Cisco PIX 515E default factory settings
If i want to restore/wipe my cisco pix 515E to factory settings, what do i need to backup besides the flash and the asdm i am guessing the activation key just make a note of it? how would i activate?
this is my show version
Cisco PIX Security Appliance Software Version 8.0(4)
Device Manager Version 6.0(3)
Compiled on Thu 07-Aug-08 19:42 by xxxxxx
System image file is "flash:/pix804.bin"
Config file at boot was "startup-config"
pixfirewall up 2 days 22 hours
Hardware: PIX-515E, 128 MB RAM, CPU Pentium II 433 MHz
Flash E28F128J3 @ 0xfff00000, 16MB
BIOS Flash AM29F400B @ 0xfffd8000, 32KB
0: Ext: Ethernet0 : address is xxxx.xxxx.xxxx, irq 10
1: Ext: Ethernet1 : address is xxxx.xxxx.xxxx, irq 11
2: Ext: Ethernet2 : address is xxxx.xxxx.xxxx, irq 11
3: Ext: Ethernet3 : address is xxxx.xxxx.xxxx, irq 10
4: Ext: Ethernet4 : address is xxxx.xxxx.xxxx, irq 9
5: Ext: Ethernet5 : address is xxxx.xxxx.xxxx, irq 5
Licensed features for this platform:
Maximum Physical Interfaces : 6
Maximum VLANs : 25
Inside Hosts : Unlimited
Failover : Active/Active
VPN-DES : Enabled
VPN-3DES-AES : Enabled
Cut-through Proxy : Enabled
Guards : Enabled
URL Filtering : Enabled
Security Contexts : 2
GTP/GPRS : Disabled
VPN Peers : Unlimited
This platform has an Unrestricted (UR) license.
Serial Number: xxxxxxxxx
Running Activation Key: xxxxxxxxxxxxxxxxxxxxxxxxxx
Configuration last modified by enable_15 at 17:52:44.877 EDT Thu Mar 24 2011
this is my show version
Cisco PIX Security Appliance Software Version 8.0(4)
Device Manager Version 6.0(3)
Compiled on Thu 07-Aug-08 19:42 by xxxxxx
System image file is "flash:/pix804.bin"
Config file at boot was "startup-config"
pixfirewall up 2 days 22 hours
Hardware: PIX-515E, 128 MB RAM, CPU Pentium II 433 MHz
Flash E28F128J3 @ 0xfff00000, 16MB
BIOS Flash AM29F400B @ 0xfffd8000, 32KB
0: Ext: Ethernet0 : address is xxxx.xxxx.xxxx, irq 10
1: Ext: Ethernet1 : address is xxxx.xxxx.xxxx, irq 11
2: Ext: Ethernet2 : address is xxxx.xxxx.xxxx, irq 11
3: Ext: Ethernet3 : address is xxxx.xxxx.xxxx, irq 10
4: Ext: Ethernet4 : address is xxxx.xxxx.xxxx, irq 9
5: Ext: Ethernet5 : address is xxxx.xxxx.xxxx, irq 5
Licensed features for this platform:
Maximum Physical Interfaces : 6
Maximum VLANs : 25
Inside Hosts : Unlimited
Failover : Active/Active
VPN-DES : Enabled
VPN-3DES-AES : Enabled
Cut-through Proxy : Enabled
Guards : Enabled
URL Filtering : Enabled
Security Contexts : 2
GTP/GPRS : Disabled
VPN Peers : Unlimited
This platform has an Unrestricted (UR) license.
Serial Number: xxxxxxxxx
Running Activation Key: xxxxxxxxxxxxxxxxxxxxxxxxxx
Configuration last modified by enable_15 at 17:52:44.877 EDT Thu Mar 24 2011
ASKER
ok, i was thinking the same....
the write erase command just erases the contents of NVRAM only right?
the write erase command just erases the contents of NVRAM only right?
Yes. Write mem is the same as the "erase startup-config" command, which erases the startup config file. After the next reload the pix will use a factory default startup-config and copy it over to the running-config.
You normally do not want to erase anything in the flash unless you're certain that it's corrupt or that you do not need it. This includes IOS images, sdm's, pdm's, adsm's, anyconnect clients, etc etc. Write erase is good enough to place the firewall back to default.
The only other way to put it back to the original purchase state is if you remember what ios image was on it, and what pdm, downloading those from Cisco, removing the current pdm's and IOS images, and replacing them with the old ones. This is a downgrade though, and the old images may not have some features that you've been using from the newer image. Especially since your current image is at least 2 major versions above what likely came with the pix at purchase.
You normally do not want to erase anything in the flash unless you're certain that it's corrupt or that you do not need it. This includes IOS images, sdm's, pdm's, adsm's, anyconnect clients, etc etc. Write erase is good enough to place the firewall back to default.
The only other way to put it back to the original purchase state is if you remember what ios image was on it, and what pdm, downloading those from Cisco, removing the current pdm's and IOS images, and replacing them with the old ones. This is a downgrade though, and the old images may not have some features that you've been using from the newer image. Especially since your current image is at least 2 major versions above what likely came with the pix at purchase.
ASKER
you know i am having a dumb problem. factory settings applied. im now trying to copy the original running config or start-config file (3KB) to the startup config and running config but its not going through it outputs %error opening tftp://192.168.1.2/startup-config (no such device)
tftp IP is 1.2 and internal PIX is 1.1 and i found out i cannot even ping it
when i try to ping the tftp server it says "no route to host 1.2" really odd....i removed all AV apps and turned off the windows firewall
tftp IP is 1.2 and internal PIX is 1.1 and i found out i cannot even ping it
when i try to ping the tftp server it says "no route to host 1.2" really odd....i removed all AV apps and turned off the windows firewall
Did you no shut the interface? Do you see your subnet as a connected subnet after you perform a show ip route?
ASKER
solved it, i configured through the default questions, copy run start, then i was able to ping the tftp server....but now i am still having the problem of copying the startup config file it says (unspecified error)
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Your best bet is to do the following:
write mem
Copy flash tftp your IOS, asdm and startup config. Copy the serial and activation to a notepad file.
write erase
reload
Then you should be good.