Due to the significant architectural differences between Lighthouse 4 and Lighthouse 5, a direct upgrade or migration is not supported. However, Opengear devices support parallel management by Lighthouse 4 and Lighthouse 5, which can be leveraged to smoothly and quickly transition to the new central management platform.
These instructions assume that you already have a Lighthouse 4 running with all Opengear devices (nodes) enrolled, that Lighthouse 5 has been deployed but you are yet to enroll nodes, and that you will be transitioning all Opengear devices.
Process overview
- Backup node configuration using Lighthouse 4
- Upgrade node firmware to 4.1.0 or later using Lighthouse 4
- Create an Enrollment Bundle on Lighthouse 5
- Start Lighthouse 5 enrollment using Lighthouse 4
- Optional: Remove managed nodes from Lighthouse 4
Backup node configuration
- Login to the Lighthouse 4 CLI as root or become the root user with: sudo -i - Run the command:
node-command --all --quiet config -e -
- The backup OPG files are saved in the /var/nvlog/nagios/node-command/<username>/stdout/ directory, named by their unique addresses in Lighthouse
- Optional: For convenience, run these commands to copy and rename the .opg backups:
src=$(ls -td /var/nvlog/nagios/node-command/*/stdout | head -n1)
target=/var/nvlog/opg_bak_$(date +%s)
mkdir -p $target
node-info | awk '/^[0-9]:/ { print "cp -a '$src'/"$2" '$target'/"$3".opg" }' | bash
- Copy the backups off box using scp, WinScp or similar
Upgrade node firmware
Note: This step is not supported by legacy Opengear models that do not contain internal mass storage (for example cellular-enabled ACM5000).
- Recommended: Before running the bulk upgrade, manually upgrade and test a single unit first - For each Opengear device model (for example IM7200, ACM7000), download the current firmware from: http://ftp.opengear.com/download/release/current/
- Copy the firmware files to Lighthouse 4 using scp, WinScp or similar, into the directory: /var/nvlog
- Login to Lighthouse 4 as root or become the root user with: sudo -i
- For each Opengear device model, perform a bulk upgrade using the node-upgrade command, for example for IM7200 Infrastructure Managers:
node-upgrade --select-match 'Model=IM72' --deselect-match 'Version=4.1' --firmware-file /var/nvlog/im72xx-4.1.0u2.flash
Note: You can view the available Model information to match on by running: node-info
- This process may take up to an hour to complete
Create an Enrollment Bundle
- Login to the Lighthouse 5 Web UI as a Lighthouse Administrator
- Click Manage -> Configure Nodes -> Node Enrollment -> Enrollment Bundles
- Click + to add a new Bundle:
Bundle name: Enter a name of your choice, for example MigratedNodes
Token: Enter a password of your choice, for example my-secret-token
Auto-approve node: Check
- Click Apply
Start enrollment
- Login to Lighthouse 4 as root or become the root user with: sudo -i
- Run the commands:
node-command --all config -s config.lhvpn.callhome.address=address.of.lighthouse node-command --all lhvpn-callhome address.of.lighthouse 443 my-secret-token MigratedNodes
- Login to Lighthouse 5 as a Lighthouse Administrator
- Monitor registration and enrollment as nodes progress from Configure Nodes -> Node Enrollment -> Pending Nodes to -> Enrolled Nodes
Optional: Remove manage nodes from Lighthouse 4
When you're ready to decommission Lighthouse 4, unenroll them by removing any Call Home and Lighthouse 4 Management tunnels:
- Login to the Lighthouse 5 CLI as a Lighthouse Administrator
- Run the commands:
sudo node-command --all config \\-d config.cms \\-d config.ssh \\-r sshforwards \\-r node
Comments
0 comments
Article is closed for comments.