|
TOP
|
| [ 录入者:admin | 时间:2007-11-05 23:23:24
| 作者: | 来源:
| 浏览:2136次 ] |
转载
I think we are close to getting asa to work on qemu. Like others, I could boot up to asa and play with the config. However, I see 2 major problems:
1. Could not mount the flash device. So one cannot save the config.
2. Could not get connectivity to host or external network.
Regarding #1, notice the error messages during bootup:
| Code: |
mount: Mounting /dev/hda1 on /mnt/disk0 failed: No such device or address
mount: Mounting /dev/hda1 on /mnt/disk0 failed: No such device or address | If you look in /etc/init.d/rcS.common, you can see:
| Code: |
mount -t vfat -o $MOUNT_OPTS /dev/hda1 /mnt/disk0 2>/fserr ||
mount /dev/hda1 /mnt/disk0 2>>/fserr ||
cat /fserr >&2 | It is mounting the flash as vfat or default linux filesystems. (In real asa it is ATA compactflash.)
I played with different filesystems: it seems to be missing some vfat device files so it would always say "No such device"; I tried ext3 filesystem and it mounted ok but still lina could not see it.
| Code: |
ciscoasa# sh file sys
File Systems:
Size(b) Free(b) Type Flags Prefixes
* 0 0 disk rw disk0: flash:
- - network rw tftp:
- - opaque rw system:
- - network ro http:
- - network ro https:
- - network rw ftp:
- - network rw smb:
ciscoasa# sh flash:
--#-- --length-- -----date/time------ path
413 0 Oct 29 2007 02:51:37 .private
423 0 Oct 29 2007 02:51:37 .private/DATAFILE
422 0 Oct 29 2007 02:51:35 .private/mode.dat
0 bytes total (0 bytes free)
ciscoasa# | Regarding #2, I tried eepro100 and pcnet. It did not work with eepro100, and pcnet worked only in linux mode (I could ping from host pc to qemu) but not in lina mode. Lina did not show any errors but just did not get any packets in or out. It defaults to installing 6 nics:
| Code: |
ciscoasa# sh ver
Cisco Adaptive Security Appliance Software Version 8.0(2)
Compiled on Fri 15-Jun-07 19:29 by builders
System image file is "Unknown, monitor mode tftp booted image"
Config file at boot was "startup-config"
ciscoasa up 35 secs
Hardware: , 512 MB RAM, CPU Pentium II 2000 MHz
Internal ATA Compact Flash, 1024MB
BIOS Flash Firmware Hub @ 0xffe00000, 1024KB
0: Ext: Ethernet0/0 : address is 00aa.0002.2200, irq 255
1: Ext: Ethernet0/1 : address is 00aa.0002.2201, irq 255
2: Ext: Ethernet0/2 : address is 00aa.0002.2202, irq 255
3: Ext: Ethernet0/3 : address is 00aa.0002.2203, irq 255
4: Ext: Ethernet0/4 : address is 00aa.0002.2204, irq 255
5: Ext: Ethernet0/5 : address is 00aa.0002.2205, irq 255
VLANs : 200
Failover : Active/Active
3DES-AES : Enabled
Security Contexts : 20
GTP/GPRS : Enabled
VPN Peers : 5000
WebVPN Peers : 2500
ADV END SEC : Enabled
Serial Number: 123456789AB
Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 0x00000000
Configuration register is 0x0
Configuration has not been modified since last system restart.
ciscoasa# | I guess we need to play with it some more, and hope someone could solve these problems. |
|
|
|
