Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1198
Views
0
Helpful
2
Replies

Cisco ASA 5506-X can't go to rommon Mode

AnilKumar2
Level 1
Level 1

‎02-17-2022 11:14 AM

Hi Guys,

I am completely new to Cisco ASAs, but windows Administrator for 16yrs. I got Cisco ASA 5506-x from work
as it is taken out production and sitting there idle for long time. No support from TAC though Account manager
has given us couple of links which I believe not relevant for this issue. so I am on my own and either bin it or make it work.
Any help will be appreciated. Obviously no one knows the Password as it is set up by support vendor and who left 2 years ago.

I am unable to press Esc + Break as it is not giving me that option to press Esc + Break.

********************************************
Rom image verified correctly
Cisco Systems ROMMON, Version 1.1.8, RELEASE SOFTWARE
Copyright (c) 1994-2015 by Cisco Systems, Inc.
Compiled Thu 06/18/2015 12:15:56.43 by builders

Current image running: Boot ROM0
Last reset cause: PowerOn
DIMM Slot 0 : Present
Platform ASA5506 with 4096 Mbytes of main memory
MAC Address: 00:27:e3:c1:74:38
Located '.boot_string' @ cluster 887265.
#
Attempt autoboot: "boot disk0:"
Located 'asa961-lfbff-k8.SPA' @ cluster 11.

############################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################
LFBFF signature verified.
INIT: version 2.88 booting
Starting udev
Configuring network interfaces... done.
Populating dev cache

^[dosfsck 2.11, 12 Mar 2005, FAT32, LFN
There are differences between boot sector and its backup.
Differences: (offset:original/backup)
65:01/00
Not automatically fixing this.
Starting check/repair pass.
/csco_config/97/customization/Template
Contains a free cluster (27601). Assuming EOF.
/csco_config/97/customization/Template
File size is 28401 bytes, cluster chain length is 0 bytes.
Truncating file to 0 bytes.
/csco_config/97/bookmarks/Template
Contains a free cluster (27608). Assuming EOF.
/csco_config/97/bookmarks/Template
File size is 881 bytes, cluster chain length is 0 bytes.
Truncating file to 0 bytes.
/csco_config/locale/LC_MESSAGES/PortForwarder.po
Contains a free cluster (27592). Assuming EOF.
/csco_config/locale/LC_MESSAGES/PortForwarder.po
File size is 2864 bytes, cluster chain length is 0 bytes.
Truncating file to 0 bytes.
/csco_config/locale/LC_MESSAGES/webvpn.po
Contains a free cluster (27593). Assuming EOF.
/csco_config/locale/LC_MESSAGES/webvpn.po
File size is 25295 bytes, cluster chain length is 0 bytes.
Truncating file to 0 bytes.
/csco_config/locale/LC_MESSAGES/banners.po
Contains a free cluster (27600). Assuming EOF.
/csco_config/locale/LC_MESSAGES/banners.po
File size is 896 bytes, cluster chain length is 0 bytes.
Truncating file to 0 bytes.
Reclaimed 17 unused clusters (69632 bytes) in 5 chains.
Starting verification pass.
Performing changes.
/dev/sdb1: 182 files, 847495/1798211 clusters
dosfsck(/dev/sdb1) returned 1
IO Memory Nodes: 1
IO Memory Per Node: 205520896 bytes

Global Reserve Memory Per Node: 314572800 bytes Nodes=1

LCMB: got 205520896 bytes on numa-id=0, phys=0x10e000000, virt=0x2aaaab000000
LCMB: HEAP-CACHE POOL got 314572800 bytes on numa-id=0, virt=0x7efdc3c00000
Processor memory: 1502519902

Compiled on Fri 18-Mar-16 14:04 PDT by builders

Total NICs found: 13
i354 rev03 Gigabit Ethernet @ irq255 dev 20 index 08 MAC: 0027.e3c1.7438
ivshmem rev03 Backplane Data Interface @ index 09 MAC: 0000.0001.0002
en_vtun rev00 Backplane Control Interface @ index 10 MAC: 0000.0001.0001
en_vtun rev00 Backplane Int-Mgmt Interface @ index 11 MAC: 0000.0001.0003
en_vtun rev00 Backplane Ext-Mgmt Interface @ index 12 MAC: 0000.0000.0000
Verify the activation-key, it might take a while...
Running Permanent Activation Key: 0x500af36a 0x60189c50 0xf0708914 0xa024bc08 0xcf3401a9

Licensed features for this platform:
Maximum Physical Interfaces : Unlimited perpetual
Maximum VLANs : 30 perpetual
Inside Hosts : Unlimited perpetual
Failover : Active/Standby perpetual
Encryption-DES : Enabled perpetual
Encryption-3DES-AES : Enabled perpetual
Carrier : Disabled perpetual
AnyConnect Premium Peers : 4 perpetual
AnyConnect Essentials : Disabled perpetual
Other VPN Peers : 50 perpetual
Total VPN Peers : 50 perpetual
AnyConnect for Mobile : Disabled perpetual
AnyConnect for Cisco VPN Phone : Disabled perpetual
Advanced Endpoint Assessment : Disabled perpetual
Shared License : Disabled perpetual
Total UC Proxy Sessions : 160 perpetual
Botnet Traffic Filter : Disabled perpetual
Cluster : Disabled perpetual

This platform has an ASA 5506 Security Plus license.

Encryption hardware device : Cisco ASA Crypto on-board accelerator (revision 0x1)

Cisco Adaptive Security Appliance Software Version 9.6(1)

****************************** Warning *******************************
This product contains cryptographic features and is
subject to United States and local country laws
governing, import, export, transfer, and use.
Delivery of Cisco cryptographic products does not
imply third-party authority to import, export,
distribute, or use encryption. Importers, exporters,
distributors and users are responsible for compliance
with U.S. and local country laws. By using this
product you agree to comply with applicable laws and
regulations. If you are unable to comply with U.S.
and local laws, return the enclosed items immediately.

A summary of U.S. laws governing Cisco cryptographic
products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by
sending email to export@cisco.com.
******************************* Warning *******************************
Cisco Adaptive Security Appliance Software, version 9.6
Copyright (c) 1996-2016 by Cisco Systems, Inc.
For licenses and notices for open source software used in this product, please visit
http://www.cisco.com/go/asa-opensource

Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

Cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706

Reading from flash...
!!....
Cryptochecksum (unchanged): 053902e6 3f6d9320 63309fbe 2f4bade3

INFO: Power-On Self-Test in process.
.......................................................................
INFO: Power-On Self-Test complete.

INFO: Starting HW-DRBG health test...
INFO: HW-DRBG health test passed.

INFO: Starting SW-DRBG health test...
INFO: SW-DRBG health test passed.
Type help or '?' for a list of available commands.
UKL-Civc-5506-FW>

 

Labels:
0 Helpful
2 Replies 2

AnilKumar2
Level 1
Level 1

‎02-19-2022 01:36 AM

Thanks Flavio. Above option you mentioned involves pressing X key in both cases . One option to recover password with existing configuration and other option is to erase configuration. I am happy to erase .

 

But my issue is the boot process continues and never asked to press ESC or break. Once i restarted the device, it ends ups stoppimg at fwname>.

I might sell it as a faulty on ebay and buy another similar one. The reason i would like to play with device  i am AWS architect for my company and would like to set up ASAv in cloud as we are going to cloud :). But playing with physical devise is way to go for starter than virtual firewall.

 

Thanks. I appreciate your reply.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card