Security

Hi all, I am trying to upgrade an NSM Express appliance. I am following the article from the KB:
http://kb.juniper.net/index?page=content&id=KB11803&actp=search&searchid=1256723577796

I have downloaded the following files: 

nsm2009.1r1_offline_upgrade.zip

nsm2009.1r1_servers_upgrade_rs.zip

and have started the installation, all seemed to be going well but it failed because it ran out of disk space.

ERROR: Need 400MB more space on partition: /tmp for the following directories:  /tmp/netmgtstaging.20091028100833

Please correct the error(s) above and run again

Removing staging directory..................................ok

The device is new so I haven't copied any rubbish on there etc. Surely the device should have enough space to do this upgrade? Any tips would be appreciated thanks. Is there a way I can clear up some space?

Thank you

M

Hi M,

the easiest fix for this is to use the /var/tmp folder to store the downloaded files and run the install from there.

The partitions are unfortunately too small for 2009.1r1 install using the /tmp folder.

Kind regards

Colin

Ah ok, that's great, thanks. I have moved the files to /var/tmp now and re-run the install but it has failed. I think it is because the first setup I ran from /tmp stopped half way through because of the disk space. See the log when I ran it again. Any ideas?

[admin@NSMXpress tmp]$ ls -l

total 1977692

drwxrwxr-x  2 admin admin       4096 Aug 11 10:13 apps-rpms

-rw-rw-r--  1 admin admin 1008005250 Aug 15 12:51 nsm2009.1r1_servers_linux_x86.sh

-rw-rw-r--  1 admin admin 1015119907 Oct 27 17:30 nsm2009.1r1_servers_upgrade_rs.zip

-r-xr-xr-x  1 admin admin       9987 Aug  4 07:43 upgrade-os.sh

[admin@NSMXpress tmp]$ sh upgrade-os.sh nsm2009.1r1_servers_linux_x86.sh offline

Internet is offline

Starting Upgrade of OS and Running NSM-RS Install.ok

Updating OS.......................................ok

Please REBOOT system after UPGRADE

        Hit Ctrl-C to abort installation or ENTER to continue

Unzip RPMS.tar....................................cp: cannot stat `nsm2009.1r1_offline_upgrade.zip': No such file or directory

unzip:  cannot find or open nsm2009.1r1_offline_upgrade.zip, nsm2009.1r1_offline_upgrade.zip.zip or nsm2009.1r1_offline_upgrade.zip.ZIP.

ok

upgrade-os.sh: line 247: /etc/yum.repos.d/local.repo: No such file or directory

error: File not found by glob: /var/tmp/i386/nsmxpress*

error: open of /var/tmp/i386/setools-2.3-4.nsmx5.i386.rpm failed: No such file or directory

