ASA IPS, auto update issue

mj11 · ‎02-24-2009

Hi,

I am having an issue with auto update on the IPS module installed the ASA.

Auto Update Statistics

lastDirectoryReadAttempt = 06:00:34 UTC Wed Feb 23 2009

= Read directory: https://198.133.219.25//cgi-bin/front.x/ida/locator/loca

tor.pl

= Error: AutoUpdate exception: Receive HTTP response failed [3,212]

lastDownloadAttempt = N/A

lastInstallAttempt = N/A

nextAttempt = 06:00:00 UTC Thu Feb 24 2009

I can see from the above that there is a HTTP response error, I have checked and there does not seem to be any other unit stopping the responses. With regards to the ASA config do I need to allow the IPS module though the ACL's or NAT statements?

Many thanks MJ

rhermes · ‎02-25-2009

Management traffic from the AIP-SSM module will use the module's management ethernet interface. To answer your question, it depends on what network (or firewall interface) you have the AIP-SSM Management interface connected to.

jgranda · ‎03-10-2009

I am also having the same problem with auto update with an ASA and IPS card. The IPS card management port is on the inside network. Any help will be great

mj11 · ‎03-12-2009

Hi

Many thanks for the respose.

Sorry I have not made any progress with this as yet: the only thing I have done is us the packet tracer, which passed I am just going to check the route of the packet once it has left the interface as it has got to be that or the URL is wrong.

Regards MJ