Unknown username password or software version

Posted on 2007-10-09
Last Modified: 2010-04-09
Ok i have just found a PIX501 left by the last IT guy from our company.  It was just on the shelf.  I have checked through the company record and it was purchased January 05.  I'd like to configure it and install it into our setup but i dont know any of the previous details plus i dont know what software version its running.  

How and where do i start to configure or even gain access??  I remember on a CCNA course i did the instructor said their might be a reset dip switch inside the device is this true?
Question by:JCSUK

    Author Comment

    OK so i know the procedure to reset the password but i dont know what ODM version is on the PIX501 so i cant reset it until i do.  Does anyone know how i can find out the software version it shipped with i.e. with the serial number?
    LVL 5

    Expert Comment

    You can boot up the pix, connect to through a console cable using hyperterminal.
    when you get the prompt type

    show version

    this will tell you what OS you have on it, if you need to perform password recovery here is the link

    Good Luck,


    Author Comment

    show version doesn't work?  how weird is that here's the output:

    Cisco Secure PIX Firewall BIOS (4.2) #6: Mon Aug 27 15:09:54 PDT 200                                                                  
    Platform PIX-501                
    Flash=E28F640J3 @ 0x3000000                          

    Use BREAK or ESC to interrupt flash boot.                                      
    Use SPACE to begin flash boot immediately.
    Flash boot interrupted.
    0: i8255X @ PCI(bus:0 dev:17 irq:9 )
    1: i8255X @ PCI(bus:0 dev:18 irq:10)

    Using 1: i82557 @ PCI(bus:0 dev:18 irq:10), MAC: 0012.8034.938d
    Use ? for help.
    monitor> show version
    Invalid or incorrect command.  Use 'help' for help.
    monitor> ?
    ?                 this help message
    address   [addr]  set IP address of the PIX interface on which
                      the TFTP server resides
    file      [name]  set boot file name
    gateway   [addr]  set IP gateway
    help              this help message
    interface [num]   select TFTP interface
    ping      <addr>  send ICMP echo
    reload            halt and reload system
    server    [addr]  set server IP address
    tftp              TFTP download
    timeout           TFTP timeout
    trace             toggle packet tracing
    LVL 5

    Expert Comment

    Monitor mode is a special boot mode that should come up if you send the pix a BREAK during startup. Did you send a break or did it simply boot to monitor mode?

    Normally a pix will boot to the IOS where the show version command would work, if it is not booting to the IOS either someone has altered the boot registry or it cant find the IOS file. The date says aug 27 when it was booted you might try just doing a


    if the pix was already booted when you got to it

    Author Comment

    I sent the BREAK during start up which i had been advised to do then run a show ver.  as you can see it didnt work.  if i boot the PIX normally then start a Hyperterminal session with the console cable i just get a login screen and i dont know the login details so i cant type the show version command.
    LVL 5

    Accepted Solution

    Can you show be your bootup output that you see in hyperterminal

    I guess I need clarification

    Typically your PIX will boot

    then produce a prompt that looks something like


    you can type enable, at which point it will prompt you for a password, or you can type show version to see the version.

    Occasionally admins will set local consol authentication where it prompts for a username before you even get a promt if this is the case can you show me your bootup process that outputs in hyperterm.



    Author Comment

    Reading 1962496 bytes of image from flash.                  
    trace             toggl
    16MB RAM        
    mcwa i82559 Ethernet at irq  9  MAC: 0012.8034.938b                                                  
    mcwa i82559 Ethernet at irq 10  MAC: 0012.8034.938d                                                  
    Flash=E28F640J3 @ 0x3000000                          
    BIOS Flash=E28F640J3 @ 0xD8000                              

                                   ||        ||                                          
                                   ||        ||                                          
                             c i s c o S y s t e m s                                                
                            Private Internet eXchange                                                
                            Cisco PIX Firewall                                          

    Cisco PIX Firewall Version 6.3(4)                                
    Licensed Features:                  
    Failover:                    Disabled                                    
    VPN-DES:                     Enabled                                    
    VPN-3DES-AES:                Enabled                                    
    Maximum Physical Interfaces: 2                              
    Maximum Interfaces:          2                              
    Cut-through Proxy:                                
    Guards:                      Enabled                                    
    URL-filtering:               Enabled                                    
    Inside Hosts:                50                              
    Throughput:                  Unlimited                                      
    IKE peers:                   10                              

    This PIX has a Restricted (R) license.                                      

      ****************************** Warning *******************************                                                                        
      Compliance with U.S. Export Laws and Regulations - Encryption.                                                                

      This product performs encryption and is regulated for export                                                              
      by the U.S. Government.                        

      This product is not authorized for use by persons located                                                          
      outside the United States and Canada that do not have prior                                                            
      approval from Cisco Systems, Inc. or the U.S. Government.                                                          

      This product may not be exported outside the U.S. and Canada                                                              
      either by physical or electronic means without PRIOR approval                                                              
      of Cisco Systems, Inc. or the U.S. Government.                                                

      Persons outside the U.S. and Canada may not re-export, resell                                                              
      or transfer this product by either physical or electronic means              
      without prior approval of Cisco Systems, Inc. or the U.S.
      ******************************* Warning *******************************

    Copyright (c) 1996-2003 by Cisco Systems, Inc.

                    Restricted Rights Legend

    Use, duplication, or disclosure by the Government is
    subject to restrictions as set forth in subparagraph
    (c) of the Commercial Computer Software - Restricted
    Rights clause at FAR sec. 52.227-19 and subparagraph
    (c) (1) (ii) of the Rights in Technical Data and Computer
    Software clause at DFARS sec. 252.227-7013.

                    Cisco Systems, Inc.
                    170 West Tasman Drive
                    San Jose, California 95134-1706

    outside interface address added to PAT pool
    Cryptochecksum(unchanged): c34aa64d 8b5dc587 0a11d0fe a436e7c1

    Author Comment

    Sorry just realised what i need is staring me right in the face

    Cisco PIX Firewall Version 6.3(4)

    ok thanks for all the help i managed to run the password recovery and i have access to the pix

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
    Network traffic routing plays key role in your network, if you have single site with heavy browsing or multiple sites, replicating important application data from your Primary Default Gateway ,you have to route your other network traffic from your p…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

    760 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    13 Experts available now in Live!

    Get 1:1 Help Now