Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3362
Views
15
Helpful
16
Replies

cisco 9300 crashing during boot up after disabling password recovery and ignoring startup cfg

chris.nelson
Level 1
Level 1

‎06-23-2020 03:35 AM

Hi All,

 

I am hoping someone can help with this issue.

I have configured a cisco 9300 24T-A to disable password recovery and under a particular use case I need to ignore startup config. When both of these are enabled, my switch continuously crashes during boot up and always at the point where it asks "Do you want to erase the config?"

 

I am running Gibraltar 16.12.1

 

Has anyone seen this before?

Labels:
0 Helpful
16 Replies 16

balaji.bandi
Hall of Fame
Hall of Fame

‎06-23-2020 07:00 AM

Can you post complete boot log from start to rebooting again again, to understand.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame

‎06-23-2020 07:38 PM

Console into the switch and reboot.
Post the entire boot-up process.
0 Helpful

chris.nelson
Level 1
Level 1
In response to Leo Laohoo

‎06-24-2020 06:21 AM

Hi,

 

Thanks for the responses, and sorry for the late reply. I could only get access to the switch today.

I have attached a file that shows the boot up sequence from when I set the SWITCH_IGNORE_STARTUP_CFG variable in rommon.

 

Any help would be great. Thank you

Preview file
8 KB
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to chris.nelson

‎06-24-2020 07:15 AM

Look at the below messages some bug : ( what happends when you make changes for the startup and password config put back- is this stable ?) - then only case if you diable having issue, then Raise an TAC case.

 

Both ignore startup configuration and disable password are set
This will result in erasing the startup config
Do you want to Erase the config? Default: n, Answer y/n:

Exception to IOS Thread:
Frame pointer 0x7F3F9AC35770, PC = 0x7F4089635D15

UNIX-EXT-SIGNAL: Segmentation fault(11), Process = Net Background
-Traceback= 1#1350f061a78508b993d0b9e25bd0eecc dpidb_config:7F408959C000+99D15 :556F0F39F000+B5BFA43 :556F0F39F000+B5BE3E8 :556F0F39F000+67B2EBC :556F0F39F

 

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

chris.nelson
Level 1
Level 1
In response to balaji.bandi

‎06-26-2020 02:02 AM

Hi,

 

I hope that I understand your question correctly - everything works fine in any other case other than the one I have mentioned. So if I disable password recovery and I don't ignore startup config it works fine

if I enable password recovery and ignore the startup config it works fine.

 

funnily I have raised a TAC case and due to an office error, the device is no longer covered under support contract so they won't look into it until a new support contract has been bought. They suggested asking the community, so here I am.

 

Thank you for the response

0 Helpful

Leo Laohoo
Hall of Fame
Hall of Fame
In response to chris.nelson

‎06-24-2020 06:38 PM

Try loading 16.12.3a.
NOTE: Unless the switch is passive highly-sensitive/highly-classified information, I do not recommend disabling the password recovery function.

chris.nelson
Level 1
Level 1
In response to Leo Laohoo

‎06-26-2020 02:10 AM

Hi,

 

Thank you for the response.

Do you know whether this issue exists in 16.12.3a?

It is a security requirement that we prevent anyone from being able to access the switch, so we have to disable password recovery

0 Helpful

chris.nelson
Level 1
Level 1
In response to Leo Laohoo

‎06-26-2020 02:26 AM

Hi All,

 

I will try 16.12.3a next week when I get access to the switch. If it works I will respond and mark your solution as accepted

 

thank you for the help

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to chris.nelson

‎06-26-2020 03:08 AM

was testing " 16.12.3a" last few weeks, they seems to stable (based on my requirement) but worth trying if you get chance and keep us posted how it goes.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

chris.nelson
Level 1
Level 1

‎06-29-2020 03:41 AM

After a discussion with our security advisor, I have installed 17.2.1 (because it is the latest IOS available) and the issue is still there. disabling password recovery and ignoring the start up config causes the switch to crash during boot up.

 

I am going to downgrade to 16.9.1 -> this was the version that the switch shipped with and I know the issue wasn't there

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to chris.nelson

‎06-29-2020 10:41 AM

yes to restore stable network going back to the old version. and raise a TAC case to investigate for you. hopefully, they come with solution.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

chris.nelson
Level 1
Level 1

‎07-02-2020 01:05 AM

Hi All,

 

an update for you: I have installed 16.12.3a as well as 17.2.1 and both IOS builds include this bug.

I reverted to 16.9.1 and everything is working fine.

I have finally managed to raise a TAC case

 

Thank you all for your help

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to chris.nelson

‎07-02-2020 05:17 AM

Thank you for the input and learned lession on this version and bug. TAC may add next relase and contact you.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Ahoysoy
Level 1
Level 1

‎09-14-2020 04:59 AM

We are experiencing the same problem with our 9300. Is there a known fix for this bug?

0 Helpful
Customers Also Viewed These Support Documents