博威---云架构决胜云计算

 找回密码
 注册

QQ登录

只需一步,快速开始

搜索
查看: 1795|回复: 0

PIX os 7.0升级小记 zz

[复制链接]
发表于 2007-5-4 15:57:30 | 显示全部楼层 |阅读模式
PIX os 7.0升级小记 zz [/td]
前几天去了一趟Cisco的新品发布会,发布会上Cisco工程师不停地吹PIX7.0操作系统怎么怎么好,昨天从朋友那里拿到pix7.0,便迫不及待的装上尝试一下。
升级之前当然要阅读文档先,
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_70/pix_upgd/pixupgrd.htm#wp1135488,这个是必须读的,文档中说PIX7.0至少需要64M内存,可是我手上的PIX515只有32M内存(目前使用6.2系统),晕,我不会就这么罢休的!
PIX架构和PC差不多,使用intel CPU,这是地球人都知道的,^_^,可不可以在内存上也做点文章呢?于是拆开PIX,发现PIX内存居然长得和PC内存一样,靠,一个奔腾200M CPU+32M内存就要那么多钱,难怪Cisco发了!从主机上拆下一根128M内存,装上PIX,开机,console口始终没有任何提示。。。。失败!会不会是内存太大,或者是颗粒不兼容?想起旁边做Juniper 0live的机器上好像有32M内存的(网博这点就是好,什么古董都能找到),拆下一根与PIX原装内存一起装上,开机,引导PIX os 6.2启动成功,并且内存显示为64M!我真是天才!!!
接下来就是将PIX7.0导入flash了,下面是我的升级步骤!
启动PIX,出现以下提示时,按ESC进入monitor方式
Use BREAK or ESC to interrupt flash boot.
Use SPACE to begin flash boot immediately.

monitor> interface 1
0:i8255X @ PCI(bus:0 dev:13 irq:10)
1:i8255X @ PCI(bus:0 dev:14 irq:7 )

monitor> address 192.168.10.189
address 192.168.10.189

monitor> server 192.168.10.35
server 192.168.10.35

monitor> file pix701.bin
file pix701.bin

monitor> tftp
[email=pix701.bin@192.168.10.35]pix701.bin@192.168.10.35[/email].....................................................................................................
.............................................................................................................................
.............................................................................................................................
.............................................................................................................................
.............................................................................................................................
.............................................................................................................................
.............................................................................................................................
.............................................................................................................................
........................................................................................................
Received 5124096 bytes

Cisco PIX Security Appliance admin loader (3.0) #0: Thu Mar 31 14:03:05 PST 2005
#############################################################################################################################

#############################################################################################################################
#############################################################################################################################
#######################################################################################
64MB RAM

Total NICs found: 2
mcwa i82559 Ethernet at irq 10  MAC: 0001.64ff.cd56
mcwa i82559 Ethernet at irq  7  MAC: 0001.64ff.cd57
BIOS Flash=AT29C257 @ 0xfffd8000
Old file system detected. Attempting to save data in flash

Initializing flashfs...
flashfs[7]: Checking block 0...block number was (2423)
flashfs[7]: erasing block 0...done.
flashfs[7]: Checking block 1...block number was (24879)
flashfs[7]: erasing block 1...done.
flashfs[7]: Checking block 2...block number was (-16063)
flashfs[7]: erasing block 2...done.
flashfs[7]: Checking block 3...block number was (21670)
flashfs[7]: erasing block 3...done.
flashfs[7]: Checking block 4...block number was (-15768)
flashfs[7]: erasing block 4...done.
flashfs[7]: Checking block 5...block number was (-9793)
flashfs[7]: erasing block 5...done.
flashfs[7]: Checking block 6...block number was (-22614)
flashfs[7]: erasing block 6...done.
flashfs[7]: Checking block 7...block number was (-3282)
flashfs[7]: erasing block 7...done.
flashfs[7]: Checking block 8...block number was (-15616)
flashfs[7]: erasing block 8...done.
flashfs[7]: Checking block 9...block number was (22595)
flashfs[7]: erasing block 9...done.
flashfs[7]: Checking block 10...block number was (-1551)
flashfs[7]: erasing block 10...done.
flashfs[7]: Checking block 11...block number was (-27607)
flashfs[7]: erasing block 11...done.
flashfs[7]: Checking block 12...block number was (7820)
flashfs[7]: erasing block 12...done.
flashfs[7]: Checking block 13...block number was (21256)
flashfs[7]: erasing block 13...done.
flashfs[7]: Checking block 14...block number was (24443)
flashfs[7]: erasing block 14...done.
flashfs[7]: Checking block 15...block number was (-9551)
flashfs[7]: erasing block 15...done.
flashfs[7]: Checking block 16...block number was (6689)
flashfs[7]: erasing block 16...done.
flashfs[7]: Checking block 17...block number was (19823)
flashfs[7]: erasing block 17...done.
flashfs[7]: Checking block 18...block number was (32146)
flashfs[7]: erasing block 18...done.
flashfs[7]: Checking block 19...block number was (23840)
flashfs[7]: erasing block 19...done.
flashfs[7]: Checking block 20...block number was (5426)
flashfs[7]: erasing block 20...done.
flashfs[7]: Checking block 21...block number was (-20229)
flashfs[7]: erasing block 21...done.
flashfs[7]: Checking block 22...block number was (21723)
flashfs[7]: erasing block 22...done.
flashfs[7]: Checking block 23...block number was (19333)
flashfs[7]: erasing block 23...done.
flashfs[7]: Checking block 24...block number was (30368)
flashfs[7]: erasing block 24...done.
flashfs[7]: Checking block 25...block number was (-11331)
flashfs[7]: erasing block 25...done.
flashfs[7]: Checking block 26...block number was (3436)
flashfs[7]: erasing block 26...done.
flashfs[7]: Checking block 27...block number was (14676)
flashfs[7]: erasing block 27...done.
flashfs[7]: Checking block 28...block number was (8204)
flashfs[7]: erasing block 28...done.
flashfs[7]: Checking block 29...block number was (-1705)
flashfs[7]: erasing block 29...done.
flashfs[7]: Checking block 30...block number was (-13995)
flashfs[7]: erasing block 30...done.
flashfs[7]: Checking block 31...block number was (20121)
flashfs[7]: erasing block 31...done.
flashfs[7]: Checking block 32...block number was (16359)
flashfs[7]: erasing block 32...done.
flashfs[7]: Checking block 33...block number was (3567)
flashfs[7]: erasing block 33...done.
flashfs[7]: Checking block 34...block number was (23727)
flashfs[7]: erasing block 34...done.
flashfs[7]: Checking block 35...block number was (-19189)
flashfs[7]: erasing block 35...done.
flashfs[7]: Checking block 36...block number was (-30499)
flashfs[7]: erasing block 36...done.
flashfs[7]: Checking block 37...block number was (29271)
flashfs[7]: erasing block 37...done.
flashfs[7]: Checking block 38...block number was (0)
flashfs[7]: erasing block 38...done.
flashfs[7]: Checking block 39...block number was (194)
flashfs[7]: erasing block 39...done.
flashfs[7]: Checking block 40...block number was (196)
flashfs[7]: erasing block 40...done.
flashfs[7]: Checking block 41...block number was (198)
flashfs[7]: erasing block 41...done.
flashfs[7]: Checking block 42...block number was (200)
flashfs[7]: erasing block 42...done.
flashfs[7]: Checking block 43...block number was (202)
flashfs[7]: erasing block 43...done.
flashfs[7]: Checking block 44...block number was (204)
flashfs[7]: erasing block 44...done.
flashfs[7]: Checking block 45...block number was (206)
flashfs[7]: erasing block 45...done.
flashfs[7]: Checking block 46...block number was (208)
flashfs[7]: erasing block 46...done.
flashfs[7]: Checking block 47...block number was (210)
flashfs[7]: erasing block 47...done.
flashfs[7]: Checking block 48...block number was (212)
flashfs[7]: erasing block 48...done.
flashfs[7]: Checking block 49...block number was (214)
flashfs[7]: erasing block 49...done.
flashfs[7]: Checking block 50...block number was (216)
flashfs[7]: erasing block 50...done.
flashfs[7]: Checking block 51...block number was (218)
flashfs[7]: erasing block 51...done.
flashfs[7]: Checking block 52...block number was (220)
flashfs[7]: erasing block 52...done.
flashfs[7]: Checking block 53...block number was (222)
flashfs[7]: erasing block 53...done.
flashfs[7]: Checking block 54...block number was (224)
flashfs[7]: erasing block 54...done.
flashfs[7]: Checking block 55...block number was (226)
flashfs[7]: erasing block 55...done.
flashfs[7]: Checking block 56...block number was (228)
flashfs[7]: erasing block 56...done.
flashfs[7]: Checking block 57...block number was (230)
flashfs[7]: erasing block 57...done.
flashfs[7]: Checking block 58...block number was (232)
flashfs[7]: erasing block 58...done.
flashfs[7]: Checking block 59...block number was (234)
flashfs[7]: erasing block 59...done.
flashfs[7]: Checking block 60...block number was (236)
flashfs[7]: erasing block 60...done.
flashfs[7]: Checking block 61...block number was (0)
flashfs[7]: erasing block 61...done.
flashfs[7]: Checking block 62...block number was (-1)
flashfs[7]: erasing block 62...done.
flashfs[7]: Checking block 63...block number was (-1)
flashfs[7]: erasing block 63...done.
flashfs[7]: Checking block 64...block number was (-1)
flashfs[7]: erasing block 64...done.
flashfs[7]: Checking block 65...block number was (-1)
flashfs[7]: erasing block 65...done.
flashfs[7]: Checking block 66...block number was (-1)
flashfs[7]: erasing block 66...done.
flashfs[7]: Checking block 67...block number was (-1)
flashfs[7]: erasing block 67...done.
flashfs[7]: Checking block 68...block number was (-1)
flashfs[7]: erasing block 68...done.
flashfs[7]: Checking block 69...block number was (-1)
flashfs[7]: erasing block 69...done.
flashfs[7]: Checking block 70...block number was (-1)
flashfs[7]: erasing block 70...done.
flashfs[7]: Checking block 71...block number was (-1)
flashfs[7]: erasing block 71...done.
flashfs[7]: Checking block 72...block number was (-1)
flashfs[7]: erasing block 72...done.
flashfs[7]: Checking block 73...block number was (-1)
flashfs[7]: erasing block 73...done.
flashfs[7]: Checking block 74...block number was (-1)
flashfs[7]: erasing block 74...done.
flashfs[7]: Checking block 75...block number was (-1)
flashfs[7]: erasing block 75...done.
flashfs[7]: Checking block 76...block number was (-1)
flashfs[7]: erasing block 76...done.
flashfs[7]: Checking block 77...block number was (-1)
flashfs[7]: erasing block 77...done.
flashfs[7]: Checking block 78...block number was (-1)
flashfs[7]: erasing block 78...done.
flashfs[7]: Checking block 79...block number was (-1)
flashfs[7]: erasing block 79...done.
flashfs[7]: Checking block 80...block number was (-1)
flashfs[7]: erasing block 80...done.
flashfs[7]: Checking block 81...block number was (-1)
flashfs[7]: erasing block 81...done.
flashfs[7]: Checking block 82...block number was (-1)
flashfs[7]: erasing block 82...done.
flashfs[7]: Checking block 83...block number was (-1)
flashfs[7]: erasing block 83...done.
flashfs[7]: Checking block 84...block number was (-1)
flashfs[7]: erasing block 84...done.
flashfs[7]: Checking block 85...block number was (-1)
flashfs[7]: erasing block 85...done.
flashfs[7]: Checking block 86...block number was (-1)
flashfs[7]: erasing block 86...done.
flashfs[7]: Checking block 87...block number was (-1)
flashfs[7]: erasing block 87...done.
flashfs[7]: Checking block 88...block number was (-1)
flashfs[7]: erasing block 88...done.
flashfs[7]: Checking block 89...block number was (-1)
flashfs[7]: erasing block 89...done.
flashfs[7]: Checking block 90...block number was (-1)
flashfs[7]: erasing block 90...done.
flashfs[7]: Checking block 91...block number was (-1)
flashfs[7]: erasing block 91...done.
flashfs[7]: Checking block 92...block number was (-1)
flashfs[7]: erasing block 92...done.
flashfs[7]: Checking block 93...block number was (-1)
flashfs[7]: erasing block 93...done.
flashfs[7]: Checking block 94...block number was (-1)
flashfs[7]: erasing block 94...done.
flashfs[7]: Checking block 95...block number was (-1)
flashfs[7]: erasing block 95...done.
flashfs[7]: Checking block 96...block number was (-1)
flashfs[7]: erasing block 96...done.
flashfs[7]: Checking block 97...block number was (-1)
flashfs[7]: erasing block 97...done.
flashfs[7]: Checking block 98...block number was (-1)
flashfs[7]: erasing block 98...done.
flashfs[7]: Checking block 99...block number was (-1)
flashfs[7]: erasing block 99...done.
flashfs[7]: Checking block 100...block number was (-1)
flashfs[7]: erasing block 100...done.
flashfs[7]: Checking block 101...block number was (-1)
flashfs[7]: erasing block 101...done.
flashfs[7]: Checking block 102...block number was (-1)
flashfs[7]: erasing block 102...done.
flashfs[7]: Checking block 103...block number was (-1)
flashfs[7]: erasing block 103...done.
flashfs[7]: Checking block 104...block number was (-1)
flashfs[7]: erasing block 104...done.
flashfs[7]: Checking block 105...block number was (-1)
flashfs[7]: erasing block 105...done.
flashfs[7]: Checking block 106...block number was (-1)
flashfs[7]: erasing block 106...done.
flashfs[7]: Checking block 107...block number was (-1)
flashfs[7]: erasing block 107...done.
flashfs[7]: Checking block 108...block number was (-1)
flashfs[7]: erasing block 108...done.
flashfs[7]: Checking block 109...block number was (-1)
flashfs[7]: erasing block 109...done.
flashfs[7]: Checking block 110...block number was (-1)
flashfs[7]: erasing block 110...done.
flashfs[7]: Checking block 111...block number was (-1)
flashfs[7]: erasing block 111...done.
flashfs[7]: Checking block 112...block number was (-1)
flashfs[7]: erasing block 112...done.
flashfs[7]: Checking block 113...block number was (-1)
flashfs[7]: erasing block 113...done.
flashfs[7]: Checking block 114...block number was (-1)
flashfs[7]: erasing block 114...done.
flashfs[7]: Checking block 115...block number was (-1)
flashfs[7]: erasing block 115...done.
flashfs[7]: Checking block 116...block number was (-1)
flashfs[7]: erasing block 116...done.
flashfs[7]: Checking block 117...block number was (-1)
flashfs[7]: erasing block 117...done.
flashfs[7]: Checking block 118...block number was (-1)
flashfs[7]: erasing block 118...done.
flashfs[7]: Checking block 119...block number was (-1)
flashfs[7]: erasing block 119...done.
flashfs[7]: Checking block 120...block number was (-1)
flashfs[7]: erasing block 120...done.
flashfs[7]: Checking block 121...block number was (-1)
flashfs[7]: erasing block 121...done.
flashfs[7]: Checking block 122...block number was (-1)
flashfs[7]: erasing block 122...done.
flashfs[7]: Checking block 123...block number was (-1)
flashfs[7]: erasing block 123...done.
flashfs[7]: Checking block 124...block number was (-1)
flashfs[7]: erasing block 124...done.
flashfs[7]: 0 files, 1 directories
flashfs[7]: 0 orphaned files, 0 orphaned directories
flashfs[7]: Total bytes: 15998976
flashfs[7]: Bytes used: 1024
flashfs[7]: Bytes available: 15997952
flashfs[7]: flashfs fsck took 117 seconds.
flashfs[7]: Initialization complete.

