Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 2. Introduction to PIX Firewalls > Frequently Asked Questions

    Frequently Asked Questions

    The following Frequently Asked Questions, answered by the authors of this book, are designed to both measure your understanding of the concepts presented in this chapter and to assist you with real-life implementation of these concepts. To have your questions about this chapter answered by the author, browse to www.syngress.com/solutions and click on the “Ask the Author” form. You will also gain access to thousands of other FAQs at ITFAQnet.com.

    Q:How do I recover my password from my Cisco PIX firewall?
    A:The password recovery for the Cisco PIX requires you to download a program from Cisco for the exact PIX firewall you are recovering the password from. This program will be used either from a floppy drive on the older PIX firewalls like the 520 or from a TFTP server on newer PIX firewalls. You will need to press the ESC key within 10 seconds of booting the PIX. You will configure the interface, address, and TFTP server in monitor mode. You will also configure a gateway and the filename of the recovery tool. You will use the tftp command to start downloading the tool and you will be prompted to erase the passwords.
    Q:What are Cisco default passwords?
    A:The default Telnet password is cisco and the enable password is blank.
    Q:What is the default IP address for my Cisco PIX firewall?
    A:For the Cisco PIX 501, 506, 506E and the 515, the default IP address in the inside interface is 192.168.1.1 and the outside interface is configured to use DHCP from the ISP
    Q:How do I clear an existing configuration so I can start over?
    A:For the PIX 501 and 506, you can use the configure factory-default, which will put the PIX back to factory specifications including the IP addresses. You can also use the clear configuration and then wri memory to blank the startup configuration. A final option is to use the clear all command.
    Q:How do I upgrade my old Cisco PIX to 7.0 code?
    A:For the PIX 501 and 506, the word is sorry, you cannot upgrade to 7.0 yet. For the owners of the 515E, 525 and 535, you have to first upgrade to 6.3 from whatever version you are on and then you can upgrade to 7.0.
    Q:Does the 7.0 code on the Cisco PIX support IPv6?
    A:Yes, one of the features of the 7.0 code is that you can configure IPv6 either by enabling IPv6 processing or explicitly using an IPv6 address. To enable IPv6 processing on an interface, use the ipv6 enable command. To give an interface an IPv6 address, use the ipv6 address autoconfig.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial


      
    • Safari Books Online
    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint