Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1073
Views
4
Helpful
6
Replies

ASA 5545X-IPS

Salomao Mambo
Level 1
Level 1

‎06-05-2017 04:55 AM - edited ‎03-10-2019 06:51 AM

Hi all,

I have two cisco asa 5545x-ips, actice-standby with latest signature updated but always the health shows APPLICATION FAILED.

I have always to restart the devices and after some time the health again shoes RED (application failed)

Anyone please help me to understand why the the sensor always go to application fail.

Overall Health Status                                   Red
Health Status for Failed Applications                   Red
Health Status for Signature Updates                     Green
Health Status for License Key Expiration                Green
Health Status for Running in Bypass Mode                Green
Health Status for Interfaces Being Down                 Green
Health Status for the Inspection Load                   Green
Health Status for the Time Since Last Event Retrieval   Green
Health Status for the Number of Missed Packets          Green
Health Status for the Memory Usage                      Green
Health Status for Global Correlation                    Green
Health Status for Network Participation                 Green

Thanks

Labels:
0 Helpful
6 Replies 6

Salomao Mambo
Level 1
Level 1

‎06-06-2017 01:36 AM

Anyone can help please.

Thanks

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Salomao Mambo

‎06-06-2017 03:01 AM

I'd recommend you contact TAC for this.

If you have curent signatures then you should still have an active support contract.

0 Helpful

Salomao Mambo
Level 1
Level 1
In response to Marvin Rhoads

‎06-06-2017 06:08 AM

U don't have any idea why the sensor always goes to RED (application failed).

I logged a ticket on TAC but till now nothing.

please help...

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Salomao Mambo

‎06-06-2017 01:17 PM

There were some old bugs with Global Correlation that could cause this. However if you are running any current IPS version (which you must be to be current signatures), those don't apply.

TAC can look at some detailed system logs and hopefully find your root cause.

Meanwhile you should be planning to move to a new IPS technology. There's less than a year left in the classic Cisco IPS signature updates and the product is almost end of life.

0 Helpful

Salomao Mambo
Level 1
Level 1
In response to Marvin Rhoads

‎06-07-2017 12:07 AM

Yes I am running the latest IPS version ( Cisco Intrusion Prevention System, Version 7.3(5)E4) and IME version 7.2.7.

You mean move to FIREPOWER? I upgrade my old ASA-5520 with SSM20-IPS card to ASA5545X with IPS feature without any problem.

From 2 months ago till now am still facing this problem even with the latest signature update.

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Salomao Mambo

‎06-07-2017 01:35 AM

Working with the TAC on your open case is best for your immediate problem.

 All signature support for appliances and modules will end on April 26, 2018 as stated in the End-of-Sale and End-of-Life Announcement for the Cisco Intrusion Prevention System.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card