Auto backup of firewall

Rizwan · ‎09-27-2015

Hi,

Is it possible to take auto backup of Cisco ASA firewall with TFTP server?

Thanks,

Ganesh Hariharan · ‎09-27-2015

Hi,

Is it possible to take auto backup of Cisco ASA firewall with TFTP server? 


Thanks,

Hi Rizwan,

Have you looked on below cisco doc link for more information.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008072142a.shtml

If you need to automate it, there are suggestions in the Cisco doc for that. Otherwise you'll need to learn how to script it (in a language like Bash or Expect). Software like Kiwi cat tools and RANCID also do these type of stuff.

http://www.kiwisyslog.com/kiwi-cattools-overview/

Hope it Helps..

-GI

Rate if it Helpss..

jsinix.1337 · ‎04-15-2016

You can use this if it fits your needs: https://github.com/jsinix/codemine/tree/master/Cisco-ASA-Backup

Marius Gunnerud · ‎04-16-2016

What version of ASA are you running?

If you are running 9.2(1) or newer you can use EEM to copy the running config to the TFTP server.

event manager applet configbackup

event timer watchdog time 604800

action 1 cli command "more system:running-config"

output file overwrite ftp://username:password@172.172.27.10

This will take a backup of the ASA running config once a week. I am a little uncertain if we need to define the destination filename in the ftp command though as I have not tested this yet. You can however also specify TFTP.

Keep in mind that RANCID and Kiwi, as Ganesh has mentioned, are freeware so it is worth considering them before using EEM.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts