Share this
Backing Up Your Cisco Configurations 101
by Chris Randall on Mar 14, 2022 4:04:21 PM
It is best practice to back up your device’s configuration state early and often. Cisco devices provide a variety of options to do just that, whether it be through an FTP server, TFTP server, Ansible, or to a local machine.
How Often Should Configurations Be Backed Up?
First and foremost, back up your configuration state prior to any updates to the network. This will ensure you have a fresh copy of your prior configuration to fall back on in case the changes you push break something.
The frequency of your backups will depend on the state of your network and how often it changes. It is best practice to do it at least weekly, but if you have a large enterprise network that is constantly changing you may want to do backups daily. The window in which you do them daily/weekly will also depend on when your changes are implemented.
If changes are being made all day long, it may be best to do a snapshot on the configuration both at the start and end of the day, but if changes are only made on Thursday at 7pm, it may be best to schedule backups to be updated sometime after the change window like 2am the following morning.
If you're looking for other Cisco technical information, look here.
Wondering what we have in stock? Go here.
How Can I Backup My Current Configuration?
Option 1: Use a TFTP Server on the Network for Backup and Restoring Configurations
- Assuming you have a local TFTP server, setting up the following configuration will allow you to back up your running configuration to the local TFTP server (applies to both routers and switches; we use a router in this example):
Copy the configuration to the TFTP server:
- To ensure you do not have any future security issues, open your configuration file in a text editor like Notepad ++ and remove any of the configuration settings starting with ‘AAA’.
- To test out the saved configuration on a different device we can now attempt to pull the configuration from the TFTP server to a different router.
Option 2: Use an FTP Server on the Network to Backup and Restore Configurations
- Assuming you have a local FTP server, setting up the following configuration will allow you to back up your running configuration to the local FTP server (applies to both routers and switches; we use a router in this example):
Copy the configuration to the FTP server:
- To ensure you do not have any future security issues, open your configuration file in a text editor like Notepad++ and remove any of the configuration settings starting with ‘AAA’.
- To test out the saved configuration on a different device we can now attempt to pull the configuration from the FTP server to a different router.
Configure privileged access for FTP configuration file transfers:
If you're not sure which option to use, speak with a specialist by clicking below. We have engineers ready to chat through any problem and guide you through your configurations.
Configuration Versioning
Cisco devices allow you to archive configurations to the local flash storage. When setting the configuration you create a file path, set the maximum number of files you want to store, and can optionally add a timestamp to the saved files. When you hit the maximum number of files stored, the oldest will be deleted, and the newest file will take its place.
How To Setup a Configuration Archive
PivIT Troubleshooting Tips
The ability to troubleshoot what configurations are being saved, when, and where can help prevent disaster when you need those backup configurations the most. The following commands allow you to view the logs of your configuration archive process:
Before we wrap up with a few alternative Open-Source Options, here are other configuration guides our readers have found useful in their processes.
- Cisco IOS DHCP Server Configuration
- Configuration Guide: Routing Between VLANs
- Back to the Basics: Cisco ASA Firewall Configuration Guide
Alternative Open-Source Options
- Oxidized
PivIT can implement open-source tools like Oxidized (https://github.com/ytti/oxidized) to help optimize configuration backups through the utilization of REST APIs and version control with Git. Oxidized is typically run in a Linux-based environment and can interact with over 130 operating systems. - Ansible
Ansible is another open-source automation tool that is maintained by Red Hat. It can be used to provision, configure, and manage large-scale deployments. This allows you to push and pull configurations at will. You can automate the backup process of your configuration to a local or external storage location with some programmatic functionality.
Don't Go IT Alone
We have expert engineers on hand 24/7 to help you navigate any roadblock you are experiencing. Reach out -- we're here to help!
