3 Replies Latest reply on Sep 19, 2012 12:17 AM by mcafee-com-user

    Update MWG Appliance WG-5000 without any risk

    mcafee-com-user

      Hello,

       

      is it possible to do the update of MWG (WG-5000) in the following way?

       

      1. Turn off the appliance

      2. Pull out hard drive in Slot 2

      3. Turn on the appliance, it boots with degraded RAID-System coz one harddisk is missing,

      4. Install the updates.

      5a. If everything is running fine put in the hard drive in Slot 2, so the RAID-System rebuilds.

      5a. If there are problems after doing the update, turn off the appliance, pull out hard drive in Slot 1 and put in hard drive in Slot 2 and boot with the old version.

       

      With our other servers (HP Proliant / Windows) we used this procedure many times. But I don´t know if it´s possible to do this way with the DELL Hardware too.

       

      Can anyone answer?

       

      Thanks in advance!

        • 1. Re: Update MWG Appliance WG-5000 without any risk
          Jon Scholten

          Maybe it would work, but I wouldnt advise doing this.

           

          ~jon

          • 2. Re: Update MWG Appliance WG-5000 without any risk
            Regis

            Seconded.   You're replacing one risk with a very different (and unsupported by Mcafee) one.   

             

            Probably better to spin up a virtual instance of MWG,  import your policy there,  do the upgrade and test if you need more assurance.

             

            It's a clever upgrade method and it would be great if vendors like McAfee could actually support upgrades like this, but I susepct it's a hard support problem with the constantly changing set of appliances plus support for virtual. In my experience any group in mcafee that does anything with appliances... it seems like you have to get to a pretty high tier of support before you get to a person who actually has access to any sort of lab and/or has been hands on from a hardware perspective on current hardware appliances.     

             

            Hell, I couldn't get one McAfee group (was it NDLP? Can't recall)  to so much as have a procedure for Intel's built in IPMI  that came included on Intel hardware they started selling in January.   No one had a clue.   Systemically it seems like Hardwarey stuff is hard for McAfee to support right now, which is a bit ironic given who owns them now.    It'd be nice to see that change.

            • 3. Re: Update MWG Appliance WG-5000 without any risk
              mcafee-com-user

              Hello Regis,

               

              thanks for your estimation.

               

              It´s a pitty we do not have a hardware test appliance, otherwise we would have the chance to try the method myself.

               

              We already installed MWG in VMWare and installed the update successfully. But in VM we do not have multiple physical network devices with bonding. So the VM installation differs a bit from that one in production envrionment.

               

              We are using two boxes in a HA cluster with Central Management, so we will first update one box after suspending from HA cluster. After testing the box we will resume in cluster and do the update on the second box.

               

              Best regards.