Solved

Upgrading Flash in Cisco ASA Firewall

Posted on 2011-02-21
7
1,006 Views
Last Modified: 2012-05-11
I have a 5510 ASA Firewall that I'm upgrading the flash on.  I've read that I need to basically copy the files off the existing flash onto the new flash.  I don't have a reader that I can use to connect to the new flash.  Here are my questions:

1.  I copied the IOS and ASDM images off the exising flash via tftp.  There are a couple other files that I can't copy due to permissions.  Those are the log, crypto_archive and coredump files.  Do I need those at all?

2.  I've read that I need a hidden file that has the activation key, or else I can just re-enter it?  Which file is this and can I copy it with tftp?

3.  I don't have a flash card reader.  Can I put the new flash in a spare ASA that I have and save the files onto it?  Would I then need to delete from it the file that has the activation key?
0
Comment
Question by:jpletcher1
  • 4
  • 3
7 Comments
 
LVL 57

Expert Comment

by:Pete Long
ID: 34944177
Ive only attempted this once and failed :(
If its a non Cisco Flash read this http://cisconews.co.uk/2007/12/27/asa-5505-flash-memory-hack/


0
 
LVL 57

Expert Comment

by:Pete Long
ID: 34944190
>>I don't have a flash card reader

in this day and age you can pick one up on ebay for buttons !
0
 

Author Comment

by:jpletcher1
ID: 34944193
This was the article that I was going off so far, but the part below I'm not sure how to do.  It is genuine Cisco flash.

Note: If you do not have a compact flash card reader you can still perform the upgrade. You will need to write down the activation key of your ASA (show ver displays this). You will then need to use a TFTP server to transfer the ASA image and other files!

0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Assisted Solution

by:jpletcher1
jpletcher1 earned 0 total points
ID: 34946637
I put the flash into one of my spare asas and I was able to go in rommon mode and tftp files to the flash.  I called Cisco support and I have to note the existing activation key and manually put that in after I install the flash and boot up the asa.  I'll post back with my results once I have a chance to change it out now.
0
 

Accepted Solution

by:
jpletcher1 earned 0 total points
ID: 35039937
The method below worked for me.  There was a big problem though with the existing config not being saved in NVRAM.  It was saved on the flash so that was lost and I had to save it back up.  The cisco tech said that sometimes that happens and the config doesn't get saved to the right area.  Weird, but that's what he said.  I was later able to get a flash card reader and I could see the config was saved in a hidden folder called private.  This foldler also had the key code which I manually input, but had I copied it over it would have gone more seamless.  

"I put the flash into one of my spare asas and I was able to go in rommon mode and tftp files to the flash.  I called Cisco support and I have to note the existing activation key and manually put that in after I install the flash and boot up the asa.  I'll post back with my results once I have a chance to change it out now."
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 35042214
jpletcher1 great news! keep me posted. If you have five minutes spare, jot down the steps you have taken and post them here, if info on this subject is so thin on the ground, lets see it we can get the steps posted here - nice work!

Pete
0
 

Author Closing Comment

by:jpletcher1
ID: 35081112
The solution I went with worked for me.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question