Thanks, I get the same issue, I guess I need to reboot the ASA 5520 :(

You can just reload the IPS module with the commands I posted above.

Thing is it throws me out after :

Error: Cannot communicate with mainApp (getVersion). Please contact your system administrator.

Would you like to run cidDump?[no]:

So I don't get a command prmt to do this.

You do it from the ASA!

I am!

I'm confused. I thought you had access to the ASA and everything is working fine, but the IPS module was not responding properly. Is that correct?

I logon on the ASA via the CLI, then enter seesion 1 and enter the username and password for the IPS module, it then freezes for about a minute and I get the prompt:

Error: Cannot communicate with mainApp (getVersion). Please contact your system administrator.

Would you like to run cidDump?[no]:

I type "no" and it bombs me out to my desktop. I'm tried using the ASDM and Cisco IPS Manager Express, but they can't connct via it's IP although I can ping it.

I can SSH to the module, but again I get the above prompt and same scenario.

Hope that helps.

Can you login into the ASA CLI (the firewall portion) and enter

hw-module module 1 reload

Great that worked a treat!

Glad we got it straightened out. Thanks for the points too.

One thing I do notice about that command is it also reboots the ASA. We have 2 ASA in failover mode and I notice the other ASA becomes the active ASA, is this correct?

not true,

the above command only reloads the ips module.however,for failover to work,both units should have same hardware.when ips module in ur active unit is reloading,at that time,standby asa treats this as a failure on active unit and becomes the active .that is why failover occured when u reloaded the module on active.

resolution is to disable failover,reload the ips..when it comes back up,enable the failover again

hTh

Sushil

Thanks for explaining this.

I didn't setup the failover, how would I disable this first?