Solved

How to Apply the patch for a cisco router

Posted on 2004-04-23
5
581 Views
Last Modified: 2010-04-17
I have a Cisco 2600 series router. I got the patch for the router to fix the vulnerability, the file is a ".bin" file.

I have a copy of the Cisco TFTP Server v1.1

Can someone help me with the procedure on how to update the router and maintain the current configuration? Please provide a step by step instruction.

Thanks in advance.
0
Comment
Question by:lind4ever
  • 3
  • 2
5 Comments
 
LVL 28

Accepted Solution

by:
mikebernhardt earned 500 total points
ID: 10904382
Get into your router and type "show version." Cisco doesn't write "patches" per se, they just update their software images to include their patches. You need to make sure that the new software is in the same software "train" as the current one. If the new one isn't compatible with your router it won't boot due to wrong hardware, not enough memory, etc. . If it has a different feature set some of your current functions may not work.

If you post your "show version" output and the name of your new .bin file, I can tell you whether it will work as you expect. You will not lose your configuration file in any case, the router handles it separately.

In general, the procedure is:
put the .bin file on your tftp server. If it's a UNIX server make sure the permissions are 644.

To be safe, copy your config to the TFTP server.
type
copy startup-config tftp
Give the tftp server IP address and the name you want for the saved config, and go.

You can also save your current software. Type
   copy flash: tftp
It will ask you if the remote site is a host (hit enter), then the IP address of the tftp server, then confirm the name of the image file, and go.

Now you're ready. On the router, type
      copy tftp flash:
The router will ask you for the IP address of the server, then the name of the image file (the .bin file). It will ask you for the destination file name. If it copies the name you already gave, just hit enter. Othewrwise type the name again exactly.

It will ask you about erasing flash. You must say YES. Again, this doesn't affect config, which is NVRAM. Then it will copy the image in. Make sure it copies successfully.

 Copying the new image will not affect service. You can do it anytime and schedule a reboot for after hours. You'll need to reboot for the new image to be used. After you reboot, you'll be good to go.
0
 

Author Comment

by:lind4ever
ID: 10904474
Here is the output of "show ver":

Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-I-M), Version 12.0(7)T,  RELEASE SOFTWARE (fc2)
Copyright (c) 1986-1999 by cisco Systems, Inc.
Compiled Tue 07-Dec-99 02:12 by phanguye
Image text-base: 0x80008088, data-base: 0x807AAF70

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)

Router uptime is 45 weeks, 1 day, 2 hours, 55 minutes
System returned to ROM by power-on
System image file is "flash:c2600-i-mz.120-7.T"

cisco 2620 (MPC860) processor (revision 0x600) with 26624K/6144K bytes of memory
.
Processor board ID JAD05290PT2 (1715027577)
M860 processor: part number 0, mask 49
Bridging software.
X.25 software, Version 3.0.0.
1 FastEthernet/IEEE 802.3 interface(s)
1 Serial network interface(s)
32K bytes of non-volatile configuration memory.
8192K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102


The file given to me by Cisco is "c2600-i-mz. 120-7.T3.bin"
0
 
LVL 28

Expert Comment

by:mikebernhardt
ID: 10904544
That will be fine. Although I would see if I could get more recent software, at least the latest version of 12.0 (it's 12.0-20-something). But if what you have is working well for you, then what they sent you will work perfectly too.

Good luck!
0
 

Author Comment

by:lind4ever
ID: 10904762
Thanks mikebernhardt, I'll try to apply the patch and see how it goes.
0
 

Author Comment

by:lind4ever
ID: 10929890
mikebernhardt, That worked really well. Thank you for your help.
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

Problem Description:   Couple of months ago we upgraded the ADSL line at our branch office from Home to Business line. The purpose of transforming the service to have static public IP’s. We were in need for public IP’s to publish our web resour…
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now