Solved

Need helping restoring my Cisco ASA 5505

Posted on 2008-10-01
11
1,008 Views
Last Modified: 2012-06-27
I had a working Cisco ASA 5505 that I was trying to enable users over the Internet  to access  a device on ports 8000-8010, when I completely messed up the whole unit.  Before I began my adventure I did a backup of the Configuration.  I have since reset to factory settings using the CLI.  I can not open it using the GUI.  It keeps prompting me for a username and password, which I don't have.  I tried to leave it blank.  It won't let me back in.....  The ASA is set to 192.168.1.1.  I need to be able to restore the saved config file!!!!  Please assist.
0
Comment
Question by:trinle
11 Comments
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621444
Can you please send me the backup config you had?
The default password and username are Cisco and Cisco
 
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 100 total points
ID: 22621449
Sorry - that's on routers. The default password on ASAs is blank. Not the word blank, but just nothing.
Also, you won't be able to access it except by the console port with a serial cable unless you put your PC on the inside interface and then try to connect to the PC's default gateway - that's the ASA's IP address because the factory default has DHCP enabled by default.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621453
If you can't get in by IP connect with the console cable and a terminal emulator like PUTTY.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html 
0
Surfing Is Meant To Be Done Outdoors

Featuring its rugged IP67 compliant exterior and delivering broad, fast, and reliable Wi-Fi coverage, the AP322 is the ideal solution for the outdoors. Manage this AP with either a Firebox as a gateway controller, or with the Wi-Fi Cloud for an expanded set of management features

 

Author Comment

by:trinle
ID: 22621467
I will be back onsite in the AM tomorrow......
I have a server connected via Console cable to the ASA.  The server's IP is 192.168.1.2.  The ASA has the default IP of 192.168.1.1
I used Hyper Terminal to console in to the ASA.
How do I restore the backup file that I saved?
0
 
LVL 3

Expert Comment

by:IPFox
ID: 22621521
Hi,

Here is procedure for password recovery.
http://www.submityourarticle.com/articles/Don%20R.-Crawley-2264/cisco-pix-firewall-17868.php
After that you can login again and restore the backup file via GUI or CLI.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621527
You need to first establish IP communication to the device. This just means get the ASA and the server so they're able to ping each other.
Then, run a TFTP program on the server. I recommend Pumkin - good and free. http://kin.klever.net/pumpkin/ Put the config file in the TFTP root (change it to something like C:\TFTP if you're using Pumpkin).
Then run the following command on the ASA:
copy tftp run
Just fill in the blanks and that should do it! Pumpkin will ask you to accept if it's working.
If you don't get an accept prompt on Pumpkin then something's wrong.
Tell me if that works!
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621532
I will recommend against the password recover feature unless either blank, Cisco, or cisco don't work. It's case sensitive - one Cisco is capitalized the other isn't.
If it doesn't work it would be easier to just factory reset than to go through the whole recover process. It doesn't matter since it doesn't have a valid config anyways.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 200 total points
ID: 22623599
Fortunately, the password recovery procedure is quick and painless.
You can also just use cut/paste in hyperterm. You can open the old config in notepad, edit/select all / copy then with the firewall in config mode, just choose paste to host and watch it.
 
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22626924
This is true, but I'm lazy. Prepping a script, executing it and all that just takes longer than pressing a button. But then again, it is just 10 minutes! :-P lol
0
 

Author Comment

by:trinle
ID: 22639324
I was able to Hyper-Terminal in and go into Config mode and copy and paste the Configs from the backup I made, thanks Irmoore.  A tech named Travis assisted in setting up the Forwarding for our GPS device.  A thanks Pugglewuggle for your input too!      
0
 

Author Closing Comment

by:trinle
ID: 31502261
I tried the Pumpkin without success.......cool TFTP tool though.  I didn't need to reset the password.  I figured out that it kept the old password even after I set it to defaults????  Thanks guys for your prompt responses.
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Monitor Internet Edge Router behind Firewall 2 30
Factory Reset of Juniper SSG20 2 42
Router question 6 224
Palo Alto site-to-site vpn monitoring 5 47
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question