■Cisco 3750(L3-Switch)のバックアップ、初期化、リストア、バージョンアップ Cisco Eos 情報サイト http://cisco.end-of-sale.info/eos/2680 $ sudo screen /dev/ttyS0 Switch>show version | include ^Model Model revision number : R0 Model number : WS-C3750-24TS-E ■「IP SERVICES」なのでEIGRPとOSPFのすべての機能、BGPだけでなく、 ルータACL、VLAN ACL、プライベートVLANが使えるちゃんとしたL3スイッチ。 LAN BASEだとL2機能まで、IP BASEでは一部のL3機能までしか使えない。 必要な機能が組み込まれているか事前に調べるには以下から。 Cisco Feature Navigator http://tools.cisco.com/ITDIT/CFN/jsp/index.jsp Switch>show flash Directory of flash:/ 3 drwx 192 Mar 1 1993 00:10:18 +00:00 c3750-ipservicesk9-mz.122-52.SE 425 -rwx 1048 Mar 1 1993 00:01:00 +00:00 multiple-fs 15998976 bytes total (914944 bytes free) ■「12.2.55-SE10」が最新。 15.0系はEOLよりも後に出ている様子。 Cisco Catalyst 3750-24TS Switch http://www.cisco.com/c/en/us/support/switches/catalyst-3750-24ts-switch/model.html Switch>show version | include ^Cisco Cisco IOS Software, C3750 Software (C3750-IPSERVICESK9-M), Version 12.2(52)SE, RELEASE SOFTWARE (fc3) $ tar tvf c3750-ipserviceslmk9-tar.122-55.SE10.tar | \ awk '/^d/ && !/html/{print $NF}' c3750-ipservicesk9-mz.122-55.SE10/ ■一時的にvlan.datを作成する。 enable vlan database vlan 100 exit Switch#show flash | include vlan 2 -rwx 616 Mar 1 1993 01:14:45 +00:00 vlan.dat ■既存の設定のバックアップ Switch#copy running-config flash:running-config.20151122 Destination filename [running-config.20151122]? 1441 bytes copied in 0.998 secs (1444 bytes/sec) Switch#copy flash:vlan.dat flash:vlan.dat.20151122 Destination filename [vlan.dat.20151122]? Copy in progress...C 616 bytes copied in 0.017 secs (36235 bytes/sec) ■ftpで外部保管するための一時設定 fa1/0/1に接続したLANケーブルに、 「172.31.31.0/24」に属する未使用のIPを割り当て、 joeパスワードなユーザアカウント「admin」を設定する場合の 流し込みコンフィグ。 configure terminal interface vlan 1 ip address 172.31.31.59 255.255.255.0 no shutdown exit interface fastEthernet 1/0/1 switchport access vlan 1 no shutdown exit ip ftp usernam admin ip ftp password admin end ■ftpでコピー Switch#copy flash:running-config.20151122 ftp://172.31.31.254 Address or name of remote host [172.31.31.254]? Destination filename [running-config.20151122]? Writing running-config.20151122 ! 1441 bytes copied in 0.100 secs (14410 bytes/sec) Switch#copy flash:vlan.dat.20151122 ftp://172.31.31.254 Address or name of remote host [172.31.31.254]? Destination filename [vlan.dat.20151122]? Writing vlan.dat.20151122 ! 616 bytes copied in 0.092 secs (6696 bytes/sec) ■初期化 Switch#delete vlan.dat Delete filename [vlan.dat]? Delete flash:vlan.dat? [confirm] Switch#erase startup-config Erasing the nvram filesystem will remove all configuration files! Continue? [confirm] [OK] Erase of nvram: complete Switch#show startup-config startup-config is not present Switch#reload Proceed with reload? [confirm] ■初回起動時のrunning-configをstartup-configに保存 Switch>enable Switch#show startup-config startup-config is not present Switch#copy running-config startup-config Destination filename [startup-config]? Building configuration... [OK] 0 bytes copied in 1.141 secs (0 bytes/sec) ■リストア 一時設定を再度流し込んで今度は逆方向にcopyする。 先にvlan.datをコピーしないと、再度一時的なftp設定が必要となり、 running-configが意図したものと異なる可能性があります。 なお、今回はローカルにも残っているので、 ftpサーバのコンフィグを一度flahにコピーしてから md5でチェックサムを比較して、running-configに適用しています。 