Re: Cisco IPS 4215 only Grub working

ravez · ‎10-29-2012

I bought a Cisco IPS 4215. It was used and had an exisiting configuration on it already. When I tried to do a password recovery via Grub the process seemed like it finished but never allows me to console via new password. Now the unit files seem to be corrupt and the only thing I can get to is the initial Grub option screen but nothing works.

My question is how do I recover this unit using Grub. Basically starting from scratch assuming no image works. THe appliance at least has a usb port but not sure if I can use to upload a new image.

This is as far as I get:

CISCO SYSTEMS IDS-4215
Embedded BIOS Version 5.1.6 09/29/03 14:52:04.96
Compiled by dnshep
Evaluating Run Options ...
Check for Valid Disk Image
GRUB Loading stage1.5.

GRUB loading, please wait...

GRUB version 0.91 (632K lower / 523264K upper memory)

-------------------------------------------------------------------
0: Cisco IDS (vmlinuz-2.4.26-IDS-smp-bigphys}
1: Cisco IDS Recovery
-------------------------------------------------------------------

      Use the ^ and v keys to select which entry is highlighted.
      Press enter to boot the selected OS, 'e' to edit the
      commands before booting, 'a' to modify the kernel arguments
      before booting, or 'c' for a command-line.

Highlighted entry is 0: utomatically in 8 seconds.

GRUB version 0.91 (632K lower / 523264K upper memory)

-------------------------------------------------------------------
0: Cisco IDS (vmlinuz-2.4.26-IDS-smp-bigphys}
1: Cisco IDS Recovery
-------------------------------------------------------------------

      Use the ^ and v keys to select which entry is highlighted.
      Press enter to boot the selected OS, 'e' to edit the
      commands before booting, 'a' to modify the kernel arguments
      before booting, or 'c' for a command-line.

Highlighted entry is 1:

sawgupta · ‎11-02-2012

Did you try the IDS Recovery option ?

To reimage, the steps are available at:

http://www.cisco.com/en/US/docs/security/ips/5.1/configuration/guide/cli/cliImage.html#wp1030825

Regards,

Sawan Gupta

Thanks & Regards, Sawan Gupta

ravez · ‎11-02-2012

Thanks for that... However, I can't find the following code: (IDS-4215-bios-5.1.7-rom-1.4.bin)

Upgrading the IDS-4215 BIOS and ROMMON

The BIOS/ROMMON upgrade utility (IDS-4215-bios-5.1.7-rom-1.4.bin) upgrades the BIOS of IDS-4215 to version 5.1.7 and the ROMMON to version 1.4.

To upgrade the BIOS and ROMMON on IDS-4215, follow these steps:

** dont see it anywhere in the download center **

ravez · ‎11-03-2012

Ok I found the (IDS-4215-bios-5.1.7-rom-1.4.bin) file. It was not int the download center but was in Cisco's site... just have to do a general search for it.

So, I upgraded the sensor successfully! But now I get a weird error when I try to launch IDM.

Anyone know how to fix this?

sawgupta · ‎11-04-2012

Clear the browser cache. And re-launch IDM. Since the sensor now has new certificate.

Regards,

Sawan Gupta

Thanks & Regards, Sawan Gupta

ravez · ‎11-05-2012

Thanks again for replying... unfortunately I had tried this a few times. Not sure what this particular issue is. I generated a new TLS cert on the sensor and it shows as 'ok' when I view the site certicficate after installing cert. Howver, as soon as I hit on 'Run IDM' that's when I see the failed to validate error occurs. I guess there's another certificate in the mix for the IDM piece.

ravez · ‎11-05-2012

Ok.. I noticed that the error was a bit different last time and the error read: Unable to launch application. After doing some searching it had to do with Jave version 1.7.x... I reverted to 1.6.x and now IDM opens properly.

sawgupta · ‎11-05-2012

Good to know !

Thanks & Regards, Sawan Gupta