- 論壇徽章:
- 0
|
說起密碼恢復(fù),那個(gè)氣啊,不會(huì)又不行,會(huì)了也不起作用,因?yàn)檫@東西,就像恢復(fù)或升級(jí)IOS一樣,很煩人.我這人不怕困難就怕麻煩!^^ 好了廢話不多說,let's do it!
作者:紅頭發(fā)(aka CCIE#15101/JNCIP Candidate)
出處:http://www.91lab.com
一.基于CatOS的CATALYST 1200,1400,2901,2902,2926T/F,2926GS/L,2948G,2980G,4000,5000,5500,6000與6500密碼恢復(fù):
標(biāo)題可真夠長(zhǎng)的-__-b,第一步都會(huì),見下圖,偉大的超級(jí)終端,你絕對(duì)不是一個(gè)人!-__-b
![]()
關(guān)掉交換機(jī)電源,等待片刻再打開(這一動(dòng)作讓我想起小時(shí)候在家里偷偷玩任天堂游戲機(jī)的經(jīng)典動(dòng)作:關(guān)機(jī)拔卡扯電源-__-3).當(dāng)出現(xiàn)密碼提示符后,接下來要做的事情,就是在30秒內(nèi)完成一些步驟(KAO!拍大片啊).
1.回車(相當(dāng)于輸入空密碼).
2.進(jìn)入enable mode(enable命令別說你不會(huì)).
3.回車,繼續(xù)玩空密碼.
4.修改密碼(set password和set enablepass命令).
5.回車,相當(dāng)于輸入舊密碼(如果在這時(shí)候收到提示信息說"sorry password incorrect",抱歉,你動(dòng)作太慢了,超過30秒了,把上述步驟重新做1次,動(dòng)作快點(diǎn)).
6.設(shè)置更為安全的密碼(set password和set enablepass命令).完工.
示例:
System Bootstrap, Version 5.3(1)
Copyright (c) 1994-1999 by Cisco Systems, Inc.
c6k_sup1 processor with 65536 Kbytes of main memory
Autoboot executing command: "boot bootflash:cat6000-sup.6-3-3.bin"
Uncompressing file: ###########################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
################################################################################
##############################
System Power On Diagnostics
DRAM Size ....................64 MB
Testing DRAM..................Passed
NVRAM Size ...................512 KB
Level2 Cache .................Present
System Power On Diagnostics Complete
Boot image: bootflash:cat6000-sup.6-3-3.bin
Running System Diagnostics from this Supervisor (Module 1)
This may take up to 2 minutes....please wait
Cisco Systems Console
2002 Apr 08 16:08:13 %SYS-3-MOD_PORTINTFINSYNC ort Interface in sync for
Module 1
Enter password: /------你只有30秒------/
(回車)
2007 Mar 08 11:08:15 %SYS-1-SYS_ENABLEPS: Power supply 1 enabled
2007 Mar 08 11:08:15 %SYS-1-SYS_ENABLEPS: Power supply 2 enabled
2007 Mar 08 11:08:18 %SYS-5-MOD_PWRON:Module 3 powered up
2007 Mar 08 11:08:18 %SYS-5-MOD_PWRON:Module 4 powered up
2007 Mar 08 11:08:25 %MLS-5-NDEDISABLED:Netflow Data Export disabled
2007 Mar 08 11:08:26 %MLS-5-MCAST_STATUS:IP Multicast Multilayer Switching is
enabled
2007 Mar 08 11:08:26 %SYS-5-MOD_OK:Module 1 is online
Console> enable
Enter password: 2007 Mar 08 11:08:37 %SYS-5-MOD_OK:Module 3 is online
2007 Mar 08 11:08:37 %SYS-3-MOD_PORTINTFINSYNCort Interface in sync for
Module 3
Console> (enable) set password
Enter old password:
(回車)
Enter new password:
(回車)
Retype new password:
(回車)
Password changed.
Console> (enable) set enablepass
Enter old password:
(回車)
Enter new password:
(回車)
Retype new password:
(回車)
Password changed.
