Skip to main content
Version: 2.10

Pre-upgrade

Before upgrading Portworx Backup in an air-gapped environment, ensure that your system meets all prerequisites and that you have completed the necessary preparation steps to download and configure the required container images.

Prerequisites

  • (Mandatory) Ensure that you are aware of custom password guidelines

  • (Mandatory) Make sure all the MongoDB pods are in Ready state

  • (Optional) If you want to enable mTLS for Portworx Backup, make sure Istio or Linkerd is installed on the cluster where you want to deploy PXB with the following parameters set to true:

    • Istio:
      • meshConfig.defaultConfig.holdApplicationUntilProxyStarts=true
      • values.pilot.env.ENABLE_NATIVE_SIDECARS=true
    • Linkerd:
      • proxyInit.runAsRoot=true

  • If multiple applications use the same path prefix (/), Istio encounters traffic routing conflicts. To prevent this, you must update the VirtualService that PXB creates with a unique hostname.

Before you begin

If you are in an air-gapped environment, then follow the steps below to upgrade Portworx Backup from the prior versions to 2.10.0:

  1. (Optional) If you want to enable mTLS for Portworx Backup, label or annotate PXB deployed namespace:

  • Istio

    • Istio sidecar mode:

      kubectl label namespace <pxb-namespace> istio-injection=enabled --overwrite

      This command annotates <pxb-namespace> to inject sidecar proxy required for mTLS.

      Here <pxb-namespace> is the namespace where you have deployed PXB.

    • Istio ambient mode:

      kubectl label namespace <pxb-namespace> istio.io/dataplane-mode=ambient --overwrite

  • Linkerd:

    1. Annotate PXB deployed namespace to inform Linkerd to inject linkerd-proxy required for mTLS:

      kubectl annotate ns <pxb-namespace> linkerd.io/inject=enabled

    2. Annotate the namespace for Kubernetes native sidecar support so that Linkerd sidecar proxy container can run and shut down gracefully without causing any issues:

      kubectl annotate ns <pxb-namespace> config.alpha.linkerd.io/proxy-enable-native-sidecar=true

  1. To pull the Docker images listed in Air-gapped install guide and push them to an internal registry:

    a. Download the pxcentral-ag-install-backup.sh air-gapped bootstrap Portworx Backup install script:

    curl -o pxcentral-ag-install-backup.sh -L "https://install.portworx.com/pxcentral-air-gapped?px-backup=true"

    You can also download the install script for a specific release by specifying release version in the query.

    For example:

    curl -o pxcentral-ag-install-backup.sh -L "https://install.portworx.com/pxcentral-air-gapped?version=2.10.0&px-backup=true"

    b. Provide execute permission for the install script:

    chmod +x pxcentral-ag-install-backup.sh

    c. Pull the container images using the pxcentral-ag-install-backup.sh script:

    ./pxcentral-ag-install-backup.sh pull

    d. Push the images to a local registry server, accessible by the air-gapped nodes. Replace <repo> with your registry location:

    ./pxcentral-ag-install-backup.sh push <repo>