What should I do when the firewall enters the monitor mode after it is started?
Why? How can this problem be solved?
In this case, do not worry, or contact your agent, because it is far from near-fire hydrolysis. After reading this article, I believe you will be able to solve it.
Under normal circumstances, when the firewall is started, when a prompt is prompted to press the button to go to monitor, we press ESC to enter the monitor mode, however, if the firewall does not have a system or the system is lost, it will enter the monitor mode when it is started. The following causes are generally involved:
1. No system or system loss.
2. the boot program is damaged.
3. physical damage.
At this time, the firewall is no longer able to handle any function. Do not worry, find out your supporting CD, and then find the firewall system file, which is generally a binfile, there are many searches on the CD, find the most suitable one, which is generally the highest version. For example, pix704.bin.
Then, search for a Cisco TFTP server on the internet, put the binfile in the root directory of the server, and start it on any machine on the LAN.
Follow these steps:
Monitor> address 192.1.1.1 -- set the firewall IP Address
Address 192.1.1.1
Monitor> server 192.1.1.2 -- set the IP address of the TFTP Server
Server 192.1.1.2
Monitor> Ping 192.1.1.2 -- check whether Ping is successful
Sending 5, 100-byte 0x7970 ICMP echoes to 10.32.2.78, timeout is 4 seconds:
!!!!!
Success rate is 100 percent (5/5)
Monitor> file pix704.bin -- declare the full name of the binfile you downloaded
File pix704.bin
Monitor> TFTP -- start filling
TFTP pix704.bin@192.168.1.80 ...........................
Wait patiently until the ">" symbol in the non-Permission mode appears.
How is it? Get familiar with it!
Next, go to the system, Dir, and check if there is any system. If there is no system, you need to test the system bind file in flash. It can be used normally after it is started.
Pixfirewall> en
Password:
Pixfirewall # Con t
Pixfirewall (config) # interface ethernet1 -- enter port Mode
Pixfirewall (config-If) # IP address 192.1.11 255.255.255.0 -- configure the IP address of the E1 Port
Pixfirewall (config-If) # nameif inside -- configure the E1 port as the inside port of the firewall
Info: security level for "Inside" set to 100 by default.
Pixfirewall (config-If) # No shutdown -- activate the inside Port
Pixfirewall (config-If) # Ping 192.1.1.2 -- Test
Sending 5, 100-byte ICMP echos to 192.1.1.2, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/AVG/max = 1/1/1 MS
Pixfirewall (config-If) # exit -- exit port Mode
Pixfirewall (config) # copy tftp flash: -- copybin File
Address or name of remote host []? 192.1.1.2 -- IP address of the TFTP Server
Source filename []? Pix704.bin -- file name
Destination filename [pix704.bin]? Pix704.bin -- confirm
Accessing TFTP: // 192.1.1.2/pix704.bin ...!! -- Start copy and wait patiently
Writing File FLASH: pix704.bin ...!!!!!!!!!!!!!
5124096 bytes copied in 82.80 secs (62488 Bytes/sec)
Pixfirewall (config) # reload -- upgrade complete. Restart !!!!!!! PS. The first start time will take a little longer. Don't worry.
Pai_^