From owner-freebsd-isp@FreeBSD.ORG Wed Apr 26 13:45:36 2006 Return-Path: X-Original-To: freebsd-isp@freebsd.org Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 85CCF16A401 for ; Wed, 26 Apr 2006 13:45:36 +0000 (UTC) (envelope-from b.candler@pobox.com) Received: from proof.pobox.com (proof.pobox.com [207.106.133.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id A418D43D48 for ; Wed, 26 Apr 2006 13:45:35 +0000 (GMT) (envelope-from b.candler@pobox.com) Received: from proof (localhost [127.0.0.1]) by proof.pobox.com (Postfix) with ESMTP id 91BA31031C6; Wed, 26 Apr 2006 09:45:34 -0400 (EDT) Received: from mappit.local.linnet.org (212-74-113-67.static.dsl.as9105.com [212.74.113.67]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by proof.sasl.smtp.pobox.com (Postfix) with ESMTP id 3E6C04074C; Wed, 26 Apr 2006 09:45:32 -0400 (EDT) Received: from lists by mappit.local.linnet.org with local (Exim 4.61 (FreeBSD)) (envelope-from ) id 1FYkKg-0002Kl-Oi; Wed, 26 Apr 2006 14:45:31 +0100 Date: Wed, 26 Apr 2006 14:45:30 +0100 From: Brian Candler To: "Matthew D. Fuller" Message-ID: <20060426134530.GB8912@uk.tiscali.com> References: <20060426104803.GO4202@over-yonder.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20060426104803.GO4202@over-yonder.net> User-Agent: Mutt/1.4.2.1i Cc: freebsd-isp@freebsd.org, Tyrone.VanDerHaar@TelecityRedbus.com Subject: Re: Router upgrade.... X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 26 Apr 2006 13:45:36 -0000 On Wed, Apr 26, 2006 at 05:48:03AM -0500, Matthew D. Fuller wrote: > On Wed, Apr 26, 2006 at 10:02:29AM +0200 I heard the voice of > Tyrone.VanDerHaar@TelecityRedbus.com, and lo! it spake thus: > > > > I would like to upgrade the OS to 6.1RC1 to get the better support > > for CARP on VLAN interfaces.What would the best way be to upgrade > > with minimum downtime? > > If it were me, I'd just upgrade the box as-is by buildworld; 5 and 6 > are close enough that major problems aren't too likely (of course, > this is 'in general'; a single occurance of a major problem isn't much > globally, but it sure does hurt when it happens to you ;). Unless > something goes wrong, your downtime is two reboots. I think you're forgetting the time sat in single-user mode while doing installworld and manually mergemaster'ing the rc scripts. For an experienced admin who has done this many times, it might just be a couple of minutes. For someone who hasn't done it before, it could be a long outage. Personally I prefer the other option suggested by the OP: - build a brand new router using whatever O/S and software revisions you choose to be on - test it to death standalone - configure it as a replacement and swap it in If you want it to come up on the same IP address then you may have to clear ARP caches on some other devices on the same LAN segment(s), but that's about it. Most importantly, you have a very clear rollback available to you. I challenge anyone to rollback a "make installworld" :-) If you are being really clever, you bring it up on different IP address, then let it take over the traffic (e.g. by participating in OSPF or whatever, and then the other machine drops out). If there are machines pointing defaultroute at the old box, then you swap IP addresses between the boxes. Anyone who has not picked up the new MAC address will still send traffic via the old box until its ARP cache expires, at which point it will start using the new. If you are using CARP/VRRP or whatever, it's just a question of changing the preferences and preemption. This "smooth" approach may not be practical in your network though (e.g. if you have a zillion VLANs hardwared into one router or the other) Regards, Brian.