Installing PDM on a PIX Firewall

If the process of using TFTP is unfamiliar to you, it’s covered in detail in the “Password Recovery” and “Upgrading” sections at the end of this chapter. The following limited commands assume the PIX is configured to function in a network.

Make sure the TFTP server is running, the PDM file (pdm-211.bin) is copied to the TFTP source file folder, and the firewall can ping the TFTP server.

The single step syntax to copy the PDM image file into the PIX Firewall is as follows:

pix# copy tftp://tftp_server_ip_address/pdm_filename flash:pdm

Or, you can enter the follow command to follow the prompts:

pix# copy tftp flash:pdm

The following example shows this latter method. The process prompts for the TFTP server address (address or name of the remote host) and the name of the PDM file. Don’t forget the .bin extension. After confirming the request, the process runs unattended:

Pix# copy tftp flash:pdm
Address or name of remote host [127.0.0.1]? 192.168.1.10
Source file name [cdisk]? pdm-211.bin
copying tftp://192.168.1.10/pdm-211.bin to flash:pdm
[yes|no|again]? yes
Erasing current PDM file
Writing new PDM file
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
   (lines omitted)
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
PDM file installed.
Pix#

Minimum PIX Configuration

Enable password: cisco
Clock (UTC): 21:11:47 Jan 12 2003
Inside IP address: 192.168.1.1
Inside network mask: 255.255.255.0
Host name: Pix
Domain name: mypix.com
IP address of host running PIX Device Manager: 192.168.1.20