Difference between revisions of "Password Recovery Procedure for the Catalyst 6500 with Supervisor 720 (WS-SUP720 / WS-SUP720-3B / WS-SUP720-3BXL) Running Cisco IOS Software Prior to 12.2(17)SX"

From NesevoWiki
Jump to navigationJump to search
(New page: '''1.''' Power up the router<br/> <br/> '''2.''' Press '''Break''' on the terminal keyboard right after the RP gains control of the console port. On the Catalyst 6500<br/> that runs Cisco ...)
 
 
(4 intermediate revisions by the same user not shown)
Line 1: Line 1:
'''1.''' Power up the router<br/>
+
* Power up the router
<br/>
+
* Press '''Break''' on the terminal keyboard right after the RP gains control of the console port. On the Catalyst 6500 that runs Cisco IOS, the SP boots first. It then turns control over to the RP. After the RP gains control, initiate the break sequence. The RP has gained control of the console port when you see this message. (Do not initiate the break sequence until you see this message):
'''2.''' Press '''Break''' on the terminal keyboard right after the RP gains control of the console port. On the Catalyst 6500<br/> that runs Cisco IOS, the SP boots first. It then turns control over to the RP. After the RP gains control, initiate the break sequence.<br/> The RP has gained control of the console port when you see this message. (Do not initiate the break sequence until you see this message):<br/>
+
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor
<br/>
+
* Break Sequence when connected through Opengear Console Server over SSH: <code>~~b</code>. Caution: On some systems, you have to hit the <code>~</code> key twice to get one character, so in fact you would have to type <code><nowiki>~~~~b</nowiki></code> to actually get <code>~~b</code>. Try first in an unused terminal!
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor<br/>
+
* Type '''confreg 0x2142''' at the '''rommon 1>''' prompt to boot from Flash without loading the configuration.
<br/>
+
* The switch crashes with a Software Forced Crash:
'''3.''' Type '''confreg 0x2142''' at the '''rommon 1>''' prompt to boot from Flash without loading the configuration.<br/>
+
* Type '''no''' after each setup question, or press '''Ctrl-C''' to skip the initial setup procedure.
<br/>
+
* Type '''enable''' at the '''Router>''' prompt. You are in enable mode. The '''Router#''' prompt is displayed.
'''4.''' The switch crashes with a Software Forced Crash:<br/>
+
* It is important to issue the '''configure memory''' or '''copy start running''' commands to copy the Nonvolatile RAM (NVRAM) into memory. '''Do not issue the configure terminal command'''.
<br/>
+
* Issue either the '''write terminal''' or '''show running command'''. These commands show the configuration of the router. In this configuration, you see the '''shutdown''' command under all the interfaces. This means that all the interfaces are currently shut down. You see the passwords either in encrypted or unencrypted format.
'''5.'''Type '''no''' after each setup question, or press '''Ctrl-C''' to skip the initial setup procedure.<br/>
+
* Issue the '''configure terminal''' command to enter global configuration mode and make the changes. The prompt is now '''hostname(config)#.'''
<br/>
+
* Issue the '''enable secret <  password >''' in global configuration mode to change the '''enable''' password.
'''6.''' Type '''enable''' at the '''Router>''' prompt. You are in enable mode. The '''Router#''' prompt is displayed.<br/>
+
* Issue the '''config-register 0x2102'''  command, or the value you recorded in Step 2 in global configuration mode '''(Router(config)#)''' to set the configuration value back to its original value.
<br/>
+
* Change any virtual terminal passwords, if present:
'''7.''' It is important to issue the '''configure memory''' or '''copy start running''' commands to copy the Nonvolatile RAM<br/> (NVRAM) into memory. '''Do not issue the configure terminal command'''.<br/>
+
Router(config)'''#line vty 0 4'''
<br/>
+
Router(config-line)'''#password cisco'''
'''8.''' Issue either the '''write terminal''' or '''show running command'''. These commands show the configuration of the router.<br/> In this configuration, you see the '''shutdown''' command under all the interfaces. This means that all the interfaces are <br/>currently shut down. You see the passwords either in encrypted or unencrypted format.<br/>
+
Router(config-line)'''#^Z'''
<br/>
+
Router#
'''9.''' Issue the '''configure terminal''' command to enter global configuration mode and make the changes. The prompt is <br/> now'''hostname(config)#.'''<br/>
+
* Issue the '''no shutdown''' command on every interface that is normally in use. Issue a '''show ip interface brief''' <br/>command to see a list of interfaces and their current status. You must be in enable mode '''(Router#)''' to execute the '''show ip interface brief''' command. Here is an example for one interface:
<br/>
+
 
