Professional Documents
Culture Documents
I. CLI Setup
* This assumes you have a default GNS3 install on Windows 7/8/8.1/10. For this tutorial
my version of GNS3 is 1.x.x-All in one.
1. Download ASA 8.42 files from my source (beam.to/ronglon), after downloading and
unzipping, we have 2 files: asa842-initrd.gz; asa842-vmlinuz
2. Open GNS3, browse to Edit Preferences QEMU and select ASA tab
6. Browse to your downloaded files, assign asa842-initrd.gz for Initrd and asa842-vmlinuz
for Kernel
10. Right click on ASA click Console. If everything has been configured properly, it will
boot normally like this:
12. Type enable to activate privileged mode, when password required, just press Enter
14. Now type write memory then reboot ASA by using reload command
15. During the reboot, it will take some time for key validation phase. Nothing to be
worried. Wait for 15-20 minutes.
16. Now you have a full-fledged Cisco ASA Firewall running inside your computer
* You will get an error if you try to add a link while the ASA is running
6. Configure the interface you linked to the switch with an IP address in the
same subnet as your loopback adapter
en // no password, just press enter
conf t
int gi 0
ip address 172.16.1.1 255.255.255.0
nameif management
management-only
no shut
end
wr
* If you cannot ping, make sure that Qemu and Qemu Wrapper are allowed
9. Open your TFTP server (I use TFTPD32 because it's free and works well)
10. Click Browse to folder containing ASDM file in TFTP Server Tab
In the TFTP Client tab, enter 172.16.1.1 for Host and 69 for Port (TFTP = UDP: 69)
11. From the ASA console, copy the ASDM bin file to the flash
Wait for a few minutes to complete copying. You could check your copied
12. Set the ASA to load the ASDM at next boot, enable the HTTP server and
setup access:
conf t
end
wr
Start Java Configure Java Security Edit Site List Add https://172.16.1.1
OK
15. Once the ASA is rebooted, open the web browser then enter https://172.16.1.1
* Note: Java may ask for upgrading to the latest version, just click Later
Choose “Install ASDM Launcher” to download the installer then install it.
16. ASDM-IDM Launcher will start automatically after setting up. If not, just
double click ASDM icon in your Desktop. Now enter the IP of ASA and your
configured account.