HELP! password recovery for pix 501

Unanswered Question
Jul 17th, 2007

I have followed the instructions on this link to the letter http://www-tss.cisco.com/eservice/compass/common/activities/password_PIX.htm#sample and my firewall will actually recieve the bin file but will not load and refuses to give me the y/n prompt to erase the password.Please I need help.I also learnt that this procedure can only be used on a 515 pix,i need what can work on a 501

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
geraghtyconor Tue, 01/15/2008 - 07:59

No, this does not work - i get the same. In fact i tftp the .bin file and then get an error - my pck tracer from the tftp server demonstrates the pix is declaring that it's event log is full.

All 12 blocks of .bin file downloads and i get an error messg from the pix. HERE is info from the pix and 5 or 6 packets traced from my TFTP server

Config from PIX (running 6.3 (5))

monitor> server 10.110.0.250

server 10.110.0.250

monitor> gateway 10.110.1.0

gateway 10.110.1.0

monitor> interface 1

0: i8255X @ PCI(bus:0 dev:17 irq:9 )

1: i8255X @ PCI(bus:0 dev:18 irq:10)

Using 1: i82557 @ PCI(bus:0 dev:18 irq:10), MAC: 0016.c7f9.e440

monitor> address 10.110.45.109

address 10.110.45.109

monitor> file np63.bin

file np63.bin

monitor>

monitor> ping 10.110.0.250

Sending 5, 100-byte 0x89b6 ICMP Echoes to 10.110.0.250, timeout is 4 seconds:

!!!!!

Success rate is 100 percent (5/5)

monitor> tftp

tftp [email protected] via 10.110.1.0.............

TFTP failed (return:-10 arg:0x0)

monitor>

Packets traced from TFTP Server (I use Solar winds TFTP server)

No. Time Source Destination Protocol Info

1047 55.578984 10.110.45.109 10.110.0.250 TFTP Acknowledgement, Block: 13

Frame 1047 (60 bytes on wire, 60 bytes captured)

Ethernet II, Src: Cisco_3b:4d:67 (00:0a:f4:3b:4d:67), Dst: Dell_97:be:b8 (00:13:72:97:be:b8)

Internet Protocol, Src: 10.110.45.109 (10.110.45.109), Dst: 10.110.0.250 (10.110.0.250)

User Datagram Protocol, Src Port: 42638 (42638), Dst Port: tftp (69)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1048 55.579028 10.110.45.109 10.110.0.250 TFTP Acknowledgement, Block: 13

Frame 1048 (60 bytes on wire, 60 bytes captured)

Ethernet II, Src: Cisco_3b:4d:29 (00:0a:f4:3b:4d:29), Dst: Dell_97:be:b8 (00:13:72:97:be:b8)

Internet Protocol, Src: 10.110.45.109 (10.110.45.109), Dst: 10.110.0.250 (10.110.0.250)

User Datagram Protocol, Src Port: 42638 (42638), Dst Port: tftp (69)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1049 55.579030 10.110.0.250 10.110.45.109 TFTP Error Code, Code: Not defined, Message:

pjhenriqs Tue, 01/15/2008 - 08:53

Hi,

I was having a weird issue with SolarWinds TFTP server a few days ago. I decided to try another TFTP server so I went and installed PumpkIN and it started working.

I don't know if it will solve your problem but if you try with another TFTP server you can determine where the problem is (the server or the PIX) :).

HTH

Paulo

geraghtyconor Tue, 01/15/2008 - 08:30

Rest of packets

Frame 1049 (89 bytes on wire, 89 bytes captured)

Ethernet II, Src: Dell_97:be:b8 (00:13:72:97:be:b8), Dst: Cisco_f9:e4:40 (00:16:c7:f9:e4:40)

Internet Protocol, Src: 10.110.0.250 (10.110.0.250), Dst: 10.110.45.109 (10.110.45.109)

User Datagram Protocol, Src Port: tftp (69), Dst Port: 42638 (42638)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1050 55.579945 10.110.45.109 10.110.0.250 TFTP Acknowledgement, Block: 13

Frame 1050 (60 bytes on wire, 60 bytes captured)

Ethernet II, Src: Cisco_f9:e4:40 (00:16:c7:f9:e4:40), Dst: Broadcast (ff:ff:ff:ff:ff:ff)

Internet Protocol, Src: 10.110.45.109 (10.110.45.109), Dst: 10.110.0.250 (10.110.0.250)

User Datagram Protocol, Src Port: 42638 (42638), Dst Port: tftp (69)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1051 55.579980 10.110.0.250 10.110.45.109 TFTP Error Code, Code: Not defined, Message:

Frame 1051 (89 bytes on wire, 89 bytes captured)

Ethernet II, Src: Dell_97:be:b8 (00:13:72:97:be:b8), Dst: Cisco_f9:e4:40 (00:16:c7:f9:e4:40)

Internet Protocol, Src: 10.110.0.250 (10.110.0.250), Dst: 10.110.45.109 (10.110.45.109)

User Datagram Protocol, Src Port: tftp (69), Dst Port: 42638 (42638)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1052 55.580228 10.110.45.109 10.110.0.250 TFTP Acknowledgement, Block: 13

Frame 1052 (60 bytes on wire, 60 bytes captured)

Ethernet II, Src: Cisco_3b:4d:67 (00:0a:f4:3b:4d:67), Dst: Dell_97:be:b8 (00:13:72:97:be:b8)

Internet Protocol, Src: 10.110.45.109 (10.110.45.109), Dst: 10.110.0.250 (10.110.0.250)

User Datagram Protocol, Src Port: 42638 (42638), Dst Port: tftp (69)

Trivial File Transfer Protocol

No. Time Source Destination Protocol Info

1053 55.580277 10.110.45.109 10.110.0.250 TFTP Acknowledgement, Block: 13

Actions

This Discussion