I've tried different solution for automatic backup of Cisco devices from different clients including python ssh scripting and so on. Cisco included in his routers and switches the 'archive' and the 'kron' commands that help us in our task and makes it very easy. In this tutorial we describe how to install a better solution than tftp server with FTP protocol, using pure-ftp and centos 7.
- 01 050fbcb0 69ff3bf0 0000000a 000002ce 00000001 0b 050fbfec 5f561d7a 050fc010 6ad0efe0 0000001b 01 050fbcb0 69ff3bf0 0000000a 000002ce.
- Kali Linux Metapackages. Metapackages give you the flexibility to install specific subsets of tools based on your particular needs. For instance, if you are going to conduct a wireless security assessment, you can quickly create a custom Kali ISO and include the kali-linux-wireless metapackage to only install the tools you need.
- Pureftpd: List of all products, security vulnerabilities of products, cvss score reports, detailed graphical reports, vulnerabilities by years and metasploit modules related to products of this vendor.
tasks:
– scheduled backup of running-config file on remote FTP server
– automatic snapshot at every write memory command
Pure Ftpd Add User
An overview of the 'ftp/anonymous', 'ftplogin' and 'ftpversion' Scanner Auxiliary Modules of the Metasploit Framework. Before install your FTP Server: kali box Setting Pure-FTPD #apt-get install pure-ftpd #cat setup-ftp #groupadd ftpgroup #useradd -g ftpgroup -d /dev/null -s /etc ftpuser #pure-pw useradd offsec -u ftpuser -d /ftphome #pure-pw mkdb #cd /etc/pure-ftpd/auth/ #ln -s./conf/PureDB 60pdb #mkdir -p /ftphome #chown -R ftpuser:ftpgroup /ftphome/ #/etc/init.d/pure-ftpd restart execute setup-ftp Execute.
steps:
– pure-ftp installation
– Cisco device configuration
Pure-ftp
in this configuration we're gonna use virtual user access (no PAM or Unix access)
download epel package
install pure-ftp
configure and set some security settings pure-ftpd
here are some settings:
on centos system we create a pure-ftp user with the relative group:
let's create a folder to be used for the FTP-server
change folder permissions
create a virtual user 'bob' with home folder /home/user/ftp-folder/
insert password.
create virtual user database with this command:
list users with folders
our ftp server is ready
Cisco Devices settings
in this case we want to configure an automatic configuration backup every time we save changes to our device with the command 'copy run start' and every day at 01:00 am
insert login parameters to access ftp server
enable backup every time we save the configuration:
in this case when we execute 'wr' or 'copy running-config startup-config' there'll be a configuration transfer to our FTP server
if we want to schedule an automatic backup we have to set up the kron command
Pure Ftpd Ssl
Pure-ftp
in this configuration we're gonna use virtual user access (no PAM or Unix access)
download epel package
install pure-ftp
configure and set some security settings pure-ftpd
here are some settings:
on centos system we create a pure-ftp user with the relative group:
let's create a folder to be used for the FTP-server
change folder permissions
create a virtual user 'bob' with home folder /home/user/ftp-folder/
insert password.
create virtual user database with this command:
list users with folders
our ftp server is ready
Cisco Devices settings
in this case we want to configure an automatic configuration backup every time we save changes to our device with the command 'copy run start' and every day at 01:00 am
insert login parameters to access ftp server
enable backup every time we save the configuration:
in this case when we execute 'wr' or 'copy running-config startup-config' there'll be a configuration transfer to our FTP server
if we want to schedule an automatic backup we have to set up the kron command
Pure Ftpd Ssl
with the command:
we can check if everything is ok.
using sh kron schedule
we have information about the next time the schedule will be executed.
Proftpd Vs Pure Ftpd
at this point we have a working system for automatic backup of cisco devices.
The problem at this point will be the logrotate for the rotation of older files that we don't need to store. This will be the argument of the next tutorial
Pure Ftpd Exploit
enjoy
