Solved

Problems upgrading Cisco IDS 4235

Posted on 2006-06-14
9
402 Views
Last Modified: 2012-06-22
I hope I am not making some stupid mistake, but I am having problems upgrading my IDS OS from 4.1.(1) to 4.1.(5).  I enter config terminal using the CLI then issue the commands upgrade ftp://%username%/%ip-address%/%directory%/%filename%.  The Cisco IDS then states that an upgrade is being prepared and finally says the upgrade has been installed and requires a reset.  I let the IDS then reset and come back up.  I then do a show version command and I still have the same IDS OS 4.1.(1).  Why is it stating that the upgrade is successful and yet my OS still shows a old version?
0
Comment
Question by:icarus2256
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 4
9 Comments
 

Author Comment

by:icarus2256
ID: 16904930
??
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 16908879
Are you trying to upgrade with the correct upgrade file? I mean, rpm.pkg ???

Cheers,
Rajesh
0
 

Author Comment

by:icarus2256
ID: 16908914
Yes, I have double checked the file name from Cisco's site.  They state that the 4.1.(5).......rpm.pkg file can upgrade the 4.1.(1)s47 version.  I have tried other versions as well, but they won't work either.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 32

Expert Comment

by:rsivanandan
ID: 16909063
I assume that you are using this syntax for upgrading it; even though you have it listed as ftp://%username%/%ip-address%/%directory%/%filename%.

upgrade ftp://user@server_ipaddress//upgrade_path/*.rpm.pkg

Now if this is correct and you are still not able to do it, there is another way to do it. Login as service account and do a ftp from IDS box to the server where you've kept the upgrade file (extracted zip file). Then download the rpm file to the harddisk of IDS device. Exit out of it;

now try;

upgrade scp://<serviceaccountname>@<IDS Address>/*.rpm.pkg

at this stage, it will give an error saying, the upgrade package is not found in a specified* path. Login back again and copy the upgrade package to that specific path.

Then try once again, it should work. Let me know how it goes.

Cheers,
Rajesh

0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 16909065
It would be better if you could also post the whole procedure captured during your upgrade session.

Cheers,
Rajesh
0
 

Author Comment

by:icarus2256
ID: 16913436
Rajesh:

I did exactly as you said with no problems.  The IDS then reset itself and I still get this information below.




Application Partition:

Cisco Systems Intrusion Detection Sensor, Version 4.1(1)S47

OS Version 2.4.18-5smpbigphys
Platform: IDS-4235
Sensor up-time is 1 min.
Using 221896704 out of 921522176 bytes of available memory (24% usage)
Using 627M out of 15G bytes of available disk space (5% usage)


MainApp             2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
AnalysisEngine      2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
Authentication      2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
Logger              2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
NetworkAccess       2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
TransactionSource   2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
WebServer           2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
CLI                 2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500    

Upgrade History:

No upgrades installed

Recovery Partition Version 1.2 - 4.1(1)S47

0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 16913792
Okay, You are trying with IDS-K9-sp-4.1-5-S189.rpm.pkg right ?

I did some reading and seems that this was repackaged due to some upgrade related errors. So what I would suggest is to go to Cisco site and download it again. Then try applying it.

It should work for sure,

One more step you can try is to first go to 4.1(4) and then from there go to 4.1(5). I used to work for this team and I remember that we occasionally had problems like this and had to repackage the file.

Try this and let me know.

Cheers,
Rajesh
0
 

Author Comment

by:icarus2256
ID: 16914259
Rajesh:

Still more headaches.  I just downloaded the newest file from Cisco and still no helpeeeee.  Here are the most recent commands:

mason(config)# upgrade ftp://administrator@172.20.20.7/img/ids-k9-sp-4.1-5-s189.rpm.pkg
Password: *********
Warning: Executing this command will apply a service pack to the application partition. The system may be rebooted to complete the upgrade.
Continue with upgrade? : yes





Application Partition:

Cisco Systems Intrusion Detection Sensor, Version 4.1(1)S47

OS Version 2.4.18-5smpbigphys
Platform: IDS-4235
Sensor up-time is 2 min.
Using 221937664 out of 921522176 bytes of available memory (24% usage)
Using 627M out of 15G bytes of available disk space (5% usage)


MainApp             2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
AnalysisEngine      2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
Authentication      2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
Logger              2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
NetworkAccess       2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
TransactionSource   2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
WebServer           2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500   Running
CLI                 2003_Jun_20_06.00   (Release)   2003-06-20T05:53:31-0500    

Upgrade History:

No upgrades installed

Recovery Partition Version 1.2 - 4.1(1)S47
0
 
LVL 32

Accepted Solution

by:
rsivanandan earned 250 total points
ID: 16917415
Okay, I believe there is something wrong with the box itself. You should contact Cisco and you can open a TAC case with a high priority and let them take a look at it.

Probably they are going have to RMA the device but before that they'll have you reimage the box with the CD and try upgrading.

You do have a service contract right ?

Cheers,
Rajesh
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
BGP recommended setup with failover 2 89
VPN Ports 8 55
HP network exams 3 62
pfsense upgrade from 2.2.6 to 2.3.3 28 29
Don’t let your business fall victim to the coming apocalypse – use our Survival Guide for the Fax Apocalypse to identify the risks and signs of zombie fax activities at your business.
If your business is like most, chances are you still need to maintain a fax infrastructure for your staff. It’s hard to believe that a communication technology that was thriving in the mid-80s could still be an essential part of your team’s modern I…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question