08-30-2010 09:29 PM - edited 03-10-2019 05:06 AM
I am not able to ping or ssh into my IPS module. I am not able to access it via the router either. When I try to create a session via the router I get the following : Trying xx.xxx.xxx.xxxx, 2114 Open..... and it just sits there. Is there another way to access it and/or reboot the module, without restarting the router.
Solved! Go to Solution.
08-31-2010 09:26 AM
Hello,
1. You can reset the NME-IPS module from the Router CLI.
This will only reset the NME-IPS not the Router.
router# service-module ids-sensor 1/0 reset
Use reset only to recover from shutdown or failed state
Warning: May lose data on the hard disc!
Do you want to reset?[confirm]
http://tools.cisco.com/squish/b63A4
2. After it comes back up, check if the module is responsive.
You can also issue: 'show inventory' and check if the module is even detected by the router.
If the module is not even detected by the router, it may be an hardware issue.
3. Check if the module is correctly configured.
Check my configuration document for this.
https://supportforums.cisco.com/docs/DOC-12364
Sid Chandrachud
TAC Security Solutions
08-31-2010 09:26 AM
Hello,
1. You can reset the NME-IPS module from the Router CLI.
This will only reset the NME-IPS not the Router.
router# service-module ids-sensor 1/0 reset
Use reset only to recover from shutdown or failed state
Warning: May lose data on the hard disc!
Do you want to reset?[confirm]
http://tools.cisco.com/squish/b63A4
2. After it comes back up, check if the module is responsive.
You can also issue: 'show inventory' and check if the module is even detected by the router.
If the module is not even detected by the router, it may be an hardware issue.
3. Check if the module is correctly configured.
Check my configuration document for this.
https://supportforums.cisco.com/docs/DOC-12364
Sid Chandrachud
TAC Security Solutions
08-31-2010 09:37 AM
I was able to reset the module, using the command you mentioned. It does show up under sh inventory. Also I am now able to login, via session, but still cannot ping or connect to it via IME or IDM. I am able to ping out. What am I missing here
08-31-2010 11:37 AM
a. Can you paste the output of the following commands from the NME-IPS cli:
- show version
- show interface
b. Essentially 2 things to check.
1. If IPS is still in crashed state: show version should show main app & analysis engine as 'running' under normal conditions.
2. Nothing is plugged into the management port on the outside of the NME-IPS.
Remember, when you console into the module from router, the connection goes over the backplane port gig0/1.
IME/IDM connection goes to management0/1 interface.
So management 0/1 port needs to have an ip address, and cable needs to be plugged into the external port on NME-IPS module.
c. Please do go through:
https://supportforums.cisco.com/docs/DOC-12364
Make sure the external port has a cable plugged in, and management 0/1 has an ip on it.
- Sid
08-31-2010 12:26 PM
Used the reload (in addition to the reset) comand and it came up. Thanks for your help
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: