Use the following command to set the Boot parameter in cisco ASA test(config)# boot system disk0:/ASA702.bin test(config# exit After configuring the Cisco ASA to boot a specific image upon bootup, the running configuration needs to be saved to NVRAM,

To copy running config to NVRAM in Cisco ASA, use the following command testrouter# copy running-config startip-config

For reloading a Cisco ASA ,Just type Reload in the console just like shown below TEST# reload Proceed with reload? [confirm] <cr> *** *** — START GRACEFUL SHUTDOWN — Shutting down isakmp Shutting down File system ! Output omitted for brevity Loading disk0:/ASA702.bin… Booting… ################################################################################ ! Output omitted for brevity Cryptochecksum(unchanged): 13b1d99f 59fffda6 58618094 bd58950d [...]

The security appliance supports a number of file server types, including TFTP and FTP, to download a system image into flash (disk0). The image upgrade process uses the copy command followed by the name of the file transfer type. The copy command copies the specified files from the source location or URL to the destination [...]

How to configure Network Time Protocol in Cisco ASA Cisco ASA provides support for the Network Time Protocol (NTP) to synchronize the system clock with an NTP server. The device administrator does not need to update the system clock manually because the security appliance overrides the manual clock setting when it synchronizes the time with [...]

This is a snippet for the Cisco Pix firewall that create a ‘limited user’ account on the firewall itself. That user will have access to all ‘show’ diagnostic commands, as well as the ability to clear the error/usage counters on interfaces and to ping other devices. This configuration does the following things: Defines two user [...]

This is a snippet for the Cisco ASA firewall that permits active FTP sessions to pass through. This is the equivalent to the ‘fixup ftp’ commands of the previous PIX OS versions. For whatever reason this functionality was no longer enabled by default in my Cisco ASA 5510 [Cisco Adaptive Security Appliance Software Version 7.0(5)]. [...]

If you have enabled caching on your Cisco security appliance, check URL cache statistics by entering the following command. sh url-cache stats The command shows the following information. Size - the size of the cache in kilobytes, which you set with the url-cache size option. Entries - the maximum number of cache entries, based on the cache size. In [...]

This command will show whether the PIX is doing NAT correctly. Double check your configuration if there are no translations immediately after trying to access the Internet. NAT failure could also be due to bad cabling which will prevent Internet bound traffic from reaching the PIX at all. pix# sh xlate 3 in use, 463 [...]

Configure default route towards the ISP (assume default gateway is 200.200.200.2) ASA5505(config)# route outside 0.0.0.0 0.0.0.0 200.200.200.2 1

Configure PAT on the outside interface ASA5505(config)# global (outside) 1 interface ASA5505(config)# nat (inside) 1 0.0.0.0 0.0.0.0