Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Need helping restoring my Cisco ASA 5505

Posted on 2008-10-01
11
Medium Priority
?
1,015 Views
Last Modified: 2012-06-27
I had a working Cisco ASA 5505 that I was trying to enable users over the Internet  to access  a device on ports 8000-8010, when I completely messed up the whole unit.  Before I began my adventure I did a backup of the Configuration.  I have since reset to factory settings using the CLI.  I can not open it using the GUI.  It keeps prompting me for a username and password, which I don't have.  I tried to leave it blank.  It won't let me back in.....  The ASA is set to 192.168.1.1.  I need to be able to restore the saved config file!!!!  Please assist.
0
Comment
Question by:trinle
11 Comments
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621444
Can you please send me the backup config you had?
The default password and username are Cisco and Cisco
 
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 300 total points
ID: 22621449
Sorry - that's on routers. The default password on ASAs is blank. Not the word blank, but just nothing.
Also, you won't be able to access it except by the console port with a serial cable unless you put your PC on the inside interface and then try to connect to the PC's default gateway - that's the ASA's IP address because the factory default has DHCP enabled by default.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621453
If you can't get in by IP connect with the console cable and a terminal emulator like PUTTY.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html 
0
Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

 

Author Comment

by:trinle
ID: 22621467
I will be back onsite in the AM tomorrow......
I have a server connected via Console cable to the ASA.  The server's IP is 192.168.1.2.  The ASA has the default IP of 192.168.1.1
I used Hyper Terminal to console in to the ASA.
How do I restore the backup file that I saved?
0
 
LVL 3

Expert Comment

by:IPFox
ID: 22621521
Hi,

Here is procedure for password recovery.
http://www.submityourarticle.com/articles/Don%20R.-Crawley-2264/cisco-pix-firewall-17868.php
After that you can login again and restore the backup file via GUI or CLI.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621527
You need to first establish IP communication to the device. This just means get the ASA and the server so they're able to ping each other.
Then, run a TFTP program on the server. I recommend Pumkin - good and free. http://kin.klever.net/pumpkin/ Put the config file in the TFTP root (change it to something like C:\TFTP if you're using Pumpkin).
Then run the following command on the ASA:
copy tftp run
Just fill in the blanks and that should do it! Pumpkin will ask you to accept if it's working.
If you don't get an accept prompt on Pumpkin then something's wrong.
Tell me if that works!
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621532
I will recommend against the password recover feature unless either blank, Cisco, or cisco don't work. It's case sensitive - one Cisco is capitalized the other isn't.
If it doesn't work it would be easier to just factory reset than to go through the whole recover process. It doesn't matter since it doesn't have a valid config anyways.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 600 total points
ID: 22623599
Fortunately, the password recovery procedure is quick and painless.
You can also just use cut/paste in hyperterm. You can open the old config in notepad, edit/select all / copy then with the firewall in config mode, just choose paste to host and watch it.
 
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22626924
This is true, but I'm lazy. Prepping a script, executing it and all that just takes longer than pressing a button. But then again, it is just 10 minutes! :-P lol
0
 

Author Comment

by:trinle
ID: 22639324
I was able to Hyper-Terminal in and go into Config mode and copy and paste the Configs from the backup I made, thanks Irmoore.  A tech named Travis assisted in setting up the Forwarding for our GPS device.  A thanks Pugglewuggle for your input too!      
0
 

Author Closing Comment

by:trinle
ID: 31502261
I tried the Pumpkin without success.......cool TFTP tool though.  I didn't need to reset the password.  I figured out that it kept the old password even after I set it to defaults????  Thanks guys for your prompt responses.
0

Featured Post

Identify and Prevent Potential Cyber-threats

Become the white hat who helps safeguard our interconnected world. Transform your career future by earning your MS in Cybersecurity. WGU’s MSCSIA degree program was designed in collaboration with national intelligence organizations and IT industry leaders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is in regards to the Cisco QSFP-4SFP10G-CU1M cables, which are designed to uplink/downlink 40GB ports to 10GB SFP ports. I recently experienced this and found very little configuration documentation on how these are supposed to be confi…
Considering cloud tradeoffs and determining the right mix for your organization.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question