cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
376
Views
0
Helpful
1
Replies

FMC Update increased Snort memory to FDT; Deployment failed

sabienzia5500
Level 1
Level 1

Hello everyone,
We have updated our FMC from v7.3.1.1 (build 19) to v7.3.1.1 (build 83), after the first deployment to our FDT-HA (both Firepower 2120) is on Active FDT double as much memory allocated to Inspection Engine (snort3), on the Passive this is not the case.
Since then the failover breaks down during Config Deployment and the Deployment failed. 

Active FDT:
Data Path
Free memory: 2347306912 bytes (34%)
Used memory: 4546359392 bytes (66%)
--------------- ---------------
Total memory: 6893666304 bytes (100%)

Inspection Engine
Free memory: 11117113344 bytes (84%)
Used memory: 2158907392 bytes (16%)
--------------- ---------------
Total memory: 13276020736 bytes (100%)

System
Free memory: 12752362704 bytes (55%)
Used memory: 10611438384 bytes (45%)
--------------- ---------------
Total memory: 23363801088 bytes (100%)


Passive FDT:
Data Path
Free memory: 3343858104 bytes (49%)
Used memory: 3549808200 bytes (51%)
--------------- ---------------
Total memory: 6893666304 bytes (100%)

Inspection Engine
Free memory: 5147357184 bytes (70%)
Used memory: 2198986752 bytes (30%)
--------------- ---------------
Total memory: 7346343936 bytes (100%)

System
Free memory: 13531297664 bytes (58%)
Used memory: 9832495232 bytes (42%)
--------------- ---------------
Total memory: 23363792896 bytes (100%)

1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

I know SNORT3 required some additional memory and eventually that should come to normal.

if it only effecting when the policy published and not effecting any traffic - then i will give some time and see if that come to normal condition.

if that is effecting - then i will raise an TAC case for investigation.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Review Cisco Networking for a $25 gift card