Share this
- Configuration Guides (47)
- Cisco Routers (29)
- Switches (27)
- Network Security (23)
- Routing Protocols (21)
- Cisco Switches (20)
- Routers (20)
- Cisco (19)
- Product Comparisons (19)
- Firewall (18)
- Cisco Security (17)
- Cisco Technical Information (17)
- IT Hardware Solutions (17)
- Network Protocols (17)
- Wireless (17)
- Security (15)
- OneCall (13)
- Servers (12)
- cisco asa (12)
- Cisco Wireless (11)
- Router Protocols (11)
- Cisco UCS (9)
- Upgrading Network (9)
- Cisco Catalyst (8)
- Product Highlight (8)
- Access Control Lists (7)
- Cisco Servers (7)
- Fortinet (7)
- Access Points (6)
- Arista Networks (6)
- OSPF (6)
- Server Comparisons (6)
- Wireless APs (6)
- Cisco ASR (5)
- Cloud Solutions (5)
- HPE-Aruba Wireless (5)
- Juniper Mist (5)
- Network Management (5)
- SD-WAN (5)
- Storage (5)
- Switch Comparison (5)
- Back To Basics (4)
- Cybersecurity (4)
- EIGRP (4)
- Firewall Architecture (4)
- HSRP (4)
- Juniper Networks (4)
- Network Automation (4)
- OEM Comparison (4)
- Aruba Central (3)
- Cisco Telephony (3)
- DHCP (3)
- DHCP Snooping (3)
- Dell EMC PowerEdge (3)
- Internet (3)
- Maintenance (3)
- Maintenance Renewal (3)
- Network Accessories (3)
- Network Servers (3)
- TPM (3)
- Telephony (3)
- aruba (3)
- Cisco NX-OS (2)
- Cisco Nexus (2)
- Dell Servers (2)
- Fortinet NGFWs (2)
- IT Trends (2)
- LAN Networks (2)
- Network Time Protocol (2)
- Palo Alto NGFWs (2)
- Rapid PVST+ (2)
- Remote Configuration (2)
- Software Defined Networking (2)
- WLAN (2)
- Ways to Save (2)
- fortigate (2)
- Asset Management (1)
- CPU Usage (1)
- Cisco AIR-CT (1)
- Cisco Aironet (1)
- Cisco DNA (1)
- Cisco ISR (1)
- Cisco Supervisor Engines (1)
- Cisco UCS Manager (1)
- Cognitive Campus (1)
- Cost of Downtime (1)
- Dell EMC Data Domain (1)
- Edge Switches (1)
- Fabric Extenders (1)
- GRE Tunnel (1)
- HPE BL (1)
- Juniper SRX (1)
- Nexus Switches (1)
- Nutanix (1)
- Optics (1)
- PowerEdge R740xd (1)
- STP Extension (1)
- Sparing Integrity Program (1)
- Switched Virtual Interface (1)
- TCP (1)
- UCS Fabric Interconnects (1)
- hyperconverge (1)
- March 2024 (1)
- February 2024 (2)
- January 2024 (1)
- December 2023 (1)
- November 2023 (2)
- October 2023 (1)
- September 2023 (3)
- August 2023 (5)
- July 2023 (2)
- June 2023 (4)
- May 2023 (5)
- April 2023 (8)
- March 2023 (7)
- February 2023 (5)
- January 2023 (2)
- December 2022 (3)
- November 2022 (3)
- October 2022 (8)
- September 2022 (9)
- August 2022 (9)
- July 2022 (8)
- June 2022 (9)
- May 2022 (5)
- April 2022 (3)
- March 2022 (1)
- February 2022 (2)
- November 2021 (2)
- October 2021 (1)
- September 2021 (2)
- August 2021 (2)
- July 2021 (3)
- June 2021 (2)
- May 2021 (4)
- April 2021 (4)
- March 2021 (2)
- February 2021 (1)
- January 2021 (2)
- December 2020 (2)
- November 2020 (2)
- October 2020 (2)
- September 2020 (2)
- August 2020 (4)
- July 2020 (5)
- June 2020 (4)
- May 2020 (6)
- April 2020 (2)
- March 2020 (1)
- February 2020 (2)
- January 2020 (2)
- December 2019 (1)
- May 2019 (2)
- April 2019 (5)
- February 2019 (1)
- January 2019 (3)
- December 2018 (1)
No Comments Yet
Let us know what you think