Cisco Catalyst交換機密碼恢復策略(轉)

amyz發表於2007-08-13
原文網址 : http://blog.itpub.net/10752019/viewspace-955391/
密碼
Cisco Catalyst交換機密碼恢復策略(轉)[@more@]

  如果交換機的login密碼忘記了,別急別急,只要你有PC,有類似超級終端(Hyper Terminal)這樣是終端程式,連線到交換機的console口,那麼密碼的恢復就N簡單了.

  1.對於Catalyst 2900/3500XL系列來說:

  拔下交換機的電源線,然後按住交換機的Mode按鈕,再重新插上交換機的電源線.直到埠Port 1x的LED熄滅之後釋放Mode按鈕.

  就這麼簡單,別告訴我你不知道Mode按鈕在哪啊-_-#

  2.對於Catalyst 2940/2950L系列來說:

  拔下交換機的電源線,然後按住交換機的Mode按鈕,再重新插上交換機的電源線.直到STAT的LED熄滅之後釋放Mode按鈕.

  3.對於Catalyst 2955系列來說:

  Catalyst 2955沒有沒有外部的Mode按鈕,因此就不能使用之前的那種方法來進行密碼恢復.在交換機啟動時,對於Windows系列的PC,按下Ctrl+Break鍵;對於UNIX系列的工作站,按下Ctrl+C.如下:

  C2955 Boot Loader (C2955−HBOOT−M) Version 12.1(0.0.514), CISCO DEVELOPMENT TEST

  VERSION

  Compiled Fri 13−Dec−02 17:38 by madison

  WS−C2955T−12 starting...

  Base ethernet MAC Address: 00:0b:be:b6:ee:00

  Xmodem file system is available.

  Initializing Flash...

  flashfs[0]: 19 files, 2 directories

  flashfs[0]: 0 orphaned files, 0 orphaned directories

  flashfs[0]: Total bytes: 7741440

  flashfs[0]: Bytes used: 4510720

  flashfs[0]: Bytes available: 3230720

  flashfs[0]: flashfs fsck took 7 seconds.

  ...done initializing flash.

  Boot Sector Filesystem (bs:) installed, fsid: 3

  Parameter Block Filesystem (pb:) installed, fsid: 4

  /---接下來交換機會在15秒內自動啟動,等出現該資訊之後,按下Ctrl+Break鍵或Ctrl+C鍵----/

  The system has been interrupted prior to initializing the flash file system to finish

  loading the operating system software:

  flash_init

  load_helper

  bootswitch:

  接下來輸入flash_init命令:

  switch:flash_init

  Initializing Flash...

  flashfs[0]: 143 files, 4 directories

  flashfs[0]: 0 orphaned files, 0 orphaned directories

  flashfs[0]: Total bytes: 3612672

  flashfs[0]: Bytes used: 2729472

  flashfs[0]: Bytes available: 883200

  flashfs[0]: flashfs fsck took 86 seconds

  ....done Initializing Flash.

  Boot Sector Filesystem (bs:) installed, fsid: 3

  Parameter Block Filesystem (pb:) installed, fsid: 4

  switch:

  接著輸入load_helper命令:

  switch:load_helper

  switch:

  再輸入dir flash:命令顯示交換機的檔案系統:

  switch:dir flash:

  Directory of flash:/

  2 −rwx 1803357 c3500xl−c3h2s−mz.120−5.WC7.bin

  4 −rwx 1131 config.text

  5 −rwx 109 info

  6 −rwx 389 env_vars

  7 drwx 640 html

  18 −rwx 109 info.ver

  403968 bytes available (3208704 bytes used)

  switch:

  把配置檔案重新命名:

  switch:rename flash:config.text flash:config.old

  switch:

  輸入boot命令啟動交換機:

  switch:boot

  Loading "flash:c3500xl−c3h2s−mz.120−5.WC7.bin"...###############################

  ################################################################################

  ######################################################################

  File "flash:c3500xl−c3h2s−mz.120−5.WC7.bin" uncompressed and installed, entry po

  int: 0x3000

  executing...

  不進入setup模式:

  −−− System Configuration Dialog −−−

  At any point you may enter a question mark '?' for help.

  Use ctrl−c to abort configuration dialog at any prompt.

  Default settings are in square brackets '[]'.

  Continue with configuration dialog? [yes/no]: n

  進入特權模式,恢復原始的配置檔案:

  Switch#rename flash:config.old flash:config.text

  Destination filename [config.text]

  Switch#

  把配置檔案儲存在記憶體裡:

  Switch#copy flash:config.text system:running−config

  Destination filename [running−config]?

  1131 bytes copied in 0.760 secs

  Switch#

  進入全域性配置模式,取消密碼設定:

  Switch(config)#no enable secret

  儲存配置:

  Switch#write memory

  Building configuration...

  [OK]

  Switch#

  4.對於Catalyst 3550/3750系列來說:

  1.透過帶有支援Xmodem協議的超級終端程式的PC連線到交換機的console口,把波特率設定為9600.

  2.拔掉交換機的電源.

  3.按下交換機上的Mode按鈕,與此同時,重新插上交換機的電源線.當交換機埠1X上的LED熄滅後可以鬆開Mode按鈕1到2秒.之後將顯示一些指示資訊:

  The system has been interrupted prior to initializing the flash file system. The following

  commands will initialize the flash file system, and finish loading the operating system

  software:

  flash_init

  load_helper

  boot

  switch#

  4.初始化flash檔案系統:

  switch#flash_init

  5.載入幫助檔案:

  switch#load_helper

  6.顯示快閃記憶體裡的內容:

  switch#dir flash:

  7.重新命名配置檔案:

  switch#rename flash:config.text flash:config.text.old

  8.啟動系統,並且如果提示進入setup模式,輸入N:

  switch#boot

  Continue with the configuration dialog? [yes/no]: N

  9.進入特權模式,把配置檔名恢復為原始檔名:

  Switch#rename flash:config.text.old flash:config.text

  10.把配置檔案寫進記憶體:

  Switch#copy flash:config.text system:running-config

  Source filename [config.text]?

  Destination filename [running-config]?

  11.進入全域性配置模式更改密碼:

  Switch(config)#enable secret {password}

  12.退出,並儲存到startup-config檔案裡:

  Switch(config)#copy running-config startup-config

  其實有的時候硬體安全比軟體安全還要重要些.不然人人都抗個本本,.連根線到console口去恢復密碼了-_-

來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/10752019/viewspace-955391/,如需轉載,請註明出處,否則將追究法律責任。

相關文章