Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2811
Views
0
Helpful
2
Replies

copy switch/router configuration files via FTP securely with TLS

cisco
Level 1
Level 1

‎12-26-2017 12:57 PM - edited ‎03-03-2019 08:41 AM

We use ftp to keep copies of our router and switch configurations. Is there any way to make those copy over a secure FTP connection with TLS/SSL? Or with scp?

 

As far as I can tell, only un-encrypted transfers are possible from these devices via ftp and tftp.

 

Thanks

Labels:
0 Helpful
2 Replies 2

cisco
Level 1
Level 1

‎12-26-2017 01:03 PM

Nevermind, when I searched for scp instead of ftps or ftp tls, I found the answer.

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/security/d1/sec-d1-xe-3se-3850-cr-book/sec-d1-xe-3se-3850-cr-book_chapter_0101.html

ip scp server enable
0 Helpful

NetAdmin2
Level 1
Level 1

‎01-30-2025 05:36 AM

SCP is a deprecated protocol (https://lwn.net/Articles/835962/), considered to be insecure and has been replaced by SFTP https://en.wikipedia.org/wiki/SSH_File_Transfer_Protocol

See: https://www.openssh.com/txt/release-8.0

### Security

This release contains mitigation for a weakness in the scp(1) tool
and protocol (CVE-2019-6111): when copying files from a remote system
to a local directory, scp(1) did not verify that the filenames that
the server sent matched those requested by the client. This could
allow a hostile server to create or clobber unexpected local files
with attacker-controlled content.

This release adds client-side checking that the filenames sent from
the server match the command-line request,

The scp protocol is outdated, inflexible and not readily fixed. We
recommend the use of more modern protocols like sftp and rsync for
file transfer instead.

 

0 Helpful
Customers Also Viewed These Support Documents