error: File not found by glob: /var/tmp/i386/gcc*

error: File not found by glob: /var/tmp/i386/xorg-x11*

error: File not found by glob: /var/tmp/i386/rsyslog*

Error getting repository data for c5-media, repository not found

Error getting repository data for c5-media, repository not found

error: can't create transaction lock on /var/lock/rpm/transaction

error: File not found by glob: /var/tmp/i386/apr-0.9.4-24.9*.rpm

error: File not found by glob: /var/tmp/i386/apr-util-0.9.4-21*.rpm

error: File not found by glob: /var/tmp/i386/bc-1.06-17.1*.rpm

error: File not found by glob: /var/tmp/i386/distcache-1.4.5-6*.rpm

error: File not found by glob: /var/tmp/i386/httpd*.rpm

error: File not found by glob: /var/tmp/i386/libart_lgpl-2.3.16-3*.rpm

error: File not found by glob: /var/tmp/i386/mailcap-2.1.17-1*.rpm

error: File not found by glob: /var/tmp/i386/mod_jk-ap20-1.2.25-1jpp*.rpm

error: File not found by glob: /var/tmp/i386/mod_ssl*.rpm

error: File not found by glob: /var/tmp/i386/perl-Apache-Session-1.81-1.rf*.rpm

error: File not found by glob: /var/tmp/i386/perl-rrdtool-1.2.23-1.nsmx*.rpm

error: File not found by glob: /var/tmp/i386/perl-suidperl-5.8.5-36.nsmx*.rpm

error: File not found by glob: /var/tmp/i386/pwauth*.rpm

error: File not found by glob: /var/tmp/i386/rrdtool-1.2.23-1.nsmx*.rpm

error: File not found by glob: /var/tmp/i386/selinux*.rpm

error: File not found by glob: /var/tmp/i386/libselinux*.rpm

error: File not found by glob: /var/tmp/i386/recup-1.0-4.noarch*.rpm

error: File not found by glob: /var/tmp/i386/stunnel-4*.rpm

error: File not found by glob: /var/tmp/i386/zip-2.3-27*.rpm

Error getting repository data for c5-media, repository not found

error: File not found by glob: /var/tmp/nsmrpms/nsm-install-scripts*.rpm

error: File not found by glob: /var/tmp/nsmrpms/nsmxwui*.rpm

error: File not found by glob: /var/tmp/nsmrpms/syschecktrapd*.rpm

error: File not found by glob: /var/tmp/nsmrpms/systaillogd*.rpm

/bin/cp: cannot open `/etc/ssh/sshd_config' for reading: Permission denied

/bin/cp: cannot open `/etc/ssh/sshd_config.rpmnew' for reading: Permission denied

failed to make symlink /etc/rc2.d/S85httpd: File exists

failed to make symlink /etc/rc3.d/S85httpd: File exists

failed to make symlink /etc/rc4.d/S85httpd: File exists

failed to make symlink /etc/rc5.d/S85httpd: File exists

Starting httpd:

touch: cannot touch `/var/lock/subsys/httpd': Permission denied

failed to make symlink /etc/rc0.d/K74rsyslog: File exists

failed to make symlink /etc/rc1.d/K74rsyslog: File exists

failed to make symlink /etc/rc2.d/S26rsyslog: File exists

failed to make symlink /etc/rc3.d/S26rsyslog: File exists

failed to make symlink /etc/rc4.d/S26rsyslog: File exists

failed to make symlink /etc/rc5.d/S26rsyslog: File exists

failed to make symlink /etc/rc6.d/K74rsyslog: File exists

failed to make symlink /etc/rc0.d/K90network: File exists

failed to make symlink /etc/rc1.d/K90network: File exists

failed to make symlink /etc/rc2.d/S10network: File exists

failed to make symlink /etc/rc3.d/S10network: File exists

failed to make symlink /etc/rc4.d/S10network: File exists

failed to make symlink /etc/rc5.d/S10network: File exists

failed to make symlink /etc/rc6.d/K90network: File exists

failed to make symlink /etc/rc2.d/S10network: File exists

failed to make symlink /etc/rc3.d/S10network: File exists

failed to make symlink /etc/rc4.d/S10network: File exists

failed to make symlink /etc/rc5.d/S10network: File exists

Starting NSM-RS Install...........................

########## PERFORMING PRE-INSTALLATION TASKS ##########

Creating staging directory...ok

Running preinstallcheck...

Checking if platform is valid...............................ok

Checking for correct intended platform......................ok

Checking for CPU architecture...............................ok

Checking if all needed binaries are present.................FAILED

The following programs are needed to continue:

 /usr/sbin/useradd /usr/sbin/usermod

Removing staging directory..................................ok

[admin@NSMXpress tmp]$

Hi,

the install script complains it cannot find the offline update files

where did you put the offline update zip ? it ought to be in the same folder as you execute the script from (in this case /var/tmp)

Kind regards

Colin

Sorry I figured out the problem, I forgot to su - up when I logged in again so it's all working now in /var/tmp/ 

Thanks a lot.

M

Hi all !

