The system upgrade function is supported by all models.
License Requirements
The upgrade of software packages and patches is not license-controlled. Component package loading and upgrade are license-controlled. For details, see Dynamic Loading.
Restrictions
Ensure that the root directory of the system has sufficient space to store system software, patches, or component packages.
Ensure that the system software version/patch version and the device match. Otherwise, the system software/patch cannot be loaded.
Ensure that the system software version and component package version match. Otherwise, the component package cannot be loaded.
You need to confirm no patch is running in the current system before installing a patch. If a patch runs, delete the patch before installing the new patch.
Considering that certain fast-forwarded traffic may be sent to the CPU during patch installation, you are advised to install the patch during off-peak traffic hours. In addition, do not change the enabling status of hardware fast forwarding during patch installation. Otherwise, patch installation may fail.
After the license expires, the component controlled by the license becomes invalid after the device restarts (the configurations can be reserved but the corresponding services do not take effect). To continue to use the component, reload the license.
By default, the device does not support weak security authentication or encryption algorithms such as MD5, DES, and 3DES, which are used in IPSec, SNMP, SSH and other features. To use these algorithms, install the weak security algorithm component package (product_version_WEAKEA.mod). For higher security purposes, you are advised to use more secure algorithms.
The weak security algorithm component package can be installed using the CLI. For details, see Dynamic Loading