Network configuration backup

By nabz0r
in Smart Home, Network & Security

 Share

Recommended Posts

Veteran

nabz0r Veteran

Posted
  • Veteran
Posted

Hi guys,

 

I was wondering and curious, how you guys do when you take backups of your devices? Automated or manually?

 

I am tasked to find a solution to take automated backups of our network devices and I can't decided what to do as there are some ways to do this. Rancid which I have heard ALOT of and I think it is one of the best ways to take backups as it send mails as soon as you change configuration it will notify you with the change. BUT since I have no Linux experience and the guides I have seen is difficult to follow, so I somehow have to look for another solution.

 

Cisco switches and routers have something called "archive" which sends the configuraion to a tftp, scp, ftp, etc and this is good as well, but it doesn't work with ASA. :/ ... I have tried this and it works perfect with Windows (tftp64 server) but again since we have an ssh server and want to store these there, I faced some problems, don't really know why.

 

I have done the following but none of them works when I try to send it to a tftp server in Linux. If you have done it or can assists I'd be thankful and your help will be very appreciated.

xxx-r1(config)#archive
xxx-r1(config-archive)#path tftp://10.1.1.1/$h
xxx-r1(config-archive)#exit
xxx-r1(config)#exit


xxx-r1(config)#archive
xxx-r1(config-archive)#path tftp://10.1.1.1/backup/$h
xxx-r1(config-archive)#exit
xxx-r1(config)#exit

Note: /backup/ = is the folder I have created in the tftpboot directory.

touch /tftpboot/backup

chmod 777 /tftpboot/backup AND chmod 666 /tftpboot/backup didn't really work for me. :(
 

Link to comment
https://www.neowin.net/forum/topic/1219515-network-configuration-backup/
Share on other sites
Grand Master

+BudMan MVC

Posted
  • MVC
Posted

rancid is better choice, then doing it on each device.

Here is a really easy to follow guide

https://www.edge-cloud.net/2013/05/rancidtrac-on-ubuntu-12-04-lts/

I could prob setup a vm for you.. Where you would just have to edit a couple of things like your email server and addresses and your login creds and devices.

Not FREE - but pretty reasonable pricing starting at $750

http://www.solarwinds.com/kiwi-cattools.aspx

Any monkey could set it up ;)

BTW: "BUT since I have no Linux experience"

But you list Ubuntu, Debian and Backtrack right under your avatar -- btw backtrack is depreciated.. kali is the new version http://www.kali.org/

Veteran

nabz0r Veteran

Posted
  • Author
  • Veteran
Posted
  On 26/06/2014 at 18:49, BudMan said:

rancid is better choice, then doing it on each device.

Here is a really easy to follow guide

https://www.edge-cloud.net/2013/05/rancidtrac-on-ubuntu-12-04-lts/

I could prob setup a vm for you.. Where you would just have to edit a couple of things like your email server and addresses and your login creds and devices.

Not FREE - but pretty reasonable pricing starting at $750

http://www.solarwinds.com/kiwi-cattools.aspx

Any monkey could set it up ;)

BTW: "BUT since I have no Linux experience"

But you list Ubuntu, Debian and Backtrack right under your avatar -- btw backtrack is depreciated.. kali is the new version http://www.kali.org/

LOL! This monkey couldn't do it. Yes, I do have worked with them and I find it VERY hard to understand and work with. Debian, Ubuntu and BT has a GUI and can't be used not a text based like Rancid. I used BT almost daily at my previous job, but not here. Here we use Nesus instead. :p .. I use both Debian and Ubuntu at home and never had problem with since I don't do advanced stuff, only nomal user stuff.

 

That would  be great if you could assist me with Rancid.

 

CatTools is not an option as it is expensive and since there are free options, I don't think my boss would like to pay for it. The other day I made him buy PRTG. lol

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

So I was walking through the guide - and looks good, but something must of changed between the 12 and version of trac he was using when the guide was written for

The rancid part is working great. even got it working with my home sg300, which not really supported out the box because its not a true cisco ios.. quick google found this https://github.com/chrpinedo/rancid-cisco-sb

But I had to add

[components]

tracopt.versioncontrol.svn.* = enabled

to the trac ini.

