How to access Cisco Pix Firewall

I have a client who had a Cisco Pix installed, and the company that installed it split half way through the setup. We now need to modify the settings inside the firewall, but I cannot figure out how to get into it.

What is the default user / pass / port / address for this device? We have the admin credentials that were supposed to be used, and I am fairly sure it is sitting at 192.168.0.1 (gateway). I just can't figure out how to access it.

any thoughts?

PS. Since my company usually uses all linux based firewalls, this is the first Pix I have worked with. So, answering this like I am a Cisco noob is appropriate.
LVL 32
DrDamnitAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

batry_boyCommented:
Do you have the console cable for the PIX?  It's a flat blue rollover cable that has an RJ-45 on one end and either a DB9 serial connector on the other.  You can use HyperTerminal or some such other terminal emulation program to establish a console session to the PIX.  By default there is no console password you will need to get into it.

There is an "enable" mode password you will need to modify settings (like the root password on a Linux box).  By default, the enable mode password is blank.  Try typing "enable" at the command prompt...it will ask for a password, just hit <Enter>. If the prompt changes to

pix#

then you will be able to make modifications by going to a mode called "config" mode.  Type "config t" and your prompt should change to

pix(config)#

You will then be able to make changes to the configuration of the PIX.

There is a web GUI for the PIX called PDM that you can try to access using https://<inside_ip>.  If you think your inside IP address is 192.168.0.1, then try https://192.168.0.1 and see if you get a login prompt.  However, I would stick with the CLI right now if you're familiar with Linux and iptables or some such other firewall platform.

Post back with what you get since there are probably going to be other questions.  I didn't go too deep into this because I don't know how far you'll get into the firewall.  You may wind up having to perform a password recovery on it.  If none of the passwords you have work on the PIX, see the below link for password recovery procedures for the PIX:

http://www.cisco.com/en/US/partner/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml
0
DrDamnitAuthor Commented:
Don't have the cable, and https://192.168.0.1 is a "Page cannot be displayed..."
0
DrDamnitAuthor Commented:
found the cable.... now I don't have a serial port on my laptop... :-(
0
Determine the Perfect Price for Your IT Services

Do you wonder if your IT business is truly profitable or if you should raise your prices? Learn how to calculate your overhead burden with our free interactive tool and use it to determine the right price for your IT services. Download your free eBook now!

DrDamnitAuthor Commented:
ok.... using fairy dust, a paper clip, 1/2 a banna peel, and a little luck.... I have the serial cable connected to the laptop.

What next? How do I access the CLI? Is there an app I need to download?
0
batry_boyCommented:
Any terminal emulation software that will allow you to choose your serial port as the method of connection should work.  In Windows, HyperTerminal will work (although the scroll back buffer sucks), but it will get you where you need to go.

If you want something a little better, I use something called Tera Term Web (http://www.ayera.com/teraterm/).

When setting up your serial connection, choose the following settings:

9600 baud
8 data bits
1 stop bit
no parity bits
hardware or no flow control works fine

Then hit <Enter> a couple of times and you should see a "hostname>" prompt where hostname is the name of the PIX.
0
DrDamnitAuthor Commented:
OK, now what is the default user / pass?
0
DrDamnitAuthor Commented:
failing that, I would like to get the password recovery link you just sent me, but it requires a user/ pass. :-(
0
rsivanandanCommented:
For password recovery, here is the link without password;

http://www.cisco.com/warp/public/110/34.shtml

Now,

1. Have you tried to telnet to the box ?

2. Have you tried the ssh to the box ?

3. Have you tried http://<IPAddress> to the box (Watch, it is not https)

If all of the above failed; then proceeding from where you're now;

Batry_Boy has the info above on how to connect using console cable;

try the default password -> cisco

see if it works..

Cheers,
Rajesh
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
batry_boyCommented:
Rajesh, I didn't think the PIX supported http, but only https...is this not right?
0
rsivanandanCommented:
Oops yes, It doesn't support http, only https is allowed. Lot of routers and pix in mind :-)

Cheers,
Rajesh
0
rsivanandanCommented:
thnx.

Cheers,
Rajesh
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.