Solved

PIX Boot Error ERROR: Command requires failover license

Posted on 2006-06-14
11
1,395 Views
Last Modified: 2013-11-16
when the PIX 525 boots I see this error, here is the config. How do I remove these errors? I don't see what might be causing them
Partial config below

ftp mode passive
pager lines 24
mtu outside 1500
mtu www 1500
mtu intf2 1500
mtu intf3 1500
mtu intf4 1500
mtu inside 1500
ERROR: Command requires failover license
ERROR: Command requires failover license
asdm image flash:/asdm
asdm location 192.168.6.0 255.255.255.0 inside
asdm history enable
arp timeout 14400

0
Comment
Question by:questfar
  • 3
  • 3
  • 2
  • +2
11 Comments
 
LVL 9

Expert Comment

by:stressedout2004
ID: 16907937
Under configuration mode, run this command:

no failover
wr mem

Then try to reboot it and see if the error goes away.
0
 

Author Comment

by:questfar
ID: 16907978
I receive

command requires failover license

this a restricted bundle with no failover, upgraded the OS from the factory 6.3 to 7.04
0
 
LVL 57

Accepted Solution

by:
giltjr earned 500 total points
ID: 16908579
I would suggest that you copy the config to a PC, you need a tftp server, edit the file and remove offending commands and then copy the file back.

0
 
LVL 9

Expert Comment

by:stressedout2004
ID: 16908775
Can you run the command "show running-config all failover" and post the output.
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 16908814
It's legacy leftover stuff from the 6.x upgrade config.
It is nothing to worry about and should go away after you save the config in 7. format (just save what you have) and reboot.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 5

Expert Comment

by:renill
ID: 16909800
post the full configuration
** sanitise the nessacary ****
i believe you had gone for connecting a failover  cable or tried failover in a restricted license.

renill
0
 
LVL 5

Expert Comment

by:renill
ID: 16909822
failover license wont come with upgrading your ios.
this comes as a different bundle.

One of the failover units must have an Unrestricted license (UR), while the other can have a Failover (FO) or UR license. Restricted units cannot be used for failover and two units with FO licenses cannot be used in a single failover pair. The PIX 515, PIX 515E, PIX 525, and PIX 535 can be used for failover if you have the optional Unrestricted (UR) license.
Neither PIX 501 or PIX 506/506E units can be used for failover, either as the primary or secondary unit.

Pls go through this document..Might help you out
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a00800b0d85.html


renill
0
 
LVL 57

Expert Comment

by:giltjr
ID: 16910875
lrmoore is correct.  Once you save the config the messages should go away.
0
 

Author Comment

by:questfar
ID: 16911492
giltrjr's suggestion to remove the lines was the only way to resolve this, I tried the save but they were always there.

I copied the config back after removing the lines and then issued a copy file startup-config, reloaded and errors gone.

Thanks
0
 

Author Comment

by:questfar
ID: 16911593
Well, here's another wrinkle. The error is back. It seems that when I launch ASDM and make any changes and save the file back, something in ASDM is causing those errors. When I launched ASDM and it loaded the config into the interface, the only thing I changed was the domain name. I saved the back to the PIX and then issued a sh config and the errors were back. I think I'll contact CISCO on this.
0
 
LVL 57

Expert Comment

by:giltjr
ID: 16913242
Can you hear me scratching my head?  Somewhere, obviously, ASDM thinks you want to run in failover mode.  We don't use ASDM to configure our firewalls and we are UR/FO so can't help you much more.  Hopefully Cisco can help.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
If you are like regular user of computer nowadays, a good bet that your home computer is on right now, all exposed to world of Internet to be exploited by somebody you do not know and you never will. Internet security issues has been getting worse d…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now