03-04-2008 08:25 AM
We had a Pix Firewall device go down and we are trying to find out where do the configs get archived. Is there anyway to pull down the configs in clear text so we can pull down the encryption keys from the devices?
Solved! Go to Solution.
03-04-2008 01:07 PM
Ah, I think I see. When you copy the config from the PIX, the credentials come through. Unfortunately, this would require an architectural change to RME to allow for this.
03-04-2008 01:03 PM
What command could be used to get the full config suitable for disaster recovery? As far as I know, show running will always provide a starred out isakmp key as well as things like vpdn passwords. Other passwords will be encrypted.
03-04-2008 01:13 PM
Okay here is the scenario. Let me know can this be done in CiscoWorks.
1) SSH to the PIX
2) wr net 192.168.10.10:Filename
This would tftp the startup configuration to the Ciscoworks server. Of course Ciscoworks would need to have a tftp server active for this to work.
03-04-2008 01:17 PM
This is not currently possible. The trick is RME would need to be taught to pre-create the file on the TFTP server, then process the file once the download is complete. The changes would be non-trivial.
I do see a clear value for this, though. It is something you should pursue with your account team as a feature request.
03-04-2008 01:25 PM
No problem. Can a Tac Case be opened to request this feature request to have this done? Can you clarify what do you mean by our account team?
03-04-2008 01:50 PM
A feature request by TAC doesn't hold much weight. A feature request made by the sales organization which can back things up with dollar figures means a whole lot more. Typically, TAC encourages customers to talk to their account team, SE, account manager, etc. to open a PERS ticket requesting a new or enhanced feature.
03-04-2008 02:44 PM
Thanks for clarifying on what needs to be done on our end.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide