cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
4531
Views
0
Helpful
6
Replies

FPR 2120

wanumet
Level 1
Level 1

Why am I not able to input commands in ths FPR 2120

 

How do I reset it so that i put new software

MSC-FW-01# show run
                ^
% Invalid Command at '^' marker
MSC-FW-01# show running-config
                ^
% Invalid Command at '^' marker
MSC-FW-01# reload
           ^
% Invalid Command at '^' marker
MSC-FW-01#


*******************************************************************************
Cisco System ROMMON, Version 1.0.12, RELEASE SOFTWARE
Copyright (c) 1994-2019  by Cisco Systems, Inc.
Compiled Mon 06/17/2019 16:23:23.36 by builder
*******************************************************************************

Current image running: Boot ROM0
Last reset cause: PowerCycleRequest (0x00002000)
DIMM_1/1 : Present
DIMM_2/1 : Absent

Platform FPR-2120 with 16384 MBytes of main memory

WARNING: This board is using a temporary MAC address.
WARNING: The temporary MAC address override value = 00:11:22:33:44:1c
WARNING: Please clear this value to use the programmed MAC address.
WARNING: Use the following two CLI commands:
WARNING:   unset MACADDR
WARNING:   sync

BIOS has been successfully locked !!
MAC Address: 04:76:b0:d7:28:00

Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.


Located '.boot_string' @ cluster 335929.


Attempt autoboot: "boot disk0:installables/switch/fxos-k8-fp2k-lfbff.2.4.1.216.SPA"
Located 'installables/switch/fxos-k8-fp2k-lfbff.2.4.1.216.SPA' @ cluster 5200.

######################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################

+-------------------------------------------------------------------+
+------------------------- SUCCESS ---------------------------------+
+-------------------------------------------------------------------+
|                                                                   |
|             LFBFF signature authentication passed !!!             |
|                                                                   |
+-------------------------------------------------------------------+
LFBFF signature verified.
+-------------------------------------------------------------------+
+------------------------- SUCCESS ---------------------------------+
+-------------------------------------------------------------------+
|                                                                   |
|              LFBFF controller type check passed !!!               |
|                                                                   |
+-------------------------------------------------------------------+
INIT: version 2.88 booting
Starting udev
Hardware tweak APPLIED: Disable SATA Throttle.1
Hardware tweak APPLIED: Disable SATA Throttle.2
Configuring network interfaces... done.
Populating dev cache
Starting Power Off Shutdown Handler (poshd)
poshd: using FPGA version 2.0.00 and PSEQ version 2.13
Primary SSD discovered
fsck from util-linux 2.26.2
[/sbin/fsck.ext3 (1) -- /dev/sda1] fsck.ext3 -a /dev/sda1
/dev/sda1: recovering journal
/dev/sda1: clean, 116/61056 files, 42401/244224 blocks
fsck(/dev/sda1) returned 0
fsck from util-linux 2.26.2
[/sbin/fsck.ext3 (1) -- /dev/sda2] fsck.ext3 -a /dev/sda2
/dev/sda2: recovering journal
/dev/sda2: Clearing orphaned inode 45797 (uid=0, gid=0, mode=0140600, size=0)
/dev/sda2: clean, 142/61056 files, 16659/243968 blocks
fsck(/dev/sda2) returned 0
fsck from util-linux 2.26.2
[/sbin/fsck.ext3 (1) -- /dev/sda3] fsck.ext3 -a /dev/sda3
/dev/sda3: recovering journal
/dev/sda3: clean, 13/732960 files, 85969/2929664 blocks
fsck(/dev/sda3) returned 0
fsck from util-linux 2.26.2
[/sbin/fsck.vfat (1) -- /dev/sdb1] fsck.vfat -a /dev/sdb1
fsck.fat 3.0.28 (2015-05-16)
0x41: Dirty bit is set. Fs was not properly unmounted and some data may be corrupt.
 Automatically removing dirty bit.
Performing changes.
/dev/sdb1: 46 files, 335930/1919063 clusters
fsck(/dev/sdb1) returned 1
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
useradd: warning: the home directory already exists.
Not copying any file from skel directory into it.
FIPS POST Test Script
NOTICE: The FIPS POST is not run because the FIPS feature is not enabled
Running postinst /etc/rpm-postinsts/100-dnsmasq...
INIT: Entering runlevel: 3
Starting system message bus: dbus.
Stopping all devices.
Starting all devices.
Checking status of all devices.
There is 0 QAT acceleration device(s) in the system:
ip6tables: Applying firewall rules: [  OK  ]
iptables: Applying firewall rules: [  OK  ]
Starting OpenBSD Secure Shell server: sshd
done.
Starting rpcbind daemon...done.
starting statd: done
Starting Advanced Configuration and Power Interface daemon: acpid.
acpid: starting up with netlink and the input layer
acpid: 1 rule loaded
acpid: waiting for events: event logging is off
starting 8 nfsd kernel threads: done
starting mountd: done
Starting ntpd: done
Starting internet superserver: xinetd.
No makedumpfile found.
Starting Octeon NPU ...
Starting Octeon NPU ... success
Starting fan control daemon: fancontrol... done.
INFO: in validating image ...
INFO: kp_validate_image: fxmgr_absfilename /mnt/boot/installables/switch/fxos-k9-fp2k-manager.2.4.1.216.SPA
INFO: Validating image /mnt/boot/installables/switch/fxos-k9-fp2k-manager.2.4.1.216.SPA signature ...
Done!
Computed Hash   SHA2: 369351d81c6dff56c40e66611ab11f3b
                      895f1a0428ff0ca0c31223872828734c
                      62716a6554bd5fbb9f89126a0fbf838b
                      e2b4143ff365ae2a427a169b7f4aa6d8

