Upgrade and Downgrade Issues for Junos OS Release 10.3 for EX Series Switches

The following pages list the issues in Junos OS Release 10.3R1 for EX Series switches regarding software upgrade or downgrade:

Upgrade Policy for Junos OS Extended End Of Life Releases

A direct upgrade and downgrade path is now available for Junos OS Extended End of Life (EEOL) releases. You can upgrade directly from one EEOL release to the next release even though EEOL releases frequently occur in increments beyond three releases. The current upgrade and downgrade policy for a non-EEOL release is that you can only upgrade and downgrade by up to three releases at a time. The +3 policy remains unchanged for non-EEOL releases but includes a direct upgrade and downgrade path for EEOL to next EEOL releases.

It is important to note that you can only upgrade or downgrade to the EEOL release that occurs directly before or after the currently installed EEOL release. For example, Junos OS Releases 8.5, 9.3, and 10.0 are EEOL releases. You can only upgrade from Junos OS Release 8.5 to Junos OS Release 10.0 by first upgrading to Junos OS Release 9.3. This policy also applies to downgrades where you cannot skip an EEOL release but must target the EEOL release occurring directly before the currently installed EEOL release.

For more information on EEOL releases and to review a list of EEOL releases, see http://www.juniper.net/support/eol/junos.html.

Upgrading or Downgrading from Junos OS Release 9.4R1 for EX Series Switches

The ARP aging time configuration in the system configuration stanza in Junos OS Release 9.4R1 is incompatible with the ARP aging time configuration in Junos OS Release 9.3R1 or earlier and Junos OS Release 9.4R2 or later. If you have configured system arp aging-timer aging-time on EX Series switches running Junos OS Release 9.4R1 and upgrade to Junos OS Release 9.4R2 or later or downgrade to Junos OS Release 9.3R1 or earlier, the switch will display configuration errors on booting up after the upgrade or downgrade. As a workaround, delete the arp aging-timer aging-time configuration in the system configuration stanza and reapply the configuration after you complete the upgrade or downgrade.

The format of the file in which the Virtual Chassis topology information is stored was changed in Junos OS Release 9.4. When you downgrade Junos OS Release 9.4 or later running on EX4200 switches in a Virtual Chassis to Junos OS Release 9.3 or earlier, make topology changes, and then upgrade to Junos OS Release 9.4 or later, the topology changes you have made using Junos OS Release 9.3 or earlier are not retained. The switch restores the last topology change you have made using Junos OS Release 9.4.

Upgrading from Junos OS Release 9.3R1 to Release 10.3 for EX Series Switches

If you are upgrading from Junos OS Release 9.3R1 and have voice over IP (VoIP) enabled on a private VLAN (PVLAN), you must remove this configuration before upgrading, to prevent upgrade problems. VoIP on PVLAN interfaces is not supported in releases later than Junos OS Release 9.3R1.

Upgrading from Junos OS Release 9.2 to Release 10.3 for EX Series Switches

For Junos OS Release 9.3 and later for EX Series switches, during the upgrade process, the switch performs reference checks on VLANs and interfaces in the 802.1X configuration stanza. If there are references in the 802.1X stanza to names or tags of VLANs that are not currently configured on the switch or to interfaces that are not configured or do not belong to the ethernet-switching family, the upgrade will fail. In addition, static MAC addresses on single-supplicant mode interfaces are not supported.

Caution: If your Release 9.2 configuration includes any of the following conditions, revise the configuration before upgrading to Release 10.3. If you do not take these actions, the upgrade will fail:

Ensure that all VLAN names and tags in the 802.1X configuration stanza are configured on the switch and that all interfaces are configured on the switch and assigned to the ethernet-switching family. If the VLAN or the interface is not configured and you try to commit the configuration, the commit will fail.
Remove static MAC addresses on single-supplicant mode interfaces. If they exist and you try to commit the configuration, the commit will fail.
In an 802.1X configuration stanza, if authentication-profile-name does not exist and you try to commit the configuration, the commit will fail.
In an 802.1X configuration stanza, broadcast and multicast MAC addresses are not supported in a static MAC configuration. If they exist and you try to commit the configuration, the commit will fail.
Support for static MAC bypass in single or single-secure mode has been removed. If static MAC bypass exists and you try to commit the configuration, the commit will fail.
In an 802.1X configuration stanza, the switch will not accept the option vrange as an assigned VLAN name. If it exists and you try to commit the configuration, the commit will fail.
Enabling 802.1X and the port mirroring feature on the same interface is not supported. If you enable 802.1X and port mirroring on the same interface and then attempt to commit the configuration, the commit will fail.
In an 802.1X configuration stanza, if the VLAN name or tag specified under dot1x authenticator static does not exist and you try to commit the configuration, the commit will fail.
If the MSTP configuration contains a VLAN (under protocols mstp msti msti-id) that does not exist on the switch and you try to commit the configuration, the commit will fail. Remove the VLAN from the MSTP configuration before you perform an upgrade.
In the interfaces configuration stanza, if no-auto-negotiation is configured but speed and link duplex settings are not configured under ether-options and you try to commit the configuration, the commit will fail. If no-auto-negotiation is configured under ether-options, you must configure speed and link duplex settings.
In the ethernet-switching-options configuration, if action is not configured for the number of MAC addresses allowed on the interface (under secure-access-port interface interface-name mac-limit in the CLI or in the Port Security Configuration page in the J-Web interface) and you try to commit the configuration, the commit will fail. You must configure an action for the MAC address limit before upgrading from Release 9.2 to Release 10.3.
If you have configured a tagged interface on logical interface 0 (unit 0), configure a tagged interface on a logical interface other than unit 0 before upgrading from Release 9.2 to Release 10.3. If you have not done this and you try to commit the configuration, the commit will fail. Beginning with Junos OS Release 9.3 for EX Series switches, untagged packets, BPDUs (such as in LACP and STP), and priority-tagged packets are processed on logical interface 0 and not on logical interface 32767. In addition, if you have not configured any untagged interfaces, the switch creates a default logical interface 0.
On EX4200 switches, if you have installed advanced licenses for features such as BGP, rename the /config/license directory to /config/.license_priv before upgrading from Release 9.2 to Release 9.3 or later. If the switch does not have a /config/license directory, create the /config/.license_priv directory manually before you upgrade. If you do not rename the /config/license directory or create the /config/.license_priv directory manually, the licenses installed will be deleted after you upgrade from Release 9.2 to Release 9.3 or later.

Downgrading from Junos OS Release 10.3 to Release 9.2 for EX4200 Switches

When you downgrade a Virtual Chassis configuration from Junos OS Release 10.3 to Release 9.2 for EX Series switches, member switches might not retain the mastership priorities that had been configured previously. To restore the previously configured mastership priorities, commit the configuration by issuing the commit command.