12-21-2007 04:27 PM - edited 03-05-2019 08:07 PM
We usually find out that a device had its configuration changed but not saved when a device loses power and things go wrong.
Is there a way to receive a notification (snmp trap or a message in the banner motd) warning that running-config and startup-config are different?
I think that it is better than asking technicians to issue a sh run whenever they log into a device.
If not possible, that would be my suggestion to Cisco for the next IOS releases.
Thank you
12-21-2007 05:16 PM
We have these features:
-Log message generated when config change made:
"configured via console by user"
You could tweak your SNMP config to send a trap for these messages and take action on them.
-When you issue a 'reload' command, we compare the startup and running configuration, and prompt you to save
You could also implement AAA command accounting, where you'll be notified of any and all configuration changes made on your devices.
12-21-2007 06:51 PM
Releases of Cisco IOS software prior to 12.3(4)T/12.2(25)S lack the ability to track the origin of changes to the running configuration. The only way to determine if a Cisco IOS software configuration has been changed is to pull the running and startup configurations offline and do a line-by-line comparison. This comparison will identify all the changes that have occurred between the two configurations, but it will not specify the sequence in which the changes occurred or the person responsible for the changes.
The Configuration Change Notification and Logging (Configuration Logging) feature allows the tracking of configuration changes entered on a per-session and per-user basis by implementing a configuration log. The configuration log will track each configuration command that is applied, who applied the command, the parser return code for that command, and the time that the command was applied. This feature also adds a notification mechanism that sends asynchronous notifications to registered applications whenever the configuration log changes.
_________________________________________
http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cg/hcf_c/ch35/hconlog.htm
12-22-2007 03:12 PM
Marcelo
We use a network management tool called NetMRI and this tool is able to examine all the routers in the network on a periodic basis and to report all routers whose configuration appears to have changed but not saved to NVRAM.
HTH
Rick
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide