PIX comman?

Discussion in 'Cisco' started by Greg, Nov 9, 2004.

  1. Greg

    Greg Guest

    What is the command to use to copy a configuration from a TFTP server
    back to the PIX running 6.3.2?
    Greg, Nov 9, 2004
    1. Advertisements

  2. In article <>,
    Greg <> wrote:
    :What is the command to use to copy a configuration from a TFTP server
    :back to the PIX running 6.3.2?

    First config terminal to enter configuration mode. Then
    config net to bring down the configuration file from tftp.

    If you do not specify a host or configuration file name on the
    "config net" command line, then it will take the values from the
    "tftp-server" command that you configured.

    Note 1: the default interface used for tftp is 'inside', and the interface
    name is the only thing you cannot override on the "config net" command
    line, so if you are fetching from a different interface, you must
    configure the tftp-server first, even if you give it a garbage hostname
    and garbage filename.

    Note 2: the configuration you bring in will be processed as if you
    had typed in every command in the file [*], so any access-list edits that
    you made (for example) will show up at the end of the ACL.

    The way cisco -intends- you to use the config net command is to clear
    the configuration first (and clear config2 as well), configure your
    inside interface IP address, configure your tftp server, and "config net"
    to bring in the rest of the configuration. In practice, though,
    you can put most "no" and "clear" commands right into the configuration
    file, and thus establish a known baseline for the changes that follow.
    The one thing you have to watch out for if you do this, is that you
    are very careful with commands that might destroy the route between
    the PIX interface and the host that holds the configuration file
    [e.g., if you learn the route through RIP then be very careful with
    'clear rip' !]

    [*] Well, it's -close- to what you'd get if you typed in each line.
    It's not exactly the same, in that you must put in full command names
    most of the time [it doesn't do much command completion], and the
    question-mark character '?' will be treated as just another character
    in the file, whereas "live" it would be a request for help even if it
    was in a comment or "remark" statement.

    Come to think of it, there are already a million monkeys on a million
    typewriters, and Usenet is NOTHING like Shakespeare. -- Blair Houghton.
    Walter Roberson, Nov 10, 2004
    1. Advertisements

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Richard

    PIX to PIX to PIX meshed VPN

    Richard, Nov 13, 2003, in forum: Cisco
    Nov 15, 2003
  2. William J King
    Jan 4, 2005
  3. Tuhin

    comman lookup tool

    Tuhin, Sep 10, 2005, in forum: Cisco
  4. Metaphoid

    Modem comman: tms=v34

    Metaphoid, Oct 10, 2003, in forum: Computer Support
    Oct 10, 2003
  5. tdogism
    May 9, 2007