IPS 4240 Booting Problem

faiqmahdi · ‎11-26-2013

Hi Guyz

I am new into Cisco Security. I have recently purchased a used IPS 4240.

While normal booting :

CISCO SYSTEMS

Embedded BIOS Version 1.0(10)0 03/25/05 22:42:05.25

Low Memory: 631 KB

High Memory: 2048 MB

PCI Device Table.

Bus Dev Func VendID DevID Class Irq

00 00 00 8086 2578 Host Bridge

00 01 00 8086 2579 PCI-to-PCI Bridge

00 03 00 8086 257B PCI-to-PCI Bridge

00 1C 00 8086 25AE PCI-to-PCI Bridge

00 1D 00 8086 25A9 Serial Bus 11

00 1D 01 8086 25AA Serial Bus 10

00 1D 04 8086 25AB System

00 1D 05 8086 25AC IRQ Controller

00 1D 07 8086 25AD Serial Bus 9

00 1E 00 8086 244E PCI-to-PCI Bridge

00 1F 00 8086 25A1 ISA Bridge

00 1F 02 8086 25A3 IDE Controller 11

00 1F 03 8086 25A4 Serial Bus 5

00 1F 05 8086 25A6 Audio 5

02 01 00 8086 1075 Ethernet 11

03 01 00 177D 0003 Encrypt/Decrypt 9

03 02 00 8086 1079 Ethernet 9

03 02 01 8086 1079 Ethernet 9

03 03 00 8086 1079 Ethernet 9

03 03 01 8086 1079 Ethernet 9

04 02 00 8086 1209 Ethernet 11

04 03 00 8086 1209 Ethernet 5

Evaluating BIOS Options ...

Launch BIOS Extension to setup ROMMON

Cisco Systems ROMMON Version (1.0(10)0) #0: Fri Mar 25 23:02:10 PST 2005

Platform IPS-4240-K9

Use BREAK or ESC to interrupt boot.

Use SPACE to begin boot immediately.

Launching BootLoader...

Boot configuration file contains 3 entries.

Boot mode is 3 (entry 2). Default entry is 0.

Boot mode overrides default entry.

GNU GRUB version 1.0.10.0 (631K lower / 2096128K upper memory)

-------------------------------------------------------------------

0: Cisco IPS

1: Cisco IPS Recovery

2: Cisco IPS Clear Password (cisco)

-------------------------------------------------------------------

Use the ^ and v keys to select which entry is highlighted.

Press enter to boot the selected OS, 'e' to edit the

commands before booting, or 'c' for a command-line.

Highlighted entry is 2:

Booting 'Cisco IPS Clear Password (cisco)'

root (hd0,0)

Filesystem type is ext2fs, partition type 0x83

kernel /vmlinuz-2.4.30-IDS-smp-bigphys ro ramdisk_size=76800 rootrw=/dev/hda2 r

oot=/dev/ram0 init=loadrc hda=flash nousb console=ttyS0 recoverPassword=cisco h

tlblow=32 hugepages=330

Loading /vmlinuz-2.4.30-IDS-smp-bigphys... [Linux-bzImage, setup=0x1400, size

=0x122b66]

initrd (hd0,0)/runtime.gz

[Linux-initrd @ 0x37832000, 0x7bdc4c bytes]

Booting... then it stucks

Then i decided to re-install the IOS through ROMMON mode.

rommon #5> set

ROMMON Variable Settings:

ADDRESS=192.193.194.197

SERVER=192.193.194.50

GATEWAY=192.193.194.195

PORT=Management0/0

VLAN=untagged

IMAGE=IPS-4240-K9-sys-1.1-a-7.1-8-E4.img

CONFIG=

LINKTIMEOUT=5

PKTTIMEOUT=4

RETRY=5

rommon #6> ping 192.193.194.50

Sending 5, 100-byte ICMP Echoes to 192.193.194.50, timeout is 4 seconds:

?!!!!

Success rate is 80 percent (4/5)

rommon #7> tftp

ROMMON Variable Settings:

ADDRESS=192.193.194.197

SERVER=192.193.194.50

GATEWAY=192.193.194.195

PORT=Management0/0

VLAN=untagged

IMAGE=IPS-4240-K9-sys-1.1-a-7.1-8-E4.img

CONFIG=

LINKTIMEOUT=5

PKTTIMEOUT=4

RETRY=5

tftp IPS-4240-K9-sys-1.1-a-7.1-8-E4.img@192.193.194.50 via 192.193.194.195

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! (Only 2%)

---------------------------------------------------------------------------

At this stage ERROR IN TFTP Server - Check the Attached File -------- after error IPS reloads automatically..

---------------------------------------------------------------------------

Booting system, please wait...

CISCO SYSTEMS

Embedded BIOS Version 1.0(10)0 03/25/05 22:42:05.25

Low Memory: 631 KB

High Memory: 2048 MB

PCI Device Table.

Bus Dev Func VendID DevID Class Irq

00 00 00 8086 2578 Host Bridge

00 01 00 8086 2579 PCI-to-PCI Bridge

00 03 00 8086 257B PCI-to-PCI Bridge

00 1C 00 8086 25AE PCI-to-PCI Bridge

00 1D 00 8086 25A9 Serial Bus 11

00 1D 01 8086 25AA Serial Bus 10

00 1D 04 8086 25AB System

00 1D 05 8086 25AC IRQ Controller

00 1D 07 8086 25AD Serial Bus 9

00 1E 00 8086 244E PCI-to-PCI Bridge

00 1F 00 8086 25A1 ISA Bridge

00 1F 02 8086 25A3 IDE Controller 11

00 1F 03 8086 25A4 Serial Bus 5

00 1F 05 8086 25A6 Audio 5

02 01 00 8086 1075 Ethernet 11

03 01 00 177D 0003 Encrypt/Decrypt 9

03 02 00 8086 1079 Ethernet 9

03 02 01 8086 1079 Ethernet 9

03 03 00 8086 1079 Ethernet 9

03 03 01 8086 1079 Ethernet 9

04 02 00 8086 1209 Ethernet 11

04 03 00 8086 1209 Ethernet 5

Evaluating BIOS Options ...

Launch BIOS Extension to setup ROMMON

Cisco Systems ROMMON Version (1.0(10)0) #0: Fri Mar 25 23:02:10 PST 2005

Platform IPS-4240-K9

Use BREAK or ESC to interrupt boot.

Use SPACE to begin boot immediately.

Launching BootLoader...

Boot configuration file contains 3 entries.

Boot mode is 3 (entry 2). Default entry is 0.

Boot mode overrides default entry.

GNU GRUB version 1.0.10.0 (631K lower / 2096128K upper memory)

-------------------------------------------------------------------

0: Cisco IPS

1: Cisco IPS Recovery

2: Cisco IPS Clear Password (cisco)

-------------------------------------------------------------------

Use the ^ and v keys to select which entry is highlighted.

Press enter to boot the selected OS, 'e' to edit the

commands before booting, or 'c' for a command-line.

Entry 2 will be booted automatically in 1 seconds.

Booting 'Cisco IPS Clear Password (cisco)'

root (hd0,0)

Filesystem type is ext2fs, partition type 0x83

kernel /vmlinuz-2.4.30-IDS-smp-bigphys ro ramdisk_size=76800 rootrw=/dev/hda2 r

oot=/dev/ram0 init=loadrc hda=flash nousb console=ttyS0 recoverPassword=cisco h

tlblow=32 hugepages=330

Loading /vmlinuz-2.4.30-IDS-smp-bigphys... [Linux-bzImage, setup=0x1400, size

=0x122b66]

initrd (hd0,0)/runtime.gz

[Linux-initrd @ 0x37832000, 0x7bdc4c bytes]

Booting... Stuck Again

I verified the MD5 Checksum also.

I thought, I need to load the lower version then I tried IPS-4240-K9-sys-4.1-4-S91.img but similar error.

I have noticed one thing.. The CONSOLE connection is very slow, I have to type twice to write anything.

Please let me know how i can sort the problem.

rhermes · ‎11-26-2013

You are doing everything correctly to reimage your sensor.

You should be able to download either version of the 4240 system image (7.1.8 is the better choice because you won't have to upgrade after installation).

The only two possibilities I can think of are:

Your TFTPd server ack timeout and retry's are too small. You can try increasing them.

If the problem isn't on the TFTPd side, then you may have faulty flash or some other issue that is making your system hang.

- Bob

faiqmahdi · ‎11-26-2013

Hi Bob

I inserted the 1GB flash from Working Router to IPS and i did the following :

rommon #0> eras disk0:

About to erase the selected device, this will erase

all files including configuration, and images.

Continue with erase? y/n [n]: y

Erasing Disk0:

.......................................... --- redacted ---

Without changing TFTP settings (Image Attached)

and with changing TFTP settings also it reboots only after completing few percentage while loading the image (Image Attached)

Does it require any special partition on Flash:?

I tried different Port also but same issue PORT=GigabitEthernet0/0

Any other thought, i can try.

rhermes · ‎11-27-2013

I am not familiar with the format of the 4240 flash, so I can;t comment on any necessary partitions. I was surprised that router flash works properly in the 4240. The 4240s are a slightly modified PC motherboard (that's why you see sound drivers in the boot messages).

The only other thing I could think of to replace is the RAM.

- Bob