ON THIS PAGE
Example: Installing Junos OS Upgrade Packages on SRX Series Devices
Example: Installing Junos OS on SRX Series Firewalls Using the Partition Option
Reverting the Junos OS Software Image Back to the Previous Version
Preparing the USB Flash Drive to Upgrade Junos OS on SRX Series Devices
Installing Junos OS on SRX Series Firewalls Using a USB Flash Drive
Installing Junos OS on SRX Series Firewalls from the Boot Loader Using a TFTP Server
Installing Junos OS on SRX Series Firewalls from the Boot Loader Using a USB Storage Device
Upgrading the Software of SRX Series Firewalls by Using a PXE Boot Server
Installing Software on SRX Series Devices
SRX Series Firewalls are delivered with preinstalled Junos operating system (Junos OS). Before you start this procedure, decide which software package you need and download it.
Understanding Junos OS Upgrades for SRX Series Firewalls
SRX Series Firewalls are delivered with Junos OS pre-installed on them. When you power on a device, it starts (boots) up using its primary boot device. These devices also support secondary boot devices, allowing you to back up your primary boot device and configuration.
As new features and software fixes become available, you must upgrade Junos OS to use them. Before an upgrade, we recommend that you back up your primary boot device.
- Understanding Junos OS Upgrades
- Know the Upgrade Path for Junos OS
- Junos OS Upgrade Methods on the SRX Series Firewalls
Understanding Junos OS Upgrades
On a services gateway, you can configure the primary or secondary boot device with a snapshot of the current configuration, default factory configuration, or rescue configuration. You can also replicate the configuration for use on another device.
If the SRX Series Firewall does not have a secondary boot device configured and the primary boot device becomes corrupted, you can reload the Junos OS package onto the corrupted internal media from a USB flash drive or TFTP server.
Know the Upgrade Path for Junos OS
Knowing the upgrade path helps you to choose the correct Junos OS package or packages to install.
The best practice is to always check the most up-to-date version as suggested in Knowledge Base article. See Junos Software Versions - Suggested Releases to Consider and Evaluate.
For information on upgrade path, see Junos Upgrade Paths for SRX Platforms.
Check article on ISSU limitations. See SRX ISSU ICU Upgrade Limitations.
Junos OS Upgrade Methods on the SRX Series Firewalls
SRX Series Firewalls that ship from the factory with Junos OS Release 10.0 or later are formatted with the dual-root partitioning scheme.
Junos OS Release 12.1X45 and later do not support single root partitioning.
SRX100, SRX110, SRX210, SRX220, and SRX240 devices with 2 GB RAM cannot be upgraded to any Junos OS 12.1X46 Release after 12.1X46-D65. Attempting to upgrade to this release on devices with 2 GB RAM will trigger the following error: ERROR: Unsupported platform for 12.1X46 releases after 12.1X46-D65
.
Existing SRX Series Firewalls that are running Junos OS Release 9.6 or earlier use the single-root partitioning scheme. While upgrading these devices to Junos OS Release 10.0 or later, you can choose to format the storage media with dual-root partitioning (strongly recommended) or retain the existing single-root partitioning.
Certain Junos OS upgrade methods format the internal media before installation, whereas other methods do not. To install Junos OS Release 10.0 or later with the dual-root partitioning scheme, you must use an upgrade method that formats the internal media before installation.
If you are upgrading to Junos OS Release 10.0 without transitioning to dual-root partitioning, use the conventional CLI and J-Web user interface installation methods.
These upgrade methods format the internal media before installation:
Installation from the boot loader using a TFTP server
Installation from the boot loader using a USB storage device
Installation from the CLI using the
partition
option (available in Junos OS Release 10.0)Installation using the J-Web user interface
These upgrade methods retain the existing partitioning scheme:
Installation using the CLI
Installation using the J-Web user interface
Upgrade methods that format the internal media before installation wipe out the existing contents of the media. Only the current configuration is preserved. Any important data must be backed up before starting the process.
Once the media has been formatted with the dual-root partitioning scheme, you can use conventional CLI or J-Web user interface installation methods, which retain the existing partitioning and contents of the media, for subsequent upgrades.
Example: Installing Junos OS Upgrade Packages on SRX Series Devices
This example shows how to install Junos OS upgrades on SRX Series Firewalls.
Requirements
Before you begin:
Verify the available space on the internal media.
Download the software package. See Downloads to download the software package for your products.
Copy the software package to the device if you are installing the software package from a local directory on the device. We recommend that you copy it to the
/var/tmp
directory. To copy the software package to the/var/tmp
directory, use the following command from the operational mode:user@host> file copy /var/tmp/install/image-name/var/tmp/
Example:
user@host> file copy /var/tmp/install/junos-srxsme-10.0R2-domestic.tgz /var/tmp/
Overview
By default, the request system software add package-name
command uses the validate option to validate the software
package against the current configuration as a prerequisite to adding
the software package. This validation ensures that the device can
reboot successfully after the software package is installed. This
is the default behavior when you are adding a software package.
In this example, add the software package (for example: junos-srxsme-10.0R2-domestic.tgz [for SRX Series Firewalls] with the following options:
no-copy
option to install the software package but do not save the copies of package files. You must include this option if you do not have enough space on the internal media to perform an upgrade that keeps a copy of the package on the device.reboot
option to reboots the device after installation is completed.
Configuration
Procedure
GUI Quick Configuration
Step-by-Step Procedure
To install Junos OS upgrades on SRX Series Firewalls:
In the J-Web user interface, select Maintain>Software>Upload Package.
On the Upload Package page, specify the software package to upload. Click Browse to navigate to the software package location and select junos-srxsme-10.0R2-domestic.tgz.
Select the Reboot If Required check box to set the device to reboot automatically when the upgrade is complete.
Select the Do not save backup check box to bypass saving the backup copy of the current Junos OS package (SRX Series).
Click Upload Package. The software is activated after the device has rebooted.
Click OK to check your configuration and save it as a candidate configuration.
If you are done configuring the device, click Commit Options>Commit.
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
From operational mode, install the new package on the device with the no-copy option, and format and re-partition the media before installation, and reboot the device after installation is completed.
To install Junos OS upgrades on SRX Series Firewalls:
From operational mode, install the new package on the device. In this example, the package name is junos-srxsme-10.0R2-domestic.tgz:
user@host> request system software add /var/tmp/junos-srxsme-10.0R2-domestic.tgz no-copy
Note:We recommend that you configure the
no-validate
option only when expressly specified by the Juniper Networks Technical Assistance Center (JTAC).Reboot the device.
user@host> request system reboot
When the reboot is complete, the device displays the login prompt.
Results
From configuration mode, confirm your configuration
by entering the show system
command. If the output does
not display the intended configuration, repeat the configuration instructions
in this example to correct it.
If you are done configuring the device, enter commit
from configuration mode.
Verification
Confirm that the configuration is working properly.
Verifying the Junos OS Upgrade Installation
Purpose
Verify that the Junos OS upgrade was installed.
Action
From operational mode, enter the show version
command.
Sample Output
command-name
user@host> show version Hostname: srx340-a Model: srx345 Junos: 18.2R1-S3.2 JUNOS Software Release [18.2R1-S3.2]
Meaning
The show version
command displays the hostname,
model number, and the release information loaded on the device.
Example: Installing Junos OS on SRX Series Firewalls Using the Partition Option
This example shows how to install Junos OS Release
10.0 or later with the partition
option.
Requirements
Before you begin, back up any important data.
Overview
This example formats the internal media and installs the new
Junos OS image on the media with dual-root partitioning. Reinstall
the Release 10.0 or later image from the CLI using the request
system software add
command with the partition
option.
This copies the image to the device, and then reboots the device for
installation. The device boots up with the Release 10.0 or later image
installed with the dual-root partitioning scheme. When the partition
option is used, the format and install process is scheduled to run
on the next reboot. Therefore, we recommend that this option be used
together with the reboot
option.
The process might take 15 to 20 minutes. The system is not accessible over the network during this time.
Using the partition
option with the request system software add
command erases the existing contents
of the media. Only the current configuration is preserved. You must
back up any important data before starting the process.
Partition install is supported on the default media on SRX300, SRX320, SRX340, and SRX345 devices (internal NAND flash) and not supported on the alternate media (USB storage key). Partition install is supported on the default media on SRX380 Series devices (internal SSD) and not on alternate media (USB storage key).
