Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ASA 5525-X IPS AutoUpdate Fail

Hi,

I am experiencing issues with the Auto Update feature for signature definitions for the 5525-X IPS module. I am using Cisco-Server auto-update with a proxy server (I am running the latest Engine Version).

# sh ver

Application Partition:

Cisco Intrusion Prevention System, Version 7.2(1)E4

The autoupgrade settings are as follows:

(config-hos-aut)# sh settings

   auto-upgrade

   -----------------------------------------------

      cisco-server

      -----------------------------------------------

         enabled

         -----------------------------------------------

            schedule-option

            -----------------------------------------------

               periodic-schedule

               -----------------------------------------------

                  start-time: 15:18:00 default: 00:00:00

                  interval: 1 hours default: 24

               -----------------------------------------------

            -----------------------------------------------

            user-name: radu.ioncu

            password: <hidden>

            cisco-url: https://72.163.4.161//cgi-bin/front.x/ida/locator/locator.pl default: https://www.cisco.com//cgi-bin/front.x/ida/locator/locator.pl

         -----------------------------------------------

      -----------------------------------------------

      user-server

      -----------------------------------------------

         disabled

         -----------------------------------------------

         -----------------------------------------------

      -----------------------------------------------

   -----------------------------------------------

(config-hos-aut)#

The proxy server is correctly configured and allowing traffic to any destination, as global correlation is working properly. When initiating an auto upgrade, the logs look like this:

evStatus: eventId=6822849343323 vendor=Cisco

  originator:

    hostId:

    appName: mainApp

    appInstanceId: 1587

  time: 2013/08/08 13:57:45 2013/08/08 16:57:45 EEST

  autoUpgradeServerCheck:

    uri: https://radu.ioncu@72.163.7.60//swc/esd/02/273556262/guest/

    packageFileName: IPS-sig-S732-req-E4.pkg

    result: status=true

vStatus: eventId=6822849343327 vendor=Cisco

  originator:

    hostId:

    appName: mainApp

    appInstanceId: 1587

  time: 2013/08/08 14:00:54 2013/08/08 17:00:54 EEST

  downloadUpgradeFile:

    uri: https://radu.ioncu@72.163.7.60//swc/esd/02/273556262/guest/IPS-sig-S732-req-E4.pkg

    result: status=false autoUpdate successfully selected a package (https://radu.ioncu@72.163.7.60//swc/esd/02/273556262/guest/IPS-sig-S732-req-E4.pkg) from the cisco.com locator service, however, package download failed: HTTP connection failed

So the IPS can succesfully connect, find the download URL, but the download misteriously fails. I can download the file from the above URL from a PC with the same Proxy set.

Did anyone encounter this problem and do you know any solutions?

Thanks!

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

ASA 5525-X IPS AutoUpdate Fail

Solved by TAC - actually not solved. This behaviour is caused by a bug - CSCui05041 - AutoUpdate Proxy Not Working. Will be solved in a future release.

1 REPLY
New Member

ASA 5525-X IPS AutoUpdate Fail

Solved by TAC - actually not solved. This behaviour is caused by a bug - CSCui05041 - AutoUpdate Proxy Not Working. Will be solved in a future release.

1442
Views
0
Helpful
1
Replies