backing up cisco configs

Posted on 2014-12-22
Last Modified: 2014-12-27
hey guys,

we have cisco switches and firewalls at various locations. What can i use to automate to backup configs of all from one central location?
Question by:Cobra25
LVL 11

Expert Comment

ID: 40513845
I've used Solarwinds' Network Configuration Manager for some time on both Cisco and non-Cisco routers/switches/firewalls with good success. It's not free, but it does a great job, provides reporting, and also can automate firmware updates and other useful things.

You can download a free, fully-functional 30-day trial and try it on for size.

Author Comment

ID: 40513987
That looks great, but 2700$ is very steep! I should've specified cost effective :)
LVL 11

Accepted Solution

rharland2009 earned 500 total points
ID: 40513993
Okay, fair enough.
Here's a similar product - also owned by Solarwinds - that one of my colleagues has used for many years to automate all backups. It works like a charm and starts at $750 USD.
Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.


Expert Comment

ID: 40514482
You can use free solution. Cisco devices support kron tab configurations.
Install a free TFTP server and in all your network devices configure below configuration:

conf t

kron occurrence Backup at 17:00 5 recurring
 policy-list Backup
kron policy-list Backup
 cli show run | redirect tftp://
 cli show run | redirect tftp://
LVL 17

Expert Comment

ID: 40514818
On the freeware side, rancid is pretty good:

Or you can write a fairly simple script in Expect to upload stuff via tftp and archive that:

set timeout 3

set hostip [lindex $argv 0]
set date [lindex $argv 1]
set tftp [lindex $argv 2]

spawn telnet $hostip
expect_after eof { exit 0 }

## interact with SSH
expect "Username:" { send "USERNAME\r" }
expect "Password:" { send "SUPERSECRET\r" }

set timeout 3

expect "#"
send "copy running-config tftp:\r"
expect "?\r"
send "$tftp\r"
expect "?\r"

set timeout 15

send "$hostip.$date\r"
expect "#"
send "exit\r"

Open in new window


Expert Comment

ID: 40515964
The issue with "sh run" on cisco firewalls is that you only get * when ever you meet a encrypted key so in firewalls use "more system:running-config"

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Managing 24/7 IT Operations is a hands-on job and indeed a difficult one. Over the years I have found some simple tips and techniques to increase the efficiency of the overall operations. The core concept has always been on continuous improvement; a…
As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question