JCSUK
asked on
Unknown username password or software version
Ok i have just found a PIX501 left by the last IT guy from our company. It was just on the shelf. I have checked through the company record and it was purchased January 05. I'd like to configure it and install it into our setup but i dont know any of the previous details plus i dont know what software version its running.
How and where do i start to configure or even gain access?? I remember on a CCNA course i did the instructor said their might be a reset dip switch inside the device is this true?
How and where do i start to configure or even gain access?? I remember on a CCNA course i did the instructor said their might be a reset dip switch inside the device is this true?
You can boot up the pix, connect to through a console cable using hyperterminal.
when you get the prompt type
show version
this will tell you what OS you have on it, if you need to perform password recovery here is the link
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml
Good Luck,
Darkstriker
when you get the prompt type
show version
this will tell you what OS you have on it, if you need to perform password recovery here is the link
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml
Good Luck,
Darkstriker
ASKER
show version doesn't work? how weird is that here's the output:
Cisco Secure PIX Firewall BIOS (4.2) #6: Mon Aug 27 15:09:54 PDT 200
Platform PIX-501
Flash=E28F640J3 @ 0x3000000
Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.
Flash boot interrupted.
0: i8255X @ PCI(bus:0 dev:17 irq:9 )
1: i8255X @ PCI(bus:0 dev:18 irq:10)
Using 1: i82557 @ PCI(bus:0 dev:18 irq:10), MAC: 0012.8034.938d
Use ? for help.
monitor> show version
Invalid or incorrect command. Use 'help' for help.
monitor> ?
? this help message
address [addr] set IP address of the PIX interface on which
the TFTP server resides
file [name] set boot file name
gateway [addr] set IP gateway
help this help message
interface [num] select TFTP interface
ping <addr> send ICMP echo
reload halt and reload system
server [addr] set server IP address
tftp TFTP download
timeout TFTP timeout
trace toggle packet tracing
monitor>
Cisco Secure PIX Firewall BIOS (4.2) #6: Mon Aug 27 15:09:54 PDT 200
Platform PIX-501
Flash=E28F640J3 @ 0x3000000
Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.
Flash boot interrupted.
0: i8255X @ PCI(bus:0 dev:17 irq:9 )
1: i8255X @ PCI(bus:0 dev:18 irq:10)
Using 1: i82557 @ PCI(bus:0 dev:18 irq:10), MAC: 0012.8034.938d
Use ? for help.
monitor> show version
Invalid or incorrect command. Use 'help' for help.
monitor> ?
? this help message
address [addr] set IP address of the PIX interface on which
the TFTP server resides
file [name] set boot file name
gateway [addr] set IP gateway
help this help message
interface [num] select TFTP interface
ping <addr> send ICMP echo
reload halt and reload system
server [addr] set server IP address
tftp TFTP download
timeout TFTP timeout
trace toggle packet tracing
monitor>
Monitor mode is a special boot mode that should come up if you send the pix a BREAK during startup. Did you send a break or did it simply boot to monitor mode?
Normally a pix will boot to the IOS where the show version command would work, if it is not booting to the IOS either someone has altered the boot registry or it cant find the IOS file. The date says aug 27 when it was booted you might try just doing a
reload
if the pix was already booted when you got to it
Normally a pix will boot to the IOS where the show version command would work, if it is not booting to the IOS either someone has altered the boot registry or it cant find the IOS file. The date says aug 27 when it was booted you might try just doing a
reload
if the pix was already booted when you got to it
ASKER
I sent the BREAK during start up which i had been advised to do then run a show ver. as you can see it didnt work. if i boot the PIX normally then start a Hyperterminal session with the console cable i just get a login screen and i dont know the login details so i cant type the show version command.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Reading 1962496 bytes of image from flash.
trace toggl
########################## ########## ########## ########## ########## ########## ####
########################## #####
16MB RAM
mcwa i82559 Ethernet at irq 9 MAC: 0012.8034.938b
mcwa i82559 Ethernet at irq 10 MAC: 0012.8034.938d
Flash=E28F640J3 @ 0x3000000
BIOS Flash=E28F640J3 @ 0xD8000
-------------------------- ---------- ---------- ---------- ---------- -----
|| ||
|| ||
c i s c o S y s t e m s
Private Internet eXchange
-------------------------- ---------- ---------- ---------- ---------- -----
Cisco PIX Firewall
Cisco PIX Firewall Version 6.3(4)
Licensed Features:
Failover: Disabled
VPN-DES: Enabled
VPN-3DES-AES: Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces: 2
Cut-through Proxy:
Guards: Enabled
URL-filtering: Enabled
Inside Hosts: 50
Throughput: Unlimited
IKE peers: 10
This PIX has a Restricted (R) license.
************************** **** Warning ************************** *****
Compliance with U.S. Export Laws and Regulations - Encryption.
This product performs encryption and is regulated for export
by the U.S. Government.
This product is not authorized for use by persons located
outside the United States and Canada that do not have prior
approval from Cisco Systems, Inc. or the U.S. Government.
This product may not be exported outside the U.S. and Canada
either by physical or electronic means without PRIOR approval
of Cisco Systems, Inc. or the U.S. Government.
Persons outside the U.S. and Canada may not re-export, resell
or transfer this product by either physical or electronic means
without prior approval of Cisco Systems, Inc. or the U.S.
Government.
************************** ***** Warning ************************** *****
Copyright (c) 1996-2003 by Cisco Systems, Inc.
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
outside interface address added to PAT pool
.
Cryptochecksum(unchanged): c34aa64d 8b5dc587 0a11d0fe a436e7c1
Username:
trace toggl
##########################
##########################
16MB RAM
mcwa i82559 Ethernet at irq 9 MAC: 0012.8034.938b
mcwa i82559 Ethernet at irq 10 MAC: 0012.8034.938d
Flash=E28F640J3 @ 0x3000000
BIOS Flash=E28F640J3 @ 0xD8000
--------------------------
|| ||
|| ||
c i s c o S y s t e m s
Private Internet eXchange
--------------------------
Cisco PIX Firewall
Cisco PIX Firewall Version 6.3(4)
Licensed Features:
Failover: Disabled
VPN-DES: Enabled
VPN-3DES-AES: Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces: 2
Cut-through Proxy:
Guards: Enabled
URL-filtering: Enabled
Inside Hosts: 50
Throughput: Unlimited
IKE peers: 10
This PIX has a Restricted (R) license.
**************************
Compliance with U.S. Export Laws and Regulations - Encryption.
This product performs encryption and is regulated for export
by the U.S. Government.
This product is not authorized for use by persons located
outside the United States and Canada that do not have prior
approval from Cisco Systems, Inc. or the U.S. Government.
This product may not be exported outside the U.S. and Canada
either by physical or electronic means without PRIOR approval
of Cisco Systems, Inc. or the U.S. Government.
Persons outside the U.S. and Canada may not re-export, resell
or transfer this product by either physical or electronic means
without prior approval of Cisco Systems, Inc. or the U.S.
Government.
**************************
Copyright (c) 1996-2003 by Cisco Systems, Inc.
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
outside interface address added to PAT pool
.
Cryptochecksum(unchanged):
Username:
ASKER
Sorry just realised what i need is staring me right in the face
Cisco PIX Firewall Version 6.3(4)
ok thanks for all the help i managed to run the password recovery and i have access to the pix
Cisco PIX Firewall Version 6.3(4)
ok thanks for all the help i managed to run the password recovery and i have access to the pix
ASKER