Link to home
Start Free TrialLog in
Avatar of JCSUK
JCSUKFlag for United Kingdom of Great Britain and Northern Ireland

asked on

Unknown username password or software version

Ok i have just found a PIX501 left by the last IT guy from our company.  It was just on the shelf.  I have checked through the company record and it was purchased January 05.  I'd like to configure it and install it into our setup but i dont know any of the previous details plus i dont know what software version its running.  

How and where do i start to configure or even gain access??  I remember on a CCNA course i did the instructor said their might be a reset dip switch inside the device is this true?
Avatar of JCSUK
JCSUK
Flag of United Kingdom of Great Britain and Northern Ireland image

ASKER

OK so i know the procedure to reset the password but i dont know what ODM version is on the PIX501 so i cant reset it until i do.  Does anyone know how i can find out the software version it shipped with i.e. with the serial number?
Avatar of Darkstriker69
Darkstriker69

You can boot up the pix, connect to through a console cable using hyperterminal.
when you get the prompt type

show version

this will tell you what OS you have on it, if you need to perform password recovery here is the link

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml

Good Luck,

Darkstriker
Avatar of JCSUK

ASKER

show version doesn't work?  how weird is that here's the output:

Cisco Secure PIX Firewall BIOS (4.2) #6: Mon Aug 27 15:09:54 PDT 200                                                                  
Platform PIX-501                
Flash=E28F640J3 @ 0x3000000                          

Use BREAK or ESC to interrupt flash boot.                                      
Use SPACE to begin flash boot immediately.
Flash boot interrupted.
0: i8255X @ PCI(bus:0 dev:17 irq:9 )
1: i8255X @ PCI(bus:0 dev:18 irq:10)

Using 1: i82557 @ PCI(bus:0 dev:18 irq:10), MAC: 0012.8034.938d
Use ? for help.
monitor> show version
Invalid or incorrect command.  Use 'help' for help.
monitor> ?
?                 this help message
address   [addr]  set IP address of the PIX interface on which
                  the TFTP server resides
file      [name]  set boot file name
gateway   [addr]  set IP gateway
help              this help message
interface [num]   select TFTP interface
ping      <addr>  send ICMP echo
reload            halt and reload system
server    [addr]  set server IP address
tftp              TFTP download
timeout           TFTP timeout
trace             toggle packet tracing
monitor>
Monitor mode is a special boot mode that should come up if you send the pix a BREAK during startup. Did you send a break or did it simply boot to monitor mode?

Normally a pix will boot to the IOS where the show version command would work, if it is not booting to the IOS either someone has altered the boot registry or it cant find the IOS file. The date says aug 27 when it was booted you might try just doing a

reload

if the pix was already booted when you got to it
Avatar of JCSUK

ASKER

I sent the BREAK during start up which i had been advised to do then run a show ver.  as you can see it didnt work.  if i boot the PIX normally then start a Hyperterminal session with the console cable i just get a login screen and i dont know the login details so i cant type the show version command.
ASKER CERTIFIED SOLUTION
Avatar of Darkstriker69
Darkstriker69

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of JCSUK

ASKER

Reading 1962496 bytes of image from flash.                  
trace             toggl
################################################################################                                                                                
###############################                              
16MB RAM        
mcwa i82559 Ethernet at irq  9  MAC: 0012.8034.938b                                                  
mcwa i82559 Ethernet at irq 10  MAC: 0012.8034.938d                                                  
Flash=E28F640J3 @ 0x3000000                          
BIOS Flash=E28F640J3 @ 0xD8000                              

  -----------------------------------------------------------------------                                                                        
                               ||        ||                                          
                               ||        ||                                          
                                                     
                         c i s c o S y s t e m s                                                
                        Private Internet eXchange                                                
  -----------------------------------------------------------------------                                                                        
                        Cisco PIX Firewall                                          

Cisco PIX Firewall Version 6.3(4)                                
Licensed Features:                  
Failover:                    Disabled                                    
VPN-DES:                     Enabled                                    
VPN-3DES-AES:                Enabled                                    
Maximum Physical Interfaces: 2                              
Maximum Interfaces:          2                              
Cut-through Proxy:                                
Guards:                      Enabled                                    
URL-filtering:               Enabled                                    
Inside Hosts:                50                              
Throughput:                  Unlimited                                      
IKE peers:                   10                              

This PIX has a Restricted (R) license.                                      


  ****************************** Warning *******************************                                                                        
  Compliance with U.S. Export Laws and Regulations - Encryption.                                                                

  This product performs encryption and is regulated for export                                                              
  by the U.S. Government.                        

  This product is not authorized for use by persons located                                                          
  outside the United States and Canada that do not have prior                                                            
  approval from Cisco Systems, Inc. or the U.S. Government.                                                          

  This product may not be exported outside the U.S. and Canada                                                              
  either by physical or electronic means without PRIOR approval                                                              
  of Cisco Systems, Inc. or the U.S. Government.                                                

  Persons outside the U.S. and Canada may not re-export, resell                                                              
  or transfer this product by either physical or electronic means              
  without prior approval of Cisco Systems, Inc. or the U.S.
  Government.
  ******************************* Warning *******************************

Copyright (c) 1996-2003 by Cisco Systems, Inc.

                Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

                Cisco Systems, Inc.
                170 West Tasman Drive
                San Jose, California 95134-1706

outside interface address added to PAT pool
.
Cryptochecksum(unchanged): c34aa64d 8b5dc587 0a11d0fe a436e7c1
Username:
Avatar of JCSUK

ASKER

Sorry just realised what i need is staring me right in the face

Cisco PIX Firewall Version 6.3(4)

ok thanks for all the help i managed to run the password recovery and i have access to the pix