Partition install is supported on the default media on SRX100, SRX210, and SRX240 devices (internal NAND flash) and on SRX650 devices (internal CF card). Partition install is not supported on the alternate media on SRX100, SRX210, and SRX240 devices (USB storage key) or on SRX650 devices (external CF card or USB storage key).
In this example, add the software package junos-srxsme-10.0R2-domestic.tgz with the following options:
no-copy
option to install the software package but do not save the copies of package files. You must include this option if you do not have enough space on the internal media to perform an upgrade that keeps a copy of the package on the device.no-validate
option to bypass the compatibility check with the current configuration before installation starts.partition
option to format and re-partition the media before installation.reboot
option to reboots the device after installation is completed.
Topology
Configuration
Procedure
CLI Quick Configuration
To install Junos OS Release 10.0 or later with the partition option, enter the following command from operational mode:
user@host>request system software add junos-srxsme-10.0R2-domestic.tgz no-copy no-validate partition reboot
GUI Quick Configuration
Step-by-Step Procedure
To install Junos OS Release 10.0 or later with the partition
option:
In the J-Web user interface, select Maintain>Software>Install Package.
On the Install Package page, specify the FTP or HTTP server, file path, and software package name. Type the full address of the software package location on the FTP or HTTP. Example: ftp://hostname/pathname/junos-srxsme-xx.0R2-domestic.tgz or http://hostname/pathname/junos-srxsme-xx.0R2-domestic.tgz.
Note:Specify the username and password, if the server requires one.
Select the Reboot If Required check box to set the device to reboot automatically when the upgrade is complete.
Select the Do not save backup check box to bypass saving the backup copy of the current Junos OS package.
Select the Format and re-partition the media before installation check box to format the internal media with dual-root partitioning.
Click Fetch and Install Package. The software is activated after the device reboots.
This formats the internal media and installs the new Junos OS image on the media with dual-root partitioning.
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
To install Junos OS Release 10.0 or later with the partition
option:
Upgrade the device to Junos OS Release 10.0 or later using the CLI.
After the device reboots, upgrade the boot loader to the latest version. See Preparing the USB Flash Drive to Upgrade Junos OS on SRX Series Devices.
Reinstall the Release 10.0 or later image.
user@host>request system software add junos-srxsme-10.0R2-domestic.tgz no-copy no-validate partition reboot Copying package junos-srxsme-10.0R2-domestic.tgz to var/tmp/install Rebooting ...
Results
From configuration mode, confirm your configuration
by entering the show system storage partitions
command.
If the output does not display the intended configuration, repeat
the configuration instructions in this example to correct it.
Sample output on a system with single root partitioning:
user@host> show system storage partitions
Boot Media: internal (da0) Partitions Information: Partition Size Mountpoint s1a 898M / s1e 24M /config s1f 61M /var
Sample output on a system with dual-root partitioning:
user@host> show system storage partitions
Boot Media: internal (da0) Active Partition: da0s2a Backup Partition: da0s1a Currently booted from: active (da0s2a) Partitions Information: Partition Size Mountpoint s1a 293M altroot s2a 293M / s3e 24M /config s3f 342M /var s4a 30M recovery
If you are done configuring the device, enter commit
from configuration mode.
Reverting the Junos OS Software Image Back to the Previous Version
This example shows how to downgrade Junos OS on the SRX Series Firewalls.
Requirements
No special configuration beyond device initialization is required before configuring this feature.
Overview
When you upgrade your software, the device creates a backup image of the software that was previously installed in addition to installing the requested software upgrade.
To downgrade the software, you can revert to the previous image using the backup image. You can use this method to downgrade to only the software release that was installed on the device before the current release. To downgrade to an earlier version, follow the procedure for upgrading, using the software image labeled with the appropriate release. This example returns software to the previous Junos OS version.
This procedure applies only to downgrading from one Junos OS software release to another or from one Junos OS services release to another.
Configuration
Procedure
CLI Quick Configuration
To quickly configure this section of the example,
copy the following commands, paste them into a text file, remove any
line breaks, change any details necessary to match your network configuration,
copy and paste the commands into the CLI at the [edit]
hierarchy
level, and then enter commit
from configuration mode.
