Good plan do you know were the nvam is stored in the 2911 router so i can remove it.

See below for instrcutions from a tech-tips instrcutor:

"NVRAM chip is next to the ROM chip on the motherboard. If you look from the back end of the router with the case off (the end with the interfaces and power supply, there are two removable chips by the flash. The left one is the ROM and the right one is the NVRAM.

Most of Cisco's diagrams don't specifically show exact locations of the various chips. "

If you can, remove the nvram chip......boot up another router (non production) and hot swap the chips and do a save config. this should write the default config to nvram.

Hi kevin,

See the blow link will help you more... "Locating Internal Modules"  page.

http://www.cisco.com/en/US/docs/routers/access/2900/hardware/installation/guide/Internal_Modules.html

Please rate the all helpfull posts.

Regards,

Naidu.

leolaohoo wrote:
Besides, Cisco doesn't care what config's in there.  If they find a config they just erased it.  Being a major supplier to various government agencies all throughout the world, it won't jeopardize it's reputation by posting your config in the internet.  Your secret config is safe with them.  

I agree but knowing certain US Gov. policies, logic and common sense simply doesn't apply. So in fact some IT mnuf. now replace hard drives without wanting the failed part back. That is the only way to keep certain "security" gurus happy.

Hi all

well first off

Leolaohoo you are right, however that said the rules are the rules and the rules comes from what is possible more than what is probable.

I do not think it is probable that someone steals the information I agree with you on that but it is possible to do it.

people dream up how to steal the information and use it in devious ways.

Right or wrong you got to admit that if you had a contact who worked at cisco reclaiming this type of hardware you would have a shortcut into lots of passwords and wierd configurations that would show lots of information on what security (access-lists, tacacs, nat and so on) and networks looks like. Connect that to the RMA number you would know where that information comes from.

I would state that if the routers are government and the rules that applies to those routers state that they have to be securely erased or atleast erased then you can not release such a router without erasing the information. (no point in putting yourself on the fireingline).

if there is a special part that is broken (power/flash/ram) then replace that and erase the units then send them.

if there is not then lean back towards the rules, curse them a bit if you like and buy new equipment.

as have been spoken out before some vendors understand that sometimes there is no possible way that the information contained on the media is allowed out of the company/government entity so there is a possibility to pay an extra fee to have the waranty and the parts gets left behind on the premises.

Good luck

HTH

What happens if you take a 2911 router and remove the flash and install one of the broken routers flash instead?

Will it boot with the wrong config ?

If it does just remove the flash since that would be where the config is stored on the 2911 since it followed the card to the new router.

its atleast worth a test.

And as a general rule, Ask the guys who made the rules, they should be able to help you somewhat atleast.

to what is expected or not.

Talk to your cisco rep, they might know how to deal with situations like this.

it would not be the first time this have happened.