{"id":1675,"date":"2018-09-25T11:14:29","date_gmt":"2018-09-25T18:14:29","guid":{"rendered":"http:\/\/jim-zimmerman.com\/?p=1675"},"modified":"2018-11-09T16:28:28","modified_gmt":"2018-11-09T23:28:28","slug":"cisco-and-scp-notes","status":"publish","type":"post","link":"https:\/\/jim-zimmerman.com\/?p=1675","title":{"rendered":"Cisco and SCP Notes"},"content":{"rendered":"<p>Using scp top copy configuration files and update software on Cisco equipment is a much better and secure way than tftp\/ftp.  Here are the basics for a couple Cisco devices.  <\/p>\n<p>ASA 5525:<br \/>\nTo enable scp on a Cisco ASA running version 9.x:<br \/>\n(config)# ssh scopy enable<\/p>\n<p>To harden ssh on a Cisco ASA running version 9.x:<br \/>\n(config)# ssh stricthostkeycheck<br \/>\n(config)# ssh timeout 60<br \/>\n(config)# ssh version 2<br \/>\n(config)# ssh cipher encryption medium<br \/>\n(config)# ssh cipher integrity medium<br \/>\n(config)# ssh key-exchange group dh-group14-sha1<\/p>\n<p>How to copy a running configuration using scp:<br \/>\n# copy system:\/running-config scp:\/\/username@aaa.bbb.ccc.ddd\/myconfigname.cfg<\/p>\n<p>3750 Switch Notes:<br \/>\nTo enable scp on a 3750 switch:<br \/>\n#ip scp server enable<\/p>\n<p>How to copy a running configuration from the ASA using scp:<br \/>\n#copy system:\/running-config scp:\/\/username@aaa.bbb.ccc.ddd\/myconfigname.cfg<\/p>\n<p>How to copy from remote linux client:<br \/>\n# scp username@aaa.bbb.ccc.ddd:system:running-config .<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Using scp top copy configuration files and update software on Cisco equipment is a much better and secure way than tftp\/ftp. Here are the basics for a couple Cisco devices. ASA 5525: To enable scp on a Cisco ASA running version 9.x: (config)# ssh scopy enable To harden ssh on a Cisco ASA running version [&#038;hellip<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[319,474,317],"class_list":["post-1675","post","type-post","status-publish","format-standard","hentry","category-documentation","tag-cisco","tag-scp","tag-ssh"],"share_on_mastodon":{"url":"","error":""},"_links":{"self":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/1675","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1675"}],"version-history":[{"count":2,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/1675\/revisions"}],"predecessor-version":[{"id":1688,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=\/wp\/v2\/posts\/1675\/revisions\/1688"}],"wp:attachment":[{"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1675"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1675"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jim-zimmerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1675"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}