From operational mode, enter:
user@host> request system software rollback request system reboot
GUI Quick Configuration
Step-by-Step Procedure
To downgrade Junos OS on SRX Series Firewalls:
In the J-Web user interface, select Maintain>Software>Downgrade. The image of the previous version (if any) appears on this page.
Note:After you perform this operation, you cannot undo it.
Select Downgrade to downgrade to the previous version of the software or Cancel to cancel the downgrade process.
Click Maintain>Reboot from the J-Web user interface to reboot the device.
Note:To downgrade to an earlier version, follow the procedure for upgrading, using the software image labeled with the appropriate release.
Click OK to check your configuration and save it as a candidate configuration.
If you are done configuring the device, click Commit Options>Commit.
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
To downgrade Junos OS on SRX Series Firewalls:
From operational mode, return to the previous Junos OS version.
user@host> request system software rollback
Reboot the device.
user@host> request system reboot
The device is now running the previous version of Junos OS. To downgrade to an earlier version, follow the procedure for upgrading, using the software image labeled with the appropriate release.
Results
From configuration mode, confirm your configuration
by entering the show system
command. If the output does
not display the intended configuration, repeat the configuration instructions
in this example to correct it.
If you are done configuring the device, enter commit
from configuration mode.
Preparing the USB Flash Drive to Upgrade Junos OS on SRX Series Devices
This feature simplifies the upgrading of Junos OS images in cases where there is no console access to an SRX Series Firewall located at a remote site. This functionality allows you to upgrade the Junos OS image with minimum configuration effort by simply copying the image onto a USB flash drive, inserting it into the USB port of the SRX Series Firewall, and performing a few simple steps. You can also use this feature to reformat a boot device and recover an SRX Series Firewall after boot media corruption.
All USB flash drives used on SRX Series Firewalls must have the following features:
USB 2.0 or later.
Formatted with a FAT/FAT 32 or MS-DOS file system
For the list of recommended USB drives, see Knowledge Base article KB31622.
The Junos OS package on a USB device is commonly stored in the root drive as the only file; for example, junos-srxsme-15.1X49-D30.3-domestic.tgz.
Any USB memory product not listed as supported for SRX Series Firewalls has not been tested by Juniper Networks. The use of any unsupported USB memory product could expose your SRX Series Firewall to unpredictable behavior. Juniper Networks Technical Assistance Center (JTAC) can provide only limited support for issues related to unsupported hardware. We strongly recommend that you use only supported USB flash drives.
This feature is not supported on chassis clusters.
Before you begin:
Copy the Junos OS upgrade image and its autoinstall.conf file to the USB device.
Ensure that adequate space is available on the SRX Series Firewall to install the software image.
To prepare the USB flash drive and copy the Junos OS image onto the USB flash drive:
Installing Junos OS on SRX Series Firewalls Using a USB Flash Drive
To install the Junos OS image on an SRX Series Firewall using a USB flash drive:
On SRX300, SRX320, SRX340, SRX345, SRX380, and SRX550M devices, frequent plug and play of USB keys is not supported. You must wait for the device node creation before removing the USB key.
If an installation error occurs, the LEDs turn red, which might indicate that the Junos OS image on the USB flash drive is corrupted. An installation error can also occur if the current configuration on the SRX Series Firewall is not compatible with the new Junos OS version on the USB or if there is not enough space on the SRX Series Firewall to install the image. You must have console access to the SRX Series Firewall to troubleshoot an installation error.
You can use the set system autoinstallation usb disable
command to prevent the
automatic installation from the USB device. After using this command, if you
insert the USB device into the USB port of the SRX Series Firewall, the
installation process does not work.
Installing the Junos OS image using a USB flash drive is supported on SRX100, SRX110, SRX210, SRX220, and SRX240 devices.
Upgrading the Boot Loader on SRX Series Devices
To upgrade the boot loader to the latest version:
You can check the boot loader version number at console output when your device boots up as shown in the following example:
scanning bus 0 for devices... 1 USB Device(s) found scanning usb for storage devices... 1 Storage Device(s) found FreeBSD/MIPS U-Boot bootstrap loader, Revision 2.10
To verify the (bios) firmware version on the SRX Series Firewall,
enter the show chassis routing-engine bios
command.
user@host>
show chassis routing-engine bios
Routing Engine BIOS Version: 1.5
Installing Junos OS on SRX Series Firewalls from the Boot Loader Using a TFTP Server
You can install Junos OS using the Trivial File Transfer Protocol (TFTP) method. The device is shipped with Junos OS loaded on the primary boot device. During Junos OS installation from the loader, the device retrieves the Junos OS package from a TFTP server. The internal media is then formatted, and the Junos OS image is installed.