Embedded Hash   SHA2: 369351d81c6dff56c40e66611ab11f3b
                      895f1a0428ff0ca0c31223872828734c
                      62716a6554bd5fbb9f89126a0fbf838b
                      e2b4143ff365ae2a427a169b7f4aa6d8

The digital signature of the file: fxos-k9-fp2k-manager.2.4.1.216.SPA verified successfully
INFO: beginning of kp_install
INFO: do nothing
INFO: kp_install: fxmgr=/mnt/boot/installables/switch/fxos-k9-fp2k-manager.2.4.1.216.SPA chmgr= update=false
INFO: mkdir -p /tmp/fxmgr
INFO: /bin/tar -xvzf /tmp/fxmgr/fxos-kp-manager.2.4.1.216.tgz ...
INFO: kp_install: shutting down the old version ...
INFO: Terminating DME and all AGs ...
INFO: --
INFO: kp_install: Unlinking a old libraries ...
INFO: kp_install: Deleting the old manager image ...
INFO: kp_install: Installing the new image ...
INFO: deleting unnecessary xml file..!!
INFO: deleted unnecessary xml file..!!
INFO: kp_post_install ...
INFO: kp_post_install: fxmgr=/mnt/boot/installables/switch/fxos-k9-fp2k-manager.2.4.1.216.SPA chmgr= update=false
INFO: kp_post_install: Linking libraries ...
INFO: kp_post_install: Linking binaries ...
INFO: Trying to add iptables and ip6tables rules ...
INFO: Set up Lina Diagnostic Interface ...
INFO: Configure management interface ...

ERROR: interface management0 is not ready after waiting for 60 seconds.
Current link status: [10: management0: <NO-CARRIER,BROADCAST,MULTICAST,PROMISC,UP> mtu 1500 qdisc noqueue state DOWN mode DEFAULT group default \    link/ether 04:76:b0:d7:28:00 brd ff:ff:ff:ff:ff:ff]
INFO: Configure system files ...
INFO: System Name is: MSC-FW-01
Starting sensors logging daemon: sensord... done.
INFO: /mnt/boot/installables/switch/fxos-k8-fp2k-npu.2.4.1.216.SPA
INFO: Need to validate the image
Done!
Computed Hash   SHA2: ca8d909650560a482060c290a83e18d5
                      fa6dd961ab83bc6817721408084b3703
                      147f2071c5e62e5f80eee925c66e3594
                      e4a8843e97a2c15a40de4cb53476fe2c

Embedded Hash   SHA2: ca8d909650560a482060c290a83e18d5
                      fa6dd961ab83bc6817721408084b3703
                      147f2071c5e62e5f80eee925c66e3594
                      e4a8843e97a2c15a40de4cb53476fe2c

The digital signature of the file: fxos-k8-fp2k-npu.2.4.1.216.SPA verified successfully
INFO: mkdir -p /tmp/npu
INFO: all files are there ...
INFO: kp_startup: setting up fxmgr apache ...
INFO: kp_startup: Start KP httpd setup...
 httpdRegister INFO: [httpd.3624 -s -4 192.168.45.45 -n localhost]
 httpdRegister INFO: SKIP httpd syntax check
 httpdRegister INFO: Starting httpd setup/registration...
 httpdRegister INFO: Completed httpd setup/registration!
 INFO: httpdRegister [httpd.3624 script exit]
INFO: kp_startup: Completed KP httpd setup!
Starting crond: OK
FTD
1:/opt/cisco/csp/cores
/opt/cisco/csp/cores 31457280

Threat Defense System: CMD=-bootup, CSP-ID=cisco-ftd.6.3.0.83__ftd_001_JMX2444Z05RR774SW1, FLAG=''
System is booting up ...
Command [ln -sf /opt/cisco/csp/applications/cisco-ftd.6.3.0.83__ftd_001_JMX2444Z05RR774SW1/app_data/Volume/6.3.0/log /opt/cisco/csp/applications/logs/cisco-ftd.6.3.0.83__ftd_001_JMX2444Z05RR774SW1.var-log] failed:
ln: failed to create symbolic link '/opt/cisco/csp/applications/logs/cisco-ftd.6.3.0.83__ftd_001_JMX2444Z05RR774SW1.var-log/log': Disk quota exceeded
INFO:-MspCheck: Configuration Xml found is /opt/cisco/csp/applications/configs/cINFO: System Disks /dev/sda is present. Status: Operable. /dev/sdb is present. Status: Inoperable.

