Another addition to my posts about Cisco ASA 5510 tasks. The following is to change the password for a user within the device. Simple and straight forward – but ensure that you backup your running configuration before making any system changes.
enable config t username USER password PASSWORDHERE privilege 0 write mem
Here’s a good article which covers Cisco Privileges.
Configuring SNMP on ASA 5510 is straight forward – but once again I prefer a more straight forward list of the commands vs. the verbose explanation by Cisco. See below to enable traps to a community name “SNMPCOMMUNITY”, the server IP being 192.168.1.1. As with any commands that creates changes to your device – ensure you backup before making any changes.
enable config t snmp-server host Inside 192.168.1.1 snmp-server community SNMPCOMMUNITY snmp-server enable traps snmp authentication linkup linkdown coldstart
That’s it! Thanks for reading.
Forwarding logs from an ASA 5510 to an external syslog server is simple – but I can seldom find a straight forward list of commands for specific tasks for the ASA. So here it is – but note this is highly customizable:
logging enable logging timestamp logging trap notifications logging asdm notifications logging facility 23 logging device-id HOSTNAME logging host inside SYSLOG SERVER HOSTNAME OR IP logging debug-trace logging permit-hostdown
Here’s the syslog section from Cisco’s site if you need more information.
Though us network nerds may work in a terminal most of the day – our workstations are largely Windows based. This is a quick guide to backing up a Cisco device configuration to a Windows machine. It’s fairly simple:
Download WinAgents TFTP Server Manager and run through the installation process. This will setup a tftp server on that Windows machine that you will use to direct the configuration to. Once installed, connect to the local server.
Once configuration is complete and you are connected to your machine – find the IP of the Windows workstation (we’ll need this in a moment).
Now, connect to the Cisco device. Login and also enter enable mode:
enable
Once in enable mode, use the copy configuration using the following command:
copy startup-config tftp
You will be prompted for the server address. Type in the Windows workstation IP address here.
You will also be prompted for the name of which to save. I usually save this as the date and time of the configuration and save it in a folder for the device’s configuration backups – so do whatever method works for you.
Press ENTER and the transfer will begin. You should notice statistics on transfer are shown.
It’s that simple. I’ll use this post as a reference to some more in-depth Cisco blogs in the future – but wanted to state it in one place vs. repeating it in each post. Thanks for reading.