Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

4506 Switch reloads

Hi,

I had a problem with a 4506 Switch version 12.2(37) SG which reloaded once, I saw in the show version output the following line "System returned to ROM by abort at PC 0x0" I tried tyo check it out within the bug tool kit and I found this bug CSCsi17158 but it says it happens in other platforms. I'd like to know if there is a document where the problem was presented with 4500 series switches and how to solve it, or if anyone knows happened and how to avoid it.

Thank you in advance,

Alex

5 REPLIES
Community Member

Re: 4506 Switch reloads

Hi,

I had same problem today. Switch C4506-E with version 12.2(52)SG reloaded without any reason and I saw same in show version as you. He has worked corectly for about 6 months.

Community Member

Re: 4506 Switch reloads

The bug probably has to do with DST :-/

Community Member

Re: 4506 Switch reloads

thanks...so, is there any fix?

Community Member

Re: 4506 Switch reloads

thanks... did you do something to avoid this to happen again?

Re: 4506 Switch reloads

The workaround of the bug is :

Workaround: There are mitigations to this vulnerability:

For Cisco IOS, the SSH server can be disabled by applying the command crypto key

zeroize rsa while in configuration mode. The SSH server is enabled automatically upon

generating an RSA key pair. Zeroing the RSA keys is the only way to completely disable the SSH server.

Access to the SSH server on Cisco IOS may also be disabled via removing SSH as a valid transport

protocol. This can be done by reapplying the transport input command

with 'ssh' removed from the list of permitted transports on VTY lines while in configuration mode. For

example:

line vty 0 4

transport input telnet

end

If SSH server functionality is desired, access to the server can be restricted to specific source IP

addresses or blocked entirely using Access Control Lists (ACLs) on the VTY lines as shown in the

following URL:

http://www.cisco.com/en/US/docs/switches/lan/catalyst2950/software/release/12.1_9_ea1/configur

ation/guide/swacl.html#xtocid14

More information on configuring ACLs can be found on the Cisco public website:

http://www.cisco.com/warp/public/707/confaccesslists.html

293
Views
0
Helpful
5
Replies
CreatePlease to create content