其他些老古董比如CATALYST 1200和這個(gè)有點(diǎn)不太一樣,不寫了,實(shí)在需要的話查documentation吧.
二.基于CISCO IOS軟件版本12.2(17)SX之前的,搭載Supervisor Engine 720的CATALYST 6500密碼恢復(fù):
標(biāo)題同樣很長(zhǎng)-__-3.本section只適用于基于CISCO IOS軟件版本12.2(17)SX或其之前版本的.(關(guān)于這1部分的恢復(fù)過程,也可以參見CISCO Bug ID CSCec36997這1部分的講解).
通常當(dāng)交換機(jī)加電后,交換機(jī)處理器(SP)啟動(dòng),大約25-60秒后,控制權(quán)轉(zhuǎn)交給路由處理器(RP,MSFC),RP繼續(xù)加載軟件鏡象.接下來要做的,老規(guī)矩,CTRL+BREAK,但是別太快,該過程是應(yīng)該在RP啟動(dòng)的時(shí)候做而不是在SP啟動(dòng)的時(shí)候做,否則就進(jìn)到SP ROMMON模式去了.因此,出現(xiàn)以下信息后,就可以CTRL+BREAK了:
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor
注意由于之前提到的bug,這次更猛,你只有10秒的時(shí)間去CTRL+BREAK(看來是前作大片的續(xù)集啊-__-#).接下來修改寄存器值為0x2142讓交換機(jī)忽略啟動(dòng)配置文件.然后就會(huì)重啟:
rommon 1 > confreg 0x2142
00:00:41: %SYS-SP-3-LOGGER_FLUSHED: System was paused for 00:00:00 to ensure co.
00:00:41: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:41: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:41: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:41: %OIR-SP-6-CONSOLE: Changing console ownership to switch processor
*** System received a Software forced crash ***
signal= 0x17, code= 0x24, context= 0x4269f6f4
PC = 0x401370d8, Cause = 0x3020, Status Reg = 0x34008002
之后不要進(jìn)setup模式,進(jìn)入命令行后,enable命令進(jìn)到特權(quán)模式.然后configure memory或copy startup-config running-config命令伺候,把NVRAM中的東西拷貝到RAM中.
繼續(xù),進(jìn)到全局配置模式后,用enable secret命令修改密碼.然后把寄存器值改回0x2102.如果你VTY線路下設(shè)置的有密碼,這時(shí)候可以順便一起改了:
Router(config)#line vty 0 4
Router(config-line)#password NUAIKO
Router(config-line)#^Z
Router#
最后保存配置:wr吧.收工!
示例:
System Bootstrap, Version 7.7(1)
Copyright (c) 1994-2003 by cisco Systems, Inc.
Cat6k-Sup720/SP processor with 524288 Kbytes of main memory
Autoboot executing command: "boot disk0:s72033-ps-mz.122-14.SX1.bin"
Self decompressing the image : ################################################]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco Internetwork Operating System Software
IOS (tm) s72033_sp Software (s72033_sp-SP-M), Version 12.2(14)SX1, EARLY DEPLOY)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Tue 27-May-03 20:48 by ccai
Image text-base: 0x40020C10, data-base: 0x40B98000
00:00:03: %PFREDUN-6-ACTIVE: Initializing as ACTIVE processor
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor /------你只有10秒CTRL+BREAK------/
System Bootstrap, Version 12.2(14r)S9, RELEASE SOFTWARE (fc1)
TAC Support: http://www.cisco.com/tac
Copyright (c) 2003 by cisco Systems, Inc.
Cat6k-Sup720/RP platform with 524288 Kbytes of main memory
Download Start
*** Mistral Interrupt on line 4 ***
System memory 1 bit ECC correctable error interrupt ..
