Let me break it down in the basic commands.
cli
configuration
delete system phone-home
set system root-authentication plain-text-password
commit.
request system storage cleanup
Put the intended firmware on a fat formatted USB drive and insert into the port on the back of the switch.
exit to the system level, out of cli.
mkdir /var/tmp/usb
mount_msdosfs /dev/da1s1 /var/tmp/usb
cp /var/tmp/usb/<filename> /var/tmp/
umount /dev/da1s1
cli
request system add software /var/tmp/<filename> no-validate reboot
That should be it. Let me know if you have any other questions.
------------------------------
PAUL PETERSON
------------------------------
Original Message:
Sent: 07-05-2024 03:34
From: Andy Sharp
Subject: Loading Firmware through the console port
No, you can't upload via console (probably next to impossible to do at 9600 baud anyway). The phone-home would be part of the new out of box configuration. Therefore, the approach required would be to first deploy a basic configuration, either via something like Junos-PyEz which has the ability to deploy a configuration over the console, or instead via zero-touch-provisioning using a DHCP server and default ip connectivity. That initial configuration would then include whatever credentials are required for the device, remove the phone-home configuration, and any additional base configuration required (assign root authentication, ip address, default-route etc,). Finally, s/w upgrade can then be triggered, again as part of something using Junos-PyEZ, or again also via ZTP.
Of course, there are lots of other tools that can be used for this kind of approach, for example Ansible could be used and that can leverage the Juniper collection for Ansible to perform all these steps.
Don't hesitate to ask for more information on any of this if you need to.
Regards.
------------------------------
Andy Sharp
Original Message:
Sent: 07-04-2024 07:11
From: STEWART PATON
Subject: Loading Firmware through the console port
Hi All,
First of all, I apologise if this is posted in the wrong place. I am new to the community and to Juniper equipment.
I work for a global subcontract manufacturer and we are manufacturing a system for a customer that includes an EX3400 Switch. Our customer has given us some information on how to update the firmware and configurations to what they require. This involves having a DHCP server available and connecting via the network. I have 2 issues I am hoping you can assist with.
1: When connected to the Console port it appears that the EX3400 is trying to "Phone home" to update its firmware. As it is not connected to the internet this fails, causing a continuous stream fo messages on the console port making it difficult to enter any command. Is there a way to stop this activity?
2: Due to our IT security configuration (firewall, group policies, etc.) when we try to use scp to upload the firmware package, it times out with an error because port 22 is not accessible. Is there any way the firmware can be uploaded over the console port without the need for an RJ45 connection?
Thanks in anticipation of your help
Stewart
------------------------------
STEWART PATON
------------------------------