Solved: FPR-1010 firepower-failed

malecona · ‎01-06-2022

Hello, I have a firepower 1010 and I tried to upgrade it, later it began to reboot infinitely
Reading the cisco documentation I applied
upgrade revert
after that, the console appears:
firepower-failed #
nor does it allow me to apply more commands once by giving "connect ftd"
after restarting it the error messages appear:

tarting system log daemon...
[2022-01-06T20:28:02.903688] WARNING: Configuration file format is too old, syslog-ng is running in compatibility mode. Please update it to use the syslog-ng 3.16 format at your time of convenience. To upgrade the configuration, please review the warnings about incompatible changes printed by syslog-ng, and once completed change the @version header at the top of the configuration file.;
[2022-01-06T20:28:02.928224] WARNING: With use-dns(no), use-dns-cache() will be forced to 'no' too!;
[2022-01-06T20:28:02.928699] Connection failed; fd='25', server='AF_UNIX(/dev/asalog)', local='AF_UNIX(anonymous)', error='No such file or directory (2)'
[2022-01-06T20:28:02.928721] Initiating connection failed, reconnecting; time_reopen='60' [ OK ]
Adding swapfile /ngfw/Volume/.swaptwo
Flushing all current IPv4 rules and user defined chains: ...success
Clearing all current IPv4 rules and user defined chains: ...success
Unable to connect to UNIX socket at /ngfw/var/sf/run/PM_Control.sock

Pinging mysql, try 59
Pinging mysql, try 60
mysql is not running
Skipping sfifd for this platform...
Removing Compiled Python Files on Sensor......done
Starting Cisco Firepower 1010 Threat Defense, please wait...No PM running!
...started.

I already tried to clear the configuration but without success

malecona · ‎01-07-2022

Hi, thanks for the answer, I solved the problem with a factory reset using the rest button.

View solution in original post

balaji.bandi · ‎01-06-2022

Looks like something went wrong, or you hitting with a bug

From what version you try to upgrade? to what new version ? have you checked the release notes ?

Do you have config backup before upgrade ?

you have 2 options :

1. if you have support contact TAC

2. re-image :

https://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/reimage/asa-ftd-reimage.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

malecona · ‎01-07-2022

Hi, thanks for the answer, I solved the problem with a factory reset using the rest button.

Zaaf Aba · ‎04-08-2025

After spending hours and hours I manage to fix similar issue on FTD 1120

Important points to note is that each FTD series 1000, 1100, 1200, 2100 , 3100, 4200 has different upgrade or reimage methods.

For FTD 1120 I followed

via console after login I used to following commands:

connect ftd
configure network ipv4 manual 192.168.13.8 255.255.255.0 192.168.13.1
configure network ipv4 dhcp-server-disable
exit
firepower# scope firmware
download image tftp://192.168.22.10/cisco-asa-fp1k.9.16.A.B.SPA
show download-task
scope auto-install
# remember to NOT type full file name, just need the version number.
install security-pack version 9.16.A.B

FTD rebooted after the install

I then copied the ASA firmware and ASDM to disk0 again, so that the file is visible instead of hidden somewhere with in FTD/ASA
vpn-fw(config)# boot system disk0:/cisco-asa-fp1k.9.16.A.B.SPA

FPR-1010 firepower-failed

Downgrade FPR-1010

newbie question FPR 1010 FTD

FPR 1010 ASA HA / Failover issue

Cisco FPR 1010 setup

FPR-1010 running ASA code lost encryption license after reimage

Cisco FXOS Troubleshooting Guide for the Firepower 1000/2100 and Secure Firewall 1200/3100/4200 with Threat Defense --- ...