PC = 0x8000841c, SP = 0x80007f00, RA = 0x80008488
Cause Reg = 0x00004400, Status Reg = 0x3041c003
rommon 1 >
rommon 1 > confreg 0x2142
You must reset or power cycle for new config to take effect.
rommon 2 > /------自動(dòng)重啟了,別怕------/
00:00:31: %SYS-SP-3-LOGGER_FLUSHED: System was paused for 00:00:00 to ensure co.
00:00:31: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:31: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:31: %SYS-SP-2-INTSCHED: 't_idle' at level 7
-Process= "SCP Download Process", ipl= 7, pid= 57
-Traceback= 4013991C 401232B4 402827F4 40282994 40283010 405CB010 402A9858 4013C
00:00:31: %OIR-SP-6-CONSOLE: Changing console ownership to switch processor
*** System received a Software forced crash ***
signal= 0x17, code= 0x24, context= 0x4269f6f4
PC = 0x401370d8, Cause = 0x3020, Status Reg = 0x34008002
System Bootstrap, Version 7.7(1)
Copyright (c) 1994-2003 by cisco Systems, Inc.
Cat6k-Sup720/SP processor with 524288 Kbytes of main memory
Autoboot executing command: "boot disk0:s72033-ps-mz.122-14.SX1.bin"
Self decompressing the image : ################################################]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco Internetwork Operating System Software
IOS (tm) s72033_sp Software (s72033_sp-SP-M), Version 12.2(14)SX1, EARLY DEPLOY)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Tue 27-May-03 20:48 by ccai
Image text-base: 0x40020C10, data-base: 0x40B98000
00:00:03: %PFREDUN-6-ACTIVE: Initializing as ACTIVE processor
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor
System Bootstrap, Version 12.2(14r)S9, RELEASE SOFTWARE (fc1)
TAC Support: http://www.cisco.com/tac
Copyright (c) 2003 by cisco Systems, Inc.
Cat6k-Sup720/RP platform with 524288 Kbytes of main memory
Download Start
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Download Completed! Booting the image.
Self decompressing the image : ################################################]
Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.
cisco Systems, Inc.
170 West Tasman Drive
San Jose, California 95134-1706
Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-PS-M), Version 12.2(14)SX1, EARLY DEPLOY)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Tue 27-May-03 20:40 by ccai
Image text-base: 0x40008C10, data-base: 0x41ACE000
cisco Catalyst 6000 (R7000) processor with 458752K/65536K bytes of memory.
Processor board ID
SR71000 CPU at 600Mhz, Implementation 0x504, Rev 1.2, 512KB L2 Cache
Last reset from power-on
X.25 software, Version 3.0.0.
Bridging software.
1 Virtual Ethernet/IEEE 802.3 interface(s)
96 FastEthernet/IEEE 802.3 interface(s)
58 Gigabit Ethernet/IEEE 802.3 interface(s)
1917K bytes of non-volatile configuration memory.
8192K bytes of packet buffer memory.
65536K bytes of Flash internal SIMM (Sector size 512K).
--- System Configuration Dialog ---
Would you like to enter the initial configuration dialog? [yes/no]: n
Press RETURN to get started!
00:00:03: %SYS-3-LOGGER_FLUSHED: System was paused for 00:00:00 to ensure conso.
00:00:46: curr is 0x10000
00:00:46: RP: Currently running ROMMON from F1 region
00:01:00: %SYS-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-PS-M), Version 12.2(14)SX1, EARLY DEPLOY)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Tue 27-May-03 20:40 by ccai
00:01:00: %SNMP-5-COLDSTART: SNMP agent on host Router is undergoing a cold stat
00:01:00: %SYS-6
Router>-BOOTTIME: Time taken to reboot after reload = 1807 seconds
Firmware compiled 19-May-03 10:54 by integ Build [100]
00:00:54: %SPANTREE-SP-5-EXTENDED_SYSID: Extended SysId enabled for type vlan
00:00:54: SP: SP: Currently running ROMMON from F1 region
00:01:00: %SYS-SP-5-RESTART: System restarted --
Cisco Internetwork Operating System Software
IOS (tm) s72033_sp Software (s72033_sp-SP-M), Version 12.2(14)SX1, EARLY DEPLOY)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Tue 27-May-03 20:48 by ccai
00:01:01: %OIR-SP-6-INSPS: Power supply inserted in slot 1
00:01:01: %C6KPWR-SP-4-PSOK: power supply 1 turned on.
