Does the resetconfig wipe all of my data off of the appliances? Getting ready to send some appliances to surplus and need to wipe all data. Just wondering if it's hidden in an old partition or anything.
The best practices procedure for wiping the data off the appliance before returning would be 'diagnostic' and 'reload'.
I would suggest FTP into the IronPort appliance and go into the following directories and delete all the logs:
The mail_logs directory may take a bit to clear, depending on how the mail_logs is configured in 'logconfig'.
'reload' does a COMPLETE reinstall of the system back to pre-SSW state. It means that all settings are lost and the Management IP is changed back to 192.168.42.42 and the admin password is changed back to default as well. Customers need to run SSW again.
Therefore, the command deletes all customer data (all configuration and network settings, logs, archived scheduled reports, users info, etc.), except Feature Keys.
Before you run this command, please run saveconfig, and ftp the config file off of the appliance, as it will be deleted on reset.
*IF* a customer requests - they can keep the hard drives from the appliances - so that they can degauss, wipe, shred, etc., on their own - and they can fulfill any security/policy as so directed from their company.
This can be requested through your Cisco Account Manager (CAM) or Account Manger (AM) responsible for the RMA. They have the full steps and documents needed in order to have this completed.
So, reset the configuration back to factory, then FTP'd into the appliance and found all kinds of directories containing logs, reports,etc. Deleted everything but get permission denied on a few folders that contain old reports of ours. Could not find a way to delete them.
Is there a way to boot a C series or M series off of USB so we can run a wipe utility?
Our requirements are to remove all or our data. If there isn't a way to boot off of USB so we can run a wipe utility then we will likely shred the disks. Don't have another server of this disk sled type readily available to put into a different machine.
Second option is to use "revert" command which will basically revert back to one or two version with blank setting. The current version partition will be wiped out. The revet command will only retain (some time it does not) netowork setting which can used wither using reload for factory reset.
That is probably best answered from a Account/Sales Ops, or re-seller side. I am not aware of the process and retribution for the return of appliances. I do know they had in the past offered discounts on the newer hardware when purchased. You would be better served to check w/ them.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :