Re: flash image

aksher · ‎09-29-2006

does a sec. appliance has the same image as that of the running image one among the multiple images in flash.or how does the flash image and running image become same after rebooting

oabduo983 · ‎09-29-2006

Hi Aksher,

Not sure if I understood your question correctly. There is only one image running on your security appliance, and it is stored in the flash. The flash also contains the configuration file. Once the Sec. Appliance boots up, it checks the image on the flash and boots from it, after the startup of the services the sec. appliance extracts the config file and displays the configuration as running config once you type (show run)... any editing you do on the config will be writing on your RAM (volatile memory) and in order to keep it in case you switch off your box, you need to save it with the (wr mem) command...

I hope this helps... please rate if it does!

All the best

Osama

aksher · ‎10-01-2006

then what are these bin files.........

6 -rw- 43028 09:53:20 Dec 09 2005 WWL.jpg

7 -rw- 0 16:00:24 Jan 29 2006 nooslasa01

10 -rw- 5958324 11:29:32 Nov 24 2005 asdm504.bin

11 -rw- 5437440 11:34:26 Nov 25 2005 asa704-k8.bin

12 -rw- 18906 12:47:56 Sep 26 2006 islfw-asa01

13 -rw- 6746112 20:31:36 Feb 15 2006 asa711-k8.bin

14 -rw- 7552312 20:37:38 Feb 12 2006 asdm511.bin

15 -rw- 2160398 20:38:30 Feb 13 2006 securedesktop-asa

16 drw- 0 20:39:32 Feb 13 2006 sdesktop

18 -rw- 6764544 14:09:40 May 02

2006 asa712-k8.bin

19 -rw- 7495680 14:22:18 May 03

006 asdm512.bin

20 -rw- 8202240 17:22:26 Jun 21 2006 asa721-k8.bin

21 -rw- 5539756 17:23:52 Jun 3

2006 asdm521.bin

62881792 bytes total (6909952 bytes free)

all are individual images know?

jwalker · ‎10-02-2006

These are all different images that are stored on your flash. You can delete the ones you are not using by typing delete then following the prompts. Also, if you want to see which image you are currently running type sho boot. This displays the image that your PIX/ASA is currently loading on reboot. You can change this by typing boot system . Additionally, you can see the current ASDM image by typing show asdm image. To change asdm, type asdm image .

If this helps, please rate.

Thanks.

Jay

aksher · ‎10-02-2006

when i use show flash and show boot both the sys image and running conf are different images..

oabduo983 · ‎10-02-2006

Hi Aksher,

You will need to remove any (boot system image) statment other than the one pointing to the image you want to boot from you can also delete any images which you are not using from your flash...

BR

aksher · ‎10-03-2006

ASA01P# sh boot

BOOT variable = disk0:/asa721-k8.bin

Current BOOT variable = disk0:/asa721-k8.bin

CONFIG_FILE variable = disk0:/nooslfw-asa01

Current CONFIG_FILE variable = disk0:/nooslfw-asa01

from the above does the BOOT variable mean the sys image and Current BOOT variable mean startup conf image

aksher · ‎10-03-2006

ASA01P# sh boot

BOOT variable = disk0:/asa721-k8.bin

Current BOOT variable = disk0:/asa721-k8.bin

CONFIG_FILE variable = disk0:/nooslfw-asa01

Current CONFIG_FILE variable = disk0:/nooslfw-asa01

from the above does the BOOT variable mean the sys image and Current BOOT variable mean startup conf image

aksher · ‎10-03-2006

ASA01P# sh boot

BOOT variable = disk0:/asa721-k8.bin

Current BOOT variable = disk0:/asa721-k8.bin

CONFIG_FILE variable = disk0:/nooslfw-asa01

Current CONFIG_FILE variable = disk0:/nooslfw-asa01

from the above does the BOOT variable mean the sys image and Current BOOT variable mean startup conf image

aksher · ‎10-03-2006

ASA01P# sh boot

BOOT variable = disk0:/asa721-k8.bin

Current BOOT variable = disk0:/asa721-k8.bin

CONFIG_FILE variable = disk0:/nooslfw-asa01

Current CONFIG_FILE variable = disk0:/nooslfw-asa01

from the above does the BOOT variable mean the sys image and Current BOOT variable mean startup conf image

a.kiprawih · ‎10-03-2006

Hi aksher,

Yes, you're right. It says use "asa721-k8.bin

" as image to boot ASA, and use "nooslfw-asa01" as startup config.

1. BOOT variable - will list any available system image file in flash that can be used during boot-up process. If you have 2 image files, but you only specify 1 image file in BOOT variable, you can only see the file you specified, not both. You can store multiple image files as long as you have enough flash space, and can specify multiple bootvar. This act like a backup in case you lost the primary image file, i.e accidentally deleted.

2. Current BOOT variable = list current ASA image file to will be used to boot the unit after reload/power on. If the image does not exists, ASA will boot/use the next available image, as listed in #1.

3. CONFIG_FILE variable = list of available startup config file stored in flash

4. Current CONFIG_FILE variable = list of startup config file used by ASA when booting up. To view the config, use 'show start' command.

So, your current bootvar setup:

BOOT variable listed only "asa721-k8.bin" file.

Current BOOT variable -> ASA will use/load "asa721-k8.bin" image during startup/power on

CONFIG_FILE variable -> flash only has 1 config file as startup, called "nooslfw-asa01"

Current CONFIG_FILE variable -> ASA will use "nooslfw-asa01" as startup config file

Hope this help. Pls rate all post(s).

Cheers!

AK

aksher · ‎10-03-2006

but in case of IOS device if the flash load is the default the IOS image is loaded from flash but conf file will be loaded from nvram whereas in case of firewall both are loaded from flash but with different images

a.kiprawih · ‎10-03-2006

Yes, firewall load files from its flash, not any external server (i.e tftp). This is for security reason due to the nature of its existense (securiy device, eliminate risk from loading tampered config file from tftp server).

http://www.cisco.com/en/US/products/ps6120/products_command_reference_chapter09186a00805fb9ab.html#wp1330712

IOS devices (router/switch) on the other hand, is allowed to load image file (.bin) and startup config file either from flash or external tftp server.

Cheers!

AK