06-14-2010 05:07 PM - edited 03-11-2019 10:59 AM
Hi folks!
Got a Cisco PIX 515E firewall that I need to reset the password on. I've downloaded the np70.bin password reset file from Cisco's web site and placed it on a TFTP server. I can interrupt the boot process on the PIX and get into the "monitor>" prompt, and I can successfully configure networking and download the file via TFTP.
But once it goes to load the file, it says it's initializing flashfs, gives a couple more messages, and then says "Unable to open the startup configuration; Probably the file system is corrupted" and it starts to reboot. Never prompting for anything regarding the password. A complete log of the output from the time I start configuring it to the time it reboots is included below.
Any help would be most appreciated.
- Tom
monitor> interface 0
0: i8255X @ PCI(bus:0 dev:14 irq:10)
1: i8255X @ PCI(bus:0 dev:13 irq:11)
2: i8255X @ PCI(bus:0 dev:17 irq:11)
Using 0: i82557 @ PCI(bus:0 dev:14 irq:10), MAC: 000e.833e.f25e
monitor> address 192.168.1.47
address 192.168.1.47
monitor> server 192.168.1.4
server 192.168.1.4
monitor> file np70.bin
file np70.bin
monitor> ping 192.168.1.4
Sending 5, 100-byte 0x5002 ICMP Echoes to 192.168.1.4, timeout is 4 seconds:
!!!!!
Success rate is 100 percent (5/5)
monitor> tftp
tftp np70.bin@192.168.1.4.......................................................
................................................................................
................................................................................
......................................
Received 129024 bytes
Cisco PIX Security Appliance password tool (3.0) #0: Thu Jun 9 21:45:44 PDT 200
5
Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.
Using the startup configuration file flash:/startup-config
Unable to open the startup configuration
Probably the file system is corrupted
Rebooting....
CISCO SYSTEMS PIX FIREWALL
Embedded BIOS Version 4.3.207 01/02/02 16:12:22.73
Compiled by morlee
64 MB RAM
PCI Device Table.
Bus Dev Func VendID DevID Class Irq
00 00 00 8086 7192 Host Bridge
00 07 00 8086 7110 ISA Bridge
00 07 01 8086 7111 IDE Controller
00 07 02 8086 7112 Serial Bus 9
00 07 03 8086 7113 PCI Bridge
00 0D 00 8086 1209 Ethernet 11
00 0E 00 8086 1209 Ethernet 10
00 11 00 8086 1229 Ethernet 11
Cisco Secure PIX Firewall BIOS (4.2) #0: Mon Dec 31 08:34:35 PST 2001
Platform PIX-515E
System Flash=E28F128J3 @ 0xfff00000
Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.
Reading 115200 bytes of image from flash.
PIX Flash Load Helper
Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.
Reading image flash:/image.bin
Launching image flash:/image.bin
################################################################################
################################################################################
###################################################################
64MB RAM
Total NICs found: 3
mcwa i82559 Ethernet at irq 10 MAC: 000e.833e.f25e
mcwa i82559 Ethernet at irq 11 MAC: 000e.833e.f25f
mcwa i82559 Ethernet at irq 11 MAC: 0002.b3d5.8988
BIOS Flash=am29f400b @ 0xd8000
Initializing flashfs...
flashfs[7]: 8 files, 3 directories
flashfs[7]: 0 orphaned files, 0 orphaned directories
flashfs[7]: Total bytes: 16128000
flashfs[7]: Bytes used: 7562240
flashfs[7]: Bytes available: 8565760
flashfs[7]: flashfs fsck took 8 seconds.
flashfs[7]: Initialization complete.
Licensed features for this platform:
Maximum Physical Interfaces : 6
Maximum VLANs : 25
Inside Hosts : Unlimited
Failover : Active/Active
VPN-DES : Enabled
VPN-3DES-AES : Disabled
Cut-through Proxy : Enabled
Guards : Enabled
URL Filtering : Enabled
Security Contexts : 2
GTP/GPRS : Disabled
VPN Peers : Unlimited
This platform has an Unrestricted (UR) license.
Cisco PIX Security Appliance Software Version 8.0(4)
****************************** Warning *******************************
This product contains cryptographic features and is
subject to United States and local country laws
governing, import, export, transfer, and use.
Delivery of Cisco cryptographic products does not
imply third-party authority to import, export,
distribute, or use encryption. Importers, exporters,
distributors and users are responsible for compliance
with U.S. and local country laws. By using this
product you agree to comply with applicable laws and
regulations. If you are unable to comply with U.S.
and local laws, return the enclosed items immediately.
A summary of U.S. laws governing Cisco cryptographic
products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by
sending email to export@cisco.com.
******************************* Warning *******************************
Copyright (c) 1996-2008 by Cisco Systems, Inc.
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
....Device Manager image set, but not a valid image file flash:/asdm-61551.bin
*** Output from config line 254, "asdm image flash:/asdm-6..."
....
Cryptochecksum (unchanged): 4c77f97a 0cd207a0 40710a16 c7f15a82
Type help or '?' for a list of available commands.
NC-PIX1>
Solved! Go to Solution.
06-14-2010 08:08 PM
Email me (my username @cisco.com) and I can help you with the image to reformat the flash.
Sincerely,
David.
06-14-2010 06:16 PM
Hopefully you have a backup of the configuration.
You will likely need to open a TAC SR for this, and have them help you get a file that will earse the current disk and recover from there.
The process will be like as documented here :
Regards,
06-14-2010 07:51 PM
Thanks for the information. Unfortunately, however, that's not an option in this case. This is a firewall that was purchased used and which does not have any active support contract with Cisco. Therefore, I'm unable to call upon their technical support or access files that are not publicly available.
06-14-2010 08:08 PM
Email me (my username @cisco.com) and I can help you with the image to reformat the flash.
Sincerely,
David.
06-15-2010 05:44 PM
Thanks, David! The password reset utility you e-mailed me for version 8 of the operating system worked like a charm.
06-26-2010 07:20 AM
I am having the same problem with Cisco PIX525.
monitor> address 192.168.0.201
address 192.168.0.201
monitor> server 192.168.0.200
server 192.168.0.200
monitor> file np70.bin
file np70.bin
monitor> tftp
tftp np70.bin@192.168.0.200.....................................................
................................................................................
................................................................................
........................................
Received 129024 bytes
Cisco PIX Security Appliance password tool (3.0) #0: Thu Jun 9 21:45:44 PDT 200
5
Initializing flashfs...
flashfs[0]: 11 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 13829120
flashfs[0]: Bytes available: 2298880
flashfs[0]: Initialization complete.
Using the startup configuration file flash:/image.bin
Unable to open the startup configuration
Probably the file system is corrupted
Rebooting....
Could you please help, David?
my email: phamvudung at gmail.com
Thank you!
06-28-2010 09:23 AM
06-29-2010 09:02 PM
It works for me. Thank you so much, David!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide