SGOS 6.5.9.11, SGOS 6.6.5.1, and Advanced Secure Gateway 6.6.5.6 introduce the following boot loader changes:
Overview:
When you use the command r, the boot loader generates a marker file that marks the system for re-initialization. After you mark the system for re-initialization, you select a system image to boot. The system image you select must have an operating system version (SGOS 6.5.9.11 and later; SGOS 6.6.5.1 and later; Advanced Secure Gateway 6.6.5.6 and later) that can detect the marker file. If the system image cannot detect the marker file, the factory defaults are not restored.
Note: The following procedure includes screenshots of the ProxySG CLI, but the steps apply to both ProxySG and Advanced Secure Gateway appliances.
To restore factory defaults:
How the boot loader handles a corrupted system image depends on where the corruption has occurred in the image. The two areas of corruption are the header and the body of the system image.
Corruptions in the Header of a System Image
If the corruption occurs in the header of any system image, the boot loader does not include the corrupted image in the list of available system images. Instead, it displays a message stating the system image is invalid, and an error is logged in the boot loader audit log.
If the corrupted system image is the default system image, the boot loader also selects the most recent successful system image and starts the automatic boot sequence.
Corruptions in the Body of a System Image
Note: The boot loader does not detect corruption in the body of an image until you either select and attempt to boot the corrupted image or the boot loader attempts to boot the default system image.
If the corruption occurs in the body of a default or selected system image to boot, the system image does not boot and the boot loader displays a message stating the image verification failed. The error is logged in the boot loader audit log. The boot loader removes the corrupted image from the list of system images and boots one of the remaining system images from the list.
If information about the installed system images has been lost, the boot loader might be able to recover some of the images. When information in the installed system images has been lost, the CLI displays this warning message:
*********************************WARNING***********************************
Some information associated with the installed system images has been lost:
The appliance is missing some information associated with the
installed system images:
- Default boot system
- Locked system images
- System images to be replaced
- Last successful boot time and status of each image
You can boot one of the recovered images listed below. After successfully
booting the appliance, you can use the #(config) installed-systems command
to specify the default boot system, which images to lock and the next image
to replace.
To restore the appliance configuration to factory defaults instead of
booting a recovered image, press R or r at the image selection prompt.
*********************************WARNING************************************
To boot a recovered system image, enter the system number (the number next to the version of SGOS/Advanced Secure Gateway) of the image you want to boot.
For further information on the #(config)installed-system command, refer to the “Privileged Mode Configure Commands” chapter of the Command Line Interface Reference. (Commands are the same for the Advanced Secure Gateway appliance).
Perform re-initialization for corrupted images or device stuck in boot loop as procedure mentioned above.