Cisco FPR Series Security Appliance

MSC-FW-01 login: cat: /dev/cgroups/memory/fxos/memory.memsw.usage_in_bytes: No such file or directory
cat: /dev/cgroups/memory/fxos/memory.memsw.max_usage_in_bytes: No such file or directory
cat: /dev/cgroups/memory/fxos/memory.memsw.limit_in_bytes: No such file or directory
/bin/grep: /opt/cisco/config/platform/rmdb/SSP-RESERVED-CPU: No such file or directory
cat: /dev/cgroups/memory/fxos/memory.memsw.usage_in_bytes: No such file or directory
cat: /dev/cgroups/memory/fxos/memory.memsw.max_usage_in_bytes: No such file or directory
cat: /dev/cgroups/memory/fxos/memory.memsw.limit_in_bytes: No such file or directory
/bin/grep: /opt/cisco/config/platform/rmdb/SSP-RESERVED-CPU: No such file or directory
Sep 13 14:31:50 MSC-FW-01 port-manager  : portmgr_insert_card: mainboard 0xcde, ctype 0xcde
Sep 13 14:31:52 MSC-FW-01 port-manager  : Alert: Internal1/2 link changed to UP
Sep 13 14:33:10 MSC-FW-01 port-manager  : Alert: Ethernet1/3 link changed to UP
Sep 13 14:33:10 MSC-FW-01 port-manager  : Alert: Ethernet1/1 link changed to UP

Cisco FPR Series Security Appliance
MSC-FW-01 login:
Cisco FPR Series Security Appliance
MSC-FW-01 login: admin
Password:
Last login: Fri Aug 27 10:51:03 UTC 2021 on ttyS0
Successful login attempts for user 'admin' : 1
Cisco Firepower Extensible Operating System (FX-OS) Software
TAC support: http://www.cisco.com/tac
Copyright (c) 2009-2018, Cisco Systems, Inc. All rights reserved.

The copyrights to certain works contained in this software are
owned by other third parties and used and distributed under
license.

Certain components of this software are licensed under the "GNU General Public
License, version 3" provided with ABSOLUTELY NO WARRANTY under the terms of
"GNU General Public License, Version 3", available here:
http://www.gnu.org/licenses/gpl.html. See User Manual (''Licensing'') for
details.

Certain components of this software are licensed under the "GNU General Public
License, version 2" provided with ABSOLUTELY NO WARRANTY under the terms of
"GNU General Public License, version 2", available here:
http://www.gnu.org/licenses/old-licenses/gpl-2.0.html. See User Manual
(''Licensing'') for details.

Certain components of this software are licensed under the "GNU LESSER GENERAL
PUBLIC LICENSE, version 3" provided with ABSOLUTELY NO WARRANTY under the terms
of "GNU LESSER GENERAL PUBLIC LICENSE" Version 3", available here:
http://www.gnu.org/licenses/lgpl.html. See User Manual (''Licensing'') for
details.

Certain components of this software are licensed under the "GNU Lesser General
Public License, version 2.1" provided with ABSOLUTELY NO WARRANTY under the
terms of "GNU Lesser General Public License, version 2", available here:
http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html. See User Manual
(''Licensing'') for details.

Certain components of this software are licensed under the "GNU Library General
Public License, version 2" provided with ABSOLUTELY NO WARRANTY under the terms
of "GNU Library General Public License, version 2", available here:
http://www.gnu.org/licenses/old-licenses/lgpl-2.0.html. See User Manual
(''Licensing'') for details.

MSC-FW-01# configure terminal
           ^
% Invalid Command at '^' marker
MSC-FW-01#

 

1 Accepted Solution

Accepted Solutions

@wanumet Have you connected via console cable? Looks like you are in the FXOS CLI, you can run the command connect ftd to connect to the FTD CLI.

View solution in original post

6 Replies 6

@wanumet Have you connected via console cable? Looks like you are in the FXOS CLI, you can run the command connect ftd to connect to the FTD CLI.

Thank you, @Rob Ingram 

I will do tHat. I want to reset it, install new software (latest version) and then restore its configuration(which I have backed up)

 

Kindly guide me through the steps.

 

@Rob Ingram

MSC-FW-01 /eth-uplink # exit
MSC-FW-01# connect ftd
Error: Application is not installed.
MSC-FW-01#

@wanumet 

So FTD is not installed? Refer to this video https://www.youtube.com/watch?v=mxW4KJWVUbc to install FTD on FPR2100 appliances.

 

Here is the deployment guide also.

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/easy_deploy/easy-deployment.html

 

 

wanumet
Level 1
Level 1

@Rob Ingram

Am having trouble getting the software from cisco.

I want to use GUI but I can't even ping it from management port yet it gives a dhcp up to my laptop 

Review Cisco Networking for a $25 gift card