We help IT Professionals succeed at work.

Password Reset Trouble on Cisco PIX 515E Firewall

TomEA
TomEA asked
on
Hi folks!

Got a Cisco PIX 515E firewall that I need to reset the password on. I've downloaded the np70.bin password reset file from Cisco's web site and placed it on a TFTP server. I can interrupt the boot process on the PIX and get into the "monitor>" prompt, and I can successfully configure networking and download the file via TFTP.

But once it goes to load the file, it says it's initializing flashfs, gives a couple more messages, and then says "Unable to open the startup configuration; Probably the file system is corrupted" and it starts to reboot. Never prompting for anything regarding the password.

Any help would be most appreciated.

- Tom
Comment
Watch Question

Les MooreSr. Systems Engineer
Top Expert 2008

Commented:
What version PIX OS is running?

Author

Commented:
8.0. The Cisco site says np70.bin is for both versions 7 and 8.
Could you post the full output including the error messages when you try to load the file?

Author

Commented:
Certainly. I am including a complete log of the session from the time I began configuring at the "monitor>" prompt until the unit reboots. Hopefully, that will give you the information that you need.
monitor> interface 0
0: i8255X @ PCI(bus:0 dev:14 irq:10)
1: i8255X @ PCI(bus:0 dev:13 irq:11)
2: i8255X @ PCI(bus:0 dev:17 irq:11)

Using 0: i82557 @ PCI(bus:0 dev:14 irq:10), MAC: 000e.833e.f25e
monitor> address 192.168.1.47
address 192.168.1.47
monitor> server 192.168.1.4
server 192.168.1.4
monitor> file np70.bin
file np70.bin
monitor> ping 192.168.1.4
Sending 5, 100-byte 0x5002 ICMP Echoes to 192.168.1.4, timeout is 4 seconds:
!!!!!
Success rate is 100 percent (5/5)
monitor> tftp
tftp np70.bin@192.168.1.4.......................................................
................................................................................
................................................................................
......................................
Received 129024 bytes

Cisco PIX Security Appliance password tool (3.0) #0: Thu Jun  9 21:45:44 PDT 200
5

Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.
Using the startup configuration file flash:/startup-config
Unable to open the startup configuration
Probably the file system is corrupted



Rebooting....


CISCO SYSTEMS PIX FIREWALL
Embedded BIOS Version 4.3.207 01/02/02 16:12:22.73
Compiled by morlee
64 MB RAM

PCI Device Table.
Bus Dev Func VendID DevID Class              Irq
 00  00  00   8086   7192  Host Bridge
 00  07  00   8086   7110  ISA Bridge
 00  07  01   8086   7111  IDE Controller
 00  07  02   8086   7112  Serial Bus         9
 00  07  03   8086   7113  PCI Bridge
 00  0D  00   8086   1209  Ethernet           11
 00  0E  00   8086   1209  Ethernet           10
 00  11  00   8086   1229  Ethernet           11

Cisco Secure PIX Firewall BIOS (4.2) #0: Mon Dec 31 08:34:35 PST 2001
Platform PIX-515E
System Flash=E28F128J3 @ 0xfff00000

Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.
Reading 115200 bytes of image from flash.

PIX Flash Load Helper

Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.

Reading image flash:/image.bin
Launching image flash:/image.bin
################################################################################
################################################################################
###################################################################
64MB RAM

Total NICs found: 3
mcwa i82559 Ethernet at irq 10  MAC: 000e.833e.f25e
mcwa i82559 Ethernet at irq 11  MAC: 000e.833e.f25f
mcwa i82559 Ethernet at irq 11  MAC: 0002.b3d5.8988
BIOS Flash=am29f400b @ 0xd8000

Initializing flashfs...
flashfs[7]: 8 files, 3 directories
flashfs[7]: 0 orphaned files, 0 orphaned directories
flashfs[7]: Total bytes: 16128000
flashfs[7]: Bytes used: 7562240
flashfs[7]: Bytes available: 8565760
flashfs[7]: flashfs fsck took 8 seconds.
flashfs[7]: Initialization complete.


Licensed features for this platform:
Maximum Physical Interfaces  : 6
Maximum VLANs                : 25
Inside Hosts                 : Unlimited
Failover                     : Active/Active
VPN-DES                      : Enabled
VPN-3DES-AES                 : Disabled
Cut-through Proxy            : Enabled
Guards                       : Enabled
URL Filtering                : Enabled
Security Contexts            : 2
GTP/GPRS                     : Disabled
VPN Peers                    : Unlimited

This platform has an Unrestricted (UR) license.


Cisco PIX Security Appliance Software Version 8.0(4)

  ****************************** Warning *******************************
  This product contains cryptographic features and is
  subject to United States and local country laws
  governing, import, export, transfer, and use.
  Delivery of Cisco cryptographic products does not
  imply third-party authority to import, export,
  distribute, or use encryption. Importers, exporters,
  distributors and users are responsible for compliance
  with U.S. and local country laws. By using this
  product you agree to comply with applicable laws and
  regulations. If you are unable to comply with U.S.
  and local laws, return the enclosed items immediately.

  A summary of U.S. laws governing Cisco cryptographic
  products may be found at:
  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

  If you require further assistance please contact us by
  sending email to export@cisco.com.
  ******************************* Warning *******************************

Copyright (c) 1996-2008 by Cisco Systems, Inc.

                Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

                Cisco Systems, Inc.
                170 West Tasman Drive
                San Jose, California 95134-1706

....Device Manager image set, but not a valid image file flash:/asdm-61551.bin
*** Output from config line 254, "asdm image flash:/asdm-6..."
....
Cryptochecksum (unchanged): 4c77f97a 0cd207a0 40710a16 c7f15a82
Type help or '?' for a list of available commands.
NC-PIX1>

Open in new window

Commented:
Follow-up: A technician on the Cisco forums was kind enough to provide me with the password reset file for version 8.0 of the PIX operating system. Despite what the public web site says, the np70.bin file is apparently not fully compatible with version 8.0. Once using the correct file, I was able to reset the password successfully. The file is not publicly available on the web site, so anyone needing to use it needs to contact Cisco or post on the Cisco support forums at http://supportforums.cisco.com.

Thanks to all who tried to help!

- Tom
Les MooreSr. Systems Engineer
Top Expert 2008

Commented:
Thanks for the follow up, Tom!