Solved

Backing Up Cisco ASA 5505

Posted on 2008-10-18
3
1,462 Views
Last Modified: 2013-11-16
Hi Experts,

How do you normally backup your asa configuration?

Should I just simply run the 'show running-config' and copy this into notepad then save it?

Or there is a proper way of backing up your config ?

Cheers,
mcse2007
0
Comment
Question by:mcse2007
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 5

Assisted Solution

by:rexxus
rexxus earned 25 total points
ID: 22748236
Depends on your network management environment.  

If you have a tftp/ftp/rcp server you can issue the command write network

This will then prompt you for the IP address and file name to save the config to (file name should already exist ).
0
 
LVL 4

Accepted Solution

by:
yurisk earned 75 total points
ID: 22749890
The principle is right -  all you see in show run output is all the config you should back up. Of course there are other items in the ASA flash - do show flash to see, but you cant do with them much.

I personally use Rancid script/package to do automated backups, so the same show run is saved
on chosen by me times, more info here:
http://www.shrubbery.net/rancid/
(it is free)
0
 
LVL 10

Assisted Solution

by:cstosgale
cstosgale earned 25 total points
ID: 22750060
With ASAs, you are better off using write network as any pre-shared keys for VPNs won't be displayed in the output of a show run. If you write the config to a tftp / ftp server, you will get the pre shared keys in the file.

Of course, only transfer the config of a secure network or via sftp as ftp and tftp transfer data in plain text!
0

Featured Post

When ransomware hits your clients, what do you do?

MSPs: Endpoint security isn’t enough to prevent ransomware.
As the impact and severity of crypto ransomware attacks has grown, Webroot has fought back, not just by building a next-gen endpoint solution capable of preventing ransomware attacks but also by being a thought leader.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question