[x]
Posted via EE Mobile

Search, ask, and monitor your questions on the go with EE Mobile. Visit Experts Exchange from your mobile device and never be out of touch again.

Question
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!

9.4

Cisco PIX 501 Stuck in Endless Reboot

Asked by mbritojr in Network Software Firewalls, Cisco PIX Firewall, Enterprise Firewalls

Tags: pix, 501, cisco

Hello Everyone!

Thanks in advance for even daring to open a post iwth such a scary subject line, you rule.

My 501 was working fine. I just wanted to reconfigure it for an entirely different task. I logged into the PDM and selected the "Restore Factory Defaults"  option (or original configuration or whatever it says) along with "Retain IP Configuration of Inside Interface". When the process started the PDM lost its connection with the 501 (as I expected) and the device stopped responding to ping (didn't expect that). Then I noticed all the activity lights would go dark every few seconds in a pattern. I scrounged around for my console cable and dialed in and this is what I saw:

http://members.cox.net/mbritojr/cisco_error.txt (original, copy pasted below)

This process just loops and loops. I can interrupt it by hitting escape during the flash boot countdown but I get a very small menu and have no idea what to do. "tftp" is on this menu, maybe I could reload the flash image? No idea where to get the image or how to reload it though. I'm a Cisco newbie, PDM junkie!

Anyone have any idea's what to do about this or did I just make myself a $1,000 frisbee?

Mike

<START TERMINAL CONSOLE PASTE>

Flash boot in 1 seconds.
Reading 1937920 bytes of image from flash.
#########################################################################################################
16MB RAM
mcwa i82559 Ethernet at irq  9  MAC: 000f.8fe5.c73c
mcwa i82559 Ethernet at irq 10  MAC: 000f.8fe5.c73d
Flash=E28F640J3 @ 0x3000000
BIOS Flash=E28F640J3 @ 0xD8000

  -----------------------------------------------------------------------
                               ||        ||
                               ||        ||
                              ||||      ||||
                          ..:||||||:..:||||||:..
                         c i s c o S y s t e m s
                        Private Internet eXchange
  -----------------------------------------------------------------------
                        Cisco PIX Firewall

Cisco PIX Firewall Version 6.3(3)
Licensed Features:
Failover:                    Disabled
VPN-DES:                     Enabled
VPN-3DES-AES:                Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces:          2
Cut-through Proxy:           Enabled
Guards:                      Enabled
URL-filtering:               Enabled
Inside Hosts:                10
Throughput:                  Unlimited
IKE peers:                   10

This PIX has a Restricted (R) license.


An internal error occurred.  Specifically, a programming assertion was
violated.  Copy the error message exactly as it appears, and get the
output of the show version command and the contents of the configuration
file.  Then call your technical support representative.

assertion "c == (int) sizeof(sv)" failed: file "fdatafile.c", line 84
snap_dump_to_flash(): Unable to write crash to flash.

No thread name

Traceback:
0: 004c5f2d
1: 001a854d
2: 002e82c7
3: 002edd7e
4: 001006a0
5: 001000ae
    vector 0x00000003 (breakpoint)
       edi 0x001a833c
       esi 0x00000054
       ebp 0x0009fe98
       esp 0x0009fe8c
       ebx 0x001a826b
       edx 0x000003fd
       ecx 0x0000000a
       eax 0x00000046
error code n/a
       eip 0x004c983c
        cs 0x004c0008
    eflags 0x00000046
       CR2 0x00000000
Stack dump: base:0x0009fe0c size:64, active:64
0x0009ff0c: 0x322f7665
0x0009ff08: 0x64736666
0x0009ff04: 0x0000075b
0x0009ff00: 0x00000000
0x0009fefc: 0x00000001
0x0009fef8: 0x006c537c
0x0009fef4: 0x00000000
0x0009fef0: 0x004c5b58
0x0009feec: 0x00572ef8
0x0009fee8: 0x00fef000
0x0009fee4: 0x00ff4000
0x0009fee0: 0x01000000
0x0009fedc: 0x00000002
0x0009fed8: 0x001a833c
0x0009fed4: 0x00000054
0x0009fed0: 0x001a826b
0x0009fecc: 0x001a854d
0x0009fec8: 0x0009ff28
0x0009fec4: 0x003ce523
0x0009fec0: 0x0009ff08
0x0009febc: 0x001a842a
0x0009feb8: 0x0009ff00
0x0009feb4: 0x00000001
0x0009feb0: 0x00909b84
0x0009feac: 0x00000054
0x0009fea8: 0x001a826b
0x0009fea4: 0x001a833c
0x0009fea0: 0x004c5ec0
0x0009fe9c: 0x004c5f2d
0x0009fe98: 0x0009fec8
0x0009fe94: 0x00000046
0x0009fe90: 0x004c0008
0x0009fe8c: 0x004c983c *
0x0009fe88: 0x00000046
0x0009fe84: 0x0000000a
0x0009fe80: 0x000003fd
0x0009fe7c: 0x001a826b
0x0009fe78: 0x0009fe8c
0x0009fe74: 0x0009fe98
0x0009fe70: 0x00000054
0x0009fe6c: 0x001a833c
0x0009fe68: 0x00000003
0x0009fe64: 0x00104ff9
0x0009fe60: 0x0009fe98
0x0009fe5c: 0x00000046
0x0009fe58: 0x004c0008
0x0009fe54: 0x004c983c
0x0009fe50: 0x00000046
0x0009fe4c: 0x0000000a
0x0009fe48: 0x000003fd
0x0009fe44: 0x001a826b
0x0009fe40: 0x0009fe8c
0x0009fe3c: 0x0009fe98
0x0009fe38: 0x00000054
0x0009fe34: 0x001a833c
0x0009fe30: 0x00000003
0x0009fe2c: 0x0009fe30
0x0009fe28: 0x00804a54
0x0009fe24: 0x0020000a
0x0009fe20: 0x001a833c
0x0009fe1c: 0x00000054
0x0009fe18: 0x001a826b
0x0009fe14: 0x2c737261
0x0009fe10: 0x001000ae

Cisco PIX Firewall Version 6.3(3)
The flash device is in use by another task.

Compiled on Wed 13-Aug-03 13:55 by morlee

pixfirewall up 0 secs

Hardware:   PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
Flash E28F640J3 @ 0x3000000, 8MB
BIOS Flash E28F640J3 @ 0xfffd8000, 128KB

0: ethernet0: address is 0000.0000.0000, irq 9
1: ethernet1: address is 0000.0000.0000, irq 10
Licensed Features:
Failover:                    Disabled
VPN-DES:                     Enabled
VPN-3DES-AES:                Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces:          2
Cut-through Proxy:           Enabled
Guards:                      Enabled
URL-filtering:               Enabled
Inside Hosts:                10
Throughput:                  Unlimited
IKE peers:                   10

This PIX has a Restricted (R) license.

Serial Number: 808126137 (0x302b06b9)
Running Activation Key: 0x71b37142 0x35f49012 0xa18101fd 0xc389f074
Configuration last modified by  at 06:28:16.000 UTC Thu Feb 7 2036

------------------ show clock ------------------

20:20:01.150 UTC Fri Feb 24 2006

------------------ show memory ------------------

Free memory:         7224608 bytes
Used memory:         9552608 bytes
-------------     ----------------
Total memory:       16777216 bytes

------------------ show conn count ------------------

0 in use, 0 most used

------------------ show xlate count ------------------

0 in use, 0 most used

------------------ show blocks ------------------

  SIZE    MAX    LOW    CNT
     4    600    600    600
    80    400    400    400
   256    100    100    100
  1550    932    676    676

------------------ show interface ------------------


------------------ show cpu usage ------------------

CPU utilization for 5 seconds = NA; 1 minute: NA; 5 minutes: NA

------------------ show process ------------------


    PC       SP       STATE       Runtime    SBASE     Stack Process
Hrd 001036c8 007c0d34 00555848          0 007bfd44 4080/4096 arp_timer
Lrd 001036c8 007e3e7c 00555d28          0 007e2e8c 4080/4096 FragDBGC
Lrd 001036c8 008389cc 00555d28          0 008379dc 4080/4096 dbgtrace
Lrd 001036c8 0083aa7c 00555d28          0 00838a8c 8176/8192 Logger
Hrd 001036c8 0083db44 00555848          0 0083bb54 8176/8192 tcp_fast
Hrd 001036c8 0083fbf4 00555848          0 0083dc04 8176/8192 tcp_slow
Lrd 001036c8 008bf0bc 00555d28          0 008be0cc 4080/4096 xlate clean
Lrd 001036c8 008c016c 00555d28          0 008bf17c 4080/4096 uxlate clean
Mrd 001036c8 008e8d4c 00555898          0 008e6d5c 8176/8192 tcp_intercept_timer_process
Lrd 001036c8 008f965c 00555d28          0 008f866c 4080/4096 route_process
Hrd 001036c8 008fa70c 00555848          0 008f971c 4080/4096 PIX Garbage Collector
Hrd 001036c8 008febfc 00555848          0 008fac0c 16368/16384 isakmp_time_keeper

------------------ show failover ------------------

No license for Failover

------------------ show traffic ------------------


------------------ show perfmon ------------------


PERFMON STATS:    Current      Average
Xlates               0/s          0/s
Connections          0/s          0/s
TCP Conns            0/s          0/s
UDP Conns            0/s          0/s
URL Access           0/s          0/s
URL Server Req       0/s          0/s
TCP Fixup            0/s          0/s
TCPIntercept         0/s          0/s
HTTP Fixup           0/s          0/s
FTP Fixup            0/s          0/s
AAA Authen           0/s          0/s
AAA Author           0/s          0/s
AAA Account          0/s          0/s

------------------ show running-config ------------------

: Saved
:
PIX Version 6.3(3)
hostname pixfirewall
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
names
pager lines 24
ip audit info action alarm
ip audit attack action alarm
pdm history enable
arp timeout 14400
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00
timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00
timeout uauth 0:05:00 absolute


-----------------------------------------------
Nested traceback attempted via interrupt.
Traceback output aborted.
-----------------------------------------------


Rebooting....

CISCO SYSTEMS PIX-501
Embedded BIOS Version 4.3.200 07/31/01 15:58:22.08
Compiled by morlee
16 MB RAM

PCI Device Table.
Bus Dev Func VendID DevID Class              Irq
 00  00  00   1022   3000  Host Bridge
 00  11  00   8086   1209  Ethernet           9
 00  12  00   8086   1209  Ethernet           10
Cisco Secure PIX Firewall BIOS (4.2) #6: Mon Aug 27 15:09:54 PDT 2001
Platform PIX-501
Flash=E28F640J3 @ 0x3000000

Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.

Flash boot in 10 seconds.

<END TERMINAL CONSOLE PASTE>
 
Loading Advertisement...
 
[+][-]02/25/06 01:50 AM, ID: 16044854Accepted Solution

View this solution now by starting your 30-day free trial. Setting up your free trial is quick, easy, and secure. We will return you to this solution, unlocked, when you're done.

About this solution

Zones: Network Software Firewalls, Cisco PIX Firewall, Enterprise Firewalls
Tags: pix, 501, cisco
Sign Up Now!
Solution Provided By: nodisco
Participating Experts: 1
Solution Grade: A
 
[+][-]02/25/06 06:36 AM, ID: 16045384Author Comment

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]02/25/06 12:05 PM, ID: 16046435Author Comment

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 30-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]02/26/06 04:36 AM, ID: 16048934Expert Comment

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 30-day free trial to view this Expert Comment or ask the Experts your question.

 
 
Loading Advertisement...
20091111-EE-VQP-92