From the loader installation, you can:
Install Junos OS on the device for the first time.
Recover the system from a file system corruption.
Note:Installation from a TFTP server can only be performed using the first onboard Ethernet interface.
Installation from the loader-over-TFTP method does not work reliably over slow speeds or large latency networks.
Before you begin, verify that:
You have access to the TFTP server with the Junos OS package to be installed.
That the TFTP server supports BOOTP or DHCP. If the TFTP server does not support BOOTP or DHCP, you must set the environment variables before performing the installation from the TFTP server.
Functional network connectivity exists between the device and the TFTP server over the first onboard Ethernet interface.
To install the Junos OS image on the internal media of the device:
When this command is executed:
The Junos OS package is downloaded from the TFTP server.
The internal media on the system is formatted.
The Junos OS package is installed on the internal media.
The Installation from the loader-over-TFTP method installs Junos OS on the internal CF on SRX100, SRX210, SRX220, and SRX240 devices, whereas on SRX650 devices, this method can install Junos OS on the internal or external CF card.
After Junos OS is installed, the device boots from the internal media. Once the system boots up with Junos OS Release 10.0 or later, you must upgrade the U-boot and boot loader immediately.
When you install Junos OS using the loader-over-TFTP method, the media is formatted. The process attempts to save the current configuration. We recommend that you back up all important information on the device before using this process.
Installing Junos OS on SRX Series Firewalls from the Boot Loader Using a USB Storage Device
To install Junos OS Release 10.0 or later from the boot loader using a USB storage device:
On SRX300, SRX320, SRX340, SRX345, SRX380, and SRX550M devices, frequent plug and play of USB keys is not supported. You must wait for the device node creation before removing the USB key.
If an installation error occurs, the LEDs turn red, which might indicate that the Junos OS image on the USB flash drive is corrupted. An installation error can also occur if the current configuration on the SRX Series Firewall is not compatible with the new Junos OS version on the USB or if there is not enough space on the SRX Series Firewall to install the image. You must have console access to the SRX Series Firewall to troubleshoot an installation error.
If the USB device is not recognized, you may see a message similar to
Target device selected for installation: internal media cannot open
package (error 2)
. If you see such a message, power cycle the SRX
Series Firewall with the USB inserted and try the boot loader install again.
Upgrading the Software of SRX Series Firewalls by Using a PXE Boot Server
- Upgrading the Software of SRX1500 Device
- Upgrading the Software of SRX4100 Device
- Upgrading the Software of SRX4600 Device
Upgrading the Software of SRX1500 Device
The build image loaded on the device defines the software version of the device. You can change the version of the device by upgrading it.
You can upgrade the software of a device by using the Preboot Execution Environment (PXE) boot server. A PXE boot prepares a client/server environment to boot devices by using a network interface that is independent of available data storage devices or installed operating systems. The image of the operating system is stored on a TFTP server. You can have a separate PXE boot server for each image.
To upgrade the software of a device by using the PXE boot server method:
Copy the image you want installed on the device to the PXE boot server.
Reboot the device to install the image. If you have already copied the image to the PXE boot server, reboot the device to install the image.
To copy the image you want installed to the PXE boot server and install the image:
If the device fails to reboot, you can use the USB disk installation option. However, after using USB disk installation, if the router fails to reboot or is not accessible, follow these steps on the console:
Reboot or power on the device
Press the ESC button to go to the Boot Manager Menu.
Select
Setup Utility
, and then press Enter.Select the boot type as
UEFI Boot Type
, PXE boot capability asUEFI:IPv4
, first boot device asPXE on ME
and set network stack asEnabled
.Click F10
-
In operational mode, verify that the upgrade is successful. If you have upgraded the software of the device to an SRX1500, the new version of the device is
srx1500
.user@host> show version Hostname: host Model: srx1500
Juniper Networks does not support using the request system software rollback
command to revert to the previously installed software.
Upgrading the Software of SRX4100 Device
The build image loaded on the device defines the software version of the device. You can change the version of the device by upgrading it.
