06-30-2006 03:19 AM - edited 03-10-2019 03:04 AM
Hi,
Whenever we apply the signature update to IPS 4240, it reboot itself normal but gives an error after enter the
username/pasword by using ssh; and not enter the CLI.
"Error: Cannot communicate with mainApp (getVersion). Please contact your system administrator.
Would you like to run cidDump?[no]: "
After rebooting the IPS by power off/power on, it works normal, we enter CLI.
So we could not apply the signature update to IPS 4230.
Any advice about this problem?
Thanks.
IPS# sh ver
Application Partition:
Cisco Intrusion Prevention System, Version 5.1(1)S205.0
Host:
Realm Keys key1.0
Signature Definition:
Signature Update S205.0 2005-11-30
OS Version: 2.4.26-IDS-smp-bigphys
Platform: IPS-4240-K9
Serial Number: JMX0932K00Y
Licensed, expires: 12-Apr-2007 UTC
Sensor up-time is 36 min.
Using 247058432 out of 1984704512 bytes of available memory (12% usage)
system is using 17.3M out of 36.8M bytes of available disk space (47% usage)
application-data is using 45.8M out of 166.8M bytes of available disk space (29% usage)
boot is using 35.0M out of 68.6M bytes of available disk space (54% usage)
MainApp 2005_Nov_15_13.47 (Release) 2005-11-15T14:27:20-0600 Running
AnalysisEngine 2006_Apr_20_14.31 (Release) 2006-04-20T15:14:57-0500 Running
CLI 2005_Nov_15_13.47 (Release) 2005-11-15T14:27:20-0600
Upgrade History:
IPS-K9-min-5.1-1 11:47:00 UTC Tue Nov 15 2005
Recovery Partition Version 1.1 - 5.1(1)
07-04-2006 09:13 PM
I suggest you apply the 5.1.1p1 patch. Then apply the latest signature available.
If ever after the update to 5.1.1p1, you get the error still, I sugest you give the sensor a bit of time, before attempting the signature update.
I hope this helps you.
Eric
07-04-2006 09:45 PM
Where could i find this update?
I could not find the version 5.1.1p1. There is only the version 5.1-1e and they did not suggest to apply this version for running 5.1(1).
Thanks for reply.
Regards.
IPS-K9-min-5.1-1e.pkg
IPS Minor Update - NOTE: This upgrade package can only be applied to sensors running version 5.0(x) IPS software. If your sensor(s) is already running version 5.1(1) do not attempt to install this upgrade package.
07-04-2006 10:47 PM
Hi,
From this thread
You can request tac for the 511p1 patch.
but if ever you would recover your sensor, the application partition is already on 5.1.1, then just apply the 511p1 patch, then the latest signature on cco.
I hope this helps you.
07-05-2006 01:02 PM
The engineering patch packages can be downloaded from:
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide