Re: Cisco Firepower 1010 - Issue with Software Image

Xenofon Batsis · ‎12-31-2025

I am experiencing an issue with the software image on a Cisco Firepower 1010 device.

After performing a factory reset, I accidentally erased disk0:, which resulted in the loss of the system image. As a result, the device can no longer boot and is currently offline with no software installed.

I do not have an active Cisco support contract, so I am unable to download the required image from Cisco.

The device previously had a basic license that provided NAT, DHCP, and HTTP server access. In addition, the following licenses have expired:

URL Filtering
Malware Protection
Threat Defense / Threat Protection

Given the current state of the device (no bootable image and no active contract), what steps should I follow to recover the device and restore at least the basic functionality?

balaji.bandi · ‎12-31-2025

Looking at the information, you do not have many options left (due to human mistakes)

Even if you get an image, most of the features are expired, and you only have a base License like FW.

Contact the TAC at the phone number, or try login in with your CCO account and downloading the software (in some cases, you can download it) - even though you do not need a contract.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Xenofon Batsis · ‎12-31-2025

Thank you for your response. Actually, i haven't software image in the Firewall Device, if i will install the Software then i will activate the licenses. In the CCO account, all the images are restricted and you must have contract to download it. Also, one software is free to download but it has label for possible bugs so i don't want to install in my Firepower 1010. Obviously, the software version has matching with serial number of the device. Correct?

balaji.bandi · ‎12-31-2025

For now, you do not have an option; the only choice you have is to download and recover the FW to working condition, so I downloaded whatever option you have to download and recover the Firewall.

 the software version has matching with serial number of the device. Correct?

Not sure I understand this correctly - you can install any software which is stable on your device, as long as you have permission to download as part of the contract.

If this is in production, have the base License you should be able to download - better call Cisco TAC and ask.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Xenofon Batsis · ‎12-31-2025

If i find a solution for a software image and then follow the below steps, i have access to GUI? Before i ask about the serial number of the Firepower, if a take the image from another Firepower 1010, should i have any issue with DHCP, NAT or HTTP access?

firepower-2110 /firmware # show package
Name                                          Package-Vers
--------------------------------------------- ------------
cisco-asa-fp2k.9.20.2.2.SPA                   9.20.2.2
cisco-ftd-fp2k.7.4.1-172.SPA                  7.4.1-172
firepower-2110 /firmware #

scope auto-install

install security-pack version version

In the show package output, copy the Package-Vers value for the security-pack version number. The chassis installs the image and reboots.This process, including reloading, can take approximately 30 minutes.

balaji.bandi · ‎12-31-2025

2K image does not work on 1K Firewall.

You can get SN back of the kit if you're looking to get one.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Xenofon Batsis · ‎12-31-2025

I understand that the two images are just an example, and that only one image can be installed on a Firepower device.

Will the serial number (SN) of another device affect the configuration of DHCP, NAT, or other services? I am asking because yesterday I installed a software image taken from another Firepower device, and after the installation I was unable to access the GUI and also experienced network connectivity issues.

I had installed the below software, but the serial number wasn't the SN of my Firepower!

cisco-ftd-fp2k.7.4.1-172.SPA

balaji.bandi · ‎12-31-2025

as i mentioned before you can not install the image of 2XXX mode with 1XXX model

SN and image not tagged, if you have a copy, you can install N number of devices without any issue as long as the same model and image.

installed a software image taken from another Firepower device, and after the installation I was unable to access the GUI and also experienced network connectivity issues.

We were not aware of this issue until you configured a duplicate IP address.

BB

=====Preenayamo Vasudevam=====

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Xenofon Batsis · ‎01-05-2026

I have installed the version 7.6.2-329.SPA from another Firepower 1010. The result is that the status of the led is red and i haven't network. The DHCP protocol is enabled, i have configured one by one the steps and the protocols didn't worked.

I have configured manager local without result, firepower has the below config:

Static IP: 192.168.95.2

CIDR:255.255.255.0

Gateway:192.168.95.1

I haven't access to the http server, my pc was in the port of the Firepower(Ethernet1/2) but i didn't have access to the Internet. I don't know the reason, i have tried a lot of times without any result. My PC has the correct IP (192.168.95.5/24) and i can ping to the GW but from firewall i can't ping the IP of the PC.

I must find to download form Cisco the correct version for the Firepower!!!