I 've just upgrade an NSM Express appliance from 2007.r3 to 2009.1

After upgrade i use some command below

copy install file nsm<version>_server_XX.sh to /var/install directory

#rm -f NSM-RS

# chmode 755 nsm nsm<version>_server_XX.sh

# ln -s nsm<version>_server_XX.sh NSM-RS

After that i lost connection to NSM via Web (https://IP_ADD/administrator) but i still ssh to NSM appliance and still connect via nsm-client to nsm appliance.

in next day i shutdown NSM by unplug the power and i can't  reconnect the device.

I try to use Console  and rescure my device but it still error then i reboot the device it show:

        Welcome to Juniper NSMXPress OS build 2.106171
NSM 2007.3r1
        Press 'I' to enter interactive startup.
Starting udev:  [  OK  ]

Initializing hardware...  storage network audio done[  OK  ]

Configuring kernel parameters:  [  OK  ]

Setting clock  (utc): Thu Nov 19 02:58:38 UTC 2009 [  OK  ]

Setting hostname NSM-firewall.vcb.net:  [  OK  ]

Your system appears to have shut down uncleanly

Press Y within 5 seconds to force file system integrity check...
Press Y within 4 seconds to force file system integrity check...
Press Y within 3 seconds to force file system integrity check...
Press Y within 2 seconds to force file system integrity check...
Press Y within 1 seconds to force file system integrity check...
Checking root filesystem
[/sbin/fsck.ext3 (1) -- /] fsck.ext3 -a /dev/sda2
/: clean, 3688/640000 files, 54659/1279175 blocks
[  OK  ]

Remounting root filesystem in read-write mode:  [  OK  ]

Setting up Logical Volume Management: [  OK  ]

Checking filesystems
Checking all file systems.
[/sbin/fsck.ext3 (1) -- /tmp] fsck.ext3 -a /dev/sda10
[/sbin/fsck.ext2 (2) -- /var/netscreen/DevSvr] fsck.ext2 -a /dev/sdb2
/tmp: clean, 793/513024 files, 214530/1024135 blocks
[/sbin/fsck.ext3 (2) -- /usr] fsck.ext3 -a /dev/sda8
/var/netscreen/D: clean, 498/29884416 files, 964986/59755775 blocks
/usr: clean, 74907/2562240 files, 1147488/5120710 blocks
[/sbin/fsck.ext3 (1) -- /var] fsck.ext3 -a /dev/sda6
/var: clean, 51639/10813440 files, 1601055/21611433 blocks
[/sbin/fsck.ext3 (1) -- /var/cores] fsck.ext3 -a /dev/sda5
/var/cores: clean, 11/6406144 files, 222559/12799780 blocks
[/sbin/fsck.ext2 (1) -- /var/netscreen/DevSvr/profiler_data] fsck.ext2 -a /dev/sda3
/var/netscreen/1 contains a file system with errors, check forced.
/var/netscreen/1: Extended attribute block 4260354 has reference count 536, should be 535. 

/var/netscreen/1: UNEXPECTED INCONSISTENCY; RUN fsck MANUALLY.
    (i.e., without -a or -p options)
[/sbin/fsck.ext3 (1) -- /var/netscreen/GuiSvr] fsck.ext3 -a /dev/sda7
/var/netscreen/G: clean, 50774/2562240 files, 829161/5120710 blocks
[FAILED]


*** An error occurred during the file system check.
*** Dropping you to a shell; the system will reboot
*** when you leave the shell.
*** Warning -- SELinux is active
*** Disabling security enforcement for system recovery.
*** Run 'setenforce 1' to reenable.
Give root password for maintenance
(or type Control-D to continue):

Can any one help me.

I am having a similar issue.  A few years ago we bought this piece of junk NSMXpress for almost 20K.  After it lost its configuration several times I was able to successfully upgrade to 2009.2 (having to go to 8.2 first).  Now not only did it lose its configuration one of the hdd’s died.  Did a restore of the NSM software (2007.3r1) and now when I run through the upgrade, it stays at 207.3r1 after every reboot.  The upgrade doesn’t fail, it looks like it completes but nope.  This thing is a piece of junk…I can’t believe we paid almost 20K for this piece of junk that worked correctly for about 6 months of its life.