Preview Tool

Cisco Bug: CSCvv38482 - FDM UI fails to load after an upgrade

Last Modified

Oct 03, 2020

Products (1)

  • Cisco Firepower NGFW

Known Affected Releases

Description (partial)

Initial symptom observed is that the FDM UI fails to load after the upgrade with a message '503 Service Unavailable' or 'HTTP ERROR 404'

Due to the DB becomes unstable, the following issues were also seen:
> The Standby FDM fails to join the HA with the reason 'HA state progression failed due to APP SYNC timeout'
> The FTD fails to delete the manager when trying to re-configure onbox management using the command 'configure manager delete'. The output of 'show managers' still shows 'Managed locally'

The FTD upgrade is performed when a pending task rule as rule update was already running.

For example, this is the start and end of the FTD upgrade:
[200731 23:20:31:926] # UPGRADE STARTING
[200731 23:26:11:323] # UPGRADE COMPLETE

A rule update was already running at the time of the FTD upgrade:
2020-07-31 23:16:13 ha-service-0: INFO  SRUDBUpdateService:133 - Updating Rule Update package by HA_SRU_UPDATE
2020-07-31 23:16:13 ha-service-0: INFO  SRUUnpacker:893 - unpack Rule Update package called with Rule Update Package:/ngfw/var/cisco/deploy/db/1596237163/fdm/sru_working-2020-07-29-001-vrt.tgz and Rule Update Type:HA_SRU_UPDATE
2020-07-31 23:16:17 ha-service-0: INFO IPSRuleClassificationProcessor:74 - Parsing RuleClassification directory for Rule Update type: HA_SRU_UPDATE
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.