Solved: Re: Problems after upgrading to 7.0 on Cisco Firepower 2110 standalone

steinbasma · ‎06-22-2021

Hi all!

After upgrading from 6.4.0 to 7.0.0 I am stuck with some pending deployment changes. When I try to deploy them I get the following error:

ERROR: Failed to open "udp/localized/25/4500"
ERROR: Error opening IKE port 4500 on Interface outside
Config Error -- crypto ikev1 enable outside

I have seen som other have similar error on an ASA based device, but this is FTD/FDM based. Any clues anyone?

Chakshu Piplani · ‎06-23-2021

The above error happens when you try to enable ikev1 (udp 4500) but there is a connection on your FTD (pass through) with that port being used.
In order to fix it, we need to clear the connection and proceed with the deploy again.

Try following the workaround in this defect: https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvf82733

HTH

Regards,

Chakshu

Do rate helpful posts!

View solution in original post

Chakshu Piplani · ‎06-23-2021

The above error happens when you try to enable ikev1 (udp 4500) but there is a connection on your FTD (pass through) with that port being used.
In order to fix it, we need to clear the connection and proceed with the deploy again.

Try following the workaround in this defect: https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvf82733

HTH

Regards,

Chakshu

Do rate helpful posts!

steinbasma · ‎06-23-2021

Hello Chakshu!

Thanks for the workaround pointer. That did the trick