Symptom
The Lightweight Security Package (LSP) download on Firepower Management Center (FMC) fails if no ICMP reply is received from updates-talos.sco.cisco.com.
On the user interface the "Could not complete LSP installation. Please try again." error message is shown.
In /var/log/sf/lsp_cpd.log file the "ERROR: Unable to ping 'updates-talos.sco.cisco.com'...aborting cloud update!" error message is shown
Conditions
All of these conditions must match:
1. Run Rule Update on FMC.
2. No ICMP Reply packets received by the FMC from the URL updates-talos.sco.cisco.com. This presumes that the ICMP connectivity fails in either direction of the connection.
Workaround
Use one of these options:
- Manually download the LSP package from the download page and upload to the FMC.
- Allow ICMP Echo from the FMC to the URL updates-talos.sco.cisco.com and the replies in the reverse direction, in case if these packets are administratively blocked.
Further Problem Description
