Hello SWISS, 

If you are actively encountering a product/upgrade issue please contact support directly. The turn around time on the forums is likely to increase delay and if I am reading your notes correctly, you have rolled back and we have lost an opportunity to root cause and potentially move you forward with the upgrade. 

The order of DXL and TIE upgrades in cases where you run TIE and DXL on separate servers is optional. In cases where you intend to install a broker on the TIE server, it is recommended to upgrade TIE first and use the built in broker that the image comes with. This includes the 6.0.3 broker. For any brokers you may have running on Windows\RHEL\CentOS\etc, you can perform in place upgrades. 

Both releases are more than rebrands including an underlying OS upgrade form MLOS2 to MLOS3.

Release notes for both products are available here:
https://docs.trellix.com/bundle/data-exchange-layer-6.0.x-release-notes/page/GUID-7EDA37F1-C5B2-4A86...
https://docs.trellix.com/bundle/threat-intelligence-exchange-4.0.x-release-notes/page/GUID-DDFC7BB6-...

I appreciate the feedback from your experience and will keep my eyes out for other examples of this happening, but if you require root cause you should engage support through a service request. We will likely need to review logs to understand where your DXL connection issue resides. 

Thanks

Brian

Hello,

Thank you so much Brian for writting direct here so others can profit.

It look like we made all as we should and the order to update should has no effect. (BROKER or TIE fiest). All our DXl/BROKER are MLOS Derivat based non Windows or CENTOS etc.

Yes i understand the point with support and the status we had but it was too late in the evening to process further with ticket and we had snapshots with VM's turrned off of all 5 Machines.

We will start a second attempt early to make sure we can open a ticket than timely.

To the screenshots how long should we wait for the sync of the DB? Our postgre DUMP in 2.4GB in size as SQL file.

The things we see in RED are those OK during the Migration process (Not the Virtual Disk...)?

Greetings from switzerland

Hello

It seems that your issue seems the same than ours.

Did you do a retry since your last post ?

Best regards

Philippe

Hello Philippe,

No was thinking about doing another try this week with early enough time so we can open a case.

I from my view still asume it's because the DXL Broker was on an older version.

Glad for any input.

Greetings from Switzerland

in our case all our brokers and extensions are already in the latest version.

Before production environment we tested it into our lab environment and, in that situation, TIE 4 was correctly upgraded following the described procedure.

My case is open since a few minutes and i added this discussion url as a comment to tell them that is seems a possible identical issue is present too on another customer / partner architecture.

first contact with support has already been established 

@SWISS if you open a case gain time and upload directly those files 

/var/Trellix/tieserver/policy/dxl.policy and tieserver-lib.log

it has been requested on my side. Support is currently analyzing them.

Thank you very much 😉

Happy to see i am not left alone with our customers....

07.03.2023

Second TRY Same error and we found out that there is a PASSWORD MAXIMUX limit for a security Apppliance (Well done guys!!!)

THIS TRY/THIS TIME ONLY: We did NOT update the TIE Extension from 3.X > 4.X prio because at that point the TIE function stops until end of migration and we have to go back with full enviroment worst case. (In first try Jan we did as first Update the TIE Extension as in Manual.

So we finally after doing it new has access to the transition-status.sh

I can only guess that invalid port number "TIE" in PSQL is a bug?

When we skip the wait and reboot we still see the Error after reboot. I did install with OV template not from ISO. This looks for me somehow OV template related? He has a job running and thus until solved can't mount the other disks?