«

»

Feb 21

Cisco ASA 8.4 on GNS3

Categories:

ASA, GNS3, Security

by malikyounas

I struggled quite a lot of get ASA 8.4 working on GNS3. I had 8.0(2) working and was helping to test the configurations and VPNs but now wanted to get 8.4 running such that I can prepare myself for new NAT statements and migration from 8.0(2) to 8.4(2).

Here are the steps to get it working.

1. Download the ASA 8.4 files for GNS3 from the following address

http://www.mediafire.com/download.php?l010dd0c1nayf0d

2. Configure GNS3 as following. ( I am using Ver 0.8.2 Beta 2, Also Tested 8.3 with Windows 7 64 bit which worked without any issues).  Type the code below into relevant fields

 

Qemu Options: -vnc none -vga none -m 1024 -icount auto -hdachs 980,16,32
Kernel cmd line: -append ide_generic.probe_mask=0x01 ide_core.chs=0.0:980,16,32 auto nousb console=ttyS0,9600 bigphysarea=65536
 
Configure the paths for Initrd and Kernel to where you have extracted the files.
 

 

3. Once the firewall is up and running use following activation keys

activation-key 0x4a3ec071 0x0d86fbf6 0x7cb1bc48 0x8b48b8b0 0xf317c0b5

activation-key 0xb23bcf4a 0x1c713b4f 0x7d53bcbc 0xc4f8d09c 0x0e24c6b6

 

It will take a while (10-15 min) to accept the second activation key and will take the same time at first reboot.

That's all done and we have a working firewall to play with.

 

 

Now if you want to run two ASAs, you will have to change the Qemu options on the second firewall as below

Qemu Options: -vnc :2 none -vga none -m 1024 -icount auto -hdachs 980,16,32

 

Troubleshooting:

Please check the comments at the end of post where you will find different ways to resolve issues if you face any. Specially very helpfull comments from GD and are detailed below

 

Download and install the latest version of GNS3 0.8.2 after that download the •Qemu 0.13.0 patched 32 bits binary for Windows from
 
 
Copy and replace all downloaded qemu files and folders with existing qemu files and folders under GNS3 folder.

 

After you have ASA running in GNS and want to play with ASDM, here is the guide to follow

http://www.xerunetworks.com/2012/03/asa-84-asdm-on-gns3-step-by-step-guide/

 

and if you want to connect two GNS3 networks running on two different PCs, use following

http://www.xerunetworks.com/2012/03/connect-gns3-network-to-real-networks-other-gns3-network/

I have posted a LAB Guide for migrating NAT from 8.2 to 8.3/8.4 Version, which is still work in progress but has a lot of stuff already added into it

http://www.xerunetworks.com/2012/03/asa-8384-nat-migration-lab-guide/

Related Posts

251 comments

5 pings

Skip to comment form

  1. Carlos

    May 20, 2013 at 9:46 pm (UTC 1) Link to this comment

    Reply

    It works well, but it doesn’t have all the configuration commands available.

    1. malikyounas

      May 20, 2013 at 9:47 pm (UTC 1) Link to this comment

      Reply

      What commands you find missing?

  2. Naveen George

    May 19, 2013 at 5:30 pm (UTC 1) Link to this comment

    Reply

    hai how to save asa config?

    1. malikyounas

      May 19, 2013 at 5:50 pm (UTC 1) Link to this comment

      Reply

      Use wr

  3. Muthu

    May 18, 2013 at 5:13 pm (UTC 1) Link to this comment

    Reply

    worked like a charm ….perfect…. :)

  4. DatsHim

    May 12, 2013 at 11:40 am (UTC 1) Link to this comment

    Reply

    followed everything getting Dynamips error
    Qemuwrapper doesn’t support hot link add

    Can you help please

    1. DatsHim

      May 12, 2013 at 11:45 am (UTC 1) Link to this comment

      Reply

      NVM just needed to turn off the asa

    2. San

      May 22, 2013 at 11:35 am (UTC 1) Link to this comment

      Reply

      Hi DatsHim,

      I have got the same error “Qemuwrapper doesn’t support hot link add”. How to resolve this? please reply if you have got any solution for this. I encourage solution from others too..

      Thanks,
      San.

  5. dave

    May 10, 2013 at 10:49 am (UTC 1) Link to this comment

    Reply

    Just like to throw in results of the experience that I have had with runinng ASA8.4 on GNS3……

    The ONLY windows platform that I have had success with is Windows7, both 32 and 64 bit.

    Whenever I have tried to use Windows XP (both 32 & 64 bit) or Windows 2003 Server, The ASA will show in GNS3 as started but in reality is has not started and due to this the console session will always drop out after abot 3 seconds.
    I have tried both with and without the patched Qemu files and have tried on various Laptops and PC’s.

    With Windows7 it works perfectly, does everything that it should. With WindowsXP – don’t bother.

    Best regards.

    6. 1 11 12 13 

  1. Nerd Running Wild – ASA 8.4 and GNS3 on Windows 8

    May 20, 2013 at 3:45 am (UTC 1) Link to this comment

    Reply

    [...] http://www.xerunetworks.com/2012/02/cisco-asa-84-on-gns3/ [...]

  2. Creating an ISE, ASA Lab at home without buying any hardware | Howard's Blog

    December 21, 2012 at 1:29 am (UTC 1) Link to this comment

    Reply

    [...] http://www.xerunetworks.com/2012/02/cisco-asa-84-on-gns3/ [...]

  3. Cisco ASA 8.4 on GNS 3 | » Ali's Technology Blog

    November 2, 2012 at 11:07 pm (UTC 1) Link to this comment

    Reply

    [...] was able to use the following site to get the right files for this setup, XeruNetworks. Once you install GNS3 successfully here are some of the first [...]

  4. ASA 8.3/8.4 NAT Migration Lab Guide - My Tech World » My Tech World

    March 13, 2012 at 8:33 pm (UTC 1) Link to this comment

    Reply

    [...] « Cisco ASA 8.4 on GNS3 [...]

  5. ASA 8.4 with ASDM on GNS3 – Step by Step Guide » My Tech World

    March 12, 2012 at 9:31 pm (UTC 1) Link to this comment

    Reply

    [...] http://www.xerunetworks.com/2012/02/cisco-asa-84-on-gns3/ [...]

Leave a Reply