mất file cấu hình asa 5500

[techsupport]

Các bạn cho mình hỏi làm sao copy lại file cấu hình ASA khi nó boot vào dấu nhắc này
rommon #1>

vì bị mất file config
thanks.

[phamminhtuan]

Chào bạn,

ASA của bạn lúc nào cũng boot vào rommon hay có thể boot vào bình thường mà chỉ bị mất file cấu hình cũ.

[dangquangminh]

Có thể bạn bị mất file IOS. Hãy làm theo qui trình dưới đây nếu bạn đang bị mất IOS.
--------------------------
Upgrading an Image from the Monitor Prompt


If the firewall has no operating system image, you can still download one via TFTP from the monitor prompt. At this point, the firewall is not inspecting any traffic and has no running configuration. Follow these steps to download a firewall operating system image via TFTP:

1. Make sure a TFTP server is available.

The TFTP server should have the firewall image available for downloading. You can obtain TFTP server software from a variety of sources:
• Solarwinds.net TFTP server (http://www.solarwinds.net; free)
• Kiwi CatTools 2.x, Kiwi Enterprises (http://www.kiwisyslog.com; commercial
package)
• Tftpd32 (http://tftpd32.jounin.net; free)
• tftpd, standard on UNIX systems (free)

2. Boot the firewall to the monitor prompt.

Just after booting the firewall, you can press the Esc or Break key to break the normal bootup sequence. Be sure to do this when the following output and prompt are displayed:
[I]Cisco Systems ROMMON Version (1.0(10)0) #0: Fri Mar 25 23:02:10 PST 2005
Platform ASA5510
Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.
[The ESC key was pressed here]
Boot interrupted.
Management0/0
Ethernet auto negotiation timed out.
Interface-4 Link Not Established (check cable).
Default Interface number-4 Not Up
Use ? for help.

3. Identify the TFTP server.

a. Identify the firewall interface where the TFTP server is located:
ASA monitor> interface name
rommon #1> interface 0
Invalid interface name argument, Valid arguments are:
Ethernet0/0
Ethernet0/1
Ethernet0/2
Ethernet0/3
Management0/0
interface <name> ethernet interface port
rommon #1>

b. Assign an IP address to the interface:
monitor> address ip-address

c. Make sure that the firewall can reach the TFTP server.
The firewall must be able to reach the server with a minimal amount of routing. You can use the following monitor command to test reachability:
monitor> ping ip-address

d. Define the TFTP server's IP address:
monitor> server ip-address

e. Define the image filename to fetch:
monitor> file filename
rommon #0>

4. Copy the image from the TFTP server:
monitor> tftpdnld

5. Reload the firewall to run the new image:
monitor> reload

Nếu làm khó khăn quá thì bạn làm theo chương 4 trong quyển sách bên dưới.

Code:

http://rapidshare.com/files/156011821/Cisco.Press.Cisco.ASA.PIX.and.FWSM.Handbook.2nd.Edition.Aug.2007.eBook-DDU.rar

[techsupport]

Có thể bạn bị mất file IOS. Hãy làm theo qui trình dưới đây nếu bạn đang bị mất IOS.
--------------------------
Upgrading an Image from the Monitor Prompt


If the firewall has no operating system image, you can still download one via TFTP from the monitor prompt. At this point, the firewall is not inspecting any traffic and has no running configuration. Follow these steps to download a firewall operating system image via TFTP:

1. Make sure a TFTP server is available.

The TFTP server should have the firewall image available for downloading. You can obtain TFTP server software from a variety of sources:
• Solarwinds.net TFTP server (http://www.solarwinds.net; free)
• Kiwi CatTools 2.x, Kiwi Enterprises (http://www.kiwisyslog.com; commercial
package)
• Tftpd32 (http://tftpd32.jounin.net; free)
• tftpd, standard on UNIX systems (free)

2. Boot the firewall to the monitor prompt.

Just after booting the firewall, you can press the Esc or Break key to break the normal bootup sequence. Be sure to do this when the following output and prompt are displayed:
[I]Cisco Systems ROMMON Version (1.0(10)0) #0: Fri Mar 25 23:02:10 PST 2005
Platform ASA5510
Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.
[The ESC key was pressed here]
Boot interrupted.
Management0/0
Ethernet auto negotiation timed out.
Interface-4 Link Not Established (check cable).
Default Interface number-4 Not Up
Use ? for help.

3. Identify the TFTP server.

a. Identify the firewall interface where the TFTP server is located:
ASA monitor> interface name
rommon #1> interface 0
Invalid interface name argument, Valid arguments are:
Ethernet0/0
Ethernet0/1
Ethernet0/2
Ethernet0/3
Management0/0
interface <name> ethernet interface port
rommon #1>

b. Assign an IP address to the interface:
monitor> address ip-address

c. Make sure that the firewall can reach the TFTP server.
The firewall must be able to reach the server with a minimal amount of routing. You can use the following monitor command to test reachability:
monitor> ping ip-address

d. Define the TFTP server's IP address:
monitor> server ip-address

e. Define the image filename to fetch:
monitor> file filename
rommon #0>

4. Copy the image from the TFTP server:
monitor> tftpdnld

5. Reload the firewall to run the new image:
monitor> reload

Nếu làm khó khăn quá thì bạn làm theo chương 4 trong quyển sách bên dưới.

Code:

http://rapidshare.com/files/156011821/Cisco.Press.Cisco.ASA.PIX.and.FWSM.Handbook.2nd.Edition.Aug.2007.eBook-DDU.rar

thanks bạn
mình đã làm xong hết rồi nhưng bậy giờ thì asdm không chạy được.
giúp mình với.

[phamminhtuan]

Chào bạn,

Bạn down ASDM về rồi làm theo hướng dẫn này

http://vnpro.org/forum/showthread.php?t=26551&page=2

[techsupport]

Chào bạn,

Bạn down ASDM về rồi làm theo hướng dẫn này

http://vnpro.org/forum/showthread.php?t=26551&page=2

cám ơn bạn
nhưng mình vẫn không thấy hướng dẫn.
tuy nhiên mình đã làm được rồi chỉ với 1 câu lệnh là:
asa(config)#configure factory-default
là nó tự động load ASDM luôn
thanks các bạn