Guest

Preview Tool

Cisco Bug: CSCvu82272 - Upgrade on Firepower Management Center may fail due to inactive stale entries of managed devices

Last Modified

Oct 08, 2020

Products (11)

  • Sourcefire Defense Center
  • Cisco Firepower Management Center 2500
  • Cisco Firepower Management Center 4600
  • Cisco NGIPS Virtual Appliance
  • Cisco Firepower Management Center 4500
  • Cisco Firepower Management Center 1600
  • Cisco Firepower Management Center 4000
  • Cisco Firepower Management Center 1000
  • Cisco Firepower Management Center 2600
  • Cisco Firepower Management Center Virtual Appliance
View all products in Bug Search Tool Login Required

Known Affected Releases

6.6.0

Description (partial)

Symptom:
Software upgrade on Firepower Management Center (FMC) may fail due to inactive stale entries of the managed devices.
Specifically, if the target version is 6.6.0, and FMC managed devices with software versions that according to the Firepower Compatibility table are not compatible with version 6.6.0, then upgrade to version 6.6.0 will fail even if the devices are inactive or not managed by this FMC.

The error fails during the execution of the following script:

Fatal error: Error running script 800_post/999_Snort_Restart_Upgrade.pl. For more details see /var/log/sf/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.0/800_post/999_Snort_Restart_Upgrade.pl.log on the device being upgraded.

$ cat /var/log/sf/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.0/800_post/999_Snort_Restart_Upgrade.pl.log

Unable to upgrade snort version for Snort Restart Warnings$VAR1 = bless( {
'-stacktrace' => 'System (/usr/bin/perl /var/sf/snort-2.9.16-140/choose-snort.pl -S 2.9.16-140 -m 75 -V 6.1.0 -f default) Failed at /usr/local/sf/lib/perl/5.10.1/SF/System.pm line 964    <----------- line to consider.

Conditions:
All of the following conditions must match:

- The target version, i.e. version that FMC is being upgraded to, is 6.6.0.
- The current major version is below 6.6.0.
- FMC managed devices with software versions that, according to the Firepower Compatibility table, are not compatible with version 6.6.0 and that are currently inactive or not managed by this FMC.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.