You can upgrade the software version of a device by using the Preboot Execution Environment (PXE) boot server. A PXE boot prepares a client/server environment to boot devices by using a network interface that is independent of available data storage devices or installed operating systems. The image of the operating system is stored on a TFTP server. You can have a separate PXE boot server for each image.
To upgrade the software version of a device using the PXE boot server method:
Copy the image you want installed on the device to the PXE boot server.
Reboot the device to install the image. If you have already copied the image to the PXE boot server, reboot the device to install the image.
To copy the image you want installed to the PXE boot server and install the image:
If the device fails to reboot, you can use the USB disk installation option. However, after using USB disk installation, if the router fails to reboot or is not accessible, follow these steps on the console:
Reboot or power on the device
Press the ESC button to go to the Boot Manager Menu.
Select the boot mode as
LEGACY
, boot option 1 asNetwork
, and set network stack asDisabled
.Select save and exit or click F4 to start PXE boot.
Select the menu from the screen and click Enter to reboot the device.
Choose boot option 1 as
Hard Disk
.Select save and exit or click F4.
-
In operational mode, verify that the upgrade is successful. If you have upgraded the version of the device to an SRX4100, the new version of the device is
srx4100
.user@host> show version Hostname: host Model: srx4100
Juniper Networks does not support using the request system software rollback
command to revert to the previously installed software version.
Upgrading the Software of SRX4600 Device
The build image loaded on the device defines the software of the device. You can change the software of the device by upgrading it.
You can upgrade the software version of a device by using the Preboot Execution Environment (PXE) boot server. A PXE boot prepares a client/server environment to boot devices by using a network interface that is independent of available data storage devices or installed operating systems. The image of the operating system is stored on a TFTP server. You can have a separate PXE boot server for each image.
To upgrade the software of a device by using the PXE boot server method:
Copy the image you want installed on the device to the PXE boot server.
Reboot the device to install the image. If you have already copied the image to the PXE boot server, reboot the device to install the image.
To copy the image you want installed to the PXE boot server and install the image:
If the device fails to reboot, you can use the USB disk installation option. However, after using USB disk installation, if the router fails to reboot or is not accessible, follow these steps on the console:
Reboot or power on the device
Press the ESC button to go to the Boot Manager Menu.
Select
Setup Utility
, and then press Enter.Select the PXE boot capability as
UEFI:IPv4
, disableHDD
and enableETH00
under EPI.Click F10
-
In operational mode, verify that the upgrade is successful. If you have upgraded the software version of the device to an SRX4600, the new version of the device is
srx4600
.user@host> show version Hostname: host Model: srx4600
Juniper Networks does not support using the request system software rollback
command to revert to the previously installed software version.
Restarting and Halting SRX Series Devices
This topic includes the following sections:
- Rebooting SRX Series Devices
- Halting SRX Series Devices
- Bringing Chassis Components Online and Offline on SRX Series Devices
- Restarting the Chassis on SRX Series Devices
Rebooting SRX Series Devices
This example shows how to reboot a SRX Series Firewall.
Requirements
Before rebooting the device, save and commit any Junos OS updates.
Overview
This example shows how to reboot a device fifty minutes from when you set the time from the internal media while sending a text message of ’stop’ to all system users before the device reboots.
Configuration
Procedure
CLI Quick Configuration
To quickly configure this section of the example,
copy the following commands, paste them into a text file, remove any
line breaks, change any details necessary to match your network configuration,
copy and paste the commands into the CLI at the [edit]
hierarchy
level, and then enter commit
from configuration mode.
From operational mode, enter:
user@host> request system reboot at 5 in 50 media internal message stop
GUI Quick Configuration
Step-by-Step Procedure
To reboot a device:
In the J-Web user interface, select Maintain>Reboot.
Select Reboot in 50 minutes to reboot the device fifty minutes from the current time.
Select the internal (for SRX Series Firewalls) boot device from the Reboot From Media list.
In the Message box, type stop as the message to display to any user on the device before the reboot occurs.
Click Schedule. The J-Web user interface requests confirmation to perform the reboot.
Click OK to confirm the operation.
If the reboot is scheduled to occur immediately, the device reboots. You cannot access J-Web until the device has restarted and the boot sequence is complete. After the reboot is complete, refresh the browser window to display the J-Web login page.
If the reboot is scheduled to occur in the future, the Reboot page displays the time until reboot. You have the option to cancel the request by clicking Cancel Reboot on the J-Web user interface Reboot page.
Click OK to check your configuration and save it as a candidate configuration.
If you are done configuring the device, click Commit Options>Commit.
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
To reboot a device:
From operational mode, schedule a reboot of the device to occur fifty minutes from when you set the time from the internal media while sending a text message of ’stop’ to all system users before the device reboots.
Enter:
user@host> request system reboot at 5 in 50 media internal message stop
Results
From configuration mode, confirm your configuration
by entering the show system
command. If the output does
not display the intended configuration, repeat the configuration instructions
in this example to correct it.
If you are done configuring the device, enter commit
from configuration mode.
Halting SRX Series Devices
This example shows how to halt a device.
Requirements
Before halting the device, save and commit any Junos OS updates.
Overview
When the device is halted, all software processes stop and you can access the device through the console port only. Reboot the device by pressing any key on the keyboard.
If you cannot connect to the device through the console port, shut down the device by pressing and holding the power button on the front panel until the POWER LED turns off. After the device has shut down, you can power on the device by pressing the power button again. The POWER LED turns on during startup and remains steadily green when the device is operating normally.
This example shows how to halt the system and stop software processes on the device immediately.
Configuration
Procedure
CLI Quick Configuration
To quickly configure this section of the example,
copy the following commands, paste them into a text file, remove any
line breaks, change any details necessary to match your network configuration,
copy and paste the commands into the CLI at the [edit]
hierarchy
level, and then enter commit
from configuration mode.
From operational mode, enter:
user@host> request system halt at now
The request system halt
command used for halting
the system and stopping software processes on the device is not supported
on SRX1500, SRX4100, and SRx4200 devices.
GUI Quick Configuration
Step-by-Step Procedure
To halt a device immediately:
In the J-Web user interface, select Maintain>Reboot.
Select Halt Immediately. After the software stops, you can access the device through the console port only.
Click Schedule. The J-Web user interface requests confirmation to halt.
Click OK to confirm the operation. If the device halts, all software processes stop and you can access the device through the console port only. Reboot the device by pressing any key on the keyboard.
Click OK to check your configuration and save it as a candidate configuration.
If you are done configuring the device, click Commit Options>Commit.
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
To halt a device:
From operational mode, halt the SRX Series Firewall immediately.
user@host> request system halt at now
Results
From configuration mode, confirm your configuration
by entering the show system
command. If the output does
not display the intended configuration, repeat the configuration instructions
in this example to correct it.
If you are done configuring the device, enter commit
from configuration mode.
Bringing Chassis Components Online and Offline on SRX Series Devices
You can use the request
commands to bring chassis
components (except Power Entry Modules and fans) online and offline.
To bring chassis components online and offline, enter these request chassis
commands:
user@host> request chassis <fru> slot <slot#> pic <pic#> online
user@host> request chassis <fru> slot <slot#> pic <pic#> online
Where <fru> in the request chassis command can be any of the following (for SRX300, SRX320, SRX340, SRX345, SRX380, and SRX550M devices):
fpc
—Changes the Flexible PIC Concentrator (FPC) status.
Where <fru> in the request chassis command can be any of the following (for SRX5800, SRX5600, and SRX5400 devices):
cb
—Changes the control board status.fabric
—Changes the fabric status.fpc
—Changes the Flexible PIC Concentrator (FPC) status.fpm
—Changes the craft interface status.pic
—Changes the physical interface card status.routing-engine
—Changes the routing engine status.
The request chassis
command is not supported
for bringing SPCs online and offline.
Example:
To bring specific pic and the corresponding fpc slot online,
from operational mode enter the following request chassis
command:
user@host> request chassis pic pic-slot 1 fpc-slot 1 online
Restarting the Chassis on SRX Series Devices
You can restart the chassis using the restart chassis-control
command with the following options:
To restart the process gracefully:
user@host> restart chassis-control gracefully
To restart the process immediately:
user@host> restart chassis-control immediately
To restart the process softly:
user@host> restart chassis-control soft
Change History Table
Feature support is determined by the platform and release you are using. Use Feature Explorer to determine if a feature is supported on your platform.