CiscoWorks 1160 Security Information Management Solution Engine 3.1 Installation and Configuration Guide - Troubleshooting [CiscoWorks Security Information Management Solution]

Table Of Contents

Troubleshooting

Cannot Log Into the System

SIMS Engine Cannot Connect to the Network

Cannot Connect to the SIMS Engine Using a Browser

System Time or Date Is Incorrect

System Cannot Boot from the Hard Drive

Cannot Connect to System with Telnet or Telnet Interaction Is Slow

Troubleshooting

This appendix provides troubleshooting information. It consists of the following sections:

•Cannot Log Into the System

•SIMS Engine Cannot Connect to the Network

•Cannot Connect to the SIMS Engine Using a Browser

•System Time or Date Is Incorrect

•System Cannot Boot from the Hard Drive

•Cannot Connect to System with Telnet or Telnet Interaction Is Slow

Cannot Log Into the System

Problem: You cannot log into the system.

Possible causes:

•You did not run the setup program to create an initial system configuration.

•You lost all the user account passwords.

Resolution:

Step 1 Did you run the setup program after booting the system for the first time?

If no, run the setup program as described in the "Configuring the SIMS Engine" section.

If yes, continue.

Step 2 Do you know the password for any system user accounts?

If no, reconfigure the system to create a new user account. See the "Recovering from Loss of All Administrator Passwords" section for more information.

If yes, continue.

Step 3 If you are certain you entered a valid username and password, contact Cisco's Technical Assistance Center for assistance.

SIMS Engine Cannot Connect to the Network

Problem: The system cannot connect to the network.

Possible causes:

•The network cable is not connected to the Ethernet 0 port.

•The Ethernet 0 interface is disabled or misconfigured.

•The system is configured correctly, but the network is down or misconfigured.

Resolution:

Step 1 Verify that the network cable is connected to the Ethernet 0 port and the Ethernet indicator is lit.

•If the network cable is not connected, connect it.

•If the network cable is connected but the Ethernet indicator is not lit, these are the probable causes:

–The network cable is faulty.

–The network cable is the wrong type (for example, a cross-over type, rather than the required straight-through type).

–The port on the default gateway to which the system connects is down.

If the network cable is connected and the Ethernet indicator is on but the system cannot connect to the network, continue.

Step 2 Use the ping command to perform the following tests:

a. Try to ping a well-known host on the network. A DNS server is a good target host.

If the ping command gets a response, the system is connected to the network. If it cannot connect to a particular host, the problem is either with the network configuration or that host. Contact your network administrator for assistance.

If the ping command does not get a response, continue.

b. Attempt to connect to another host on the same subnet as the system.

If the ping command can connect to a host on the same subnet, but cannot connect to a host on a different subnet, the default gateway is probably down.

If the ping command cannot connect to any hosts, continue.

Step 3 Use the show interfaces command to determine if the Ethernet 0 interface is disabled or misconfigured.

If the Ethernet 0 interface is disabled, enable it. If it is misconfigured, configure it correctly. For more information, see "Configuring the Ethernet Ports" section.

If the interface is enabled and correctly configured, continue.

Step 4 Contact your network administrator to verify that there are no conditions on the network that prevent the system from connecting to the network.

If conditions prevent the system from connecting to the network, have your network administrator correct them.

Step 5 If no conditions are preventing the system from connecting to the network, contact Cisco's Technical Assistance Center.

Cannot Connect to the SIMS Engine Using a Browser

Problem: You cannot connect to the system by entering its IP address in a Web browser.

Possible causes:

•The system cannot connect to the network.

•HTTP is not enabled

•The client system is not configured.

Resolution:

Step 1 Make sure that the system can connect to the network by following the procedure in the "SIMS Engine Cannot Connect to the Network" section. Attempt to connect the system using a Web browser.

If you cannot connect, continue.

Step 2 Verify that HTTP is enabled. For more information, see the "Configuring the Ethernet Ports" section.

Step 3 Verify that the browser is configured correctly, and try to connect to the SIMS Engine. If you cannot connect, continue.

Step 4 At the system console, or through Telnet, verify that the web server and tomcat are running by entering the following:
# services status
If they are running, go to step 6. If they are not running, continue.

Step 5 Stop the system services by entering the following:
# services stop
Step 6 Restart the system services by entering the following:
# services start
Step 7 Try to connect the system using a Web browser.

If you cannot connect, continue.

Step 8 Reboot the system by entering the reload command.

For more information about the reload command, see reload.

Step 9 If you still cannot connect to the system using a Web browser, contact Cisco's Technical Assistance Center for assistance.

System Time or Date Is Incorrect

Problem: The system time or date is incorrect.

Possible causes:

•NTP is misconfigured.

•The system clock is set incorrectly.

Resolution: See the "Setting System Date and Time" section for information about maintaining the system time and date.

