这是快速如何将Cisco ASA(自适应安全设备)重置为出厂默认设置。
您将需要串行控制台访问权限才能完成此任务。

1.在早期启动过程中，在出现以下提示时，只需按转义[esc]键：

Cisco Systems ROMMON Version (1.0(12)13) #0: Thu Aug 28 15:55:27 PDT 2008

Platform ASA5505
Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.
Boot interrupted.

您将得到以下命令提示符：

rommon #0>

2.输入以下命令以查看我们首先运行的配置：

confreg

这应该返回如下内容：

rommon #0> confreg

Current Configuration Register: 0x00000001
Configuration Summary: 
boot default image from Flash

Do you wish to change this configuration? y/n [n]: n

(您应该拒绝更改配置。
)

3.在启动时注册默认配置：

confreg 0x41

输出将如下所示：

rommon #1> confreg 0x41
Update Config Register (0x41) in NV内存...

4.然后启动默认配置：

boot

控制台输出：

rommon #2> boot
Launching BootLoader...
Boot configuration file contains 1 entry.

Loading disk0:/asa822-k8.bin... Booting...
Platform ASA5505
Loading...
Disabling IRQ #9
dosfsck 2.11, 12 Mar 2005, FAT32, LFN
Starting check/repair pass.
Starting verification pass.
/dev/hda1: 94 files, 9097/31033 clusters
dosfsck(/dev/hda1) returned 0
Set 'tap0' persistent and owned by uid 0
IO memory 39583744 bytes

Processor memory 141643776, Reserved memory: 41943040 (DSOs: 0 + kernel: 41943040)

[...]

Ignoring startup configuration as instructed by configuration register.
Type help or '?' for a list of available commands.
ciscoasa>

5.进入特权访问模式：

enable

系统将提示您输入密码，只需将其留空即可。

6.将当前的默认运行配置复制为启动配置，然后按Enter：

copy startup-config running-config

控制台输出：

ciscoasa> enable
Password: 
ciscoasa# copy startup-config running-config

Destination filename [running-config]?

INFO: outside interface address added to PAT pool
..
Cryptochecksum (unchanged): a4697d06 3ffffb9e bbc4928a bef38b45

5298 bytes copied in 5.660 secs (1059 bytes/sec)
vdl-5505#

7.在配置模式下输入：

conf t

8.将"启用"密码更改为已知值：

enable password system

9.在启动时注册正在运行的配置：

config-register 0x01

10.将配置写入内存：

copy run start

控制台输出：

vdl-5505# copy run start

Source filename [running-config]? 
Cryptochecksum: 8ce80471 55ccb516 364b0437 c3967f04

5298 bytes copied in 1.290 secs (5298 bytes/sec)
vdl-5505#

11.使用以下命令重新启动设备：

reload

控制台输出：

vdl-5505# reload
Proceed with reload? [confirm] 
vdl-5505#

***
*** --- START GRACEFUL SHUTDOWN --
Shutting down isakmp
Shutting down webvpn
Shutting down File system

***
*** --- SHUTDOWN NOW --
Process shutdown finished