In this article, I will show you how to emulate Cisco ASA using Qemu. Once again, please note that ASA is not provided and will not be. So please don’t ask. Also be aware that ASA does not 100% work in Qemu but that’s enough to play with it.
This Howto is still a draft and has been tested only on Linux.Installation
First compile and patch Qemu as you would do for running JunOS. This will give us pcap, lcap and UDP tunnels (i.e. GNS3/Dynamips connections) capabilities.
Then obtain ASA itself. If you are smart and patient you will find it. I used asa802-k8.bin for my installations. As far as I know, nobody has been able to run ASA > version 8.2 (ASA keeps rebooting).
The next step is to get an initrd and a Linux kernel (inside the initrd) from your ASA image to use them with Qemu and also fix the initrd for our needs. The initrd is zipped and archived in the ASA image, we have to extract it.
There are 2 ways, manually or using a tool I created.
Manual method
Create an hexadecimal dump of your image:
hexdump -C asa802-k8.bin > asa802-k8.hex |
grep “1f 8b 08 00 1d” asa802-k8.hex 001228b0 1f 8b 08 00 1d 3d 73 46 00 03 ec 3a 6d 54 14 57 |…..=sF…:mT.W| |
Let’s find the image size:
ls -la asa802-k8.bin -rwxr-xr-x 1 root staff 14524416 26 Nov 20:14 asa802-k8.bin 14524416 bytes. |
echo "14524416 ; ibase=16 ; last - 1228B0" | bc | tail -n 1 13334352 |
tail -c 13334352 asa802-k8.bin > asa802-k8.gz |
gzip -d asa802-k8 gzip: asa802-k8.gz: decompression OK, trailing garbage ignored |
mkdir tmp ; cd tmp |
cpio -i --no-absolute-filenames --make-directories < ../asa802-k8 |
cp vmlinuz ../asa802-k8.kernel |
This script formats the 256 MB flash on first start to be used by ASA. Loads the network drivers modules for Intel e100 (i82559er in Qemu) and Intel e1000 cards and activates the network interfaces to be used in ASA. I noticed that if we immediately start ASA after this first boot, it freezes (don’t really know why but it seems the system do something and slow down during the first minute …). The next time you start the system, the script will still load the activate the network interfaces and automatically start ASA.
#!/bin/sh FIRST_START=no if test ! -e /mnt/disk0/lina_monitor then fdisk /dev/hda << EOF n p 1 5 979 t 4 w EOF mkdosfs -F 16 /dev/hda1 mount -o umask=0000,noatime,check=s,shortname=mixed /dev/hda1 /mnt/disk0 cp /asa/bin/lina /mnt/disk0/lina cp /asa/bin/lina_monitor /mnt/disk0/lina_monitor FIRST_START=yes fi modprobe e100 modprobe e1000 ifconfig eth0 up ifconfig eth1 up ifconfig eth2 up ifconfig eth3 up ifconfig eth4 up ifconfig eth5 up if test $FIRST_START = yes then echo "" echo "" echo "This is your first boot, please wait about 1 min and then type the following commands:" echo "cd /mnt/disk0" echo "/mnt/disk0/lina_monitor" echo "" echo "Please note to use the following command under ASA to save your configs:" echo "copy run disk0:/.private/startup-config" echo "" exit fi cd /mnt/disk0 /mnt/disk0/lina_monitor |
Now you can compress all the file and have the initrd ready to use in Qemu:
find . | cpio -o -H newc | gzip -9 > ../asa802-k8.initrd.gz |
Using ASA with Qemu
Create a FLASH (this is a virtual hard disk).qemu-img create FLASH 256M |
qemu -hda FLASH -kernel asa802-k8.kernel -hdachs 980,16,32 \ -initrd asa802-k8.initrd.gz -m 512 -no-kqemu -nographic -append \ "console=ttyS0,9600n8 hda=980,16,32 bigphysarea=16384 auto nousb ide1=noprobe" |
Using ASA with GNS3
To be completed:In Preferences -> Qemu -> Qemuwrapper section:
Set the path to Qemuwrapper (can be found in the GNS3 package)
Set the working directory (e.g. /tmp).
Set the path to your patched Qemu in “Path to Qemu”
In ASA section:
Set the paths to your initrd and kernel.
Drag and Drop an ASA symbol on the scene, start the firewall and telnet to it.
No comments:
Post a Comment