Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
423
Views
0
Helpful
2
Replies

Archive mgmt thru firewall

thlnm
Level 1
Level 1

‎02-23-2009 04:52 AM

We would like to archive configs and manage inventory with LMS 3.0.1 RME 4.1.1 for devices on protected networks behind firewall. Telnet may be a no-no, is there a way to use SNMP only or other protocols perhaps uni-directional to accomplish this?

Labels:
0 Helpful
2 Replies 2

Bruce Summers
Level 1
Level 1

‎02-23-2009 05:19 AM

We are using SSH for archiving the configs. We've got it working on one of our FWSM's (cisco cat 6513 FWSM). continuing the configs presently, but am running into auth problems (again). so, to answer your basic question, yes, you can use SSH to perform archive config. but I wouldnt recommend telnet (best practices says no).

0 Helpful

Joe Clarke
Cisco Employee
Cisco Employee

‎02-23-2009 09:37 AM

No protocol is truly uni-directional. RME uses only SNMP to manage inventory. So if you're allowing SNMP request and reply packets, that should not be a problem. As for configs, it depends on the device. Many support SNMP-triggered TFTP config collection. This means that SNMP is used to set some objects on the device, then the device copies the config back to the RME server using TFTP.

However, if security is a concern, it would be better to use SSH or SCP for your config transport protocol.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents