Cisco – Backup and Restore

***** ASA, Router, Switch  Backup and Store *****

Note: Supported protocols TFTP , HTTP, FTP,  SSH/SCP. 

This will be the old fashion TFTP

  • TFTP runs on port 69
  • You will need a TFTP server. It can be on your NCM server, laptop, or desktop.
  • Some AV and NGAV will block or warn you of potential threats when you run a TFTP server.
  • You will need to pick what configurtation you want to backup startup-config or running-config
  • If you restore a configuration to a running config you will need to save it to flash copy run star or wr
  • If you issued a “copy tftp startup-config”, you would need to reboot for the restored config to be loaded into memory.
     

================================================================

TFTP – Configuration Backup #

Config t
copy running-config TFTP
Address or name of remote host []? 10.10.0.1
Destination filename [HQ-confg]? ASA-HQ-3-12-16
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
9400 bytes copied in 0.848 secs (17001 bytes/sec) #

—————— #

TFTP Restore #

copy tftp start
Address or name of remote host []? 10.10.0.1
Source filename []? HQ-ASA-3-12-14
Destination filename [running-config]?
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
9400 bytes copied in 0.848 secs (17001 bytes/sec)

=========================================================

***** ASA Backup and Store Single Line Command ******

Backup #

TFTP ( great for scipting)

copy /noconfirm running-config tftp://172.100.1.24/1080_ST-asa-ConfigFile.txt

————————-

**** The int=inside tells the ASA to use the inside interface when sending the backup
**** Use this when doing a backup over a VPN
!
copy /noconfirm startup-config tftp://172.19.1.24/7802_ST-ASA-ConfigFile.txt;int=inside

=================================================================
FTP

copy ftp://[username[:password]@]<SERVER>[/path]/filename {flash:/ | disk0:/ | disk1:/ } [path/] filename
!
! ASA will then go through the infromation you just provided
!
Address or name of remote host [x.x.x.x]?
Source username [mypassword]?
Source password [XXXXX]?
Source filename [asa823-17-k9.bin]?
Destination filename [asa823-17-k9.bin]?

==================================================================

HTTP
copy http[s]://[username[:password]@]<SERVER>[:port] [/path]/filename {flash:/ | disk0:/ | disk1:/ } [path/]filename
!
! ASA will then go through the infromation you just provided
!
Address or name of remote host [x.x.x.x]?
Source filename [asa823-17-k9.bin]?
Destination filename [asa823-17-k9.bin]?

==================================================================

SSH/SCP
! You need to enable SCP
ssh scopy enable
!
scp –v <filename> username@asa_address


=============================================================

Powered by BetterDocs

Leave a Reply