Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
19143
Views
10
Helpful
8
Replies

Wipe out an ASA

Go to solution
johnlloyd_13
Level 9
Level 9

‎07-16-2015 08:40 PM - edited ‎03-11-2019 11:16 PM

hi all,

just a quick one. what's the 'best' and practical way of resetting an ASA?

this is to help me configure the box from scratch.

is it by using the write erase or config factory-default command?

can elaborate between the two and which is more commonly used?

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Puneesh Chhabra
Cisco Employee
Cisco Employee

‎07-17-2015 05:27 AM

Write erase and reload will erase everything on the ASA

Factory-default will leave the ASA with some default ip addresses and dhcp, you can also configure your own ip address to inside interface in the factory-default command.

 

Check this link:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa72/configuration/guide/conf_gd/start.html#wp1053752

 

We mostly use write erase when configuring ASA from the scratch.

 

Regards,

Puneesh

Please do not forget to rate helpful posts

View solution in original post

8 Replies 8

Go to solution
Puneesh Chhabra
Cisco Employee
Cisco Employee

‎07-17-2015 05:27 AM

Write erase and reload will erase everything on the ASA

Factory-default will leave the ASA with some default ip addresses and dhcp, you can also configure your own ip address to inside interface in the factory-default command.

 

Check this link:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa72/configuration/guide/conf_gd/start.html#wp1053752

 

We mostly use write erase when configuring ASA from the scratch.

 

Regards,

Puneesh

Please do not forget to rate helpful posts

Go to solution
bern81
Level 1
Level 1
In response to Puneesh Chhabra

‎05-03-2018 05:11 AM

Hi Punesh,

 

What about the licenses, i want to completely reset my ASA but will see delete the licenses, i have digital certs as well on it.

 

Please advice

0 Helpful

Go to solution
Dennis Mink
VIP Alumni
VIP Alumni
In response to bern81

‎05-03-2018 05:21 AM

Correct, it will include those as well

Please remember to rate useful posts, by clicking on the stars below.

Go to solution
bern81
Level 1
Level 1
In response to Dennis Mink

‎05-03-2018 07:32 AM

Thanks Dennis, i performed the command and certs are deleted.
License remained.
Many thanks for your help.

0 Helpful

Go to solution
Uchiwajes
Level 1
Level 1
In response to bern81

‎08-15-2018 08:51 AM

Which command did you use?

0 Helpful

Go to solution
Support987
Level 1
Level 1
In response to Uchiwajes

‎01-22-2019 08:52 AM

Hi can you confirm which command you used which didn't delete the licenses? 

0 Helpful

Go to solution
akkammazen
Level 1
Level 1
In response to Puneesh Chhabra

‎04-18-2020 05:38 PM

What causes the policy-map global_policy with default inspection to be missing from the config file? A write erase and reload is restoring the missing global policy or configure factory default but why it is missing in some cases when as ASA is rebooted. 

I appreciate any feedback. 

Thanks, 

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to akkammazen

‎04-18-2020 09:00 PM

I've seen it happen as a result of a bug on an FTD device. Re-entering the commands (could do it from cli config mode on ASA, have to use Flexconfig in FMC for FTD) restores them.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card