Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
706
Views
0
Helpful
6
Replies
Highlighted
Mohammad Ramadan A.Hafiez
Beginner
Beginner
‎11-10-2020 04:28 AM
‎11-10-2020 04:28 AM

stop 9200 switches to try connect to Cisco

Hi,

       I have Cisco 9200 switchs in my data center and I have licensed these switches, even though these switches keep trying to access internet for licenses and firewall blocks it.

plus other logs for security keys and saving it.

I want to stop this un-needed logs abd process by the switches.

logs sample...

November 10th 2020, 14:03:25.142  SMART_LIC COMM_FAILED 3 Communications failure with the Cisco Smart Software Manager (CSSM) : Fail to send out Call Home HTTP message.

November 10th 2020, 14:03:24.155  CALL_HOME SL_MESSAGE_FAILED 5 Fail to send out Smart Licensing message to: https://tools.cisco.com/its/service/oddce/services/DDCEService (ERR 218 : Host name resolution failed)

November 10th 2020, 14:03:25.142 10.0.250.44 SMART_LIC COMM_FAILED 3 Communications failure with the Cisco Smart Software Manager (CSSM) : Fail to send out Call Home HTTP message.

November 10th 2020, 14:03:24.155  CALL_HOME SL_MESSAGE_FAILED 5 Fail to send out Smart Licensing message to: https://tools.cisco.com/its/service/oddce/services/DDCEService (ERR 218 : Host name resolution failed)

November 10th 2020, 14:04:04.833   CRYPTO_ENGINE KEY_ADDITION 5 A key named SLA-KeyPair2 has been generated or imported by crypto-engine

Labels:
0 Helpful
Reply
6 REPLIES 6
Highlighted
balaji.bandi
VIP Expert VIP Expert
VIP Expert
‎11-10-2020 04:42 AM
‎11-10-2020 04:42 AM

Smart License required port access to call Home access - you need to open http/https connection towards cisco site.

 

or ignore the errors.

 

but bare in mind as per i know, if they can not have communicaiton to smart License server, some feature may disable due to error connecting to cisco side (this was not tested but as per process).



BB


*** Rate All Helpful Responses ***

0 Helpful
Reply
Highlighted
Leo Laohoo
Hall of Fame Community Legend Hall of Fame Community Legend
Hall of Fame Community Legend
‎11-10-2020 01:42 PM
‎11-10-2020 01:42 PM

What firmware is the stack running on?

0 Helpful
Reply
Highlighted
Mohammad Ramadan A.Hafiez
Beginner
Beginner
In response to Leo Laohoo
‎11-10-2020 11:08 PM
‎11-10-2020 11:08 PM

Cisco IOS XE Software, Version 16.12.02
Cisco IOS Software [Gibraltar], Catalyst L3 Switch Software (CAT9K_LITE_IOSXE), Version 16.12.02, RELEASE SOFTWARE (fc1)

-

-

Smart Licensing Status: REGISTERED/AUTH EXPIRED

cisco C9200-48P (ARM64) processor with 649249K/3071K bytes of memory.
Processor board ID JAE24090FXT
2 Virtual Ethernet interfaces
104 Gigabit Ethernet interfaces
8 Ten Gigabit Ethernet interfaces
2048K bytes of non-volatile configuration memory.
4060240K bytes of physical memory.
819200K bytes of Crash Files at crashinfo:.
819200K bytes of Crash Files at crashinfo-2:.
1941504K bytes of Flash at flash:.
1941504K bytes of Flash at flash-2:.
0K bytes of WebUI ODM Files at webui:.

Base Ethernet MAC Address : cc:7f:76:da:76:80
Motherboard Assembly Number : 73-18791-04
Motherboard Serial Number : JAE24090FXT
Model Revision Number : C1
Motherboard Revision Number : B0
Model Number : C9200-48P
System Serial Number : JAE24090FXT


Switch Ports Model SW Version SW Image Mode
------ ----- ----- ---------- ---------- ----
* 1 56 C9200-48P 16.12.2 CAT9K_LITE_IOSXE INSTALL
2 56 C9200-48P 16.12.2 CAT9K_LITE_IOSXE INSTALL

0 Helpful
Reply
Highlighted
Georg Pauwen
VIP Expert VIP Expert
VIP Expert
In response to Mohammad Ramadan A.Hafiez
‎11-10-2020 11:39 PM
‎11-10-2020 11:39 PM

Hello,

 

check if the bug below applies:

 

Smart License registration fails with "Fail to send out the Call Home HTTP message" with http-proxy
CSCvd38363
Description
Symptom:
Smart Licensing registration may fail. A message similar to the following may be found in syslogs:

Feb 22 17:33:53.487 PST: %SMART_LIC-3-COMM_FAILED: Communications failure with Cisco licensing cloud: Fail to send out Call Home HTTP message.

Conditions:
This symptom is observed when an HTTP proxy server is configured for call-home. The following example config would be found under the call-home profile:

call-home

http-proxy "1.2.3.4" port 80

The address of the proxy and the port do not have any bearing on the problem.

Workaround:
Smart Licensing registration will succeed if the HTTP proxy configuration is removed.

If the proxy is required for the device to reach tools.cisco.com over HTTP/HTTPS, then there is no workaround.

0 Helpful
Reply
Highlighted
Mohammad Ramadan A.Hafiez
Beginner
Beginner
In response to Georg Pauwen
‎11-11-2020 12:36 AM
‎11-11-2020 12:36 AM

Thank you for the bug notification, but my switches have successfly registered but still keeping logging to internet trying to register.

I want to stop this traffic to internet because whenever i want to debug any service it keeps filling the screen with this events.

0 Helpful
Reply
Highlighted
Leo Laohoo
Hall of Fame Community Legend Hall of Fame Community Legend
Hall of Fame Community Legend
In response to Mohammad Ramadan A.Hafiez
‎11-11-2020 01:42 AM
‎11-11-2020 01:42 AM

Upgrade the firmware first.

0 Helpful
Reply
Latest Contents
Cisco SD-WAN Global Forum : Quick Guide to Design, Deploy, O...
Created by ciscomoderator on 03-05-2021 12:50 PM
0
0
0
0
To participate in this event, please use the  button to ask your questions * Note: The link to join the discussion will be activated on March 8 All the knowledge of these four experts at your disposal! Cisco Software-Defined Wide Area Network (SD-WAN... view more
Community Live Event- ISR1100X-4G and ISR1100X-6G Platform O...
Created by Cisco Moderador on 03-02-2021 05:23 AM
1
0
1
0
Community Live- ISR1100X-4G and ISR1100X-6G Platform Overview and Architecture (Live event -  Tuesday, 23 March, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event will have place on Tuesday 23rd, March 2021 at 10:00 hrs PDT&... view more
Cisco Secure Network Access Bridges the Gap
Created by Kelli Glass on 02-26-2021 04:19 PM
0
0
0
0
Cisco Secure Network Access is helping IT to bridge the gap between what is essential to the business and what the network delivers and to build the next-generation campus network for an unplugged and uninterrupted experience. Learn more about how these w... view more
Community Live Video - New Additions to the Catalyst 8000 Fa...
Created by Cisco Moderador on 02-24-2021 08:49 AM
0
0
0
0
(view in My Videos) Community Live- New Additions to the Catalyst 8000 Family (Live event -  Tuesday, 23 February, 2021 at 10:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris)- This event had place on Tuesday 23rd, February 2021 at 10:00 hrs PDT... view more
New Additions to the Catalyst 8000 Family- FAQ
Created by Cisco Moderador on 02-24-2021 07:23 AM
0
0
0
0
This event had place on Tuesday 23rd, February 2021 at 10hrs PDT  Introduction Designed for an intent-based network, the Cisco Catalyst 8000 Edge Platforms family offers best-in-class networking and security combined. The platforms, available in b... view more
Content for Community-Ad