Border Router Security Tool
Securing the Internet one router at a time

The Border Router Security Tool (BRST) is a free, open source, web based utility which asks for some information about your router and generates a recommended secure configuration file when you submit the information.

Steps to successfully using the BRST

  1. Create a backup file of the router's current configuration.
    • In your terminal emulation software, start a log file capture, then do a show run. Save the file created (Be sure to name the file with a .txt extension and save it to a location you'll remember).
      • Step 1b1: If using PuTTY, go to Session, then Logging in the menu. Select the Printable output radio button. Select a location. (Remember where you saved it and the name).
      • Step 1b2: Make sure you're captured your entire configuration file.
    • Step 1c: When using this method of backing up, you will have --more-- several times in the captured file. You will have to delete the lines that say --more-- before reusing the configuration.
    • Step 1d: Depending on what you typed while doing this, you may also have additional text or output to remove at the top and bottom of the configuration.
  2. Test that your backup configuration file works (complete steps 8 through 16 below with your existing configuration file prior to continuing).
  3. If you were able to successfully restore your existing configuration, enter the information requested in the Normal or Advanced web form then click [Submit].
  4. In your browser, select the text from the !Start Copying Config File Here! to the !Stop Copying Config File Here! labels.
  5. Copy the selected text to the Windows, or Linux clipboard by right clicking and selecting "copy" from the menu or hitting [Ctrl-C].
  6. Open Notepad or the text editor or your choice and copy the contents into the text file.
  7. Save a copy of the text file in a safe place, preferably in a place where it is backed up to backup media.
  8. Clear your configuration by being in configure mode and typing write erase then reload.
  9. Select and copy the contents of the text file to the Windows or Linux clipboard again, unless it's still there from before.
  10. Open a terminal emulator such as PuTTY and connect to your router via the Console port.
  11. Once connected, paste the generated configuration file directly into the console.
  12. Watch for any errors during the copying of the configuration file.
  13. If there were no errors, type wr mem (write memory), or use the "official" command copy running-configuration startup-configuration and hit <enter>. You're done!
  14. If there were errors, read them and search for answers (Google is your friend).
  15. If the errors don't impact the functionality or security of your router, do Step: 13 above.
  16. If the errors are serious, or your router won't function without resolving them, copy your original configuration file back onto the router, and try again when you find a solution.