An efficient tool to execute configuration backups, network state snapshots, system readiness checks, and operating system upgrades of Palo Alto Networks firewalls and Panorama appliances.
This issue proposes an enhancement to the current upgrade workflow by incorporating an additional step to capture snapshots and configuration backups after an upgrade has completed. This will mirror the pre-upgrade assurance steps, utilizing the same mechanisms as those defined within the panos-upgrade-assurance suite.
Goals
Post-Upgrade State Capture: Automatically capture snapshots of the network state and configuration backups post-upgrade, allowing for a clear view of the system's state after changes have been applied.
Change Analysis: Implement a diff functionality to compare pre and post-upgrade snapshots, providing users with a detailed overview of what has changed within their network as a result of the upgrade. This aims to enhance transparency and confidence in the upgrade process by making it easy to audit changes.
Implementation Details
Utilize existing panos-upgrade-assurance library mechanisms to ensure consistency in how snapshots and backups are captured and stored.
Extend the library to support diff operations between pre and post-upgrade snapshots, ensuring changes are easily identifiable.
Store the post-upgrade snapshots and configurations in a structured manner, akin to the pre-upgrade data, ensuring easy access and analysis.
Value Proposition
This enhancement will significantly improve the upgrade process's robustness by offering a clear before-and-after state comparison. It will aid administrators in quickly identifying and addressing any unintended changes, thereby minimizing potential disruptions and enhancing the overall security and stability of the network infrastructure.
Request for Comments
Feedback on the proposed approach, suggestions for implementation strategies, or concerns about potential impacts on the upgrade workflow are highly welcome. Please share your insights or endorse the proposal to help prioritize this enhancement in our development roadmap.
Enhancement Overview
This issue proposes an enhancement to the current upgrade workflow by incorporating an additional step to capture snapshots and configuration backups after an upgrade has completed. This will mirror the pre-upgrade assurance steps, utilizing the same mechanisms as those defined within the panos-upgrade-assurance suite.
Goals
Implementation Details
Utilize existing panos-upgrade-assurance library mechanisms to ensure consistency in how snapshots and backups are captured and stored.
Extend the library to support diff operations between pre and post-upgrade snapshots, ensuring changes are easily identifiable. Store the post-upgrade snapshots and configurations in a structured manner, akin to the pre-upgrade data, ensuring easy access and analysis.
Value Proposition
This enhancement will significantly improve the upgrade process's robustness by offering a clear before-and-after state comparison. It will aid administrators in quickly identifying and addressing any unintended changes, thereby minimizing potential disruptions and enhancing the overall security and stability of the network infrastructure.
Request for Comments
Feedback on the proposed approach, suggestions for implementation strategies, or concerns about potential impacts on the upgrade workflow are highly welcome. Please share your insights or endorse the proposal to help prioritize this enhancement in our development roadmap.