04-25-2012 10:41 AM - edited 03-03-2019 06:33 AM
When my ASA5505 starts it loads into rommon. I enter "boot" and everything boots fine. How do I make that load by default whenever it starts. Does anyone have the correct command syntax to make that happen?
Thanks
here is the output from the entire boot process.
CISCO SYSTEMS
Embedded BIOS Version 1.0(12)13 08/28/08 15:50:37.45
Low Memory: 632 KB
High Memory: 507 MB
PCI Device Table.
Bus Dev Func VendID DevID Class Irq
00 01 00 1022 2080 Host Bridge
00 01 02 1022 2082 Chipset En/Decrypt 11
00 0C 00 1148 4320 Ethernet 11
00 0D 00 177D 0003 Network En/Decrypt 10
00 0F 00 1022 2090 ISA Bridge
00 0F 02 1022 2092 IDE Controller
00 0F 03 1022 2093 Audio 10
00 0F 04 1022 2094 Serial Bus 9
00 0F 05 1022 2095 Serial Bus 9
Evaluating BIOS Options ...
Launch BIOS Extension to setup ROMMON
Cisco Systems ROMMON Version (1.0(12)13) #0: Thu Aug 28 15:55:27 PDT 2008
Platform ASA5505
Ethernet0/0
MAC Address: 5057.a8ca.98bd
Link is UP
Use ? for help.
rommon #0> boot
Launching BootLoader...
Boot configuration file contains 1 entry.
Loading disk0:/asa825-k8.bin... Booting...
Platform ASA5505
Loading...
dosfsck 2.11, 12 Mar 2005, FAT32, LFN
Starting check/repair pass.
Starting verification pass.
/dev/hda1: 170 files, 30256/62780 clusters
dosfsck(/dev/hda1) returned 0
Processor memory 383561728, Reserved memory: 62914560 (DSOs: 0 + kernel: 62914560)
Total SSMs found: 0
Total NICs found: 10
88E6095 rev 2 Gigabit Ethernet @ index 09 MAC: 0000.0003.0002
88E6095 rev 2 Ethernet @ index 08 MAC: 5057.a8ca.98bc
88E6095 rev 2 Ethernet @ index 07 MAC: 5057.a8ca.98bb
88E6095 rev 2 Ethernet @ index 06 MAC: 5057.a8ca.98ba
88E6095 rev 2 Ethernet @ index 05 MAC: 5057.a8ca.98b9
88E6095 rev 2 Ethernet @ index 04 MAC: 5057.a8ca.98b8
88E6095 rev 2 Ethernet @ index 03 MAC: 5057.a8ca.98b7
88E6095 rev 2 Ethernet @ index 02 MAC: 5057.a8ca.98b6
88E6095 rev 2 Ethernet @ index 01 MAC: 5057.a8ca.98b5
y88acs06 rev16 Gigabit Ethernet @ index 00 MAC: 5057.a8ca.98bd
Licensed features for this platform:
Maximum Physical Interfaces : 8
VLANs : 3, DMZ Restricted
Inside Hosts : 10
Failover : Disabled
VPN-DES : Enabled
VPN-3DES-AES : Enabled
SSL VPN Peers : 2
Total VPN Peers : 10
Dual ISPs : Disabled
VLAN Trunk Ports : 0
Shared License : Disabled
AnyConnect for Mobile : Disabled
AnyConnect for Cisco VPN Phone : Disabled
AnyConnect Essentials : Disabled
Advanced Endpoint Assessment : Disabled
UC Phone Proxy Sessions : 2
Total UC Proxy Sessions : 2
Botnet Traffic Filter : Disabled
This platform has a Base license.
Encryption hardware device : Cisco ASA-5505 on-board accelerator (revision 0x0)
Boot microcode : CN1000-MC-BOOT-2.00
SSL/IKE microcode: CNLite-MC-SSLm-PLUS-2.03
IPSec microcode : CNlite-MC-IPSECm-MAIN-2.05
Cisco Adaptive Security Appliance Software Version 8.2(5)
****************************** Warning *******************************
This product contains cryptographic features and is
subject to United States and local country laws
governing, import, export, transfer, and use.
