PIX 515E: Password Reset Utility Fails

Answered Question
Jun 14th, 2010

Hi folks!

Got  a Cisco PIX 515E firewall that I need to reset the password on. I've  downloaded the np70.bin password reset file from Cisco's web site and  placed it on a TFTP server. I can interrupt the boot process on the PIX  and get into the "monitor>" prompt, and I can successfully configure  networking and download the file via TFTP.

But once it goes to  load the file, it says it's initializing flashfs, gives a couple more  messages, and then says "Unable to open the startup configuration;  Probably the file system is corrupted" and it starts to reboot. Never  prompting for anything regarding the password. A complete log of the output from the time I start configuring it to the time it reboots is included below.

Any help would be  most appreciated.

- Tom

monitor> interface 0
0: i8255X @ PCI(bus:0 dev:14 irq:10)
1: i8255X @ PCI(bus:0 dev:13 irq:11)
2: i8255X @ PCI(bus:0 dev:17 irq:11)

Using 0: i82557 @ PCI(bus:0 dev:14 irq:10), MAC: 000e.833e.f25e
monitor> address 192.168.1.47
address 192.168.1.47
monitor> server 192.168.1.4
server 192.168.1.4
monitor> file np70.bin
file np70.bin
monitor> ping 192.168.1.4
Sending 5, 100-byte 0x5002 ICMP Echoes to 192.168.1.4, timeout is 4 seconds:
!!!!!
Success rate is 100 percent (5/5)
monitor> tftp
tftp [email protected]......................................................
................................................................................
................................................................................
......................................
Received 129024 bytes

Cisco PIX Security Appliance password tool (3.0) #0: Thu Jun  9 21:45:44 PDT 200
5

Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.
Using the startup configuration file flash:/startup-config
Unable to open the startup configuration
Probably the file system is corrupted



Rebooting....


CISCO SYSTEMS PIX FIREWALL
Embedded BIOS Version 4.3.207 01/02/02 16:12:22.73
Compiled by morlee
64 MB RAM

PCI Device Table.
Bus Dev Func VendID DevID Class              Irq
00  00  00   8086   7192  Host Bridge
00  07  00   8086   7110  ISA Bridge
00  07  01   8086   7111  IDE Controller
00  07  02   8086   7112  Serial Bus         9
00  07  03   8086   7113  PCI Bridge
00  0D  00   8086   1209  Ethernet           11
00  0E  00   8086   1209  Ethernet           10
00  11  00   8086   1229  Ethernet           11

Cisco Secure PIX Firewall BIOS (4.2) #0: Mon Dec 31 08:34:35 PST 2001
Platform PIX-515E
System Flash=E28F128J3 @ 0xfff00000

Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.
Reading 115200 bytes of image from flash.

PIX Flash Load Helper

Initializing flashfs...
flashfs[0]: 8 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 7562240
flashfs[0]: Bytes available: 8565760
flashfs[0]: Initialization complete.

Reading image flash:/image.bin
Launching image flash:/image.bin
################################################################################
################################################################################
###################################################################
64MB RAM

Total NICs found: 3
mcwa i82559 Ethernet at irq 10  MAC: 000e.833e.f25e
mcwa i82559 Ethernet at irq 11  MAC: 000e.833e.f25f
mcwa i82559 Ethernet at irq 11  MAC: 0002.b3d5.8988
BIOS Flash=am29f400b @ 0xd8000

Initializing flashfs...
flashfs[7]: 8 files, 3 directories
flashfs[7]: 0 orphaned files, 0 orphaned directories
flashfs[7]: Total bytes: 16128000
flashfs[7]: Bytes used: 7562240
flashfs[7]: Bytes available: 8565760
flashfs[7]: flashfs fsck took 8 seconds.
flashfs[7]: Initialization complete.


Licensed features for this platform:
Maximum Physical Interfaces  : 6
Maximum VLANs                : 25
Inside Hosts                 : Unlimited
Failover                     : Active/Active
VPN-DES                      : Enabled
VPN-3DES-AES                 : Disabled
Cut-through Proxy            : Enabled
Guards                       : Enabled
URL Filtering                : Enabled
Security Contexts            : 2
GTP/GPRS                     : Disabled
VPN Peers                    : Unlimited

This platform has an Unrestricted (UR) license.


Cisco PIX Security Appliance Software Version 8.0(4)

  ****************************** Warning *******************************
  This product contains cryptographic features and is
  subject to United States and local country laws
  governing, import, export, transfer, and use.
  Delivery of Cisco cryptographic products does not
  imply third-party authority to import, export,
  distribute, or use encryption. Importers, exporters,
  distributors and users are responsible for compliance
  with U.S. and local country laws. By using this
  product you agree to comply with applicable laws and
  regulations. If you are unable to comply with U.S.
  and local laws, return the enclosed items immediately.

  A summary of U.S. laws governing Cisco cryptographic
  products may be found at:
  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

  If you require further assistance please contact us by
  sending email to [email protected]
  ******************************* Warning *******************************

Copyright (c) 1996-2008 by Cisco Systems, Inc.

                Restricted Rights Legend

Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

                Cisco Systems, Inc.
                170 West Tasman Drive
                San Jose, California 95134-1706

....Device Manager image set, but not a valid image file flash:/asdm-61551.bin
*** Output from config line 254, "asdm image flash:/asdm-6..."
....
Cryptochecksum (unchanged): 4c77f97a 0cd207a0 40710a16 c7f15a82
Type help or '?' for a list of available commands.
NC-PIX1>
I have this problem too.
0 votes
Correct Answer by David White about 6 years 5 months ago

Email me (my username @cisco.com) and I can help you with the image to reformat the flash.

Sincerely,

David.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
easyadstom Mon, 06/14/2010 - 19:51

Thanks for the information. Unfortunately, however, that's not an option in this case. This is a firewall that was purchased used and which does not have any active support contract with Cisco. Therefore, I'm unable to call upon their technical support or access files that are not publicly available.

Correct Answer
David White Mon, 06/14/2010 - 20:08

Email me (my username @cisco.com) and I can help you with the image to reformat the flash.

Sincerely,

David.

easyadstom Tue, 06/15/2010 - 17:44

Thanks, David! The password reset utility you e-mailed me for version 8 of the operating system worked like a charm.

smeisscom Sat, 06/26/2010 - 07:20

I am having the same problem with Cisco PIX525.

monitor> address 192.168.0.201
address 192.168.0.201
monitor> server 192.168.0.200
server 192.168.0.200
monitor> file np70.bin
file np70.bin
monitor> tftp
tftp [email protected].....................................................
................................................................................
................................................................................
........................................
Received 129024 bytes

Cisco PIX Security Appliance password tool (3.0) #0: Thu Jun  9 21:45:44 PDT 200
5

Initializing flashfs...
flashfs[0]: 11 files, 3 directories
flashfs[0]: 0 orphaned files, 0 orphaned directories
flashfs[0]: Total bytes: 16128000
flashfs[0]: Bytes used: 13829120
flashfs[0]: Bytes available: 2298880
flashfs[0]: Initialization complete.
Using the startup configuration file flash:/image.bin
Unable to open the startup configuration
Probably the file system is corrupted

Rebooting....

Could you please help, David?

my email: phamvudung at gmail.com

Thank you!

David White Mon, 06/28/2010 - 09:23

I'm posting the latest version of the PIX Password Reset Utility.  If you are having trouble resetting your password, please download it and give it a try.

Thanks,

David.

Actions

This Discussion