Switch#copy ftp://172.31.31.254/vlan.dat.20151122 flash:vlan.dat Destination filename [vlan.dat]? Accessing ftp://172.31.31.254/vlan.dat.20151122... Loading vlan.dat.20151122 ! [OK - 616/4096 bytes] 616 bytes copied in 0.151 secs (4079 bytes/sec) Switch#copy ftp://172.31.31.254/running-config.20151122 flsh:running-config.20151122.1 Destination filename [running-config]? Accessing ftp://172.31.31.254/running-config.20151122... Loading running-config.20151122 ! [OK - 1441/4096 bytes] % Generating 1024 bit RSA keys, keys will be non-exportable...[OK] 1441 bytes copied in 19.034 secs (76 bytes/sec) Switch#verify /md5 flash:running-config.20151122.1 .Done! verify /md5 (flash:running-config.20151122.1) = e687a7c6d28475f39add33635b95f93c Switch#verify /md5 flash:running-config.20151122 .Done! verify /md5 (flash:running-config.20151122) = e687a7c6d28475f39add33635b95f93c Switch#copy flsh:running-config.20151122.1 running-config ■ファームウエアのバックアップ ftpなら、tftpの32MB制限に引っかかるかどうか調べなくても良い。 一時的なftp設定を行ってIOSをtarで固めてftpでアップロード。 「archive upload-sw」でも良い。ちゃんと1ステップづつ確認したい人向け。 それぞれ約10分かかる。 Switch#archive tar /create c3750-ipservicesk9-mz.122-52.SE.tar c3750-ipservicesk9-mz.122-52.SE archiving c3750-ipservicesk9-mz.122-52.SE.bin (12305677 bytes) Switch#copy c3750-ipservicesk9-mz.122-52.SE.tar ftp://172.31.31.254 ■ファームウエアのアップデート Switch#archive download-sw ftp://172.31.31.254/c3750-ipserviceslmk9-tar.122-55.SE10.tar Loading c3750-ipserviceslmk9-tar.122-55.SE10.tar !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! [OK - 13608960/4096 bytes] Loading c3750-ipserviceslmk9-tar.122-55.SE10.tar !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! examining image... extracting info (111 bytes) extracting c3750-ipservicesk9-mz.122-55.SE10/info (701 bytes) extracting info (111 bytes) Stacking Version Number: 1.45 System Type: 0x00000000 Ios Image File Size: 0x00C69A00 Total Image File Size: 0x00CFAA00 Minimum Dram required: 0x08000000 Image Suffix: ipservicesk9-122-55.SE10 Image Directory: c3750-ipservicesk9-mz.122-55.SE10 Image Name: c3750-ipservicesk9-mz.122-55.SE10.bin Image Feature: IP|LAYER_3|PLUS|SSH|3DES|MIN_DRAM_MEG=128 Old image for switch 1: flash:/c3750-ipservicesk9-mz.122-52.SE Old image will be deleted before download. Deleting `flash:/c3750-ipservicesk9-mz.122-52.SE' to create required space ... New software image installed in flash:/c3750-ipservicesk9-mz.122-55.SE10 All software images installed. Switch# Switch#reload System configuration has been modified. Save? [yes/no]: no Proceed with reload? [confirm] ■ファームウエアのアップデート確認 Switch>show version | include ^Cisco Cisco IOS Software, C3750 Software (C3750-IPSERVICESK9-M), Version 12.2(55)SE10, RELEASE SOFTWARE (fc2) Switch>show version | include ^Model Model revision number : R0 Model number : WS-C3750-24TS-E Switch>show flash Directory of flash:/ 2 -rwx 616 Mar 1 1993 00:10:14 +00:00 vlan.dat 432 drwx 192 Mar 1 1993 00:47:31 +00:00 c3750-ipservicesk9-mz.122-55.SE10 425 -rwx 1441 Mar 1 1993 00:11:35 +00:00 running-config.20151122 426 -rwx 616 Mar 1 1993 01:19:21 +00:00 vlan.dat.20151122 85 -rwx 1938 Mar 1 1993 00:01:39 +00:00 private-config.text 86 -rwx 3096 Mar 1 1993 00:01:40 +00:00 multiple-fs 84 -rwx 1721 Mar 1 1993 00:01:39 +00:00 config.text 430 -rwx 1441 Mar 1 1993 00:15:22 +00:00 running-config.20151122.1 15998976 bytes total (2419712 bytes free)
