Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7651
Views
10
Helpful
7
Replies

ASA 5506-X SourceFire Update

Rodrigo Gurriti
Level 6
Level 6

‎06-10-2015 08:52 PM - edited ‎03-12-2019 05:41 AM

 

Hi,

Has anyone updated SF on a 5506-X? I just got two out of the box and tried to update and I get this error:


Task Status Your task Installing Cisco Network Sensor Patch version: 5.4.1.1-23 (Local Install) failed at Wed Jun 10 21:11:20 2015
Update Installation Failed : [55%] Fatal error: Error running script 800_post/001_reinstall_sru.sh

 

The IOS running on the ASA was 9.3.3 and 9.4.1 and both times it failed. The update starts and then the SF goes Unresponsive and I have to do a manual reload and then I see the error.

Right now the 3D Device running software version: 5.4.1 and this update was a patch Cisco_Network_Sensor_Patch-5.4.1.1-23.sh

 

The image here shows the device stuck in "running"

 

Thank you,

Rod

 

2 people had this problem
Labels:
7 Replies 7

Rodrigo Gurriti
Level 6
Level 6

‎06-14-2015 08:09 PM

OK found the problem.

In a nutshell the update takes too long and the module goes to a Unresponsive state and stay that way for 30min then it comes back.

I thought the updated had failed, because the module was unresponsive for more then 20min, then I reloaded the module. After it booted up I got the error msg on the asdm.

Turns out that the 5506 takes around 30 min to upgrade. The module goes for about 30min unresponsive then it comes back! Never thought a 30mb upgrade would take this long that is the why i reloaded the module.

Cya

0 Helpful

gamoore
Level 2
Level 2
In response to Rodrigo Gurriti

‎07-06-2015 09:02 PM

How did you apply the patch?

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to gamoore

‎07-07-2015 08:45 AM

The process for applying patches using ASDM is detailed in the User Guide.

Please see this direct link.

0 Helpful

sciarrino
Level 1
Level 1
In response to Marvin Rhoads

‎05-18-2017 04:10 PM

so mine has been non responsive for an hour can I check on the task in the CLI via ssh?

Thanks

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to sciarrino

‎05-18-2017 08:35 PM

Yes. GO into the FirePOWER service module cli and switch to expert mode.

Then "cd /var/log/sf".

Look for the folder with the name of youpatch and cd into it.

Then "tail status.log".

If you wwant to watch for updates in real time, then "tail -f status.log".

sciarrino
Level 1
Level 1
In response to Marvin Rhoads

‎05-19-2017 04:36 PM

cisco should really ship new device with 6.x...

I think I'm on my 5th upgrade.. and still have more to do.

I guess I should have just did a reload rather than 8 upgrades...

Thanks..

0 Helpful

joshvinyard913
Community Member
In response to Rodrigo Gurriti

‎07-28-2015 01:49 PM

I feel stupid because now it says 5.4.1.1 is running, when this morning it says 5.4.1 was running.

 

Did I actually upgrade?  I had all the failures that Rodrigo had with many of the same reasons.  I let it go and finally I see this is different.

 

Why is it marked as 5.4.1.2-23 sensor patch but indicate 5.4.1.1 installed and running if it did in fact complete installation?  Shouldn't these version numbers match, or am I being a little quixotic?

 

I am using an ASA 5506-X

 

Thank you for any kind souls which can shed light on this.  I am a total noob!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card