Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
425
Views
0
Helpful
7
Replies

Pix 506 Firewall Missing Commands

adrian.hosein1
Level 1
Level 1

‎06-05-2015 11:24 AM - edited ‎03-11-2019 11:03 PM

I recently had an issue with out PIX 506 firewall, i had to do a reload which seems to have sorted the issue.

One of the problems i had with this firewall is that it never saved any info after i would configure it, so.e.g. i'd use the command username john password password, it would be configured and then i'd save the info using write -t command, however if i reload the firewall it loses that info.

 

This brings me to the recent issue i had, i had to reboot the firewall, i was well aware id have to recreate 2 or 3 users, but the username command is missing now, I've pasted a list of all the commands available to me now below, as of that reboot i am unable to create any users, can anyone help?

 

arp             Change or view arp table, set arp timeout value, view statistic
capture         Capture inbound and outbound packets on one or more interfaces
configure       Configure from terminal
copy            Copy image or PDM file from TFTP server into flash.
cpu             Display cpu usage and cpu profiling operations
debug           Debug packets or ICMP tracings through the PIX Firewall.
disable         Exit from privileged mode
eeprom          show or reprogram the 525 onboard i82559 devices
flashfs         Show, destroy, or preserve filesystem information
help            Help list
kill            Terminate a telnet session
logout          Exit from current user profile, and to unprivileged mode
logging         Clear syslog entries from the internal buffer
memory          System memory utilization
pager           Control page length for pagination
passwd          Change Telnet console access password
ping            Test connectivity from specified interface to <ip>
quit            Quit from the current mode, end configuration or logout
reload          Halt and reload system
shun            Manages the filtering of packets from undesired hosts
who             Show active administration sessions on PIX
write           Write config to net, flash, floppy, or terminal, or erase flash 

Labels:
0 Helpful
7 Replies 7

Vibhor Amrodia
Cisco Employee
Cisco Employee

‎06-05-2015 06:57 PM

Hi,

Can you post the show version output from the PIX ?

Thanks and Regards,

Vibhor Amrodia

0 Helpful

adrian.hosein1
Level 1
Level 1
In response to Vibhor Amrodia

‎06-05-2015 11:02 PM

Hi Vibhor, see below.

 

Hardware:   PIX-506, 32 MB RAM, CPU Pentium 200 MHz
Flash i28F640J5 @ 0x300, 8MB
BIOS Flash AT29C257 @ 0xfffd8000, 32KB
 
0: ethernet0: address is 0005.328f.eb90, irq 11
1: ethernet1: address is 0005.328f.eb91, irq 10
Licensed Features:
Failover:                    Disabled
VPN-DES:                     Enabled
VPN-3DES-AES:                Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces:          4
Cut-through Proxy:           Enabled
Guards:                      Enabled
URL-filtering:               Enabled
Inside Hosts:                Unlimited
Throughput:                  Limited
IKE peers:                   Unlimited
 
This PIX has a Restricted (R) license.
0 Helpful

Vibhor Amrodia
Cisco Employee
Cisco Employee
In response to adrian.hosein1

‎06-06-2015 05:06 AM

Hi,

Sorry , I am not sure if this is the complete output from the PIX device.

I don't see the PIX version.

Thanks and Regards,

Vibhor Amrodia

0 Helpful

adrian.hosein1
Level 1
Level 1
In response to Vibhor Amrodia

‎06-08-2015 05:05 AM

Good morning Vibhor, sorry about that i did not copy and paste properly, please see below for the complete output, is there something I'm missing?

 

Cisco PIX Firewall Version 6.3(5)
Cisco PIX Device Manager Version 3.0(4)

Compiled on Thu 04-Aug-05 21:40 by morlee

wgmlvpn up 2 days 18 hours

Hardware:   PIX-506, 32 MB RAM, CPU Pentium 200 MHz
Flash i28F640J5 @ 0x300, 8MB
BIOS Flash AT29C257 @ 0xfffd8000, 32KB

0: ethernet0: address is 0005.328f.eb90, irq 11
1: ethernet1: address is 0005.328f.eb91, irq 10
Licensed Features:
Failover:                    Disabled
VPN-DES:                     Enabled
VPN-3DES-AES:                Enabled
Maximum Physical Interfaces: 2
Maximum Interfaces:          4
Cut-through Proxy:           Enabled
Guards:                      Enabled
URL-filtering:               Enabled
Inside Hosts:                Unlimited
Throughput:                  Limited
IKE peers:                   Unlimited

This PIX has a Restricted (R) license.

Serial Number: 481100979 (0x1cad04b3)
Running Activation Key: 0x8b734638 0xe4cb00fa 0xac16c474 0xfe8f0156
Configuration has not been modified since last system restart.

0 Helpful

Vibhor Amrodia
Cisco Employee
Cisco Employee
In response to adrian.hosein1

‎06-08-2015 07:08 AM

Hi,

Yes , I think this is the correct output. I would recommend you to upgrade the version to the latest:- pix804-28.bin

I think this should resolve this issue.

Also , which prompt are you not seeing the complete commands on the device ? Is it User Exec (>) , Exec (#) or config (config(#)) ??

Thanks and Regards,

Vibhor Amrodia

0 Helpful

adrian.hosein1
Level 1
Level 1
In response to Vibhor Amrodia

‎06-08-2015 07:19 AM

You have to forgive me but i am a very basic cisco user, but i think the prompt is config, usually i type config -t and from there i type ' username john password password ', is it fairly easy to upgrade the device?

0 Helpful

Vibhor Amrodia
Cisco Employee
Cisco Employee
In response to adrian.hosein1

‎06-08-2015 07:36 AM

Hi,

I think this should help:-

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/4801-upgrade.html#upgrade511

Thanks and Regards,

Vibhor Amrodia

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card