CiscoWorks LMS cannot add PIX/ASA in software repository

Answered Question
Aug 21st, 2010

Hi,

I can see that LMS in RME Software Management cannot add PIX/ASA software saying not supported.

Any configuration issues.

I have got another problem. CiscoWorks LMS need to download IOS on cisco router, the process fails in RME Software Mgt. But the LMS is nated when it goes through the router.

i guess the script does not know the natted ip when running it on the router. If there is a way that I can specify the natted IP of the LMS. Fortunately, it is a nated static IP.

Thanks,

Ashley

I have this problem too.
0 votes
Correct Answer by Joe Clarke about 6 years 3 months ago

No, DFM doesn't need to know about NAT to manage a device.  However, it does need to be able to ping the managed IP address.  If this cannot happen, DFM will leave the device in a questioned state.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Joe Clarke Sat, 08/21/2010 - 13:11

RME does support PIX/ASA software upgrades.  You should be able to add those images to the software repository.  Where are you seeing that something is not supported?  Exactly what steps are you performing?

For NAT support, you can add the static NAT'd IP of the LMS server under RME > Devices > Device Management > RME Devices > Edit Attributes for a given device.

ashley_dew Mon, 08/23/2010 - 01:02

Hi Joseph,

Thx for your reply.

I have added these devices in RME from Device Discovery in CS with a seed list. Imported them fine, then with RME on auto-mode it has imported them automatically from DCR base.

Then, I have launched a RME>Software Mgt>Software Repository, Device, all devices. Worked fine with switches and routers but not the firewall.

Ashley

Joe Clarke Fri, 08/27/2010 - 23:06

The navigation path you indicate does not exist.  Please post screenshots illustrating what you are doing and the error you encounter.

ashley_dew Wed, 09/01/2010 - 02:59

Hi Joseph,

It is working fine. My mistake, issue with TFTP source interface.

However, I had got a small issue.

I have got a cisco router which RME accesses with ip natted ip, which you have indicated and It is working fine with RME. RME can manage the router perfectly.

However, DFM is leaving this router in questioned mode. So, the SNMP Credentials must be ok since it is good with RME.

Do I have to specify the Natted DFM ip as well for this router? Or something else must be done.

Correct Answer
Joe Clarke Wed, 09/01/2010 - 21:38

No, DFM doesn't need to know about NAT to manage a device.  However, it does need to be able to ping the managed IP address.  If this cannot happen, DFM will leave the device in a questioned state.

ashley_dew Fri, 09/03/2010 - 02:12

You are right. After I allowed ICMP and the LMS

server could ping the router, everything is fine. DFM added the device.

Thanks very much for your precious help.

Actions

This Discussion