So looking good - had to deploy my clean linux vm, and doing this while real work keeps bugging me ;) and remotely to my home network - and still under couple hours from nothing to running system. Would of been real quick if didn't have to look up how to add my sg300 line - spent time troubleshooting why I was getting timeouts in the rancid logs when I know for a fact the login was working. Once I started manually running through the commands rancid does did I figure out why the problem and had to google for how to add the sg line to rancid.

You should really take a shot at the guide I linked too - just walked through it and other than the [components] part I posted above its still right on for a ubuntu 14.04 install.

But sure if you want I could create a working vm for you with info of what to edit to have it talk to your boxes.

post-14624-0-36382000-1403817596.png

Again - walk through that guide its really spot on, you really don't have to understand anything about linux to copy and paste, etc.

Veteran

nabz0r Veteran

Posted
  • Author
  • Veteran
Posted

Thanks BudMan. I just finished with a new VM and now I am going to walk through the guide you linked and if I have some question, believe me I am going to bug you. lol

 

Edit: Already stuck at "Device login credentials via cloginrc"

That file doesn't exists and they didn't mention how to create it.

Grand Master

Haggis Veteran

Posted
  • Veteran
Posted

yeah dude just do

 

vi .cloginrc

 

I use vim i just prefer it but nano is also good :)

 

this might help with commands :) takes a bit of getting used to

 

http://www.tldp.org/LDP/intro-linux/html/sect_06_02.html

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Just noticed you even list the touch command in your OP, and chmod.. And you don't know how to create a file? Well now that I reread that - touch backup would create a file called backup, not a dir. But you use /backup/$h which would say backup is a dir to me and would need to be created with mkdir not touch.

If you want I can clean up my VM I created yesterday and get it to you. It vanilla, bare min install of ubuntu server 14.04 - rancid and trac running on it. I didn't bother to setup email - but could do that before I make it a rancid appliance.. Wonder if others would have use of that - never really figured as much since there are so many guides on setup of rancid and it really only takes a couple of seconds to get it going. And you don't really need a web interface to look at the configs if your just wanting to have backups. You can view them right in the rancid dir.

post-14624-0-69973800-1403868938.png

The nice thing with using something like trac is the easy clean way to view what actually changed.. Here I just admin downed a port not using - turned off snmp and set the port to protected.. And that is clear as day when looking at diffs between revisions.

post-14624-0-44438400-1403869327.png

Veteran

nabz0r Veteran

Posted
  • Author
  • Veteran
Posted

Ah, I thought that it should be there and I don't need to create it myself. Since it had .cloginrc I thought I can't create it with touch (i don't even know what that means). Anyway, I am going to work with it now and see if I can go anywhere, otherwise I will post again. :D

 

I'd like to try it myself, but I get stuck I am going to ask you to send me yours. I like the GUI so I want it too.

Veteran

nabz0r Veteran

Posted
  • Author
  • Veteran
Posted

Nah, this is pissing me off more and more.

BudMan, how about doing some TV instead of doing it in your own VM of course if you have time and willing to do so. :)

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

Yeah we could do that - lets setup a time.. My wife is gone all weekend (girls weekend), but I am going to the track tmrw! My son knows the owner of horse in the 8th race at Arlington tmrw.. Going to go watch it run.. Stopping for beers on way home tonight, but sure we can find a time.

Prob got an hour left here, no much going on -- send me a pm with the details if now is good.

This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.

  • Posts

    • Windows 11 finally gets redesigned Start menu and more in builds 26200.5641 and 26120.4250

      By George P · Posted

      It's an improvement overall but I'm also of the idea that they should just give users more options and let them have the menu they like instead of just going with one outline and some minor options (though finally getting rid of recommended is great). I know people who don't want pins and would rather it all be just the list/grid of apps. Others just want pins, others want them side by side and not up on top of each other. Have more layout options and let people mix and match, problem solved.
    • Audio setup question - onboard realtek + pioneer receiver (analog)