System Cannot Boot from the Hard Drive

Problem: The system cannot boot from the hard drive during a reboot.

Possible causes:

•The disk has a physical error.

•The disk image is corrupted.

Resolution: If the SIMS Engine cannot boot from the hard drive, the hard drive needs to be reimaged. Use the Recovery CD to reimage your SIMS Engine. For more information, see the "Using the Recovery DVD" section.

Cannot Connect to System with Telnet or Telnet Interaction Is Slow

Problem: You cannot connect to the system using Telnet or Telnet interaction, even though the system is connected to the network.

Possible Causes:

•Telnet is disabled or configured incorrectly.

•The SIMS Engine cannot recognize hostnames.

Note If you are not using name recognition, slow or nonexistent Telnet interaction is an expected problem. For more information, see the "Name Resolution" section.

Resolution: If the problem is not the network, perform the following steps. Connect to the console port if you cannot Telnet to the SIMS Engine.

Step 1 Check the Telnet settings to be sure Telnet is enabled and configured correctly. For more information, see the following

•To check the Telnet settings, or to enable or disable Telnet on specific domains or IP addresses, see telnet.

•To enable or disable Telnet on individual ports, see firewall.

Step 2 If you have specified hosts in telnetenable, make sure the host from which you are attempting to Telnet is on the list.

Step 3 If you are using a DNS server, perform the following steps:

a. Configure the system to use a functioning DNS server by entering:
# ip name-server ip-address
where ip-address is the IP address of the DNS server.

If you are using the import CLI command, proceed to Step 4.

b. Verify that the system can get DNS services from the network by entering the following command:
# nslookup dns-name {hostname | ip-address}
where dns-name is the DNS name of a host on the network that is registered in DNS and hostname and ip-address is the same IP address specified in Step 2. The command returns the IP address of the host.

c. If the system cannot resolve DNS names to IP addresses, the DNS server it is using is not working properly.

Resolve the network DNS problem, then continue.

Step 4 If you are using the import CLI command to resolve hostnames, verify that the Security Information Management Solution Engine can resolve hostnames by entering the following command:
ping hostname
where hostname is a hostname that has been mapped to an IP address, or imported in a host file, using the import command.

Step 5 If the system can resolve DNS names to IP addresses but you still cannot connect to the system using Telnet or Telnet interaction with the system is extremely slow, contact Cisco's Technical Assistance Center.

	CiscoWorks 1160 Security Information Management Solution Engine 3.1 Installation and Configuration Guide
	Troubleshooting
CiscoWorks 1160 Security Information Management Solution Engine 3.1 Installation and Configuration Guide Supplemental License Agreement Cisco 90-Day Limited Hardware Warranty Terms Preface Product Overview Preparing for Installation Installing and Configuring the Security Information Management Solution Engine Administering the Security Information Management Solution Engine Troubleshooting Technical Specifications Command Reference	Download this chapter Troubleshooting Table Of Contents Troubleshooting Cannot Log Into the System SIMS Engine Cannot Connect to the Network Cannot Connect to the SIMS Engine Using a Browser System Time or Date Is Incorrect System Cannot Boot from the Hard Drive Cannot Connect to System with Telnet or Telnet Interaction Is Slow Troubleshooting This appendix provides troubleshooting information. It consists of the following sections: •Cannot Log Into the System •SIMS Engine Cannot Connect to the Network •Cannot Connect to the SIMS Engine Using a Browser •System Time or Date Is Incorrect •System Cannot Boot from the Hard Drive •Cannot Connect to System with Telnet or Telnet Interaction Is Slow Cannot Log Into the System Problem: You cannot log into the system. Possible causes: •You did not run the setup program to create an initial system configuration. •You lost all the user account passwords. Resolution: Step 1 Did you run the setup program after booting the system for the first time? If no, run the setup program as described in the "Configuring the SIMS Engine" section. If yes, continue. Step 2 Do you know the password for any system user accounts? If no, reconfigure the system to create a new user account. See the "Recovering from Loss of All Administrator Passwords" section for more information. If yes, continue. Step 3 If you are certain you entered a valid username and password, contact Cisco's Technical Assistance Center for assistance. SIMS Engine Cannot Connect to the Network Problem: The system cannot connect to the network. Possible causes: •The network cable is not connected to the Ethernet 0 port. •The Ethernet 0 interface is disabled or misconfigured. •The system is configured correctly, but the network is down or misconfigured. Resolution: Step 1 Verify that the network cable is connected to the Ethernet 0 port and the Ethernet indicator is lit. •If the network cable is not connected, connect it. •If the network cable is connected but the Ethernet indicator is not lit, these are the probable causes: –The network cable is faulty. –The network cable is the wrong type (for example, a cross-over type, rather than the required straight-through type). –The port on the default gateway to which the system connects is down. If the network cable is connected and the Ethernet indicator is on but the system cannot connect to the network, continue. Step 2 Use the ping command to perform the following tests: a. Try to ping a well-known host on the network. A DNS server is a good target host. If the ping command gets a response, the system is connected to the network. If it cannot connect to a particular host, the problem is either with the network configuration or that host. Contact your network administrator for assistance. If the ping command does not get a response, continue. b. Attempt to connect to another host on the same subnet as the system. If the ping command can connect to a host on the same subnet, but cannot connect to a host on a different subnet, the default gateway is probably down. If the ping command cannot connect to any hosts, continue. Step 3 Use the show interfaces command to determine if the Ethernet 0 interface is disabled or misconfigured. If the Ethernet 0 interface is disabled, enable it. If it is misconfigured, configure it correctly. For more information, see "Configuring the Ethernet Ports" section. If the interface is enabled and correctly configured, continue. Step 4 Contact your network administrator to verify that there are no conditions on the network that prevent the system from connecting to the network. If conditions prevent the system from connecting to the network, have your network administrator correct them. Step 5 If no conditions are preventing the system from connecting to the network, contact Cisco's Technical Assistance Center. Cannot Connect to the SIMS Engine Using a Browser Problem: You cannot connect to the system by entering its IP address in a Web browser. Possible causes: •The system cannot connect to the network. •HTTP is not enabled •The client system is not configured. Resolution: Step 1 Make sure that the system can connect to the network by following the procedure in the "SIMS Engine Cannot Connect to the Network" section. Attempt to connect the system using a Web browser. If you cannot connect, continue. Step 2 Verify that HTTP is enabled. For more information, see the "Configuring the Ethernet Ports" section. Step 3 Verify that the browser is configured correctly, and try to connect to the SIMS Engine. If you cannot connect, continue. Step 4 At the system console, or through Telnet, verify that the web server and tomcat are running by entering the following: # services status If they are running, go to step 6. If they are not running, continue. Step 5 Stop the system services by entering the following: # services stop Step 6 Restart the system services by entering the following: # services start Step 7 Try to connect the system using a Web browser. If you cannot connect, continue. Step 8 Reboot the system by entering the reload command. For more information about the reload command, see reload. Step 9 If you still cannot connect to the system using a Web browser, contact Cisco's Technical Assistance Center for assistance. System Time or Date Is Incorrect Problem: The system time or date is incorrect. Possible causes: •NTP is misconfigured. •The system clock is set incorrectly. Resolution: See the "Setting System Date and Time" section for information about maintaining the system time and date. System Cannot Boot from the Hard Drive Problem: The system cannot boot from the hard drive during a reboot. Possible causes: •The disk has a physical error. •The disk image is corrupted. Resolution: If the SIMS Engine cannot boot from the hard drive, the hard drive needs to be reimaged. Use the Recovery CD to reimage your SIMS Engine. For more information, see the "Using the Recovery DVD" section. Cannot Connect to System with Telnet or Telnet Interaction Is Slow Problem: You cannot connect to the system using Telnet or Telnet interaction, even though the system is connected to the network. Possible Causes: •Telnet is disabled or configured incorrectly. •The SIMS Engine cannot recognize hostnames. Note If you are not using name recognition, slow or nonexistent Telnet interaction is an expected problem. For more information, see the "Name Resolution" section. Resolution: If the problem is not the network, perform the following steps. Connect to the console port if you cannot Telnet to the SIMS Engine. Step 1 Check the Telnet settings to be sure Telnet is enabled and configured correctly. For more information, see the following •To check the Telnet settings, or to enable or disable Telnet on specific domains or IP addresses, see telnet. •To enable or disable Telnet on individual ports, see firewall. Step 2 If you have specified hosts in telnetenable, make sure the host from which you are attempting to Telnet is on the list. Step 3 If you are using a DNS server, perform the following steps: a. Configure the system to use a functioning DNS server by entering: # ip name-server ip-address where ip-address is the IP address of the DNS server. If you are using the import CLI command, proceed to Step 4. b. Verify that the system can get DNS services from the network by entering the following command: # nslookup dns-name {hostname \| ip-address} where dns-name is the DNS name of a host on the network that is registered in DNS and hostname and ip-address is the same IP address specified in Step 2. The command returns the IP address of the host. c. If the system cannot resolve DNS names to IP addresses, the DNS server it is using is not working properly. Resolve the network DNS problem, then continue. Step 4 If you are using the import CLI command to resolve hostnames, verify that the Security Information Management Solution Engine can resolve hostnames by entering the following command: ping hostname where hostname is a hostname that has been mapped to an IP address, or imported in a host file, using the import command. Step 5 If the system can resolve DNS names to IP addresses but you still cannot connect to the system using Telnet or Telnet interaction with the system is extremely slow, contact Cisco's Technical Assistance Center.
	© 1992-2009 Cisco Systems, Inc. All rights reserved. Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks of Cisco Systems, Inc.