PIX 501 running 6.3 startup-config

Answered Question
Apr 9th, 2008
User Badges:

I have several remote PIX 501s that have VPNs back to my location. I have remote telnet access via the VPN connection. I would like to change the configurations so the VPNs terminate to my ASA rather than my older 3030. Is there anyway to modify the startup-config on a PIX 501 running 6.3? There is no copy tftp start-up command, only a configure net command which merges the config to running. This wont work for me since I need to also change inside IP addresses which is how I am connected. I really need to change startup config and reload.

Thanks. Doug

Correct Answer by acomiskey about 8 years 11 months ago

Try...


ca gen rsa key 1024

ssh 0 0 outside

Correct Answer by srue about 8 years 11 months ago

the best solution (and easiest) i've found for that situation is to configure ssh to the outside interface from just the IP you're coming from...

then ssh into it and change peers, your ssh session won't be disconnected then, and you can still troubleshoot remotely.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Correct Answer
srue Wed, 04/09/2008 - 09:03
User Badges:
  • Blue, 1500 points or more

the best solution (and easiest) i've found for that situation is to configure ssh to the outside interface from just the IP you're coming from...

then ssh into it and change peers, your ssh session won't be disconnected then, and you can still troubleshoot remotely.

dbuttry Thu, 04/10/2008 - 07:15
User Badges:

Thanks for your reply however I can not get that to work. I even tried telnet (i know thats not secure) and still can not connect to it. Even tried changing "management-access inside" to outside and locked myself out of one until I had them reboot. Any ideas? Thanks!

Correct Answer
acomiskey Thu, 04/10/2008 - 07:19
User Badges:
  • Green, 3000 points or more

Try...


ca gen rsa key 1024

ssh 0 0 outside

dbuttry Thu, 04/10/2008 - 07:35
User Badges:

Thanks so much! Once I figured out to use "pix" as the username and {telnet password} as the password, I'm in!


srue Thu, 04/10/2008 - 09:37
User Badges:
  • Blue, 1500 points or more

yeah, the username pix throws off a lot of people....

thanks for the rating btw.

Actions

This Discussion