asked on

PIX Boot Error ERROR: Command requires failover license

when the PIX 525 boots I see this error, here is the config. How do I remove these errors? I don't see what might be causing them
Partial config below

ftp mode passive
pager lines 24
mtu outside 1500
mtu www 1500
mtu intf2 1500
mtu intf3 1500
mtu intf4 1500
mtu inside 1500
ERROR: Command requires failover license
ERROR: Command requires failover license
asdm image flash:/asdm
asdm location 192.168.6.0 255.255.255.0 inside
asdm history enable
arp timeout 14400

stressedout2004

Under configuration mode, run this command:

no failover
wr mem

Then try to reboot it and see if the error goes away.

questfar

ASKER

I receive

command requires failover license

this a restricted bundle with no failover, upgraded the OS from the factory 6.3 to 7.04

ASKER CERTIFIED SOLUTION

giltjr

membership

This solution is only available to members.

To access this solution, you must be a member of Experts Exchange.

Start Free Trial

stressedout2004

Can you run the command "show running-config all failover" and post the output.

Les Moore

It's legacy leftover stuff from the 6.x upgrade config.
It is nothing to worry about and should go away after you save the config in 7. format (just save what you have) and reboot.

renill

post the full configuration
** sanitise the nessacary ****
i believe you had gone for connecting a failover cable or tried failover in a restricted license.

renill

renill

failover license wont come with upgrading your ios.
this comes as a different bundle.

One of the failover units must have an Unrestricted license (UR), while the other can have a Failover (FO) or UR license. Restricted units cannot be used for failover and two units with FO licenses cannot be used in a single failover pair. The PIX 515, PIX 515E, PIX 525, and PIX 535 can be used for failover if you have the optional Unrestricted (UR) license.
Neither PIX 501 or PIX 506/506E units can be used for failover, either as the primary or secondary unit.

Pls go through this document..Might help you out
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_data_sheet09186a00800b0d85.html

renill

giltjr

lrmoore is correct. Once you save the config the messages should go away.

questfar

ASKER

giltrjr's suggestion to remove the lines was the only way to resolve this, I tried the save but they were always there.

I copied the config back after removing the lines and then issued a copy file startup-config, reloaded and errors gone.

Thanks

questfar

ASKER

Well, here's another wrinkle. The error is back. It seems that when I launch ASDM and make any changes and save the file back, something in ASDM is causing those errors. When I launched ASDM and it loaded the config into the interface, the only thing I changed was the domain name. I saved the back to the PIX and then issued a sh config and the errors were back. I think I'll contact CISCO on this.

giltjr

Can you hear me scratching my head? Somewhere, obviously, ASDM thinks you want to run in failover mode. We don't use ASDM to configure our firewalls and we are UR/FO so can't help you much more. Hopefully Cisco can help.