cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1743
Views
0
Helpful
11
Replies

Unable to use PIX 501 PDM

nicolas.guyot
Level 1
Level 1

Hello,

i am trying to setup an old PIX501. I had reset password, restored to factory settings.

I am able to go to https://192.168.1.1 but when popup open it loads a moment and nothing happens.

I tried it from W7, W XP but still nothing happens

Can you help me ?

11 Replies 11

John Blakley
VIP Alumni
VIP Alumni

Do you have a console cable to get into it locally?

HTH, John *** Please rate all useful posts ***

Yes, i used It to reset password and restore to factory settings successfuly.

Can you post your pdm config and sh flash?

HTH, John *** Please rate all useful posts ***

ok,

can you tell me how i can do it ?

thank you

sh conf

: Saved

: Written by enable_15 at 14:36:20.577 UTC Mon Feb 27 2012

PIX Version 6.3(5)

interface ethernet0 auto

interface ethernet1 100full

nameif ethernet0 outside security0

nameif ethernet1 inside security100

enable password 8Ry2YjIyt7RRXU24 encrypted

passwd 2KFQnbNIdI.2KYOU encrypted

hostname pixfirewall

fixup protocol dns maximum-length 512

fixup protocol ftp 21

fixup protocol h323 h225 1720

fixup protocol h323 ras 1718-1719

fixup protocol http 80

fixup protocol rsh 514

fixup protocol rtsp 554

fixup protocol sip 5060

fixup protocol sip udp 5060

fixup protocol skinny 2000

fixup protocol smtp 25

fixup protocol sqlnet 1521

fixup protocol tftp 69

names

pager lines 24

mtu outside 1500

mtu inside 1500

ip address outside dhcp setroute

ip address inside 192.168.1.1 255.255.255.0

ip audit info action alarm

ip audit attack action alarm

pdm logging informational 100

pdm history enable

arp timeout 14400

global (outside) 1 interface

nat (inside) 1 0.0.0.0 0.0.0.0 0 0

timeout xlate 0:05:00

timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00

timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00

timeout sip-disconnect 0:02:00 sip-invite 0:03:00

timeout uauth 0:05:00 absolute

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ max-failed-attempts 3

aaa-server TACACS+ deadtime 10

aaa-server RADIUS protocol radius

aaa-server RADIUS max-failed-attempts 3

aaa-server RADIUS deadtime 10

aaa-server LOCAL protocol local

http server enable

http 192.168.1.0 255.255.255.0 inside

no snmp-server location

no snmp-server contact

snmp-server community public

no snmp-server enable traps

floodguard enable

telnet timeout 5

ssh timeout 5

console timeout 0

dhcpd address 192.168.1.2-192.168.1.33 inside

dhcpd lease 3600

dhcpd ping_timeout 750

dhcpd auto_config outside

dhcpd enable inside

terminal width 80

Cryptochecksum:3c000401612875053b7970b424c72912

Can you post "sh flash" or "dir"?

HTH, John *** Please rate all useful posts ***

pixfirewall# sh flash

flash file system:  version:3  magic:0x12345679

  file 0: origin:       0 length:1978424

  file 1: origin: 2097152 length:1900

  file 2: origin: 2228224 length:3540

  file 3: origin: 2359296 length:3152452

  file 4: origin:       0 length:0

  file 5: origin: 7864320 length:308

hmmm...that didn't help much...what about a dir?

Otherwise, I reread your OP. If you're getting to the point of the PDM loading, it's probably not a problem of you not having the files on the box. You would simply not get connected or get a denial. If you're seeing it load, but nothing happens, the most common problem is the java version that you're running on your box. Unfortunately, I can't tell you what versions are good or bad...it's sometimes just a luck of the draw. Do you have other boxes that you could try? I also seem to remember that there was a way of controlling who could run the PDM. Try this:

config t

pixfirewall (config) # pdm ?

Can you post the results of this?

HTH, John *** Please rate all useful posts ***

pixfirewall(config)# pdm ?

Usage:  pdm disconnect

        pdm history enable

        pdm logging [ []]

        pdm location

        pdm group

        pdm group reference

        show pdm history [view {all|12h|5d|60m|10m}] [snapshot]

                [feature {all|blocks|cpu|failover|ids|interface |

                memory|perfmon|sas|tunnels|xlates}] [pdmclient]

        show pdm logging

        show pdm sessions

        clear pdm [location|group|logging]

thank you for your help !

you should be right with java version problem.

i will try to install very old version and test it

Ok, it needs Java 5 to work

Thank you for your help

Glad to hear it...

Please rate all helpful posts...

HTH, John *** Please rate all useful posts ***
Review Cisco Networking for a $25 gift card