Saving the datafile
!
Saving a copy of old datafile for downgrade
!
Saving the configuration
!
Saving a copy of old configuration as downgrade.cfg
!
Saved the activation key from the flash image
Saved the default firewall mode (single) to flash
Saving image file as image.bin
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Upgrade process complete
Need to burn loader....
Erasing sector 0...[OK]
Burning sector 0...[OK]
Erasing sector 64...[OK]
Burning sector 64...[OK]

Licensed features for this platform:
Maximum Physical Interfaces : 3         
Maximum VLANs               : 10        
Inside Hosts                : Unlimited
Failover                    : Disabled
VPN-DES                     : Enabled   
VPN-3DES-AES                : Disabled  
Cut-through Proxy           : Enabled   
Guards                      : Enabled   
URL Filtering               : Enabled   
Security Contexts           : 0         
GTP/GPRS                    : Disabled  
VPN Peers                   : Unlimited

This platform has a Restricted (R) license.
  --------------------------------------------------------------------------
                                 .            .                             
                                 |            |                             
                                |||          |||                           
                              .|| ||.      .|| ||.                          
                           .:||| | |||:..:||| | |||:.                       
                            C i s c o  S y s t e m s                        
  --------------------------------------------------------------------------

Cisco PIX Security Appliance Software Version 7.0(1)
  ****************************** Warning *******************************
  This product contains cryptographic features and is
  subject to United States and local country laws
  governing, import, export, transfer, and use.
  Delivery of Cisco cryptographic products does not
  imply third-party authority to import, export,
  distribute, or use encryption. Importers, exporters,
  distributors and users are responsible for compliance
  with U.S. and local country laws. By using this
  product you agree to comply with applicable laws and
  regulations. If you are unable to comply with U.S.
  and local laws, return the enclosed items immediately.

  A summary of U.S. laws governing Cisco cryptographic
  products may be found at:
  
http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
  If you require further assistance please contact us by
  sending email to
export@cisco.com.
  ******************************* Warning *******************************

Copyright (c) 1996-2005 by Cisco Systems, Inc.
                Restricted Rights Legend
Use, duplication, or disclosure by the Government is
subject to restrictions as set forth in subparagraph
(c) of the Commercial Computer Software - Restricted
Rights clause at FAR sec. 52.227-19 and subparagraph
(c) (1) (ii) of the Rights in Technical Data and Computer
Software clause at DFARS sec. 252.227-7013.

                Cisco Systems, Inc.
                170 West Tasman Drive
                San Jose, California 95134-1706
.........................................................................


体验一下7.0吧,首先是命令行的改进,更加贴近于IOS命令行,使用了层次化的方式,不过我感觉和IOS命令行还是有不少差异的。
pixfirewall> en
Password:
pixfirewall# sh flash

Directory of flash:/
6      -rw-  1385        10:13:35 Apr 07 2005  downgrade.cfg
9      -rw-  5103672     10:14:53 Apr 07 2005  image.bin

15998976 bytes total (10889216 bytes free)
pixfirewall# conf t
pixfirewall(config)# interface e0
pixfirewall(config-if)# ip add 218.94.26.146 255.255.255.240
pixfirewall(config-if)# nameif outside
INFO: Security level for "outside" set to 0 by default.
pixfirewall(config-if)# security-level 0
pixfirewall(config-if)# no sh
pixfirewall(config-if)# exit
pixfirewall(config)#

原来的6.2不支持的TAB键自动补全,现在也支持了,本来就应该这样嘛。
其次,现在的7.0可以支持内容过滤(虽然这已不是什么新鲜事,微软的ISA2004以及Juniper的netscreen早就已经支持了),呵呵,看来Cisco还是有不少压力的。


您需要登录后才可以回帖 登录 | 注册

本版积分规则

小黑屋|手机版|Archiver|boway Inc. ( 冀ICP备10011147号 )

GMT+8, 2024-11-24 05:01 , Processed in 0.120124 second(s), 16 queries .

Powered by Discuz! X3.4

Copyright © 2001-2021, Tencent Cloud.

快速回复 返回顶部 返回列表