[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 168
  • Last Modified:

backing up cisco configs

hey guys,

we have cisco switches and firewalls at various locations. What can i use to automate to backup configs of all from one central location?
0
Cobra25
Asked:
Cobra25
1 Solution
 
rharland2009Commented:
I've used Solarwinds' Network Configuration Manager for some time on both Cisco and non-Cisco routers/switches/firewalls with good success. It's not free, but it does a great job, provides reporting, and also can automate firmware updates and other useful things.

http://www.solarwinds.com/network-configuration-manager.aspx

You can download a free, fully-functional 30-day trial and try it on for size.
0
 
Cobra25Author Commented:
That looks great, but 2700$ is very steep! I should've specified cost effective :)
0
 
rharland2009Commented:
Okay, fair enough.
Here's a similar product - also owned by Solarwinds - that one of my colleagues has used for many years to automate all backups. It works like a charm and starts at $750 USD.

http://www.solarwinds.com/kiwi-cattools.aspx
0
A Cyber Security RX to Protect Your Organization

Join us on December 13th for a webinar to learn how medical providers can defend against malware with a cyber security "Rx" that supports a healthy technology adoption plan for every healthcare organization.

 
askincakirCommented:
Hi,
You can use free solution. Cisco devices support kron tab configurations.
Install a free TFTP server and in all your network devices configure below configuration:

conf t

kron occurrence Backup at 17:00 5 recurring
 policy-list Backup
!
kron policy-list Backup
 cli show run | redirect tftp://10.0.2.1/R-1.cfg
 cli show run | redirect tftp://10.0.3.1/Switch-1.cfg
!
end
0
 
TimotiStCommented:
On the freeware side, rancid is pretty good:
http://www.shrubbery.net/rancid/

Or you can write a fairly simple script in Expect to upload stuff via tftp and archive that:
#!/usr/bin/expect

set timeout 3

set hostip [lindex $argv 0]
set date [lindex $argv 1]
set tftp [lindex $argv 2]

spawn telnet $hostip
expect_after eof { exit 0 }


## interact with SSH
expect "Username:" { send "USERNAME\r" }
expect "Password:" { send "SUPERSECRET\r" }

set timeout 3

expect "#"
send "copy running-config tftp:\r"
expect "?\r"
send "$tftp\r"
expect "?\r"

set timeout 15

send "$hostip.$date\r"
expect "#"
send "exit\r"

Open in new window


Tamas
0
 
DonbooCommented:
The issue with "sh run" on cisco firewalls is that you only get * when ever you meet a encrypted key so in firewalls use "more system:running-config"
0

Featured Post

Threat Trends for MSPs to Watch

See the findings.
Despite its humble beginnings, phishing has come a long way since those first crudely constructed emails. Today, phishing sites can appear and disappear in the length of a coffee break, and it takes more than a little know-how to keep your clients secure.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now