Cisco ASA5520 Default config

In this example we show the default settings and the difference to a clean blank config. If you are setting up a new firewall, start with a defined config.

Some output form a fresh unpacked Cisco ASA 5580

• ASA5580BootMessage

Some output form a fresh unpacked Cisco ASA 5585X-S40

• ASA5585XS40BootMessage
• ASA5585XS40ShowVersion
• ASA5585XS40ShowRun
• ASA5585XS40TwoFirewallBlades

Some output form a fresh unpacked Cisco ASA 5545X

• ASA5545XBootMessage
• ASA5545XShowVersion
• ASA5545XShowRun
• ASA5545XShowFlash

Some output form a fresh unpacked Cisco ASA 5520

• ASA5520BootMessage
• ASA5520ShowVersion
• ASA5520ShowFlash
• ASA5520ShowRun
• ASA5520ShowRunAll

The factory config is slightly different from erasing all config with clear config all ASA5520CleanConfig

The difference is

diff /tmp/asa.pre /tmp/asa.post
36,38c36,39
<  nameif management
<  security-level 100
<  ip address 192.168.1.1 255.255.255.0
---
>  shutdown
>  no nameif
>  no security-level
>  no ip address
43,44d43
< logging asdm informational
< mtu management 1500
57,59d55
< user-identity default-domain LOCAL
< http server enable
< http 192.168.1.0 255.255.255.0 management
66,68d61
< dhcpd address 192.168.1.2-192.168.1.254 management
< dhcpd enable management
< !
72d64
< webvpn
102c94
< Cryptochecksum:ffa1955c41d62b4e766f829755c7445c
---
> Cryptochecksum:54a62ea53ace01c83774994746fdead9

in the short version (show runnning-config). You get a more difference with show running-config all

You can get back to the factory config with the command configure factory-default or configure factory-default 10.1.1.1 255.255.255.0 as a IP for the management interface.