Solved

Need helping restoring my Cisco ASA 5505

Posted on 2008-10-01
11
1,004 Views
Last Modified: 2012-06-27
I had a working Cisco ASA 5505 that I was trying to enable users over the Internet  to access  a device on ports 8000-8010, when I completely messed up the whole unit.  Before I began my adventure I did a backup of the Configuration.  I have since reset to factory settings using the CLI.  I can not open it using the GUI.  It keeps prompting me for a username and password, which I don't have.  I tried to leave it blank.  It won't let me back in.....  The ASA is set to 192.168.1.1.  I need to be able to restore the saved config file!!!!  Please assist.
0
Comment
Question by:trinle
11 Comments
 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
Can you please send me the backup config you had?
The default password and username are Cisco and Cisco
 
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 100 total points
Comment Utility
Sorry - that's on routers. The default password on ASAs is blank. Not the word blank, but just nothing.
Also, you won't be able to access it except by the console port with a serial cable unless you put your PC on the inside interface and then try to connect to the PC's default gateway - that's the ASA's IP address because the factory default has DHCP enabled by default.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
If you can't get in by IP connect with the console cable and a terminal emulator like PUTTY.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html
0
 

Author Comment

by:trinle
Comment Utility
I will be back onsite in the AM tomorrow......
I have a server connected via Console cable to the ASA.  The server's IP is 192.168.1.2.  The ASA has the default IP of 192.168.1.1
I used Hyper Terminal to console in to the ASA.
How do I restore the backup file that I saved?
0
 
LVL 3

Expert Comment

by:IPFox
Comment Utility
Hi,

Here is procedure for password recovery.
http://www.submityourarticle.com/articles/Don%20R.-Crawley-2264/cisco-pix-firewall-17868.php
After that you can login again and restore the backup file via GUI or CLI.
0
Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
You need to first establish IP communication to the device. This just means get the ASA and the server so they're able to ping each other.
Then, run a TFTP program on the server. I recommend Pumkin - good and free. http://kin.klever.net/pumpkin/ Put the config file in the TFTP root (change it to something like C:\TFTP if you're using Pumpkin).
Then run the following command on the ASA:
copy tftp run
Just fill in the blanks and that should do it! Pumpkin will ask you to accept if it's working.
If you don't get an accept prompt on Pumpkin then something's wrong.
Tell me if that works!
0
 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
I will recommend against the password recover feature unless either blank, Cisco, or cisco don't work. It's case sensitive - one Cisco is capitalized the other isn't.
If it doesn't work it would be easier to just factory reset than to go through the whole recover process. It doesn't matter since it doesn't have a valid config anyways.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 200 total points
Comment Utility
Fortunately, the password recovery procedure is quick and painless.
You can also just use cut/paste in hyperterm. You can open the old config in notepad, edit/select all / copy then with the firewall in config mode, just choose paste to host and watch it.
 
0
 
LVL 12

Expert Comment

by:Pugglewuggle
Comment Utility
This is true, but I'm lazy. Prepping a script, executing it and all that just takes longer than pressing a button. But then again, it is just 10 minutes! :-P lol
0
 

Author Comment

by:trinle
Comment Utility
I was able to Hyper-Terminal in and go into Config mode and copy and paste the Configs from the backup I made, thanks Irmoore.  A tech named Travis assisted in setting up the Forwarding for our GPS device.  A thanks Pugglewuggle for your input too!      
0
 

Author Closing Comment

by:trinle
Comment Utility
I tried the Pumpkin without success.......cool TFTP tool though.  I didn't need to reset the password.  I figured out that it kept the old password even after I set it to defaults????  Thanks guys for your prompt responses.
0

Featured Post

Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

Join & Write a Comment

Suggested Solutions

From Cisco ASA version 8.3, the Network Address Translation (NAT) configuration has been completely redesigned and it may be helpful to have the syntax configuration for both at a glance. You may as well want to read official Cisco published AS…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now