I was wondering and curious, how you guys do when you take backups of your devices? Automated or manually?
I am tasked to find a solution to take automated backups of our network devices and I can't decided what to do as there are some ways to do this. Rancid which I have heard ALOT of and I think it is one of the best ways to take backups as it send mails as soon as you change configuration it will notify you with the change. BUT since I have no Linux experience and the guides I have seen is difficult to follow, so I somehow have to look for another solution.
Cisco switches and routers have something called "archive" which sends the configuraion to a tftp, scp, ftp, etc and this is good as well, but it doesn't work with ASA. ... I have tried this and it works perfect with Windows (tftp64 server) but again since we have an ssh server and want to store these there, I faced some problems, don't really know why.
I have done the following but none of them works when I try to send it to a tftp server in Linux. If you have done it or can assists I'd be thankful and your help will be very appreciated.
xxx-r1(config)#archive xxx-r1(config-archive)#path tftp://10.1.1.1/$h xxx-r1(config-archive)#exit xxx-r1(config)#exit xxx-r1(config)#archive xxx-r1(config-archive)#path tftp://10.1.1.1/backup/$h xxx-r1(config-archive)#exit xxx-r1(config)#exit
Note: /backup/ = is the folder I have created in the tftpboot directory.
chmod 777 /tftpboot/backup AND chmod 666 /tftpboot/backup didn't really work for me.
Best Answer +BudMan , 26 June 2014 - 21:18
So I was walking through the guide - and looks good, but something must of changed between the 12 and version of trac he was using when the guide was written for
The rancid part is working great. even got it working with my home sg300, which not really supported out the box because its not a true cisco ios.. quick google found this https://github.com/c...rancid-cisco-sb
But I had to add
tracopt.versioncontrol.svn.* = enabled
to the trac ini.
So looking good - had to deploy my clean linux vm, and doing this while real work keeps bugging me and remotely to my home network - and still under couple hours from nothing to running system. Would of been real quick if didn't have to look up how to add my sg300 line - spent time troubleshooting why I was getting timeouts in the rancid logs when I know for a fact the login was working. Once I started manually running through the commands rancid does did I figure out why the problem and had to google for how to add the sg line to rancid.
You should really take a shot at the guide I linked too - just walked through it and other than the [components] part I posted above its still right on for a ubuntu 14.04 install.
But sure if you want I could create a working vm for you with info of what to edit to have it talk to your boxes.
Again - walk through that guide its really spot on, you really don't have to understand anything about linux to copy and paste, etc. Go to the full post