      By Izlude · Posted

      Hi all, I've got a Pioneer VSX 815-k receiver. Love this thing, however, my cat did his business on top of it and kinda recked it... Only analog works (5.1 surround RCA inputs). Normally I'd use toslink from mobo to digital in on the receiver, but the result is a ton of loud white noise over the music. Analog works just fine, so I'm forced to use the 3.5mm jacks on the rear of the mobo to the RCA inputs on the receiver. The issue I face is that there is no DTS or anything fun.. Originally, I could play all my MP3s or watch YouTube etc, and the subwoofer would be booming as I like because of the mixing from the DAC. Now with the analog, none of that is happening  I'm wondering if there's some kind of software solution for Windows to get the subwoofer to play as it did when I had it hooked up through toslink, but for analog out instead. As of now, only audio files that were encoded specifically to produce sound to the sub, will work, but nothing else. As to which onboard sound solution my mobo has, this from the website's description: 121dB SNR AMP-UP Audio with ALC1220 & High-End ESS SABRE 9018 DAC with WIMA audio capacitors Sound BlasterX 720°, the top-of-the-line audio engine solution for 4K gaming and entertainment  yea it uses that wonky SBx 720 app to change the audio effects n stuff.. but doesn't help with my issue Eventually yea, I wanna buy a new one. They're about $80 on ebay after shipping, but that will have to wait.
    • Windows 11 finally gets redesigned Start menu and more in builds 26200.5641 and 26120.4250

      By str8butta · Posted

      Serious question here. Why is the start menu such a heated topic? I can't remember the last time that I used the start menu for anything at all other than it pops up when I hit the WIN key on my keyboard before I type for the program I want to run and then hit Enter or to restart my machine. I honestly wish it would just go away, and it just be replaced with the PowerToys Run menu. Am I missing something with the Start menu? I see people always talking about installing third party replacements and such, but I just wonder what some are actually using the Start menu for that I might be missing out on. Genuine question. Hopefully not offending anyone as I know everyone has their own way to work and access things in the OS.
    • Politically funny images of the World

      By Edouard · Posted

    • These are the Apple Watch models that support watchOS 26

      By Aditya Tiwari · Posted

      These are the Apple Watch models that support watchOS 26 by Aditya Tiwari Apple has announced the latest operating system upgrade for its smartwatch lineup, called watchOS 26, not watchOS 12, as many expected a while ago. The Cupertino giant has unified the software experience across its platforms by introducing the "Liquid Glass" software design and renaming all the operating systems to version 26. That said, the next question is which Apple Watch models will support watchOS 26. Apple has shared the official list of devices: Apple Watch Ultra 2 Apple Watch Ultra Apple Watch Series 10 Apple Watch Series 9 Apple Watch Series 8 Apple Watch Series 7 Apple Watch Series 6 Apple Watch SE (2nd Generation) The upcoming Apple Watch update brings several new features to your wrist. Liquid Glass design gives a fresh look to the UI with updated Control Center and translucent buttons within apps. It's new Workout Buddy feature can use an Apple Intelligence-enabled iPhone nearby to provide personalized, spoken motivation during workouts. Building on the Double Tap feature, you can now flick your wrist to perform actions like muting incoming calls, silencing timers, and dismissing notifications when your hands are full. It is available on Apple Watch Ultra 2 and Apple Watch Series 9 (or later). watchOS 26 is currently available for testing through the Apple Developer Program. It will roll out to general users during the fall season, when Apple is expected to refresh the Ultra and SE models. Note that your Apple Watch must be paired with an iPhone 11 (or later) or iPhone SE (2nd generation or later) running iOS 26. While the list of Apple Watch models that support watchOS 26 remains the same, it won't work with iPhone Xs/Xs Max and iPhone Xr, which were previously supported on watchOS 11. You can check out the respective lists of supported devices for iOS 26, iPadOS 26, and macOS 26 Tahoe.

  • Recent Achievements

    • Explorer
      MusicLover2112 went up a rank
      Explorer
    • Dedicated
      MadMung0 earned a badge
      Dedicated
    • Rookie
      CHUNWEI went up a rank
      Rookie
    • Enthusiast
      the420kid went up a rank
      Enthusiast
    • Conversation Starter
      NeoToad777 earned a badge
      Conversation Starter

  • Popular Contributors

    1. 1
      +primortal
      501
    2. 2
      ATLien_0
      268
    3. 3
      +FloatingFatMan
      257
    4. 4
      Edouard
      201
    5. 5
      snowy owl
      170
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!