githedgehog · Frostman · Jul 1, 2025 · Jul 1, 2025 · Jul 1, 2025 · Jul 1, 2025
@@ -1,5 +1,53 @@
 # Upgrade
 
+## Upgrades removing loopback connections
+Starting with Fabric 25.03 and Broadcom SONiC 4.5.0, loopback connections are no longer
+required for local VPC peering. A feature flag has been created to assist in a
+smooth removal process, `loopbackWorkaroundDisable`, which takes a boolean
+value.
+
+### Fresh installs of 25.03
+
+Users in a greenfield environment installing version 25.03 of the Fabric will
+see that `hhfab init` will supply the needed option. For users who are
+generating configuration in another way ensure that
+`loopbackWorkaroundDisable: true` is inside `.spec.config.fabric` of the
+Fabricator object.
+
+
+### Upgrades to 25.03
+
+For users upgrading to version 25.03 follow the steps:
+
+0. Upgrade to 25.03 using steps from [previous
+   versions](#upgrades-from-beta-1-onwards)
+
+0. Ensure all switch agents are on v0.80.0 (or greater)
+    * `kubectl get agents` to see the version
+
+0. Upgrade the switch operating systems to 4.5.0
+    * the switch reinstall feature of k9s is very useful for this purpose
+
+0. Confirm all the switches are up and running SONiC 4.5.0
+    * `kubectl get agents -o wide`, look at the Software column
+
+0. Run the command to patch the fabricator object 
+    * `kubectl patch -n fab --type merge fabricator/default -p '{"spec":{"config":{"fabric":{"loopbackWorkaroundDisable":true}}}}'`
+
+0. Ensure that all agents have converged:
+    * `kubectl get agents -o wide`, ensure that columns `currentg` equals `appliedg`
+
+0. Now the loopback connections can be removed from the logical wiring:
+    * `kubectl get connections | grep loopback`
+    * `kubectl delete connections/leaf-03--vpc-loopback`
+0. Finally, unplug loopback cables as needed
+
+
+### Beyond 25.03
+Starting in 25.04 the presence of `loopbackWorkaroundDisable: true` will be required
+in order for updates to take place.
+
+
 ## Upgrades from Beta-1 onwards
 
 Starting with Beta-1 release and onwards, the upgrade process is more streamlined and fully automated. The control node

@@ -58,12 +58,15 @@ s5248-01(config-if-Ethernet1)# no shutdown
 ### VPC local peering can cause the agent to fail if subinterfaces are not supported on the switch
 
 As explained in the [Architecture page](../architecture/fabric.md#vpc-peering), to workaround
-limitations in SONiC, a peering between two VPCs (or a VPC and an External) which are both
+limitations in older versions of SONiC, a peering between two VPCs (or a VPC and an External) which are both
 attached to the peering switch is implemented over a pair of loopback interfaces.
 This workaround requires subinterface support on the switch where the peering is being
 instantiated. If the affected switch does not meet this requirement, the agent will fail
 to apply the desired configuration.
 
+!!! note
+    Starting from Fabric version 25.03, the loopback workaround is no longer needed.
+
 #### Diagnosing this issue
 
 The applied generation of the affected agent reported by kubectl will not
@@ -74,7 +77,8 @@ converge to the last desired generation. Additionally, the agent logs on the swi
 
 #### Known workarounds
 
-Configure remote VPCPeering instead of local peering in any instance where both
+If possible, [upgrade to 25.03 and disable the loopback workaround](../install-upgrade/upgrade.md#upgrades-to-2503).
+Alternatively, configure remote VPCPeering instead of local peering in any instance where both
 peering elements are locally attached and the target switch does not support subinterfaces.
 You can double-check whether your switch model meets this requirement by looking at the
 [Switch Profiles Catalog](../reference/profiles.md) entry for it.