17-22
Cisco Intrusion Prevention System Sensor CLI Configuration Guide for IPS 5.0
78-16527-01
Chapter 17 Upgrading, Downgrading, and Installing System Images
Installing System Images
Caution
The next step erases all data from the NM-CIDS hard-disk drive.
Step 13
Boot the system image:
ServicesEngine boot-loader>
boot helper IPS-NM-CIDS-K9-sys-1.1-a-5.0-1.img
The bootloader displays a spinning line while loading the system image from the TFTP server. When the
system image is loaded, it is booted. The system image installs IPS 5.0(1) on NM-CIDS. When the
installation is complete, NM-CIDS reboots. The system is restored to default settings. The user account
and password are set to
cisco
.
You must initialize NM-CIDS with the
setup
command. For the procedure, see
Initializing the Sensor,
page 3-2
.
Upgrading the Bootloader
The NM-CIDS bootloader executes immediately after BIOS completes its POST. The bootloader that
originally shipped on NM-CIDS is 1.0.5. This version cannot launch IPS 5.0(1).
Note
We recommend you upgrade your NM-CIDS to 5.0(1) by applying the 5.0(1) upgrade package
(IPS-K9-maj-5.0-1-S149.rpm.pkg). When the upgrade package is applied, the configuration is migrated
and the bootloader is upgraded to version 1.0.17-1. For the procedure to use the
upgrade
command, see
Upgrading the Sensor, page 17-2
. If you upgrade your NM-CIDS with the upgrade file, in the future you
will not need to upgrade the bootloader before performing a system upgrade.
The NM-CIDS system image (IPS-NM-CIDS-K9-sys-1.1-a-5.0-1.img) does not migrate your existing
configuration or upgrade the bootloader. Therefore, you must first manually install bootloader
version 1.0.17-1.
The 1.0.17-1 bootloader is backwards compatible with the 1.0.5 bootloader. This means you can boot
the IDS 4.1 image with bootloader version 1.0.17-1.
Note
The bootloader has a timeout of 10 minutes, which means reimages over slow WAN links will fail. To
avoid this situation, download the bootloader file to a local TFTP server and have the NM-CIDS reimage
from the local TFTP server.
To upgrade the bootloader, follow these steps:
Step 1
Download the bootloader file (servicesengine-boot-1.0-17-1_dev.bin) and the helper file
(NM-CIDS-K9-helper-1.0-1.bin) to the TFTP root directory of a TFTP server that is accessible from
your NM-CIDS. For the procedure for locating software on Cisco.com, see
Obtaining Cisco IPS
Software, page 18-1
.
Note
Make sure you can access the TFTP server location from the network connected to your
NM-CIDS’ Ethernet port.
Step 2
Log in to the router.