Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1960
Views
0
Helpful
3
Replies

Cisco Pix 515 Firewall Configuration Backup

mjchilders
Level 1
Level 1

‎05-16-2006 09:29 AM - edited ‎02-21-2020 12:54 AM

I'm relatively new with Cisco firewalls so this may be sort of a "newbie" question. I have two Cisco Pix515 Firewalls - one that is actively in use and the other as a spare. I would like to copy all of the current configuration of the active Pix515 to the spare so that if a need ever arose, I could just swap them out. What would be the best way to do this without disturning my current environment? Please include any commands that I may need to accomplish this task. Thanks in advance for the help!

0 Helpful
3 Replies 3

nkhawaja
Cisco Employee
Cisco Employee

‎05-16-2006 09:52 AM

Hi,

setup a tftp server. then issue this command

tftp-server [if_name] ip_address

write net [[server_ip]:[filename

e.g.

tftp-server inside 10.1.1.1

write net

on the new firewall

setup the ip addresses to reach the same tftp server

then issue this command

configure net

or simple copy the configuration to a notepad from your original firewall and paste it into the new firewall, that should work too.

thanks

Nadeem

0 Helpful

varakantam
Level 1
Level 1
In response to nkhawaja

‎05-16-2006 09:57 AM

What do you mean by "spare" ? If it is just lying around I would recommend you to confgiure it as a failover box as per the following instructions

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/config/failover.htm

One it would not require you to swap out the device manually in case of failure minimizing downtime and the same time keep the config always in sync.

Hope this helps !

0 Helpful

federico_caminos
Level 1
Level 1

‎05-16-2006 09:57 AM

Hello !

Check command reference too

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727ae.html#wp1026054

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727ae.html#wp1027782

Consider too the failover capabilities of PIX, check this tech note:

http://www.cisco.com/warp/public/110/failover.html

You can have the 2 units online , one PIX as the "Active" unit while the other is the "Standby" unit.

Hope this helps ...

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card