Cisco ASA 5516-X Firewall (Open Source) Console Bootup Messages and Show Version

Subject: Cisco ASA 5516-X Firewall (Open Source) Console Bootup Messages and Show Version


Good day from Singapore,


I have bought this refurbished/second hand/used Cisco ASA 5516-X firewall with FirePOWER Services for SGD$100 at Bukit Panjang Ring Road on 17 Mar 2024 Sunday at about 8.30 PM Singapore Time.

Cisco ASA firewalls use open source software.


Console Output Below

=====================


Rom image verified correctly



Cisco Systems ROMMON, Version 1.1.8, RELEASE SOFTWARE

Copyright (c) 1994-2015  by Cisco Systems, Inc.

Compiled Thu 06/18/2015 12:15:56.43 by builders



Current image running: Boot ROM0

Last reset cause: PowerOn

DIMM Slot 0 : Present

DIMM Slot 1 : Present


Platform ASA5516 with 8192 Mbytes of main memory

MAC Address: 70:70:8b:67:c9:64



Use BREAK or ESC to interrupt boot.

Use SPACE to begin boot immediately.



Located '.boot_string' @ cluster 841081.


#

Attempt autoboot: "boot disk0:"

Located 'asa971-4-lfbff-k8.SPA' @ cluster 11.


#####################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################################

LFBFF signature verified.

INIT: version 2.88 booting

Starting udev

Configuring network interfaces... done.

Populating dev cache

dosfsck 2.11, 12 Mar 2005, FAT32, LFN

There are differences between boot sector and its backup.

Differences: (offset:original/backup)

  65:01/00

  Not automatically fixing this.

Starting check/repair pass.

Starting verification pass.

/dev/sdb1: 116 files, 820003/1798211 clusters

dosfsck(/dev/sdb1) returned 0

Mounting /dev/sdb1

IO Memory Nodes: 1

IO Memory Per Node: 499122176 bytes


Global Reserve Memory Per Node: 314572800 bytes Nodes=1


LCMB: got 499122176 bytes on numa-id=0, phys=0x1b1400000, virt=0x2aaaaae00000

LCMB: HEAP-CACHE POOL got 314572800 bytes on numa-id=0, virt=0x2aaac8a00000

Processor memory:   4379978902


Compiled on Fri 31-Mar-17 07:21 PDT by builders


Total NICs found: 14

i354 rev03 Gigabit Ethernet @ irq255 dev 20 index 08 MAC: 7070.8b67.c964

ivshmem rev03 Backplane Data Interface     @ index 09 MAC: 0000.0001.0002

en_vtun rev00 Backplane Control Interface  @ index 10 MAC: 0000.0001.0001

en_vtun rev00 Backplane Int-Mgmt Interface     @ index 11 MAC: 0000.0001.0003

en_vtun rev00 Backplane Ext-Mgmt Interface     @ index 12 MAC: 0000.0000.0000

en_vtun rev00 Backplane Tap Interface     @ index 13 MAC: 0000.0100.0001

Verify the activation-key, it might take a while...

Running Permanent Activation Key: 


Licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 150            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

Encryption-DES                    : Enabled        perpetual

Encryption-3DES-AES               : Enabled        perpetual

Security Contexts                 : 2              perpetual

Carrier                           : Disabled       perpetual

AnyConnect Premium Peers          : 4              perpetual

AnyConnect Essentials             : Disabled       perpetual

Other VPN Peers                   : 300            perpetual

Total VPN Peers                   : 300            perpetual

AnyConnect for Mobile             : Disabled       perpetual

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

Shared License                    : Disabled       perpetual

Total TLS Proxy Sessions          : 1000           perpetual

Botnet Traffic Filter             : Disabled       perpetual

Cluster                           : Enabled        perpetual

Cluster Members                   : 2              perpetual

VPN Load Balancing                : Enabled        perpetual


Encryption hardware device : Cisco ASA Crypto on-board accelerator (revision 0x1)


Cisco Adaptive Security Appliance Software Version 9.7(1)4


  ****************************** Warning *******************************

  This product contains cryptographic features and is

  subject to United States and local country laws

  governing, import, export, transfer, and use.

  Delivery of Cisco cryptographic products does not

  imply third-party authority to import, export,

  distribute, or use encryption. Importers, exporters,

  distributors and users are responsible for compliance

  with U.S. and local country laws. By using this

  product you agree to comply with applicable laws and

  regulations. If you are unable to comply with U.S.

  and local laws, return the enclosed items immediately.


  A summary of U.S. laws governing Cisco cryptographic

  products may be found at:

  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html


  If you require further assistance please contact us by

  sending email to export@cisco.com.

  ******************************* Warning *******************************

Cisco Adaptive Security Appliance Software, version 9.7

Copyright (c) 1996-2017 by Cisco Systems, Inc.

For licenses and notices for open source software used in this product, please visit

http://www.cisco.com/go/asa-opensource


                Restricted Rights Legend

Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph

(c) of the Commercial Computer Software - Restricted

Rights clause at FAR sec. 52.227-19 and subparagraph

(c) (1) (ii) of the Rights in Technical Data and Computer

Software clause at DFARS sec. 252.227-7013.


                Cisco Systems, Inc.

                170 West Tasman Drive

                San Jose, California 95134-1706


Reading from flash...

!..

Cryptochecksum (unchanged): e97ddf36 72cca0b4 515230d7 74abffbe


INFO: Power-On Self-Test in process.

.......................................................................

INFO: Power-On Self-Test complete.


INFO: Starting HW-DRBG health test...

INFO: HW-DRBG health test passed.


INFO: Starting SW-DRBG health test...

INFO: SW-DRBG health test passed.

Type help or '?' for a list of available commands.

cisco>


*************************************************************************************************

*************************************************************************************************


cisco> show version


Cisco Adaptive Security Appliance Software Version 9.7(1)4

Firepower Extensible Operating System Version 2.1(1.66)

Device Manager Version 7.7(1)151


Compiled on Fri 31-Mar-17 07:21 PDT by builders

System image file is "disk0:/asa971-4-lfbff-k8.SPA"

Config file at boot was "startup-config"


cisco up 1 hour 1 min


Hardware:   ASA5516, 8192 MB RAM, CPU Atom C2000 series 2416 MHz, 1 CPU (8 cores)

Internal ATA Compact Flash, 8000MB

BIOS Flash M25P64 @ 0xfed01000, 16384KB


Encryption hardware device : Cisco ASA Crypto on-board accelerator (revision 0x1)

                             Number of accelerators: 1


 1: Ext: GigabitEthernet1/1  : address is 7070.8b67.c965, irq 255

 2: Ext: GigabitEthernet1/2  : address is 7070.8b67.c966, irq 255

 3: Ext: GigabitEthernet1/3  : address is 7070.8b67.c967, irq 255

 4: Ext: GigabitEthernet1/4  : address is 7070.8b67.c968, irq 255

 5: Ext: GigabitEthernet1/5  : address is 7070.8b67.c969, irq 255

 6: Ext: GigabitEthernet1/6  : address is 7070.8b67.c96a, irq 255

 7: Ext: GigabitEthernet1/7  : address is 7070.8b67.c96b, irq 255

 8: Ext: GigabitEthernet1/8  : address is 7070.8b67.c96c, irq 255

 9: Int: Internal-Data1/1    : address is 7070.8b67.c964, irq 255

10: Int: Internal-Data1/2    : address is 0000.0001.0002, irq 0

11: Int: Internal-Control1/1 : address is 0000.0001.0001, irq 0

12: Int: Internal-Data1/3    : address is 0000.0001.0003, irq 0

13: Ext: Management1/1       : address is 7070.8b67.c964, irq 0

14: Int: Internal-Data1/4    : address is 0000.0100.0001, irq 0


Licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 150            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

Encryption-DES                    : Enabled        perpetual

Encryption-3DES-AES               : Enabled        perpetual

Security Contexts                 : 2              perpetual

Carrier                           : Disabled       perpetual

AnyConnect Premium Peers          : 4              perpetual

AnyConnect Essentials             : Disabled       perpetual

Other VPN Peers                   : 300            perpetual

Total VPN Peers                   : 300            perpetual

AnyConnect for Mobile             : Disabled       perpetual

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

Shared License                    : Disabled       perpetual

Total TLS Proxy Sessions          : 1000           perpetual

Botnet Traffic Filter             : Disabled       perpetual

Cluster                           : Enabled        perpetual

Cluster Members                   : 2              perpetual

VPN Load Balancing                : Enabled        perpetual



Failover cluster licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 150            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

Encryption-DES                    : Enabled        perpetual

Encryption-3DES-AES               : Enabled        perpetual

Security Contexts                 : 4              perpetual

Carrier                           : Disabled       perpetual

AnyConnect Premium Peers          : 8              perpetual

AnyConnect Essentials             : Disabled       perpetual

Other VPN Peers                   : 300            perpetual

Total VPN Peers                   : 300            perpetual

AnyConnect for Mobile             : Disabled       perpetual

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

Shared License                    : Disabled       perpetual

Total TLS Proxy Sessions          : 1000           perpetual

Botnet Traffic Filter             : Disabled       perpetual

Cluster                           : Enabled        perpetual

VPN Load Balancing                : Enabled        perpetual


The Running Activation Key feature: 2000 TLS Proxy sessions exceed the limit on the platform, reduced to 1000 TLS Proxy sessions.


Serial Number: JAD****00ZZ

Running Permanent Activation Key: 

Configuration register is 0x1

Image type                : Release

Key Version               : A

Configuration has not been modified since last system restart.

cisco>


Regards,


Mr. Turritopsis Dohrnii Teo En Ming

Targeted Individual in Singapore





REFERENCES

=============


[1] https://www.ripe.net/ripe/mail/archives/opensource-wg/2024-March/000263.html


[2] placeholder


[3] https://puck.nether.net/pipermail/cisco-nsp/2024-March/109069.html


[4] https://www.mail-archive.com/cisco-nsp@puck.nether.net/msg69337.html


[5] https://marc.info/?l=cisco-nsp&m=171077298224044&w=2


[6] https://controlc.com/9b549633


[7] https://rentry.co/5hesw7bw


Comments

Popular posts from this blog

How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023)

[DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals