Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1017
Views
0
Helpful
7
Replies

SPA 122 reboots at irregular intervals with reason code H0

Go to solution
gcornely
Level 1
Level 1

‎04-10-2023 11:01 AM

I have many SPA 122's that I have discovered are rebooting at irregular intervals with reason code H0.  I'm in a Metaswitch environment using the SIP Provisioning Server on the Meta.  It seems H0 implies that the time stamp of the config that the SIP PS generates on the fly when the file is requested is differing from the one on the SPA 122 (well of course it is, it is generated on the fly) so it reboots.  I have been weeding through posts and docs trying to find out why we are requesting a config on some irregular interval in the first place but am not being very successful.  

Gary

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎04-10-2023 05:27 PM

Do not, under any circumstances, upgrade the firmware of the SPA12X.  

If the SPA12X firmware gets upgraded, it will introduce FN - 72345 - SPA112 and SPA122: QuoVadis root CA 2 decommission may cause SIP and HTTPS handshake failure and turn the SPA12X into a brick because Cisco will not issue a fixed version (nor a patch) to fix the expired certificate.  

View solution in original post

0 Helpful
7 Replies 7

Go to solution
gcornely
Level 1
Level 1

‎04-10-2023 11:05 AM

I turned down the syslog to just look at the requests.  

Preview file
187 KB
0 Helpful

Go to solution
gcornely
Level 1
Level 1

‎04-10-2023 11:15 AM

Here is a snippit showing the Reboot Reason.  

Preview file
187 KB
0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎04-10-2023 05:27 PM

Do not, under any circumstances, upgrade the firmware of the SPA12X.  

If the SPA12X firmware gets upgraded, it will introduce FN - 72345 - SPA112 and SPA122: QuoVadis root CA 2 decommission may cause SIP and HTTPS handshake failure and turn the SPA12X into a brick because Cisco will not issue a fixed version (nor a patch) to fix the expired certificate.  

0 Helpful

Go to solution
gcornely
Level 1
Level 1
In response to Leo Laohoo

‎04-12-2023 03:08 PM

I am on 1.4.1 SR0 is this affected?

0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame
In response to gcornely

‎04-12-2023 11:54 PM

One of the symptoms of an expired QuoVadis certificate is inability to HTTPS into the SPA12x.

0 Helpful

Go to solution
gcornely
Level 1
Level 1

‎04-13-2023 04:22 PM

I have seen this issue.  So is the recommendation short of replacing all of these 1.4.1 SPA 122's to down grade them to say 1.3.2?

0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame
In response to gcornely

‎04-13-2023 04:33 PM

@gcornely wrote:
So is the recommendation short of replacing all of these 1.4.1 SPA 122's to down grade them to say 1.3.2?

This question is going to get me into a lot of trouble if I respond.  

Downgrade is not an option because it will open up a number of security vulnerabilities.  

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents