Odin 5940 FroDo Comware Upgrade
We would like to announce a staged upgrade of the version of Comware running on our HPE 5940 FroDos. This blog entry aims to answer the majority of questions that this work will raise. Please, feel free to contact the Networks team with any further questions at firstname.lastname@example.org
As part of ongoing maintenance it is essential that we keep our FroDo software up to date. The new version of software being deployed addresses a number of vulnerabilities and bugs. For those interested this upgrade takes us from F2604H04 to R2612H01 and involves more than a dozen devices.
Relevant Bug Fixes
Symptom: After the master of an IRF fabric is rebooted, SNMP obtains an incorrect value for the snmpEngineBoots node.
Condition: This symptom might occur if SNMP is used to obtain the value of the snmpEngineBoots node after the master of an IRF fabric is rebooted.
Effect: This stops management systems from connecting to the SNMP engine on the device. Noticeable and inconvenient because graphs of port throughput are no longer maintained.
This release addresses the following CVEs
Information about the detail of these vulnerabilities can be found at https://cve.mitre.org/cve/search_cve_list.html
The expected impact is ~5-10 minutes for Option 1 customers during which time the FroDo will reload and external services will not be available. For Option 2 customers the impact is expected to be minimal thanks to the In Service Software Upgrade (ISSU) capability.
We will be carrying out the upgrades between 06:00 and 07:30 to minimise impact.
We plan to upgrade up to 2 FroDos, one option 1, and one option 2, on the each of the following days:
Tuesday 4th September frodo-030809 dcdist-br (option 2) - completed Notes: Resilience of link to BSP-STORAGE in BRDC not functioning correctly causing interruption and some Left Hand storage entered read-only mode. AD DC behind ADFS for Nexus 365 coincidentally failed the night before ~23:00 causing failure of *some* user logins to Outlook. Not caused by Frodo upgrade but we were blamed for it by some before all the details were known.
Wednesday 5th September frodo-030811 dcdist-osney (option 2) - completed frodo-100907 wellcome-trust - completed frodo-100909 orcrb-2 - completed - upgraded 1 day early Due to an issue encountered on the morning of 5th with two of the upgrades we will postpone the remaining ones until further notice pending the result of a support call with the vendor.
Thursday 6th September frodo-120809 dcdist-usdc (option 2) - cancelled
Tuesday 11th September frodo-100908 richard-doll (option 2) - cancelled frodo-120601 beach-2 - cancelled
Wednesday 12th September frodo-050909 begbroke-iat-1 (conversion to option 2 and dcdist-begbroke) - upgrade cancelled - conversion will still take place frodo-120810 molecular-medicine - cancelled
Thursday 13th September frodo-120811 big-data-institute (option 2) - cancelled frodo-120812 john-radcliffe-3 - cancelled