00:01:01: %OIR-SP-6-INSPS: Power supply inserted in slot 2
00:01:01: %C6KPWR-SP-4-PSOK: power supply 2 turned on.
00:01:01: %C6KPWR-SP-4-PSREDUNDANTBOTHSUPPLY: in power-redundancy mode, system .
00:01:05: %FABRIC-SP-5-FABRIC_MODULE_ACTIVE: the switching fabric module in sloe
00:01:06: %DIAG-SP-6-RUN_MINIMUM: Module 5: Running Minimum Diagnostics...
Router>
Router>
00:01:18: %DIAG-SP-6-DIAG_OK: Module 5: Passed Online Diagnostics
00:01:18: %OIR-SP-6-INSCARD: Card inserted in slot 5, interfaces are now online
00:01:21: %DIAG-SP-6-RUN_MINIMUM: Module 4: Running Minimum Diagnostics...
Router>
Router>
Router>
00:01:36: %DIAG-SP-6-RUN_MINIMUM: Module 9: Running Minimum Diagnostics...
Router>
Router>
00:01:42: %DIAG-SP-6-RUN_MINIMUM: Module 1: Running Minimum Diagnostics...
00:01:44: %DIAG-SP-6-DIAG_OK: Module 4: Passed Online Diagnostics
00:01:45: %OIR-SP-6-INSCARD: Card inserted in slot 4, interfaces are now online
00:01:54: %DIAG-SP-6-DIAG_OK: Module 9: Passed Online Diagnostics
00:01:54: %OIR-SP-6-INSCARD: Card inserted in slot 9, interfaces are now online
00:01:57: %DIAG-SP-6-DIAG_OK: Module 1: Passed Online Diagnostics
00:01:57: %OIR-SP-6-INSCARD: Card inserted in slot 1, interfaces are now online
00:02:06: %DIAG-SP-6-RUN_MINIMUM: Module 2: Running Minimum Diagnostics...
00:02:15: %DIAG-SP-6-DIAG_OK: Module 2: Passed Online Diagnostics
00:02:15: %OIR-SP-6-INSCARD: Card inserted in slot 2, interfaces are now online
Router>
Router>enable
Router#copy startup-config running-config
Destination filename [running-config]?
(回車)
4864 bytes copied in 2.48 secs (2432 bytes/sec)
sup720#
sup720#configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
sup720(config)#enable secret NUAIKO
sup720(config)#config-register 0x2102
sup720(config)#line vty 0 4
sup720(config-line)#password 91Lab
sup720(config-line)#^Z
sup720#copy running-config startup-config
Destination filename [startup-config]?
(回車)
Building configuration...
[OK]
sup720#reload
Proceed with reload? [confirm]
(回車)
三.基于CISCO IOS的CATALYST 6000/6500密碼恢復(fù):
本section只適用于基于Supervisor Engine 1/2/720的系統(tǒng),并且對(duì)于Supervisor Engine 720,本section針對(duì)的是CISCO IOS軟件版本12.2(17)SX或其后續(xù)版本的,之前版本的恢復(fù)參考,請(qǐng)參見上一section.
其密碼恢復(fù)過程,除了CTRL+BREAK無10秒的限制,以及在修改了寄存器值為0x2142后,要手動(dòng)重啟之外:
rommon 1 > confreg 0x2142
You must reset or power cycle for new config to take effect
rommon 2 > reset
其他過程和上一section完全一樣,就不贅述了.我也收工洗澡睡覺.
作者:紅頭發(fā)(aka CCIE#15101/JNCIP Candidate)
出處:http://www.91lab.com |
|
免費(fèi)注冊(cè)
發(fā)表于 2007-03-25 22:48