cisco Pix 501 help

Discussion in 'Cisco' started by ryan_s1111, Jul 13, 2005.

  1. ryan_s1111

    ryan_s1111 Guest

    New to the Cisco small firewalls....

    Do I have to do anything to get the web Device Manager to work? I go
    to the https address and it just hangs on "Loading PIX Device Manager.
    Please wait....".

    I really would not prefer to do everything via telnet.

    Thanks
    ryan_s1111, Jul 13, 2005
    #1
    1. Advertising

  2. In article <>, "ryan_s1111" <> wrote:
    >New to the Cisco small firewalls....
    >
    >Do I have to do anything to get the web Device Manager to work? I go
    >to the https address and it just hangs on "Loading PIX Device Manager.
    >Please wait....".
    >
    >I really would not prefer to do everything via telnet.
    >
    >Thanks
    >

    There is a bug in the PDM software that does this. I was able to access
    PDM from a fresh install of WIN98 that didn't change the JAVA engine.
    There is an update for the PDM software that fixes that problem. It is
    version 3.03 I believe. I haven't yet installed it because I haven't found
    a good explanation of how to install it yet, so I just keep using the old
    WIN98 machine if I have to access my PIX.

    Or try this. I haven't tried it yet, but I seem to remember this was one
    fix.

    *********************
    From: "Martin Kayes" <>
    Subject: Re: Cisco SDM is not working
    Date: Wed, 13 Jul 2005 09:30:02 +0100
    Organization: Cobalt ICT

    Several Cisco Java based products have problems using the latest Java 1.5,
    try uninstalling Java and installing a slightly older version (must be
    1.4.2_05 or higher though)

    Regards,

    Martin
    *********************

    Hope that helps,


    Gordon Montgomery
    Living Scriptures, Inc
    (anti spam - replace lsi with livingscriptures)
    (801) 627-2000
    Gordon Montgomery, Jul 13, 2005
    #2
    1. Advertising

  3. ryan_s1111

    Martin Kayes Guest

    Hi Gordon,

    To install PDM 3.03, you just need to delete the old PDM from flash and TFTP
    the new image to flash. Sometimes the new PDM will work without a reboot,
    sometimes a reboot is needed.

    Regards,

    Martin


    "Gordon Montgomery" <> wrote in message
    news:...
    > In article <>,
    > "ryan_s1111" <> wrote:
    >>New to the Cisco small firewalls....
    >>
    >>Do I have to do anything to get the web Device Manager to work? I go
    >>to the https address and it just hangs on "Loading PIX Device Manager.
    >>Please wait....".
    >>
    >>I really would not prefer to do everything via telnet.
    >>
    >>Thanks
    >>

    > There is a bug in the PDM software that does this. I was able to access
    > PDM from a fresh install of WIN98 that didn't change the JAVA engine.
    > There is an update for the PDM software that fixes that problem. It is
    > version 3.03 I believe. I haven't yet installed it because I haven't found
    > a good explanation of how to install it yet, so I just keep using the old
    > WIN98 machine if I have to access my PIX.
    >
    > Or try this. I haven't tried it yet, but I seem to remember this was one
    > fix.
    >
    > *********************
    > From: "Martin Kayes" <>
    > Subject: Re: Cisco SDM is not working
    > Date: Wed, 13 Jul 2005 09:30:02 +0100
    > Organization: Cobalt ICT
    >
    > Several Cisco Java based products have problems using the latest Java 1.5,
    > try uninstalling Java and installing a slightly older version (must be
    > 1.4.2_05 or higher though)
    >
    > Regards,
    >
    > Martin
    > *********************
    >
    > Hope that helps,
    >
    >
    > Gordon Montgomery
    > Living Scriptures, Inc
    > (anti spam - replace lsi with livingscriptures)
    > (801) 627-2000
    Martin Kayes, Jul 13, 2005
    #3
  4. ryan_s1111

    ryan_s1111 Guest

    What's the process (commands) for removing the old PDM, then for
    installing a new one? My Cisco commands are limited to basically
    interface changes and setup.
    ryan_s1111, Jul 14, 2005
    #4
  5. In article <>,
    ryan_s1111 <> wrote:
    :What's the process (commands) for removing the old PDM, then for
    :installing a new one? My Cisco commands are limited to basically
    :interface changes and setup.

    The only way that I know of is to use flashfs downgrade
    to erase the flash filesystem. After that you might need to
    reinstall the OS, and you would need to copy the new PDM in,
    and you would need to create new RSA keys (those are stored in the
    flash filesystem.)

    If you are installing a newer flash version, then you don't usually
    need to remove the old one first -- but to give room for it to
    fit, you might need to do something like temporarily clobber your
    access lists and save that configuration (so as to lower the footprint
    for the save config) and then once you are done, recreate whatever
    parts of the config you clobbered and save that.
    --
    Feep if you love VT-52's.
    Walter Roberson, Jul 14, 2005
    #5
  6. ryan_s1111

    Martin Kayes Guest

    To quote Cisco's TAC you just do this:

    To upgrade PIX Device Manager (PDM) software, perform these steps:
    1.. Place the PDMxxx.bin file on the TFTP server.

    2.. From the PIX Firewall command line, enter the copy tftp flash: pdm
    command and follow the prompts to install the new software on the PIX
    Firewall.

    The upgrade is complete.


    Note: The PIX Firewall does not need to be reloaded after installing a new
    version of PDM. The new version takes affect immediately.

    Regards,



    Martin



    "ryan_s1111" <> wrote in message
    news:...
    > What's the process (commands) for removing the old PDM, then for
    > installing a new one? My Cisco commands are limited to basically
    > interface changes and setup.
    >
    Martin Kayes, Jul 15, 2005
    #6
  7. In article <db8mo5$dbf$1$>,
    Martin Kayes <> wrote:
    :To quote Cisco's TAC you just do this:

    : 2.. From the PIX Firewall command line, enter the copy tftp flash: pdm

    If you are tight on memory (which is most likely on the 501 of the topic),
    that procedure will not work. The PIX wants to copy the entire new
    image into RAM and verify it before it erases the old image and
    copies the new into nvram.
    --
    "I want to make sure [a user] can't get through ... an online
    experience without hitting a Microsoft ad"
    -- Steve Ballmer [Microsoft Chief Executive]
    Walter Roberson, Jul 15, 2005
    #7
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Andrew J Instone-Cowie

    Cisco VPN through a PIX 501 to another PIX?

    Andrew J Instone-Cowie, Jan 20, 2004, in forum: Cisco
    Replies:
    5
    Views:
    4,116
    Andrew J Instone-Cowie
    Jan 22, 2004
  2. Kai
    Replies:
    1
    Views:
    840
    Walter Roberson
    May 14, 2004
  3. Andre
    Replies:
    7
    Views:
    690
    Andre
    Feb 20, 2005
  4. cdoc

    Cisco pix 501 vs 501-50

    cdoc, May 19, 2006, in forum: Cisco
    Replies:
    6
    Views:
    625
    Walter Roberson
    May 20, 2006
  5. InetSecurity
    Replies:
    0
    Views:
    1,325
    InetSecurity
    Jun 23, 2006
Loading...

Share This Page