Solved

Need helping restoring my Cisco ASA 5505

Posted on 2008-10-01
11
1,006 Views
Last Modified: 2012-06-27
I had a working Cisco ASA 5505 that I was trying to enable users over the Internet  to access  a device on ports 8000-8010, when I completely messed up the whole unit.  Before I began my adventure I did a backup of the Configuration.  I have since reset to factory settings using the CLI.  I can not open it using the GUI.  It keeps prompting me for a username and password, which I don't have.  I tried to leave it blank.  It won't let me back in.....  The ASA is set to 192.168.1.1.  I need to be able to restore the saved config file!!!!  Please assist.
0
Comment
Question by:trinle
11 Comments
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621444
Can you please send me the backup config you had?
The default password and username are Cisco and Cisco
 
0
 
LVL 12

Assisted Solution

by:Pugglewuggle
Pugglewuggle earned 100 total points
ID: 22621449
Sorry - that's on routers. The default password on ASAs is blank. Not the word blank, but just nothing.
Also, you won't be able to access it except by the console port with a serial cable unless you put your PC on the inside interface and then try to connect to the PC's default gateway - that's the ASA's IP address because the factory default has DHCP enabled by default.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621453
If you can't get in by IP connect with the console cable and a terminal emulator like PUTTY.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html 
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:trinle
ID: 22621467
I will be back onsite in the AM tomorrow......
I have a server connected via Console cable to the ASA.  The server's IP is 192.168.1.2.  The ASA has the default IP of 192.168.1.1
I used Hyper Terminal to console in to the ASA.
How do I restore the backup file that I saved?
0
 
LVL 3

Expert Comment

by:IPFox
ID: 22621521
Hi,

Here is procedure for password recovery.
http://www.submityourarticle.com/articles/Don%20R.-Crawley-2264/cisco-pix-firewall-17868.php
After that you can login again and restore the backup file via GUI or CLI.
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621527
You need to first establish IP communication to the device. This just means get the ASA and the server so they're able to ping each other.
Then, run a TFTP program on the server. I recommend Pumkin - good and free. http://kin.klever.net/pumpkin/ Put the config file in the TFTP root (change it to something like C:\TFTP if you're using Pumpkin).
Then run the following command on the ASA:
copy tftp run
Just fill in the blanks and that should do it! Pumpkin will ask you to accept if it's working.
If you don't get an accept prompt on Pumpkin then something's wrong.
Tell me if that works!
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22621532
I will recommend against the password recover feature unless either blank, Cisco, or cisco don't work. It's case sensitive - one Cisco is capitalized the other isn't.
If it doesn't work it would be easier to just factory reset than to go through the whole recover process. It doesn't matter since it doesn't have a valid config anyways.
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 200 total points
ID: 22623599
Fortunately, the password recovery procedure is quick and painless.
You can also just use cut/paste in hyperterm. You can open the old config in notepad, edit/select all / copy then with the firewall in config mode, just choose paste to host and watch it.
 
0
 
LVL 12

Expert Comment

by:Pugglewuggle
ID: 22626924
This is true, but I'm lazy. Prepping a script, executing it and all that just takes longer than pressing a button. But then again, it is just 10 minutes! :-P lol
0
 

Author Comment

by:trinle
ID: 22639324
I was able to Hyper-Terminal in and go into Config mode and copy and paste the Configs from the backup I made, thanks Irmoore.  A tech named Travis assisted in setting up the Forwarding for our GPS device.  A thanks Pugglewuggle for your input too!      
0
 

Author Closing Comment

by:trinle
ID: 31502261
I tried the Pumpkin without success.......cool TFTP tool though.  I didn't need to reset the password.  I figured out that it kept the old password even after I set it to defaults????  Thanks guys for your prompt responses.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Creating an OSPF network that automatically (dynamically) reroutes network traffic over other connections to prevent network downtime.
This past year has been one of great growth and performance for OnPage. We have added many features and integrations to the product, making 2016 an awesome year. We see these steps forward as the basis for future growth.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question