17-10
Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Configuration Guide
OL-6392-01
Chapter 17 Monitoring and Troubleshooting the Firewall Services Module
Troubleshooting the Firewall Services Module
Step 5 To clear the login and enable passwords, as well as the aaa authentication console and aaa
authorization command commands, enter the following command:
root@localhost# clear passwd cf:{4 | 5}
Step 6 Follow the screen prompts, as follows:
Do you wish to erase the passwords? [yn] y
The following lines will be removed from the configuration:
enable password 8Ry2YjIyt7RRXU24 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
Do you want to remove the commands listed above from the configuration?
[yn] y
Passwords and aaa commands have been erased.
Recovering the Maintenance Partition Passwords
If you forget the passwords for the maintenance partition, you can reset them to the default values. You
must be logged into the application partition. In multiple mode, you can only reset the passwords from
the system execution space.
To reset the maintenance passwords, enter the following command:
FWSM# clear mp-passwd
Other Troubleshooting Tools
The FWSM provides other troubleshooting tools to be used in conjunction with technical support:
• Viewing Debug Messages, page 17-10
• Capturing Packets, page 17-10
• Viewing the Crash Dump, page 17-11
Viewing Debug Messages
Debug messages can slow the FWSM performance considerably. However, if you are troubleshooting
the FWSM, debug messages can be useful. We recommend contacting technical support to help you
debug your FWSM. To enable debug messages, see the debug commands in the Catalyst 6500 Series
Switch and Cisco 7600 Series Router Firewall Services Module Command Reference.
Capturing Packets
Capturing packets is sometimes useful when troubleshooting connectivity problems or monitoring
suspicious activity. The FWSM can track packet information for traffic that passes through the
general-purpose processor, including management traffic and inspection engines. The FWSM cannot
capture traffic that goes through the network processors (such as most through traffic). We recommend
contacting technical support if you want to use the packet capture feature. See the capture command in
the Catalyst 6500 Series Switch and Cisco 7600 Series Router Firewall Services Module Command
Reference.
To Next Page
Loading...
Need help?
General