Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1164
Views
5
Helpful
2
Replies

CX Module failed after reload

rodrigo.cisco
Level 4
Level 4

‎10-14-2013 08:05 PM

Hi there!

I do know if it is some kind of bug, but all the time after reload the CX module all things stop work, regardless of what form do I reset the module.

I already tried to acccess the module and reload, tried to stop services with "services stop" command and after that "reload", tried to shutdown using ASA commands and reload it from ASA... everytime I reload when the module come back all services start perfectly, like example below:

spcx02>show services status

============================================================

Process           | PID   | Up    | Up Time

============================================================

AD Interface      | 6284  | True  | 05:03:03

Message Nameserver| 6022  | True  | 05:03:59

HTTP Auth Daemon  | 6094  | True  | 05:03:58

PDTS              | 6073  | True  | 05:03:59

HTTP Inspector    | 6193  | True  | 05:03:37

HTTP Server       | 5972  | True  | 05:03:59

Data Plane        | 6270  | True  | 05:03:06

Management Plane  | 6115  | True  | 05:03:45

HPM Monitor       | 6289  | True  | 05:03:03

Updater           | 6399  | True  | 05:02:52

Card Manager      | 5930  | True  | 05:03:59

ARP Daemon        | 6089  | True  | 05:03:58

Event Server      | 6133  | True  | 05:03:41

TLS Proxy         | 6204  | True  | 05:03:37

============================================================

spcx02>show ver

Cisco ASA CX Platform 9.1.2 (42)

Cisco Prime Security Manager 9.1.2 (42) for spcx02 firewall

spcx02>

I even can access the GUI using my browser, but all athentication with CDA or AD that before boot was working correctly show up the error:

"Connection failed with error: Could not connect to virtual directory interface."

Everytime I reload I must reinstall the entire module and reconfigure everything. Anyone know if this is a bug that crashes the database or something like this?

Regards,

Rodrigo Alves

Labels:
0 Helpful
2 Replies 2

rodrigo.cisco
Level 4
Level 4

‎10-14-2013 08:09 PM

Ah, I forgot to write down that after reload the module and it come back it stop all traffic passing through the firewall and I must remove the policy-map configuration:

policy-map global_policy

class inspection_default

  inspect dns preset_dns_map

  inspect ftp

  inspect rsh

  inspect rtsp

  inspect sqlnet

  inspect sunrpc

  inspect xdmcp

  inspect sip 

  inspect netbios

  inspect tftp

  inspect ip-options

  inspect icmp

  inspect h323 h225

  inspect h323 ras

  inspect skinny 

class class-default

  cxsc fail-open auth-proxy

0 Helpful

rodrigo.cisco
Level 4
Level 4
In response to rodrigo.cisco

‎10-15-2013 08:15 PM

I solve the problem. I was really a bug if Cisco CX software... but yesterday Cisco realease I new software version and after installed it I could stop and start services without need to reinstall everything.

Just I question... Cisco didn't try your software and don't have program of software quality? In what decade Cisco are leving? I think that release publicly some software with king of bug, what it is easy to detect, is a desrespect to your customers around the world.

Last software installed: 9.2.1

Regards,

Rodrigo

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents