PIX启动是考FLOOPY把IMAGE读到RAM里去的 Rebooting.... 如果把里面的82559网卡拿出那么他会检测不到硬件而不段REBOOT Cisco Secure PIX Firewall BIOS (3.6) Booting Floppy .................................. PIX floppy loader (3.0) #0: Mon Oct 2 07:02:43 PDT 2000 Reading installation media............. PIX floppy loader (3.0) #0: Mon Oct 2 07:02:43 PDT 2000 Reading installation media..................................... PIX admin loader (3.0) #0: Mon Oct 2 07:02:44 PDT 2000 Flash=i28F640J5 Flash version 4.4.7, Install version 4.4.7 Do you want me to install new version onto flash? No loading from flash... 128MB RAM Flash=i28F640J5 @ 0x300 mcwa i82559 Ethernet at irq 11 MAC: 0002.b308.a0c6 mcwa i82559 Ethernet at irq 10 MAC: 0002.b326.1a09 pixfirewall# show int eth0 interface ethernet0 "outside" is up, line protocol is downHardware is “”“i82559”“”“ ethernet, address is 0002.b308.a0c6IP address 127.0.0.1, subnet mask 255.255.255.255MTU 1500 bytes, BW 10000 Kbit half duplex 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 packets output, 0 bytes, 0 underruns 0 unicast rpf drops 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier pixfirewall#ISA上的那快东西确定是FLASH无疑了 现在只要按照以下方法就可以把X86变成标标准准的一台PIX520了 下载rawrite.exe,pix529.bin,bh529.bin C:\>rawrite RaWrite 1.2 - Write disk file to raw floppy diskette Enter source file name: bh59.bin Enter destination drive: a: Please insert a formatted diskette into drive A: and press -ENTER- : Number of sectors per track for this disk is 18. Writing image to drive A:. Press ^C to abort. Track: 11 Head: 1 Sector: 16 Done. C:\>0 然后就可以利用floopy进入monitor模式下 monitor> interface 1 0: i8255X @ PCI(bus:0 dev:14 irq:10) 1: i8255X @ PCI(bus:0 dev:13 irq:11) Using 1: i82557 @ PCI(bus:0 dev:13 irq:11), MAC: 0002.b945.a23c monitor> address 172.18.124.154 address 172.18.124.154 monitor> server 172.18.125.3 server 172.18.125.3 monitor> file pix611.bin file pix611.bin monitor> ping 172.18.125.3 Sending 5, 100-byte 0xcde2 ICMP Echoes to 172.18.125.3, timeout is 4 seconds: !!!!! Success rate is 100 percent (5/5) monitor> tftp tftp pix611.bin@172.18.125.3.......................................... Received 2562048 bytes Cisco Secure PIX Firewall admin loader (3.0) #0: Tue Dec 517:35:46 PST 2000 System Flash=E28F128J3 @ 0xfff00000 BIOS Flash=am29f400b @ 0xd8000 Flash version 6.1.1, Install version 6.1.1 Do you wish to copy the install image into flash? y Installing to flash Serial Number: 480380761 (0x1ca20759) Activation Key: 760754d0 39f62229 a4a0245f b5b87e80 Do you want to enter a new activation key? n Writing 2469944 bytes image into flash... 然后A:启动 ................. Firewall>enable Firewall# Firewall# 注意几点 1)安装的时候和OLIVE没区别,显示器上没进度条 2)安装的时候要有ISA或PCI接口的FLASH卡,最好是INTEL的 3)安装的时候PCI上要有2块82550系列的网卡 Good luck关键是那个flash卡究竟长的什么样子??PCI CF卡不知是否可以
没有bh59.bin 阿
look,cfII-pci,但可能是只读的
QUOTE (cloudq @ Jul 12 2004, 03:21 PM)
PIX启动是考FLOOPY把IMAGE读到RAM里去的 Rebooting.... 如果把里面的82559网卡拿出那么他会检测不到硬件而不段REBOOT Cisco Secure PIX Firewall BIOS (3.6) Booting Floppy .................................. PIX floppy loader (3.0) #0: Mon Oct 2 07:02:43 PDT 2000 Reading installation media............. PIX floppy loader (3.0) #0: Mon Oct 2 07:02:43 PDT 2000 Reading installation media..................................... PIX admin loader (3.0) #0: Mon Oct 2 07:02:44 PDT 2000 Flash=i28F640J5 Flash version 4.4.7, Install version 4.4.7 Do you want me to install new version onto flash? No loading from flash... 128MB RAM Flash=i28F640J5 @ 0x300 mcwa i82559 Ethernet at irq 11 MAC: 0002.b308.a0c6 mcwa i82559 Ethernet at irq 10 MAC: 0002.b326.1a09 pixfirewall# show int eth0 interface ethernet0 "outside" is up, line protocol is downHardware is “”“i82559”“”“ ethernet, address is 0002.b308.a0c6IP address 127.0.0.1, subnet mask 255.255.255.255MTU 1500 bytes, BW 10000 Kbit half duplex 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 packets output, 0 bytes, 0 underruns 0 unicast rpf drops 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier pixfirewall#ISA上的那快东西确定是FLASH无疑了 现在只要按照以下方法就可以把X86变成标标准准的一台PIX520了 下载rawrite.exe,pix529.bin,bh529.bin C:\>rawrite RaWrite 1.2 - Write disk file to raw floppy diskette Enter source file name: bh59.bin Enter destination drive: a: Please insert a formatted diskette into drive A: and press -ENTER- : Number of sectors per track for this disk is 18. Writing image to drive A:. Press ^C to abort. Track: 11 Head: 1 Sector: 16 Done. C:\>0 然后就可以利用floopy进入monitor模式下 monitor> interface 1 0: i8255X @ PCI(bus:0 dev:14 irq:10) 1: i8255X @ PCI(bus:0 dev:13 irq:11) Using 1: i82557 @ PCI(bus:0 dev:13 irq:11), MAC: 0002.b945.a23c monitor> address 172.18.124.154 address 172.18.124.154 monitor> server 172.18.125.3 server 172.18.125.3 monitor> file pix611.bin file pix611.bin monitor> ping 172.18.125.3 Sending 5, 100-byte 0xcde2 ICMP Echoes to 172.18.125.3, timeout is 4 seconds: !!!!! Success rate is 100 percent (5/5) monitor> tftp tftp pix611.bin@172.18.125.3.......................................... Received 2562048 bytes Cisco Secure PIX Firewall admin loader (3.0) #0: Tue Dec 517:35:46 PST 2000 System Flash=E28F128J3 @ 0xfff00000 BIOS Flash=am29f400b @ 0xd8000 Flash version 6.1.1, Install version 6.1.1 Do you wish to copy the install image into flash? y Installing to flash Serial Number: 480380761 (0x1ca20759) Activation Key: 760754d0 39f62229 a4a0245f b5b87e80 Do you want to enter a new activation key? n Writing 2469944 bytes image into flash... 然后A:启动 ................. Firewall>enable Firewall# Firewall# 注意几点 1)安装的时候和OLIVE没区别,显示器上没进度条 2)安装的时候要有ISA或PCI接口的FLASH卡,最好是INTEL的 3)安装的时候PCI上要有2块82550系列的网卡 Good luck关键是那个flash卡究竟长的什么样子??PCI CF卡不知是否可以
so old
QUOTE (samhui @ Jul 18 2004, 11:39 PM)
so old
what is new ?还有: PIX Version 4.4(7) Compiled on Mon 02-Oct-00 07:07 by pixbuild PIX BIOS Cisco Secure PIX Firewall BIOS 需要专用的bios,没有啊 pixfirewall up 23 secs Hardware: SE440BX2, 128 MB RAM, CPU Pentium II 349 MHz 这个容易实现 Flash strata @ base 0x300 哪里去找? 0: ethernet0: address is 0002.b304.06e8, irq 11 1: ethernet1: address is 0002.b304.097f, irq 10 2: ethernet2: address is 0090.27bc.5acd, irq 9 这个也好办 Licensed Connections: 128 Serial Number: xxxxxxxx 还需要这个看看,怎么逐一解决?
现在知道只需要intel网卡就可以。。。用软盘可以进monitor我发现早期的软盘可以写下整个pix os这样子flash卡都不要了。。。。但是我只启动了一点(vm测试的)
理论上应该可以做的成功,一般没有做什么特别的加密处理。再努力!
有意讨论的朋友联系我qq:36046540
老大,我有环境可以一试.
老大,最好给个BIN的下载地址啊
我早都传到论坛ftp去了
QUOTE (cloudq @ Jul 20 2004, 01:37 PM)
我早都传到论坛ftp去了
没有bh59.bin啊!
名字变了。。最新的叫npxx.bin
不对吧?好象npxx.bin是用来清除口令的.
npxx.bin的确可以用来清除口令。。不过是用来进入monitor的