-patch.pat ... Info: The file already exists, check whether it can be resumed from the breakpoint. Info: The file size is OK and the content is consistent. Info: Downloading file basic-patch.pat.asc ... Info: The file already exists, check whether it can be resumed from the breakpoint. Info: The file size is OK and the content is consistent. Info: Start verifying signature ... Info: Signature verification passed. Info: Set next startup patch basic-patch.pat successfully. Info: Start set next startup file, please wait... Info: Set next startup file basic-soft.cc successfully. Info: System will rebooting for upgrade... - Check the software version after the upgrade.
<HUAWEI> display version Huawei Versatile Routing Platform Software VRP (R) software, Version 5.170 (S600 V200R019C10) Copyright (C) 2000-2018 HUAWEI TECH Co., Ltd. HUAWEI S628X-PWR-E Routing Switch uptime is 0 week, 0 day, 13 hours, 49 minutes ES5D2S52C004 1(Master) : uptime is 0 week, 0 day, 13 hours, 47 minutes DDR Memory Size : 4096 M bytes FLASH Total Memory Size : 1024 M bytes FLASH Available Memory Size : 842 M bytes SSD Memory Size : 223 G bytes Pcb Version : VER.A BootROM Version : 020d.0000 BootLoad Version : 020d.0000 CPLD Version : 0102 Software Version : VRP (R) Software, Version 5.170 (V200R019C10) //Current software version of the switch. FLASH Version : 0000 CARD1 information Pcb Version : ES5D21X08T00 VER.C CPLD Version : 010c PWR1 information Pcb Version : PWR VER.A FAN1 information Pcb Version : NA
Configuration Files
- SwitchA configuration file
# smart-upgrade ssl-policy houp smart-upgrade enable smart-upgrade information telephone %^%#io6P(j9(U;):/}VIw8@T}G4/4{`@TX{' email %^%#r~|i3Gp6U2k)YHDat=l1}G4/4{`@TX{'{'<tO+P<g"%^%# # ssl policy houp trusted-ca load pem-ca houp_root.cer ssl minimum version tls1.2 //The SSL policy is automatically generated. #