Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
484
Views
0
Helpful
8
Replies

Unable to upgrade a IDS sensor 4220

croue
Level 1
Level 1

‎08-09-2004 04:02 AM - edited ‎03-09-2019 08:21 AM

Hi,

I upgraded the IDS sensor 4220-E in 4.1(1)S47 with the recovery/password CD. Upgrade OK.

After I tried to upgrade the service pask and signature pack. But it was impossible.

I use Serv-U ftp server.

When I try up upgrade, I receive the following result:

sensor(config)# upgrade ftp://pc@10.32.4.100/IDS-sig-4.1-1-S57.rpm.pkg

Password: **

Warning: Executing this command will apply a signature update to the application partition.

Continue with upgrade? : yes

Error: download file does not exist: /usr/cids/idsRoot/var/updates/IDS-sig-4.1-1-S57.rpm.pkg

sensor(config)#

How can I resolve the problem?

Thanks for your help

Labels:
0 Helpful
8 Replies 8

rwassom
Level 1
Level 1

‎08-09-2004 08:13 AM

Have you installed the memory upgrade for your IDS-4220?

-Rusty

0 Helpful

croue
Level 1
Level 1
In response to rwassom

‎08-10-2004 12:12 AM

Hi rusty,

Yes, I installed the memory upgrade, before upgrade the software from 3.5 to 4.1 with the CD-rom.

0 Helpful

jamesand
Cisco Employee
Cisco Employee

‎08-09-2004 09:43 AM

There are some known restrictions with ftp upgrades (pre 4.1(4):

- do not use anonymous account

- do not configure ftp server to use custom prompts

- do not configure ftp server to expect MSDOS filesystem paths (use unix filesystem paths)

- do configure ftp server to use passive mode

If none of these help then you can try the following workaround:

1) Create a service account

2) Login with the service account

3) Ftp the file to the home directory of the service account on the sensor

4) Exit service account

5) Login with the cisco account

6) Execute "ssh host-key " under "configure terminal" mode.

7) Type "yes" to accept the key

8) Execute "upgrade

scp://@/" under "configure

terminal" mode.

NOTE: in 4.1(4) the sensor ftp client implementation is much more robust (without above restrictions).

0 Helpful

croue
Level 1
Level 1
In response to jamesand

‎08-10-2004 12:22 AM

Hi James,

I created a service account (administrator) and login with this.

But, how can I proceed for the step 3?

And how configure the ftp server to expect Unix filesystem paths? I use SERV-U with WinXP-Pro

0 Helpful

jamesand
Cisco Employee
Cisco Employee
In response to croue

‎08-10-2004 06:14 AM

Step 3 is to manually download your package file to the sensor using ftp. When you log into the service account you will be running a unix bash shell (not cli). Here are the steps:

ftp 10.32.4.100

enter username/pw

cd

binary

get IDS-sig-4.1-1-S57.rpm.pkg

quit

This downloads the package file to the sensor (service account's home directory).

Answer to question 2: I am not that familiar with the SERV-U ftp server configuration. Some windows based ftp servers allow you to specify unix/MSDOS filesystem modes. SERV-U may not.

0 Helpful

croue
Level 1
Level 1
In response to jamesand

‎08-11-2004 12:11 AM

Do you have example from some windows based ftp servers with option of filesystem mode unix/msdos?

Because I tried some without success.

0 Helpful

croue
Level 1
Level 1
In response to jamesand

‎08-11-2004 01:24 AM

Thanks a lot for your help.

I used 3Cserver, and the upgrades were ok.

0 Helpful

scothrel
Level 3
Level 3

‎08-10-2004 10:06 AM

I think you're missing a slash in your command line, try:

upgrade ftp://pc@10.32.4.100//IDS-sig-4.1-1-S57.rpm.pkg

and give the absolute path from the root.

0 Helpful
Customers Also Viewed These Support Documents