Important:
|
Important - Before you upgrade a cluster:
Step |
Description |
---|---|
1 |
|
2 |
See the Upgrade Options and Prerequisites. |
3 |
See the Planning a Cluster Upgrade. |
4 |
Upgrade the Management Server and Log Servers to R80.20 version. |
5 |
Schedule a full maintenance window to make sure you can make all the desired custom configurations again after the upgrade. |
Workflow:
Step 1 of 5: On each Cluster Member - Upgrade to R80.20 with CPUSE, or perform a Clean Install of R80.20
Installation Method |
Instructions |
---|---|
Upgrade to R80.20 with CPUSE |
See Installing Software Packages on Gaia. Follow the applicable action plan for the local or central installation. Select the R80.20 package and perform Upgrade. |
Clean Install of R80.20 with CPUSE |
See Installing Software Packages on Gaia. Follow the applicable action plan for the local or central installation. Select the R80.20 package and perform Clean Install. |
Clean Install of R80.20 from scratch |
See Installing a ClusterXL Cluster, or Installing a VRRP Cluster. In the Gaia First Time Configuration Wizard, for the Management Connection IP address, you must use the same IP address as was used by the previous Cluster Member (prior to the upgrade). |
Note - You must reboot the Cluster Member after the upgrade or clean install.
Step 2 of 5: In SmartConsole - Change the version of the cluster object
Step |
Description |
---|---|
1 |
Connect with SmartConsole to the R80.20 Security Management Server or Domain Management Server that manages this cluster. |
2 |
From the left navigation panel, click Gateways & Servers. |
3 |
Open the Cluster object. |
4 |
From the left navigation tree, click the General Properties page. |
5 |
In the Platform section > Version field, select R80.20. |
6 |
If you performed a Clean Install of R80.20 on the Cluster Member, then establish the Secure Internal Communication (SIC) between the Management Server and this Cluster Member:
|
7 |
Click OK to close the Gateway Cluster Properties window. |
Step 3 of 5: In SmartConsole - Install the Policy
Step |
Description |
---|---|
1 |
Connect with SmartConsole to the R80.20 Security Management Server or Domain Management Server that manages this Security Gateway. |
2 |
From the left navigation panel, click Gateways & Servers. |
3 |
Install the Access Control Policy:
|
4 |
Install the Threat Prevention Policy:
|
Step 4 of 5: On each Cluster Member - Examine the cluster state
Step |
Description |
---|---|
1 |
Connect to the command line on each Cluster Member. |
2 |
Examine the cluster state in one of these ways:
Note - Cluster states of the Cluster Members are: one is Active, others are Standby. |
Step 5 of 5: Test the functionality
Step |
Description |
---|---|
1 |
Connect with SmartConsole to the R80.20 Security Management Server or Domain Management Server that manages this cluster. |
2 |
From the left navigation panel, click Logs & Monitor > Logs. |
3 |
Examine the logs from this Cluster to make sure it inspects the traffic as expected. |
For more information: