Solved

How do I extract and backup my Cisco ASA 5510 configuration information  to a text file?

Posted on 2010-11-10
5
831 Views
Last Modified: 2012-06-21
I only have access to my firewall via a telnet session so i need the commands to backup the configuration file. I am already running a TFTP server on my machine.
0
Comment
Question by:wademi
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
5 Comments
 
LVL 18

Expert Comment

by:jmeggers
ID: 34101703
"copy run disk0:<filename>" will back it up locally on the ASA.  
"copy disk0:<filename> tftp will copy that file to a TFTP server to store off-box
"copy run tftp" and follow the prompts to store it off-box without storing it locally  
0
 
LVL 14

Accepted Solution

by:
Otto_N earned 500 total points
ID: 34101751
I copied the following right out of "Cisco Security Appliance Command Line Configuration Guide":

"To copy from a TFTP server, enter the following command:
hostname# copy tftp://server[/path]/filename {flash:/ | disk0:/ | disk1:/}[path/]filename

"The flash:/ keyword represents the internal Flash memory on the PIX 500 series security appliance.  You can enter flash:/ or disk0:/ for the internal Flash memory on the ASA 5500 series adaptive security appliance. The disk1:/ keyword represents the external Flash memory on the ASA."

To copy to the TFTP server, just reverse the two arguments of the copy command.  Hope it helps...
0
 
LVL 14

Expert Comment

by:Otto_N
ID: 34101859
Sorry, jmeggers, it seems we've answered the same question at the same time.

wademi
Please ignore my comment, as it state the same as jmeggers' comment, and is actually applicable to file transfer (such as software backup and upgrade, visible in the flash: and disk0/1: file systems), rather that configs (not visible in flash: and disk:, but reachable through "running-config" and "startup-config" handles).
0
 

Author Comment

by:wademi
ID: 34103262
Hi guys. Just to be clear i am copying to a location on the TFTP server.
Whats the exact command to specify the IP address of the TFTP server and file  path where I want the backup config to be copied to.
0
 
LVL 14

Expert Comment

by:Otto_N
ID: 34110475
I was always under the impression that TFTP does not have the folder-handling capabilities that FTP has.  But I do notice that the info I pasted in my previous comment have an optional "/path" variable.  I assume that TFTP cannot browse folders (like with FTP), but that you can specify the path.

Therefore "copy run tftp://tftp.acme.com/folder/subfolder/my-router-config" should copy the running config to a my-router-config file located in the folder/subfolder-directory in the receive folder of the TFTP server running on the tftp.acme.com server.  This can also be replaced with an IP address, i.e. tftp://192.168.0.1/folder/subfolder/my-router-config.

Just one thing, the folders have to exist, as TFTP will not create them.
0

Featured Post

Free NetCrunch network monitor licenses!

Only on Experts-Exchange: Sign-up for a free-trial and we'll send you your permanent license!

Here is what you get: 30 Nodes | Unlimited Sensors | No Time Restrictions | Absolutely FREE!

Act now. This offer ends July 14, 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

696 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question