Giancarlo Posted April 8, 2020 Report Share Posted April 8, 2020 [Last updated Sept 2022] This is an entirely new capability offered by Domotz. We will add more and more devices to the following list for which Domotz offers the possibility to: automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration The following is the current list of supported devices for those capabilities: Brand Model Tested/Supported Notes Domotz Features Dell Dell OS 6 N-series SSH, TFTP, SNMP enabled User must admin (privilege 15) automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration HP Aruba Aruba OS Access Points CX Switches ProVision ProCurve SSH, TFTP, SNMP enabled user must be admin level Access Points are in READ ONLY mode automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration WatchGuard Fireware OS HTTPS (port 8080) is needed for recognition SSH (port 4118) and TFTP enabled Max configuration file size 5MB We recommend having a separate ssh user for this feature since only 1 session per user is allowed at a time A firewall rule must allow TFTP traffic from the Domotz agent host to the WatchGuard firewall automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration No running vs startup configuration available FortiNet FortiOS SSH and TFTP enabled Max configuration file size 5MB (this is an internal limitation) SSH account provided for unlocking must be super_admin or admin level Hash for passwords and other encrypted data may be shown as diff when comparing configurations even if the password is the same https://forum.fortinet.com/tm.aspx?m=176962 A firewall rule must allow TFTP traffic from the Domotz agent host to the FortiGate device https://docs.fortinet.com/document/fortigate/6.0.0/Handbook/690377/trivial-file-transfer-protocol-tftp-session-helper-tftp The following configuration is needed for the correct interpretation of its configuration configuraiton config system console set output standard end automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration No running vs startup configuration available Cisco IOS Catalyst 2960 Catalyst 3560 Catalyst 3650 Catalyst 3750 SSH and SNMP enabled. admin account with privilege level 15. SCP module should be enabled: ip scp server enable In order to benefit the auto-rollback on error capability, the "archive" functionality should be enabled: archive path flash:archive write-memory on windows we do not support all ssh kex algorithms – BT-2166 - Unable to retrieve issue. You don't have permission or need to authenticate automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration Juniper Jun OS SSH and SCP enabled user must be super-admin or capable of restoring configuration automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration No running vs startup configuration available Netgear M4250-10G2F-PoE+ 2.25.1.1 SSH, TFTP and SNMP must be enabled user must be admin level automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration Mikrotik Router OS MikroTik RouterOS 6.47.9 SSH and SNMP must be enabled READ ONLY automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one No running vs startup configuration available No Config Restore available Cisco SG Series with the exception of SG200 that does not have an ssh server SSH, TFTP and SNMP enabled. admin account with privilege level 15. The following lines in the configuration file: - ip ssh password-auth (mandatory) - no logging console (recommended) automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configuration SonicWall Sonic OS 6.5 (tested) Rest API - Basic Auth must be enabled HTTPS based Make sure the HTTPS Web Management port is the default one (443) READ ONLY automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one No running vs startup configuration available No Config Restore available Luxul XMS AMS SMBStaX SSH, TFTP and SNMP enabled. admin account with privilege level 15. We do not reboot upon failure to revert configuration restore function. The user is notified for this inside the backup restore popup automatically back-up configuration manually back-up specific configuration compare across different versions getting alerted if something changes getting notified if running configuration is different from the saved one restore previous saved configuration upload and update the device with a new configu Note: in order to trigger the Domotz driver to discover configuration files, SNMP should be enabled on the Network appliance. In this way, Domotz is able to correctly identify the device, and trigger the correct driver for configuration management purposes. --------------------------------------------------------------------------------------------------------------------------------------------------------- Few screenshots related to the Device Configuration Management: Automatic and Manual Backup - Domotz automatically backup the configuration of the device and shows the history of the last configuration files. The backup is executed every 6 hours, and a new version is only saved (and showed) if it differs from the previous version. Moreover, Domotz allows the manual backup of the configuration file. A new version is created, regardless if it differs or not from the previous saved version: Through the same interface, it is possible to upload a new configuration file (which can then be applied to the device). Moreover, each saved configuration file can be locally downloaded. Finally, user is also notified if there is a misalignment between the running and the startup (flash / bootflash) configuration. Compare and Restore Configuration Files - Domotz allows the user to compare different saved versions of configuration files, and to restore a previously saved one: 1 Link to comment Share on other sites More sharing options...
Recommended Posts