'''10.''' Issue the '''enable secret <  password >''' in global configuration mode to change the '''enable''' password.<br/>
+
Router'''#show ip interface brief'''
<br/>
+
Interface                  IP-Address      OK? Method Status                Prol
'''11.''' Issue the '''config-register 0x2102'''  command, or the value you recorded in Step 2 in global configuration mode <br/> '''(Router(config)#)''' to set the configuration value back to its original value.<br/>
+
Vlan1                      172.17.10.10    YES TFTP  administratively down dow  
<br/>
+
Vlan10                    10.1.1.1        YES TFTP  administratively down dow  
'''12.''' Change any virtual terminal passwords, if present: <br/>
+
GigabitEthernet1/1        unassigned      YES unset  administratively down dow  
<br/>
+
GigabitEthernet1/2        unassigned      YES TFTP  administratively down dow  
Router(config)'''#line vty 0 4'''<br/>
+
GigabitEthernet2/1        unassigned      YES TFTP  administratively down dow  
Router(config-line)'''#password cisco'''<br/>
+
GigabitEthernet2/2        unassigned      YES TFTP  administratively down dow  
Router(config-line)'''#^Z'''<br/>
+
FastEthernet3/1            172.16.84.110  YES TFTP  administratively down dow  
Router#<br/>
+
<br/>
+
[snip]
'''13.''' Issue the '''no shutdown''' command on every interface that is normally in use. Issue a '''show ip interface brief''' <br/>command to see a list of interfaces and their current status. You must be in enable mode '''(Router#)'''<br/>
+
to execute the '''show ip interface brief''' command. Here is an example for one interface:<br/>
+
Router'''#configure terminal'''
<br/>
+
Enter configuration commands, one per line.  End with CNTL/Z.
Router'''#show ip interface brief'''
+
Router(config)'''#interface fastEthernet 3/1'''
Interface                  IP-Address      OK? Method Status                Prol<br/>
+
Router(config-if)'''#no shutdown'''  
Vlan1                      172.17.10.10    YES TFTP  administratively down dow <br/>
+
Router(config-if)'''#exit'''
Vlan10                    10.1.1.1        YES TFTP  administratively down dow <br/>
+
Router(config)# <do other interfaces as necessary...>
GigabitEthernet1/1        unassigned      YES unset  administratively down dow <br/>
+
 
GigabitEthernet1/2        unassigned      YES TFTP  administratively down dow <br/>
+
* Press '''Ctrl-Z''' to leave the configuration mode. The prompt is now '''hostname#'''.<br/>
GigabitEthernet2/1        unassigned      YES TFTP  administratively down dow <br/>
+
* Issue either the '''write memory''' or '''copy running startup''' commands to commit the changes.
GigabitEthernet2/2        unassigned      YES TFTP  administratively down dow <br/>
 
FastEthernet3/1            172.16.84.110  YES TFTP  administratively down dow <br/>
 
<snip>...<br/>
 
<br/>
 
Router'''#configure terminal'''<br/>
 
Enter configuration commands, one per line.  End with CNTL/Z.<br/>
 
Router(config)'''#interface fastEthernet 3/1'''<br/>
 
Router(config-if)'''#no shutdown''' <br/>
 
Router(config-if)'''#exit'''<br/>
 
Router(config)# <do other interfaces as necessary...><br/>
 
<br/>
 
'''14.''' Press '''Ctrl-Z''' to leave the configuration mode. The prompt is now '''hostname#'''.<br/>
 
<br/>
 
'''15.''' Issue either the '''write memory''' or '''copy running startup''' commands to commit the changes.
 

Latest revision as of 13:50, 11 March 2016

  • Power up the router
  • Press Break on the terminal keyboard right after the RP gains control of the console port. On the Catalyst 6500 that runs Cisco IOS, the SP boots first. It then turns control over to the RP. After the RP gains control, initiate the break sequence. The RP has gained control of the console port when you see this message. (Do not initiate the break sequence until you see this message):
00:00:03: %OIR-6-CONSOLE: Changing console ownership to route processor
  • Break Sequence when connected through Opengear Console Server over SSH: ~~b. Caution: On some systems, you have to hit the ~ key twice to get one character, so in fact you would have to type ~~~~b to actually get ~~b. Try first in an unused terminal!
  • Type confreg 0x2142 at the rommon 1> prompt to boot from Flash without loading the configuration.
  • The switch crashes with a Software Forced Crash:
  • Type no after each setup question, or press Ctrl-C to skip the initial setup procedure.
  • Type enable at the Router> prompt. You are in enable mode. The Router# prompt is displayed.
  • It is important to issue the configure memory or copy start running commands to copy the Nonvolatile RAM (NVRAM) into memory. Do not issue the configure terminal command.
  • Issue either the write terminal or show running command. These commands show the configuration of the router. In this configuration, you see the shutdown command under all the interfaces. This means that all the interfaces are currently shut down. You see the passwords either in encrypted or unencrypted format.
  • Issue the configure terminal command to enter global configuration mode and make the changes. The prompt is now hostname(config)#.
  • Issue the enable secret < password > in global configuration mode to change the enable password.
  • Issue the config-register 0x2102 command, or the value you recorded in Step 2 in global configuration mode (Router(config)#) to set the configuration value back to its original value.
  • Change any virtual terminal passwords, if present:
Router(config)#line vty 0 4
Router(config-line)#password cisco
Router(config-line)#^Z
Router#
  • Issue the no shutdown command on every interface that is normally in use. Issue a show ip interface brief
    command to see a list of interfaces and their current status. You must be in enable mode (Router#) to execute the show ip interface brief command. Here is an example for one interface:
Router#show ip interface brief
Interface                  IP-Address      OK? Method Status                Prol
Vlan1                      172.17.10.10    YES TFTP   administratively down dow 
Vlan10                     10.1.1.1        YES TFTP   administratively down dow 
GigabitEthernet1/1         unassigned      YES unset  administratively down dow 
GigabitEthernet1/2         unassigned      YES TFTP   administratively down dow 
GigabitEthernet2/1         unassigned      YES TFTP   administratively down dow 
GigabitEthernet2/2         unassigned      YES TFTP   administratively down dow 
FastEthernet3/1            172.16.84.110   YES TFTP   administratively down dow 

[snip]

Router#configure terminal
Enter configuration commands, one per line.  End with CNTL/Z.
Router(config)#interface fastEthernet 3/1
Router(config-if)#no shutdown 
Router(config-if)#exit
Router(config)# <do other interfaces as necessary...>
  • Press Ctrl-Z to leave the configuration mode. The prompt is now hostname#.
  • Issue either the write memory or copy running startup commands to commit the changes.