Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1134
Views
0
Helpful
6
Replies

Autoupdate IPS signature not working

jgranda
Level 1
Level 1

‎06-10-2009 05:46 AM - edited ‎03-10-2019 04:39 AM

I am getting the following on the IPS auto-update

Auto Update Statistics

lastDirectoryReadAttempt = 02:30:00 Eastern Tue Jun 09 2009

= Read directory: http://198.133.219.25/pcgi-bin/tablebuild.pl/ips6-sigup

= Error: http error response: 400

lastDownloadAttempt = N/A

lastInstallAttempt = N/A

nextAttempt = 02:30:00 Eastern Wed Jun 10 2009

Auto Update Statistics

lastDirectoryReadAttempt = 02:13:00 Eastern Wed Jun 10 2009

= Read directory: http://198.133.219.25/pcgi-bin/tablebuild.pl/ips6-sigup

= Error: http error response: 400

lastDownloadAttempt = N/A

lastInstallAttempt = N/A

nextAttempt = 02:13:00 Eastern Thu Jun 11 2009

Can you tell me what I am doing wrong.

Labels:
0 Helpful
6 Replies 6

abinjola
Cisco Employee
Cisco Employee

‎06-10-2009 11:32 PM

Ensure your SSM can connect to internet, try by pinging from SSM to 4.2.2.2

Also correct the URL..

https://198.133.219.25//cgi-bin/front.x/ida/locator/locator.pl

0 Helpful

jgranda
Level 1
Level 1
In response to abinjola

‎06-11-2009 04:02 AM

Thanks for the response. I change the URL and it did not make any difference. I am able to ping 4.2.2.2

I still getting the 400 error. Anything else I need to do.

0 Helpful

abinjola
Cisco Employee
Cisco Employee
In response to jgranda

‎06-11-2009 10:59 PM

is management IP getting routed through ASA inside interface ? if yes then kindly get me the packet captures

access-list abc permit ip host host 198.133.219.25

access-list abc permit ip host 198.133.219.25 host

capture cpi access-l abc interface

Intf.Name-->INterface on ASA which is part of same VLAN as IPS Mngmt IP

Also send me the latest show statistics host

0 Helpful

George Thomas
Level 10
Level 10
In response to abinjola

‎06-23-2009 01:33 PM

To add to the wonderful comment by Ashish, I had the same problem and fixed it by changing the "//" after the IP address to "/".

Please rate useful posts.
0 Helpful

bbiandov
Level 1
Level 1
In response to George Thomas

‎02-12-2014 10:10 AM

What was is the CORRECT current URL which actually works in the real world; NOT lifted off some wrong documentation? I mean working URL - copy and paste from a working setup please?

Thanks

0 Helpful

Naveen Kumar
Level 4
Level 4

‎02-13-2014 11:21 PM

Update the Auto Update URL Using the CLI (all other IPS versions)

NOTE: Do not change the double slash (//) at the end of the IP address shown in this configuration.

sensor#config t
sensor(config)#service host
sensor(config-hos)#auto-upgrade
sensor(config-hos-aut)#cisco-server enabled
sensor(config-hos-aut-ena)#cisco-url https://72.163.4.161//cgi-bin/front.x/ida/locator/locator.pl
sensor(config-hos-aut-ena)#exit
sensor(config-hos-aut)#exit
sensor(config-hos)#exit
Apply Changes?[yes]:yes

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card