Cisco Systems IPS 7.1 Home Security System User Manual

Open as PDF

of 1042

C-54

Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1

OL-19892-01

Appendix C Troubleshooting

Troubleshooting the Appliance

port: 32771

victim:

addr: locality=OUT 172.16.171.13 port: 23

actions:

tcpResetSent: true

Step 6 Make sure the switch is allowing incoming TCP reset packet from the sensor. Refer to your switch

documentation for more information.

Step 7 Make sure the resets are being sent.

root# ./tcpdump -i eth0 src host 172.16.171.19

tcpdump: WARNING: eth0: no IPv4 address assigned

tcpdump: listening on eth0

13:58:03.823929 172.16.171.19.32770 > 172.16.171.13.telnet: R 79:79(0) ack 62 win 0

13:58:03.823930 172.16.171.19.32770 > 172.16.171.13.telnet: R 80:80(0) ack 62 win 0

Software Upgrades

This section helps in troubleshooting software upgrades. It contains the following topics:

• Upgrading Error, page C-54

• Which Updates to Apply and Their Prerequisites, page C-55

• Issues With Automatic Update, page C-55

• Updating a Sensor with the Update Stored on the Sensor, page C-56

Upgrading Error

When you upgrade an IPS sensor, you may receive an error that the Analysis Engine is not running:

sensor# upgrade scp://user@10.1.1.1/upgrades/IPS-K9-7.1-2-E4.pkg

Password: ********

Warning: Executing this command will apply a major version upgrade to the application

partition. The system may be rebooted to complete the upgrade.

Continue with upgrade?: yes

Error: AnalysisEngine is not running. Please reset box and attempt upgrade again.

If you receive this error, you must get the Analysis Engine running before trying to upgrade again. This

error is often caused by a defect in the currently running version. Try rebooting the sensor, and after

reboot, run the setup command and remove the interfaces from the virtual sensor vs0. When it is not

monitoring traffic, Analysis Engine usually stays up and running. You can upgrade at this time. After the

upgrade, add the interfaces back to the virtual sensor vs0 using the setup command.

Or you can use the system image file to reimage the sensor directly to the version you want. You can

reimage a sensor and avoid the error because the reimage process does not check to see if the Analysis

Engine is running.

Caution Reimaging using the system image file restores all configuration defaults.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems IPS 7.1 Home Security System User Manual