PIX Pre-Shared Key Recovery Note: All tips published in the Cisco Technical Services Newsletter are reviewed by Cisco technical support engineers. However, the Cisco Technical Services Newsletter and Cisco cannot guarantee the accuracy or completeness of these tips. There are times you will need to add configuration or make changes to a live PIX Firewall or ASA. It is common for the original pre-shared keys used in site-to-site VPNs to be mislaid or forgotten. For example, perhaps the previous manager has left the company. It is not possible to see a copy of the configuration with the keys viewable as they are hidden as ******. The answer is to save a copy of the configuration to a TFTP server. This file can then be viewed using any simple text document. It can also be used to re-configure the device back to its original state if necessary. -Tony Holmes, Cistek Solutions Ltd, Cheltenham, Glos, England, UK
Editor’s Note: The command is "write net
www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008072142a.shtml#write
Also, starting with version 7.0, administrators can optionally use the "copy" command to copy either the startup-config or running-config to either a TFTP or FTP server.
- "copy running-config tftp:
" - "copy running-config ftp:
"
More information on the copy command can be found here:
www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_7_2/cmd_ref/c4_711.htm#wp2041583
Tidak ada komentar:
Posting Komentar