Solved

How to Apply the patch for a cisco router

Posted on 2004-04-23
5
609 Views
Last Modified: 2010-04-17
I have a Cisco 2600 series router. I got the patch for the router to fix the vulnerability, the file is a ".bin" file.

I have a copy of the Cisco TFTP Server v1.1

Can someone help me with the procedure on how to update the router and maintain the current configuration? Please provide a step by step instruction.

Thanks in advance.
0
Comment
Question by:lind4ever
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 10904382
Get into your router and type "show version." Cisco doesn't write "patches" per se, they just update their software images to include their patches. You need to make sure that the new software is in the same software "train" as the current one. If the new one isn't compatible with your router it won't boot due to wrong hardware, not enough memory, etc. . If it has a different feature set some of your current functions may not work.

If you post your "show version" output and the name of your new .bin file, I can tell you whether it will work as you expect. You will not lose your configuration file in any case, the router handles it separately.

In general, the procedure is:
put the .bin file on your tftp server. If it's a UNIX server make sure the permissions are 644.

To be safe, copy your config to the TFTP server.
type
copy startup-config tftp
Give the tftp server IP address and the name you want for the saved config, and go.

You can also save your current software. Type
   copy flash: tftp
It will ask you if the remote site is a host (hit enter), then the IP address of the tftp server, then confirm the name of the image file, and go.

Now you're ready. On the router, type
      copy tftp flash:
The router will ask you for the IP address of the server, then the name of the image file (the .bin file). It will ask you for the destination file name. If it copies the name you already gave, just hit enter. Othewrwise type the name again exactly.

It will ask you about erasing flash. You must say YES. Again, this doesn't affect config, which is NVRAM. Then it will copy the image in. Make sure it copies successfully.

 Copying the new image will not affect service. You can do it anytime and schedule a reboot for after hours. You'll need to reboot for the new image to be used. After you reboot, you'll be good to go.
0
 

Author Comment

by:lind4ever
ID: 10904474
Here is the output of "show ver":

Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-I-M), Version 12.0(7)T,  RELEASE SOFTWARE (fc2)
Copyright (c) 1986-1999 by cisco Systems, Inc.
Compiled Tue 07-Dec-99 02:12 by phanguye
Image text-base: 0x80008088, data-base: 0x807AAF70

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)

Router uptime is 45 weeks, 1 day, 2 hours, 55 minutes
System returned to ROM by power-on
System image file is "flash:c2600-i-mz.120-7.T"

cisco 2620 (MPC860) processor (revision 0x600) with 26624K/6144K bytes of memory
.
Processor board ID JAD05290PT2 (1715027577)
M860 processor: part number 0, mask 49
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
1 Serial network interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102


The file given to me by Cisco is "c2600-i-mz. 120-7.T3.bin"
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 10904544
That will be fine. Although I would see if I could get more recent software, at least the latest version of 12.0 (it's 12.0-20-something). But if what you have is working well for you, then what they sent you will work perfectly too.

Good luck!
0
 

Author Comment

by:lind4ever
ID: 10904762
Thanks mikebernhardt, I'll try to apply the patch and see how it goes.
0
 

Author Comment

by:lind4ever
ID: 10929890
mikebernhardt, That worked really well. Thank you for your help.
0

Featured Post

[Webinar] Learn How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a guide to configure bridging on Cisco Routers.  This is something I never knew was possible until after making a few phone calls to Cisco.  Using bridging saved our company money by not requiring us to purchase a new switch.  Bridgi…
In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month8 days, 9 hours left to enroll

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question