Welcome, Guest. Please login or register.

Author Topic: Fortigate backup  (Read 92 times)

anubise

  • Newbie
  • *
  • Posts: 1
    • View Profile
Fortigate backup
« on: November 22, 2017, 02:18:44 PM »
At moment fortigate backup use ssh and 'show full-config'

Maybe is possible to use SCP?
Linux client example:
To download the configuration file to a local directory called ~/config, enter the following command:
scp admin@172.20.120.171:fgt-config ~/config
Enter the admin password when prompted.

or maybe someone help me how i need change config files. (perl is not my favourite :) )

Hannu Liljemark

  • Full Member
  • ***
  • Posts: 130
  • Here to help
    • View Profile
Re: Fortigate backup
« Reply #1 on: November 27, 2017, 10:15:25 AM »
Is there a specific reason you'd want to use scp backup with NeDi for Fortigate? You can use the export button in the NeDi GUI if you want to export the configs to a file and use that file with a new Fortigate device e.g. when replacing a faulty one.

I guess the reason NeDi does "show full-config", and similar commands, is to be able to easily get diff from earlier configs and other benefits. That would require extra steps with external scp backups.

NeDi's backup mechanism has been pretty good in our experience, although we have two sites where NeDi is not used for Cisco backups and instead we do "snmpset -t 5 -c <comm> -v1 <device-ip-addr> .1.3.6.1.4.1.9.2.1.55.<tftp-serverip-addr> s <filename>" from cron with a separate script. It doesn't integrate into NeDi, which isn't an ideal situation, but it gets the job done.

Br,
Hannu
« Last Edit: November 27, 2017, 12:08:43 PM by Hannu Liljemark »