技术在于专研
分类: LINUX
2007-04-17 08:45:59
[root@localhost root]# cd / [root@localhost /]# ./pixemu -net nic,vlan=1,macaddr=00:aa:00:00:02:01 -net tap,vlan=1,script=if1up -net nic,vlan=2,macaddr=00:aa:00:00:02:02 -net tap,vlan=2,script=if2up -serial stdio -m 128 FLASH Could not open '/dev/kqemu' - QEMU acceleration layer not activated Values read from ini file:: serial=12345678 (305419896) image="pix" key=0,0,0,0 image file read 18374703 bytes, @100000 128MB RAM Total NICs found: 2 i82559 Ethernet at irq 11 MAC: 00aa.0000.0201 i82559 Ethernet at irq 9 MAC: 00aa.0000.0202 BIOS Flash=am29f400b @ 0xd8000 Initializing flashfs... flashfs[7]: 2 files, 2 directories flashfs[7]: 0 orphaned files, 0 orphaned directories flashfs[7]: Total bytes: 16128000 flashfs[7]: Bytes used: 2048 flashfs[7]: Bytes available: 16125952 flashfs[7]: flashfs fsck took 4 seconds. flashfs[7]: Initialization complete. Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 0x00000000 This activation key is not valid, use default settings only -------------------------------------------------------------------------- . . | | ||| ||| .|| ||. .|| ||. .:||| | |||:..:||| | |||:. C i s c o S y s t e m s -------------------------------------------------------------------------- Cisco PIX Security Appliance Software Version 7.2(1) Copyright (c) 1996-2006 by Cisco Systems, Inc. Restricted Rights Legend Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) of the Commercial Computer Software - Restricted Rights clause at FAR sec. 52.227-19 and subparagraph (c) (1) (ii) of the Rights in Technical Data and Computer Software clause at DFARS sec. 252.227-7013. Cisco Systems, Inc. 170 West Tasman Drive San Jose, California 95134-1706 Type help or '?' for a list of available commands. pixfirewall> en Password: pixfirewall# pixfirewall# sh interface Interface Ethernet0 "", is administratively down, line protocol is up Hardware is i82559, BW 100 Mbps Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps) Available but not configured via nameif MAC address 00aa.0000.0202, MTU not set IP address unassigned 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 L2 decode drops 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier input queue (curr/max blocks): hardware (128/128) software (0/0) output queue (curr/max blocks): hardware (1/0) software (0/0) Interface Ethernet1 "", is administratively down, line protocol is up Hardware is i82559, BW 100 Mbps Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps) Available but not configured via nameif MAC address 00aa.0000.0201, MTU not set IP address unassigned 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 L2 decode drops 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier input queue (curr/max blocks): hardware (128/128) software (0/0) output queue (curr/max blocks): hardware (1/0) software (0/0) pixfirewall# sh tech pixfirewall# sh tech-support Cisco PIX Security Appliance Software Version 7.2(1) Compiled on Wed 31-May-06 14:45 by root System image file is "Unknown, monitor mode tftp booted image" Config file at boot was "startup-config" pixfirewall up 3 mins 8 secs Hardware: PIX-525, 128 MB RAM, CPU Pentium II 1 MHz Flash E28F128J3 @ 0xfff00000, 16MB BIOS Flash AM29F400B @ 0xfffd8000, 32KB 0: Ext: Ethernet0 : address is 00aa.0000.0202, irq 9 1: Ext: Ethernet1 : address is 00aa.0000.0201, irq 11 The Running Activation Key is not valid, using default settings: Licensed features for this platform: Maximum Physical Interfaces : 6 Maximum VLANs : 25 Inside Hosts : Unlimited Failover : Disabled VPN-DES : Disabled VPN-3DES-AES : Disabled Cut-through Proxy : Enabled Guards : Enabled URL Filtering : Enabled Security Contexts : 0 GTP/GPRS : Disabled VPN Peers : Unlimited This platform has a Restricted (R) license. Serial Number: 305419896 Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 0x00000000 Configuration has not been modified since last system restart. ------------------ show clock ------------------ 16:50:28.732 UTC Sun Apr 15 2007 ------------------ show memory ------------------ Free memory: 96634456 bytes (72%) Used memory: 37583272 bytes (28%) ------------- ---------------- Total memory: 134217728 bytes (100%) ------------------ show conn count ------------------ 0 in use, 0 most used ------------------ show xlate count ------------------ 0 in use, 0 most used ------------------ show blocks ------------------ SIZE MAX LOW CNT 4 100 100 100 80 100 100 100 256 100 100 100 1550 1775 1511 1519 2048 100 100 100 ------------------ show blocks queue history detail ------------------ History buffer memory usage: 2136 bytes (default) ------------------ show interface ------------------ Interface Ethernet0 "", is administratively down, line protocol is up Hardware is i82559, BW 100 Mbps Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps) Available but not configured via nameif MAC address 00aa.0000.0202, MTU not set IP address unassigned 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 L2 decode drops 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier input queue (curr/max blocks): hardware (128/128) software (0/0) output queue (curr/max blocks): hardware (1/0) software (0/0) Control Point Interface States: Interface number is unassigned Interface Ethernet1 "", is administratively down, line protocol is up Hardware is i82559, BW 100 Mbps Auto-Duplex(Full-duplex), Auto-Speed(100 Mbps) Available but not configured via nameif MAC address 00aa.0000.0201, MTU not set IP address unassigned 0 packets input, 0 bytes, 0 no buffer Received 0 broadcasts, 0 runts, 0 giants 0 input errors, 0 CRC, 0 frame, 0 overrun, 0 ignored, 0 abort 0 L2 decode drops 0 packets output, 0 bytes, 0 underruns 0 output errors, 0 collisions, 0 interface resets 0 babbles, 0 late collisions, 0 deferred 0 lost carrier, 0 no carrier input queue (curr/max blocks): hardware (128/128) software (0/0) output queue (curr/max blocks): hardware (1/0) software (0/0) Control Point Interface States: Interface number is unassigned ------------------ show cpu usage ------------------ CPU utilization for 5 seconds = 0%; 1 minute: 0%; 5 minutes: 0% ------------------ show cpu hogging process ------------------ ------------------ show process ------------------ PC SP STATE Runtime SBASE Stack Process Mwe 00c6559c 018d3cd0 01370380 0 01663050 15616/16384 emweb/cifs Lwe 001071ec 01696a64 013703f0 0 01694a90 8132/8192 block_diag Mrd 00218467 017d3ad4 01370490 0 017cfb50 16084/16384 Dispatch Unit Mwe 00118d85 01825864 01370380 0 018238b0 7864/8192 Reload Control Thread Mwe 0011ddd6 0182a9b4 01372328 0 01828d30 7256/8192 aaa Lwe 00217191 01833174 0137b450 0 018311b0 7524/8192 dbgtrace Msi 00259aac 01835264 01370380 0 018332d0 7292/8192 EoU-startup Msi 004a63ae 018394e4 01370380 0 01837510 7968/8192 557statspoll Mwe 0100b8ad 0185f124 01370380 0 0185d180 7848/8192 Chunk Manager Msi 0088de2e 0186730c 01370380 0 01865358 7856/8192 PIX Garbage Collector Lsi 00e74984 0186944c 01370380 0 01867478 7552/8192 route_process Mwe 0087da54 01879a0c 012c9148 0 01877a48 8116/8192 IP Address Assign Mwe 00a9ded1 0187e4bc 012d4578 0 0187c4f8 8116/8192 QoS Support Module Mwe 008f4fc1 01880614 012ca238 0 0187e650 8116/8192 Client Update Task Lwe 0102995e 01882ed4 01370380 16 01880f30 7908/8192 Checkheaps Mwe 00afb9e5 018891f4 01370380 0 01887290 7428/8192 Session Manager Mwe 00c21655 01893afc 0229ed78 0 0188ffe8 14768/16384 uauth Mwe 00bb1925 01896084 012e9228 0 018940c0 7524/8192 Uauth_Proxy Mwe 00c1df31 0189c3a4 012ee948 0 0189a420 7712/8192 SMTP Mwe 00c0b551 0189e484 012ee8e8 0 0189c540 7412/8192 Logger Mwe 00c0b87e 018a0604 01370380 0 0189e660 7492/8192 Thread Logger Mwe 00f08fba 018b0f04 01339658 0 018aef60 7188/8192 vpnlb_thread Msi 00b11e54 01974e5c 01370380 0 01972e88 8000/8192 emweb/cifs_timer Msi 005a0500 018465dc 01370380 0 01844648 7476/8192 arp_timer Mwe 005aa954 019cc3cc 01388920 0 019ca458 7960/8192 arp_forward_thread Mwe 00c25d91 01a1f54c 012eebb8 0 01a1d598 7968/8192 tcp_fast Mwe 00c25b5d 01a21574 012eebb8 0 01a1f5c0 7968/8192 tcp_slow Mwe 00c3fe79 01a3237c 012efa78 0 01a303c8 8100/8192 udp_timer Mwe 00198977 01855fd4 01370380 0 01854020 8016/8192 CTCP Timer process Mwe 001b1fb6 0185835c 0184c7b0 0 018563e8 7728/8192 IPsec message handler Msi 001c118c 0203e974 01370380 0 0203c9d0 7952/8192 CTM message handler Mwe 00ea6e2b 021791dc 01370380 0 02177248 7984/8192 L2TP data daemon Mwe 00ea746b 0217b214 01370380 0 02179270 8000/8192 L2TP mgmt daemon Mwe 00e92c1e 021b32fc 01332de8 0 021af378 16260/16384 ppp_timer_thread Msi 00f09a9f 021b5334 01370380 0 021b33a0 7936/8192 vpnlb_timer_thread Mwe 00acb2f0 0222962c 01370380 0 02227678 8016/8192 ICMP event handler Mwe 0080bd0b 0222d79c 01370380 0 022297e8 16160/16384 IP Background Mwe 0020fe20 022768fc 0129fe58 0 02256978 126656/131072 tmatch compile thread Mwe 009c71f5 022e9e54 01370380 0 022e5e90 16072/16384 Crypto PKI RECV Mwe 009c7c9a 022ebf14 01370380 0 022e9fb0 7784/8192 Crypto CA Lsi 008a2808 0231b2bc 01370380 0 023192e8 8000/8192 uauth_urlb clean Lwe 00887cff 0236208c 01370380 0 023600e8 7088/8192 pm_timer_thread Mwe 00514557 02365654 01370380 0 023636b0 8000/8192 IKE Timekeeper Mwe 005066c3 0236aabc 012bb878 0 02366e28 15432/16384 IKE Daemon Mwe 00bc2730 0236e764 012ed898 0 0236c7b0 8100/8192 RADIUS Proxy Event Daemon Mwe 00b93536 02370754 01884088 0 0236e8d0 7184/8192 RADIUS Proxy Listener Mwe 00bc28c7 02372994 01370380 0 023709f0 8000/8192 RADIUS Proxy Time Keeper Mwe 00625f20 023749a4 0169f97c 0 02372b10 7492/8192 Integrity FW Task M* 0082f8d2 0009ff0c 01370490 1 02384538 25136/32768 ci/console Msi 008bc3ac 0238e41c 01370380 0 0238c658 6648/8192 update_cpu_usage Msi 008bd125 023987d4 01370380 0 023968d0 7792/8192 NIC status poll Mwe 00625f20 0239ca64 0169f9c8 0 0239ab10 7844/8192 System Ready Mwe 00edac85 02395dd4 01338c10 0 02393e20 8100/8192 vpnfol_thread_msg Msi 00ee06fa 01852b6c 01370380 0 01850bc8 7952/8192 vpnfol_thread_timer Mwe 00edefaa 023aebec 01338d78 0 023acc58 8068/8192 vpnfol_thread_sync Msi 00ee0294 023b0c34 01370380 0 023aec80 7968/8192 vpnfol_thread_unsent - - - - 99344 - - scheduler - - - - 99436 - - total elapsed ------------------ show failover ------------------ ERROR: Command requires failover license ------------------ show traffic ------------------ ---------------------------------------- Aggregated Traffic on Physical Interface ---------------------------------------- Ethernet0: received (in 197.940 secs): 0 packets 0 bytes 0 pkts/sec 0 bytes/sec transmitted (in 197.940 secs): 0 packets 0 bytes 0 pkts/sec 0 bytes/sec 1 minute input rate 0 pkts/sec, 0 bytes/sec 1 minute output rate 0 pkts/sec, 0 bytes/sec 1 minute drop rate, 0 pkts/sec 5 minute input rate 0 pkts/sec, 0 bytes/sec 5 minute output rate 0 pkts/sec, 0 bytes/sec 5 minute drop rate, 0 pkts/sec Ethernet1: received (in 198.980 secs): 0 packets 0 bytes 0 pkts/sec 0 bytes/sec transmitted (in 198.980 secs): 0 packets 0 bytes 0 pkts/sec 0 bytes/sec 1 minute input rate 0 pkts/sec, 0 bytes/sec 1 minute output rate 0 pkts/sec, 0 bytes/sec 1 minute drop rate, 0 pkts/sec 5 minute input rate 0 pkts/sec, 0 bytes/sec 5 minute output rate 0 pkts/sec, 0 bytes/sec 5 minute drop rate, 0 pkts/sec ------------------ show perfmon ------------------ PERFMON STATS: Current Average Xlates 0/s 0/s Connections 0/s 0/s TCP Conns 0/s 0/s UDP Conns 0/s 0/s URL Access 0/s 0/s URL Server Req 0/s 0/s TCP Fixup 0/s 0/s TCP Intercept 0/s 0/s HTTP Fixup 0/s 0/s FTP Fixup 0/s 0/s AAA Authen 0/s 0/s AAA Author 0/s 0/s AAA Account 0/s 0/s ------------------ show counters ------------------ Protocol Counter Value Context ------------------ show mode ------------------ Security context mode: single ------------------ show history ------------------ en sh interface sh tech-support ------------------ show firewall ------------------ Firewall mode: Router ------------------ show running-config ------------------ : Saved : PIX Version 7.2(1) ! hostname pixfirewall enable password names ! interface Ethernet0 shutdown no nameif no security-level no ip address ! interface Ethernet1 shutdown no nameif no security-level no ip address ! passwd ftp mode passive pager lines 24 no asdm history enable arp timeout 14400 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02 timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00 timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00 timeout uauth 0:05:00 absolute no snmp-server location no snmp-server contact snmp-server enable traps snmp authentication linkup linkdown coldstart telnet timeout 5 ssh timeout 5 console timeout 0 ! ! prompt hostname context Cryptochecksum:00000000000000000000000000000000 : end ------------------ show startup-config errors ------------------ INFO: No configuration errors ------------------ console logs ------------------ Message #1 : Message #2 : Message #3 : Message #4 : Message #5 : Message #6 : Message #7 : Message #8 : Message #9 : Message #10 : Message #11 : Message #12 : Message #13 : Message #14 : Total NICs found: 2 Message #15 : Message #16 : i82559 Ethernet at irq 11Message #17 : MAC: 00aa.0000.0201 Message #18 : Message #19 : i82559 Ethernet at irq 9Message #20 : MAC: 00aa.0000.0202 Message #21 : BIOS Flash=am29f400b @ 0xd8000 Message #22 : Initializing flashfs...Message #23 : flashfs[7]: 2 files, 2 directoriesMessage #24 : flashfs[7]: 0 orphaned files, 0 orphaned directoriesMessage #25 : flashfs[7]: Total bytes: 16128000Message #26 : flashfs[7]: Bytes used: 2048Message #27 : flashfs[7]: Bytes available: 16125952Message #28 : flashfs[7]: flashfs fsck took 4 seconds.Message #29 : flashfs[7]: Initialization complete.Message #30 : Message #31 : Message #32 : Running Message #33 : Activation Key: Message #34 : 0x00000000 Message #35 : 0x00000000 Message #36 : 0x00000000 Message #37 : 0x00000000 Message #38 : 0x00000000 Message #39 : Message #40 : This activation key is not valid, use default settings only Message #41 : -------------------------------------------------------------------------- Message #42 : . . Message #43 : | | Message #44 : ||| ||| Message #45 : .|| ||. .|| ||. Message #46 : .:||| | |||:..:||| | |||:. Message #47 : C i s c o S y s t e m s Message #48 : -------------------------------------------------------------------------- Message #49 : Cisco PIX Security Appliance Software Version 7.2(1) Message #50 : Message #51 : Copyright (c) 1996-2006 by Cisco Systems, Inc. Message #52 : Restricted Rights Legend Message #53 : Use, duplication, or disclosure by the Government is Message #54 : subject to restrictions as set forth in subparagraph Message #55 : (c) of the Commercial Computer Software - Restricted Message #56 : Rights clause at FAR sec. 52.227-19 and subparagraph Message #57 : (c) (1) (ii) of the Rights in Technical Data and Computer Message #58 : Software clause at DFARS sec. 252.227-7013. Message #59 : Cisco Systems, Inc. Message #60 : 170 West Tasman Drive Message #61 : San Jose, California 95134-1706 pixfirewall# 出自 51CTO.COM博客 |