Guest

Preview Tool

Cisco Bug: CSCuj02243 - local scp update timeout will cause mainApp failure

Last Modified

Dec 17, 2014

Products (11)

  • Cisco IPS 4200 Series Sensors
  • Cisco ASA 5555-X IPS Security Services Processor
  • Cisco IPS 4345 Sensor
  • Cisco IPS 4520 Sensor
  • Cisco IPS 4510 Sensor
  • Cisco ASA 5525-X IPS Security Services Processor
  • Cisco ASA 5545-X IPS Security Services Processor
  • Cisco IPS 4360 Sensor
  • Cisco ASA 5515-X IPS Security Services Processor
  • Cisco ASA 5585-X IPS Security Services Processor
View all products in Bug Search Tool Login Required

Known Affected Releases

7.0(8)E4 7.1(7)E4 7.1(8)E4 7.2(1)E4

Description (partial)

Symptom:
mainApp failure on IPS results in the inability to login to the IPS command-line interface, and management tools will be unable to communicate with the IPS.

Conditions:
Use of SCP with a local server for auto signature update, for example, the following IPS configuration:

service host
..
auto-upgrade
user-server enabled
schedule-option periodic-schedule
start-time 09:10:00
interval 1
exit
ip-address x.x.x.x
directory updates
user-name somebody
file-copy-protocol scp

The failure occurs if the connection to the SCP server or the SCP server itself is unreliable, or slow enough that the download takes longer than 5 minutes.

Using the 'upgrade scp' command from the CLI will not trigger the issue. This issue is only triggered when using the scp option with the 'service host; auto-upgrade; user-server enabled' option.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.