watchguard ssl100恢復出廠化設置

網上淘到一臺watchguard的SSL100，舊設備很少人用，網上資料也少。沒有密碼，且不像一般設備在進入恢復模式後就自動清密碼（SSL560 和SSL1000就是如此），進入初始化。只好找到原廠資料，設置成功，記錄如下：
節出自v3_1_WG_SSL_WebUI_UserGuide.pdf

web-update—you have the ID &password
下節適用於已知用戶名和密碼
To install the SSLVPN 3.2 software on your SSLVPN appliance:

1. Download the “WgsslOSv3_2.zip” file. Save it to your desktop. Unzip the file.
2. Connect to the SSLVPN Web UI Manage System > Device Update page
3. Click Browse and navigate to the “stm-sslvpn_tacoma.sysa-dl” file; click Open
4. Click Update.
5. The appliance automatically reboots when update is complete.
6. After reboot, the Web UI Monitor System > System Status page shows version 3.2

下節適用於不知用戶名和密碼
簡單來說就是設置爲recovery模式（液晶面板的向上鍵+power on 或115200－com口進入在進系統之前可選擇SYSB狀態）
此時eth1的IP變爲10.0.1.1,通過ftp更新fireware，將原來的覆蓋掉（用戶名和密碼admin/admin）.這樣就恢復成出廠模式，再通過(eth1默認改爲192.168.111.1)https://192.168.111.1:8443來配置即可
Before you begin Before you start the recovery process, you must download and save a copy of the WatchGuard SSL OS on your

computer. The file has an extension of .sysa- dl . You can download the file from the Software Downloads section of the WatchGuard web site at http://www.watchguard.com/archive/softwarecenter.asp. Start the WatchGuard SSL device in recovery mode

1. Power off the WatchGuard SSL device.
2. Press and hold the up arrow button on the front panel while you power on the device.
3. Continue to hold the up arrow button until Executing SysB appears on the LCD display. When Recovery Mode Ready appears on

the LCD display, the device is in recovery mode. In recovery mode, the Eth1 address ofthe device is set to 10.0.1.1.
Upload a new software image
You must use a command line FTP program to upload the WatchGuard SSL OS software image. Many common FTP commands are disabled on the WatchGuard SSL device for securityreasons. For example, you cannot change directories (cd) or show the remote working directory (pwd). Other FTP programs rely on these commands to show you alist of files in the remote directory, and do not 　operate correctly when these commands are disabled. To upload a new software image to your WatchGuard SSL device:

1. Connect an Ethernet network cable between your computer and the Eth1 interface on the WatchGuard SSL device.
2. Change the IP address of your computer to 10.0.1.2 (or to another IP address on the 10.0.1.0 network).
3. Open the command line interface of your computer. For example, select All Programs > Accessories > Command Prompt from the Windows Start Menu if you use Windows XP.
4. Change your working directory to the location where you saved the .sysa_ dl file.
5. At the command prompt, type ftp 10.0.1.1 to connect to your WatchGuard SSL.
6. When requested, type admin for both the user and the password.
7. Type bin to change the transfer type to binary mode.
8. Type put . Make sure you replace in the command with the name of the .sysa- dl file you downloaded from the WatchGuard Software Downloads page. The upload process can take several minutes to complete. Do not close the window or type more commands until another command prompt appears.
   9.Type quit to close the FTP connection.
9. Exit the command line interface program.

After the software image upload completes, the WatchGuard SSL device installs the software and resets the configuration to the default settings. When the reset process completes, the device automatically restarts. Note The installation and reset process can take up to 10 minutes. Do not turn off the device before this process is complete. Next steps After you restore the software image and the device restarts with factory default settings, you canuse the Quick Setup Wizard to set up your configuration again. Note After the reboot, the IP address of the Eth1 interface changes to 192.168.111.1. You must change the IP address on your computer before you launch the Quick Setup Wizard.
For more information, see Use the Quick Setup Wizard to Set Up a Basic Configuration