歡迎您光臨本站 註冊首頁

以恢復Juniper netscreen出口設置來破解口令

←手機掃碼閱讀     火星人 @ 2014-03-09 , reply:0
Netscreen防火牆如何忘記密碼可以通過軟/硬方式恢復到出廠配置默認賬號密碼,有一點比較討厭就是,這個過程將刪除netscreen防火牆的所有配置,cisco 交換機是可以在不刪除配置文件的情況修改密碼.可惜了.所以日常一定養成備份配置文件用於處理緊急事故. 用設備序列號恢復出廠設置 用console線連接到netscreen防火牆,然後輸入設備序列號(serial number),serial number在設備背板面上. login: 0162012009900812 password: !!! Lost Password Reset !!! You have initiated a command to reset the device to factory defaults, clearing all current configuration and settings. Would you like to continue?y/[n] Y 恢復出廠設置,將刪除當前所有的配置,按“Y” !! Reconfirm Lost Password Reset !! If you continue, the entire configuration of the device will be erased. In addition, a permanent counter will be incremented to signify that this device has been reset. This is your last chance to cancel this command. If you proceed, the device will return to factory default configuration, which is: System IP: 192.168.1.1; username: netscreen, password: netscreen. Would you like to continue?y/[n] Y 恢復出廠設置,默認System IP: 192.168.1.1; username: netscreen, password: netscreen,按“Y” In reset ... Juniper Networks SSG5 Boot Loader Version 1.3.2 (Checksum: A1EAB858) Copyright (c) 1997-2006 Juniper Networks, Inc. Total physical memory: 128MB Test - Pass Initialization - Done Hit any key to run loader Hit any key to run loader Hit any key to run loader Hit any key to run loader Loading default system image from on-board flash disk... Done! (size = 15,171,584 bytes) Image authenticated! Start loading... ................................................................. .......................................... Done. Juniper Networks, Inc SSG5/SSG20 System Software Copyright, 1997-2008 Version 6.2.0r3.0 Load Manufacture Information ... Done Initialize FBTL 0........ Done Load NVRAM Information ... (6.2.0)Done Install module init vectors Install modules (01128800,0209f5c0) ... PPP IP-POOL initiated, 256 pools Initializing DI 1.1.0-ns w3g_cfg_init ********************************************************* System time: 22July2010:15:29:44 If this is the initial device startup, use the "set clock" command to set the system clock. ********************************************************* system init done.. login: System change state to Active(1) 現在可以用出廠默認賬號密碼(netscreen)登陸 login: netscreen password: ssg5-serial-> get interface 查詢一下i介面信息,確定已經重置了 A - Active, I - Inactive, U - Up, D - Down, R - Ready Interfaces in vsys Root: Name IP Address Zone MAC VLAN State VSD serial0/0 0.0.0.0/0 Null N/A - D - eth0/0 0.0.0.0/0 Untrust 0023.9c2a.1500 - D - eth0/1 0.0.0.0/0 DMZ 0023.9c2a.1505 - D - bgroup0 192.168.1.1/24 Trust 0023.9c2a.150b - D - eth0/2 N/A N/A N/A - D - eth0/3 N/A N/A N/A - D - eth0/4 N/A N/A N/A - D - eth0/5 N/A N/A N/A - D - eth0/6 N/A N/A N/A - D - bgroup1 0.0.0.0/0 Null 0023.9c2a.150c - D - bgroup2 0.0.0.0/0 Null 0023.9c2a.150d - D - bgroup3 0.0.0.0/0 Null 0023.9c2a.150e - D - vlan1 0.0.0.0/0 VLAN 0023.9c2a.150f 1 D - null 0.0.0.0/0 Null N/A - U 0 注意:在重置設備后,應該及時備份新的配置.這將使你在恢復系統口令的時候能迅速恢復以前的配置. 注意:設備恢復出廠設置功能是開放的.你可以在命令行下輸入:unset admin device-reset關閉這個功能. 按設備reset鍵恢復出廠設置 Reset鍵在設備電源接頭附近 按住用牙籤按住reset 鍵4秒左右,顯示以下信息 login: Configuration Erasure Process has been initiated. Waiting for 2nd confirmation. 直到電源燈閃爍綠色,再按住reset鍵2-3秒,顯示以下信息 2nd push has been confirmed. Configuration Erase sequence accepted, unit reset. 直到狀態燈變成琥珀色長亮1.5秒,然後回到綠色閃爍狀態,這個時候設備已經被重置到出廠設置狀態了. 接著顯示以下信息 Juniper Networks SSG5 Boot Loader Version 1.3.2 (Checksum: A1EAB858) Copyright (c) 1997-2006 Juniper Networks, Inc. Total physical memory: 128MB Test - Pass Initialization - Done Hit any key to run loader Hit any key to run loader .............省略 總結,完全以上步驟還是需要點小技巧的.


[火星人 ] 以恢復Juniper netscreen出口設置來破解口令已經有957次圍觀

http://coctec.com/docs/security/show-post-58942.html