Delivery of Cisco cryptographic products does not
imply third-party authority to import, export,
distribute, or use encryption. Importers, exporters,
distributors and users are responsible for compliance
with U.S. and local country laws. By using this
product you agree to comply with applicable laws and
regulations. If you are unable to comply with U.S.
and local laws, return the enclosed items immediately.
A summary of U.S. laws governing Cisco cryptographic
products may be found at:
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
If you require further assistance please contact us by
sending email to export@cisco.com.
******************************* Warning *******************************
Copyright (c) 1996-2011 by Cisco Systems, Inc.
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
...
Cryptochecksum (unchanged): fb24433f 69d6434b bcd05613 3db1ccab
Type help or '?' for a list of available commands.
superbotasa5505>
04-25-2012 11:21 AM
Sounds like your configuration register is wrong.
Show version will tell you what it is.
Here's a great article that helps you understand the configuration register of an ASA.
http://blog.ipexpert.com/2010/05/27/understanding-the-asa-configuration-register/
Ven
04-25-2012 11:39 AM
Thanks for the help
superbotasa5505> show ver
Cisco Adaptive Security Appliance Software Version 8.2(5)
Device Manager Version 6.4(5)
Compiled on Fri 20-May-11 16:00 by builders
System image file is "disk0:/asa825-k8.bin"
Config file at boot was "startup-config"
superbotasa5505 up 26 secs
Hardware: ASA5505, 512 MB RAM, CPU Geode 500 MHz
Internal ATA Compact Flash, 128MB
BIOS Flash Firmware Hub @ 0xffe00000, 1024KB
Encryption hardware device : Cisco ASA-5505 on-board accelerator (revision 0x0)
Boot microcode : CN1000-MC-BOOT-2.00
SSL/IKE microcode: CNLite-MC-SSLm-PLUS-2.03
IPSec microcode : CNlite-MC-IPSECm-MAIN-2.05
0: Int: Internal-Data0/0 : address is 5057.a8ca.98bd, irq 11
1: Ext: Ethernet0/0 : address is 5057.a8ca.98b5, irq 255
2: Ext: Ethernet0/1 : address is 5057.a8ca.98b6, irq 255
3: Ext: Ethernet0/2 : address is 5057.a8ca.98b7, irq 255
4: Ext: Ethernet0/3 : address is 5057.a8ca.98b8, irq 255
5: Ext: Ethernet0/4 : address is 5057.a8ca.98b9, irq 255
6: Ext: Ethernet0/5 : address is 5057.a8ca.98ba, irq 255
7: Ext: Ethernet0/6 : address is 5057.a8ca.98bb, irq 255
8: Ext: Ethernet0/7 : address is 5057.a8ca.98bc, irq 255
9: Int: Internal-Data0/1 : address is 0000.0003.0002, irq 255
10: Int: Not used : irq 255
11: Int: Not used : irq 255
Licensed features for this platform:
Maximum Physical Interfaces : 8
VLANs : 3, DMZ Restricted
Inside Hosts : 10
Failover : Disabled
VPN-DES : Enabled
VPN-3DES-AES : Enabled
SSL VPN Peers : 2
Total VPN Peers : 10
Dual ISPs : Disabled
VLAN Trunk Ports : 0
Shared License : Disabled
AnyConnect for Mobile : Disabled
AnyConnect for Cisco VPN Phone : Disabled
AnyConnect Essentials : Disabled
Advanced Endpoint Assessment : Disabled
UC Phone Proxy Sessions : 2
Total UC Proxy Sessions : 2
Botnet Traffic Filter : Disabled
This platform has a Base license.
Serial Number: JMX1612407B
Running Activation Key: 0xf42aea70 0xbcf977c7 0xd411b978 0xafcc38a0 0xc32232b6
Configuration register is 0x0
Configuration has not been modified since last system restart.
04-25-2012 12:26 PM
The default value is 0x1, which boots from the local image and startup configuration.
If you change it to 0x1, you'll get the result you're looking for.
enable
config t
config-register 0x1
end
wri
reload
This should put you back where you want to be.
Ven
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide