Solved: Cisco Archive config - any changes / Cisco commands

eeebbunee · ‎04-25-2024

Hello Professionals,

I have configured Archive to log config whenever type write memory.

I would like to use this auto backup in other way too.
Could anyone tell me how to configure followings?

1. Is there possible to backup config whenever I make any changes without typing 'write mem'?
To save all config even though I forgot to save config.

2. Can I backup the result of specific commands such as 'sh ip arp' using archive log?
For instance, I would like to save sh ip arp result daily basis.

I appreciate your comments.

liviu.gheorghe · ‎04-25-2024

Hello @eeebbunee ,

1. Is there possible to backup config whenever I make any changes without typing 'write mem'?
To save all config even though I forgot to save config.

With the archive function in Cisco IOS you can either archive the config when you issue the write mem command or at a certain predefined period using the time-period option.

What you are asking can be done using Asible.

2. Can I backup the result of specific commands such as 'sh ip arp' using archive log?
For instance, I would like to save sh ip arp result daily basis.

You could do this using the EEM feature with cron:

configure terminal

event manager applet Save_iparp

event timer cron cron-entry "0 9 * * *" maxrun 100

action 1 cli command "show ip arp | redirect tftp://192.168.1.1/test_iparp.log"

Hope this helps.

Regards, LG
*** Please Rate All Helpful Responses ***

View solution in original post

liviu.gheorghe · ‎04-25-2024

Hello @eeebbunee ,

1. Is there possible to backup config whenever I make any changes without typing 'write mem'?
To save all config even though I forgot to save config.

With the archive function in Cisco IOS you can either archive the config when you issue the write mem command or at a certain predefined period using the time-period option.

What you are asking can be done using Asible.

2. Can I backup the result of specific commands such as 'sh ip arp' using archive log?
For instance, I would like to save sh ip arp result daily basis.

You could do this using the EEM feature with cron:

configure terminal

event manager applet Save_iparp

event timer cron cron-entry "0 9 * * *" maxrun 100

action 1 cli command "show ip arp | redirect tftp://192.168.1.1/test_iparp.log"

Hope this helps.

Regards, LG
*** Please Rate All Helpful Responses ***

eeebbunee · ‎05-02-2024

Hi @Liviu,

Could you please check my config one more time please?

When I setup the EEM followed your command lines, seems nothing was happened. (no logs left to switch)

So I was trying to add more cli followed Cisco document like this, still nothing happened.
Could you provide how could I debugging without any switch running interrupt..?

------------------------------------------------------------------------

event manager applet IPARP_LOG authorization bypass
event timer cron cron-entry "0 12 * * *" maxrun 100
action 1 cli command "enable"
action 2 cli command "term length 0"
action 3 cli command "show ip arp | redirect tftp://tftp_server_ip/iparp.log"
!
end

liviu.gheorghe · ‎05-03-2024

Your config looks ok - the applet is going to run every day at 12:00.

You will not see any logs on your switch unless you configure some debug commands like debug event manager action cli

Regards, LG
*** Please Rate All Helpful Responses ***

balaji.bandi · ‎04-25-2024

1 - setup there are many tools or using python to backup config daily basis or any use tools like cattools to backup, which show you compare and changes information over email.

2. show ip arp - depends on the time you running, vs business hours , if you running this command late hours you wont get much useful information, since most of the users not online (or devices)

if this is large environmetn deploy some kind identity system to track IP or devices.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Joseph W. Doherty · ‎04-26-2024

Cannot comment on your specific questions but I recall another (still available?) feature was AAA was capable of logging all changes to a config line by line (including who made them.)