ElKono

Cisco… what else…

Tag Archives: scp

Daily Backup from Cisco Router Configuration with SCP (Secure Copy)

hi,

today I let you know how you can do a “secure” automatic backup from your router configuration… let’s go! I’ve done it with an Windows Server 2003 as backup server you can also try it with a Linuxbox 😉

Note: the username and password are stored in cleartext in the config.

Download & Install OpenSSH for windows (http://sshwindows.sourceforge.net)

  • Install default
  • open services.msc -> start OpenSSH server

Create a local user:

  • User: cisco
  • Pass: secure
    • Add user to local ADMINISTRATOR group (otherwise you cannot connect)

open cmd

  • cd “\Program Files\OpenSSH\bin\”
  • mkgroup –l >> ..\etc\group
  • mkpasswd –l >> ..\etc\passwd
    • this 2 cmds creates local group & user files

open  regedit

  • HKEY_LOCAL_MACHINE\Software\Cygnus Solutions\Cygwin\mounts v2/home2
    • Change key “native” from “C:\Documents and Settings” to your Backup Drive i.e. “e:\”
    • Now you can change the homepath from “/home/cisco” in the passwd file to “/”

open services.msc and start this service -> “OpenSSH”

Now test with putty if you can connect to this SSH Server

  • 127.0.0.1 port 22
  • User: cisco
  • Pass: secure

Now we have to configure the router that it does the backup automatically.

Variables:

  • $h = hostname
  • $t = time (command does not work fine – better leave it away)

Path: save path
Write-memory – when you save manually he will save also via SCP
Time-period: 1440 Minutes -> daily backup | 10080 weekly backup

Connect to router via SSH and execute following commands

router# conf t
router(config)# archive
router(config-archive)# path scp://cisco:secure@10.10.10.10//cygdrive/e/backup/network/switch/$h/$t-$h
router(config-archive)# write-memory
router(config-archive)# time-period 1440
router(config-archive)# exit
router(config)# exit
router# write memory

You are done!

Every time you do a write memory – it will also save via SCP!

[best regs]
elkono