George, It's not possible to preform any kind of hitless upgrade..
The Netscreen must reboot once the new code is loaded. So you must factor in the time it will take for the firewall to reload in addition to the hit it will take when the wall comes back online and the traffic starts to flood back. Depending on the size of your network/amount of VPN tunnels it could take a couple of minutes for everything to ramp back up. Downgrading code is possible depending what code version you're going to. It can be a bit problematic if say you go to 6.X code from 5.0 but if you had planned on going from 5.0 to 5.4 going back shouldn't be much of a problem. Good luck, -Tim Eberhard On Mon, Jul 13, 2009 at 7:12 AM, George <gmb...@cellulant.com> wrote: > Sorry guys, > > The two firewalls are in completely two different networks and in no way > work together. The reason I mentioned the two is because I tried the > same VPN on the other Firewall with a higher firmware and it worked > within minutes of set-up. So i really want to upgrade this firewall. > > Thanks > George > > On Mon, 2009-07-13 at 17:17 +0500, mas...@nexlinx.net.pk wrote: > > > Are you using both of the firewalls as n active/active or active/passive; > > if yes thn you can try upgrading one of them while the other will take > > care of your production services. > > > > Regards, > > Masood > > > > > Hi there, > > > > > > I have two juniper netscreens one is Firmware 5.0.0r8.1 . Now I have > > > encountered a problem when setting up a VPN on this one due to firmware > > > version thus I need to upgrade it. > > > > > > The question is how do I upgrade this firmware, challenge being that it > > > is running live services and if the upgrade fails how do I roll-back. > > > Guess the thing is I have to be 100% sure the upgrade will not affect > > > anything. > > > > > > Cheers. > > > George > > > _______________________________________________ > > > juniper-nsp mailing list juniper-nsp@puck.nether.net > > > https://puck.nether.net/mailman/listinfo/juniper-nsp > > > > > > > > _______________________________________________ > juniper-nsp mailing list juniper-nsp@puck.nether.net > https://puck.nether.net/mailman/listinfo/juniper-nsp > _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp
