From sstoddard at telesphereltd.com Wed Mar 1 17:10:43 2006 From: sstoddard at telesphereltd.com (Scott Stoddard) Date: Wed, 1 Mar 2006 10:10:43 -0700 Subject: [rancid] Build Rancid Statically? Message-ID: <200603011706.k21H6m52002547@virispam2.csbb.com> Hi all, sorry if this is a dumb question but is there any way to build rancid statically? It?s a dependency nightmare on my Centos 3.6 system to get the required libraries upgraded. I?ve looked around for statically linked binaries on the web without any luck :-( ? thanks! --Scott -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 268.1.1/271 - Release Date: 2/28/2006 -- This message has been scanned for viruses and dangerous content by OpenProtect(http://www.openprotect.com), and is believed to be clean. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060301/ebd63957/attachment.html From heas at shrubbery.net Wed Mar 1 21:45:47 2006 From: heas at shrubbery.net (john heasley) Date: Wed, 1 Mar 2006 13:45:47 -0800 Subject: [rancid] Re: Build Rancid Statically? In-Reply-To: <200603011706.k21H6m52002547@virispam2.csbb.com> References: <200603011706.k21H6m52002547@virispam2.csbb.com> Message-ID: <20060301214547.GS4646@shrubbery.net> Wed, Mar 01, 2006 at 10:10:43AM -0700, Scott Stoddard: > Hi all, sorry if this is a dumb question but is there any way to build > rancid statically? It?s a dependency nightmare on my Centos 3.6 system to > get the required libraries upgraded. I?ve looked around for statically > linked binaries on the web without any luck :-( ? thanks! There is but one binary in rancid, ATM. gcc -static should build (or link) with static libraries - assuming your system has them. The royal PITA is libgcc, which -static-libgcc remedies, same caveat. From asp at partan.com Thu Mar 2 01:39:03 2006 From: asp at partan.com (Andrew Partan) Date: Wed, 1 Mar 2006 20:39:03 -0500 Subject: [rancid] Re: Build Rancid Statically? In-Reply-To: <20060301214547.GS4646@shrubbery.net> References: <200603011706.k21H6m52002547@virispam2.csbb.com> <20060301214547.GS4646@shrubbery.net> Message-ID: <20060302013903.GA57189@partan.com> On Wed, Mar 01, 2006 at 01:45:47PM -0800, john heasley wrote: > Wed, Mar 01, 2006 at 10:10:43AM -0700, Scott Stoddard: > > Hi all, sorry if this is a dumb question but is there any way to build > > rancid statically? It?s a dependency nightmare on my Centos 3.6 system to > > get the required libraries upgraded. I?ve looked around for statically > > linked binaries on the web without any luck :-( ? thanks! > > There is but one binary in rancid, ATM. As john heasley said, there is only one binary in rancid - bin/hpuifilter; everything else is scripts - perl & expect & shell. --asp From eravin at panix.com Thu Mar 2 18:14:25 2006 From: eravin at panix.com (Ed Ravin) Date: Thu, 2 Mar 2006 13:14:25 -0500 Subject: [rancid] Re: Build Rancid Statically? In-Reply-To: <20060302013903.GA57189@partan.com> References: <200603011706.k21H6m52002547@virispam2.csbb.com> <20060301214547.GS4646@shrubbery.net> <20060302013903.GA57189@partan.com> Message-ID: <20060302181425.GF17338@panix.com> On Wed, Mar 01, 2006 at 08:39:03PM -0500, Andrew Partan wrote: > On Wed, Mar 01, 2006 at 01:45:47PM -0800, john heasley wrote: > > Wed, Mar 01, 2006 at 10:10:43AM -0700, Scott Stoddard: > > > Hi all, sorry if this is a dumb question but is there any way to build > > > rancid statically? It?s a dependency nightmare on my Centos 3.6 system to > > > get the required libraries upgraded. I?ve looked around for statically > > > linked binaries on the web without any luck :-( ? thanks! > > > > There is but one binary in rancid, ATM. > > As john heasley said, there is only one binary in rancid - > bin/hpuifilter; everything else is scripts - perl & expect & shell. Just to clarify further, you don't need hpuifilter unless you are collecting configs from whatever funky HP gear requires the use of that program. -- Ed From sstoddard at telesphereltd.com Fri Mar 3 00:00:38 2006 From: sstoddard at telesphereltd.com (Scott Stoddard) Date: Thu, 2 Mar 2006 17:00:38 -0700 Subject: [rancid] Re: Build Rancid Statically? In-Reply-To: <20060302181425.GF17338@panix.com> Message-ID: <200603022356.k22NueAU030913@virispam2.csbb.com> Ah, I see, that makes sense... I will need to work out the dependency issues then, thanks for the explanation! --Scott -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ed Ravin Sent: Thursday, March 02, 2006 11:14 AM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: Build Rancid Statically? On Wed, Mar 01, 2006 at 08:39:03PM -0500, Andrew Partan wrote: > On Wed, Mar 01, 2006 at 01:45:47PM -0800, john heasley wrote: > > Wed, Mar 01, 2006 at 10:10:43AM -0700, Scott Stoddard: > > > Hi all, sorry if this is a dumb question but is there any way to build > > > rancid statically? It?s a dependency nightmare on my Centos 3.6 system to > > > get the required libraries upgraded. I?ve looked around for statically > > > linked binaries on the web without any luck :-( ? thanks! > > > > There is but one binary in rancid, ATM. > > As john heasley said, there is only one binary in rancid - > bin/hpuifilter; everything else is scripts - perl & expect & shell. Just to clarify further, you don't need hpuifilter unless you are collecting configs from whatever funky HP gear requires the use of that program. -- Ed _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -- This message has been scanned for viruses and dangerous content by OpenProtect(http://www.openprotect.com), and is believed to be clean. -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 268.1.1/272 - Release Date: 3/1/2006 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.375 / Virus Database: 268.1.1/272 - Release Date: 3/1/2006 -- This message has been scanned for viruses and dangerous content by OpenProtect(http://www.openprotect.com), and is believed to be clean. From karpenko at willers.employees.org Wed Mar 8 00:11:50 2006 From: karpenko at willers.employees.org (jkarpenko) Date: Tue, 7 Mar 2006 16:11:50 -0800 (PST) Subject: [rancid] End of run not found Message-ID: <20060307123817.P11941@willers.employees.org> Well, I've been able to get my modified rancid perl script to match the COMMANDS sent to my IDS/IPS sensors, and it actually builds the device-name.new file with all of the pertinant data if I run the rancid -d device-name from the command line, but when I use the rancid-run , it doesn't populate the files under the path. I'm keying on the fact that it errors with "End of run not found", but is there a way to disregard this so that the data will get populated into the CVS respository? $ $ rancidids -d 10.4.190.50 executing idslogin -t 90 -c"show version;show configuration" 10.10.10.10 PROMPT MATCH: sensor# HIT COMMAND:sensor# show version In ShowVersion: sensor# show version HIT COMMAND:sensor# show configuration In WriteTerm: sensor# show configuration 10.4.190.50: End of run not found 10.4.190.50: End of run not found exit $ Regards, /karpenko/ From heas at shrubbery.net Wed Mar 8 00:15:49 2006 From: heas at shrubbery.net (john heasley) Date: Tue, 7 Mar 2006 16:15:49 -0800 Subject: [rancid] Re: End of run not found In-Reply-To: <20060307123817.P11941@willers.employees.org> References: <20060307123817.P11941@willers.employees.org> Message-ID: <20060308001549.GX9132@shrubbery.net> I do not recommend it, but the key is the exit code, not the text. From dpz at ack.berkeley.edu Thu Mar 9 00:22:53 2006 From: dpz at ack.berkeley.edu (David Paul Zimmerman) Date: Wed, 8 Mar 2006 16:22:53 -0800 Subject: [rancid] netscreen --- more --- Message-ID: <05fccbefa6d77e128715872c6bd85fa7@ack.berkeley.edu> Hi, all. I'm running nlogin/nrancid as a read-only user on our NetScreens, and see things like missing "exit" lines in a "set policy" section, "set policy" sections with no attendant permit or deny, stuff like that where you *know* something _was_ there. The "set console page 0" command doesn't exist in read-only mode (it errors, but continues on), so RANCID needs to deal with output that pages. My theory is subsequently that the "--- more --- " processing is also eating the line after it, which manual experimentation seems to bear out. Has anyone else seen this problem? I'm using the nlogin/nrancid from 2.3.2a3. dp From mark_scheuber at yahoo.com Thu Mar 9 15:47:28 2006 From: mark_scheuber at yahoo.com (mark_scheuber at yahoo.com) Date: Thu, 9 Mar 2006 07:47:28 -0800 (PST) Subject: [rancid] nsrancid Message-ID: <20060309154728.47831.qmail@web52804.mail.yahoo.com> Hi, I was working with a newer version of Netscaler's OS (6.1) which my company just purchased and it seems like they've extensively redone the CLI. For example, typing the command "shell" is now required in order to access a BSD style interface. Looking at the commands in nsrancid I'm guessing the CLI for the 5.0 series of code was significantly different. So the command's in nsrancid need to be modified to work with the new code. nslogin also seems to be hanging after two returns, or on any command's output. I know there was a similar thread a month or two ago and I was wondering if anything had come of that conversation or if it was ever confirmed working? Thanks, - Mark --------------------------------- Yahoo! Mail Bring photos to life! New PhotoMail makes sharing a breeze. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060309/0355c961/attachment.html From mnichols at wayport.net Fri Mar 10 17:05:05 2006 From: mnichols at wayport.net (Matt Nichols) Date: Fri, 10 Mar 2006 11:05:05 -0600 Subject: [rancid] storing configs in non-local (gserver) cvs server Message-ID: <52AD365BD79BA048B359E3F4411D45150D121D46@exchange01.wayad.corp.wayport.net> Hello, I'm looking to replace our current home grown network device config backup script with RANCID. Every example I've seen shows RANCID storing configs in a local CVS server. How would I go about pointing RANCID at a remote CVS server? (Running on a different server than the one running RANCID). Our internal CVS server makes use of gserver, so our cvs root is something like gserver:hostname.of.cvs.server:/cvs. Thanks. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060310/893ab4bd/attachment.html From tex at off.org Fri Mar 10 18:38:20 2006 From: tex at off.org (Austin Schutz) Date: Fri, 10 Mar 2006 10:38:20 -0800 Subject: [rancid] Re: storing configs in non-local (gserver) cvs server In-Reply-To: <52AD365BD79BA048B359E3F4411D45150D121D46@exchange01.wayad.corp.wayport.net> References: <52AD365BD79BA048B359E3F4411D45150D121D46@exchange01.wayad.corp.wayport.net> Message-ID: <20060310183820.GA5456@gblx.net> On Fri, Mar 10, 2006 at 11:05:05AM -0600, Matt Nichols wrote: > Hello, > > > > I'm looking to replace our current home grown network device config > backup script with RANCID. Every example I've seen shows RANCID storing > configs in a local CVS server. How would I go about pointing RANCID at a > remote CVS server? (Running on a different server than the one running > RANCID). Our internal CVS server makes use of gserver, so our cvs root > is something like gserver:hostname.of.cvs.server:/cvs. > Rancid doesn't care where the cvs server is as long as it works, and doesn't require rancid to do any interactive authentication. We have this set up here using ssh, but it would work with other forms of transport as well. With pserver you would just do a cvs login and it would cache the password in ~/.cvspass. I've never used gserver, but I would imagine there is a similar (if not identical) process. Austin From heas at shrubbery.net Fri Mar 10 20:06:06 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 10 Mar 2006 12:06:06 -0800 Subject: [rancid] Re: storing configs in non-local (gserver) cvs server In-Reply-To: <20060310183820.GA5456@gblx.net> References: <52AD365BD79BA048B359E3F4411D45150D121D46@exchange01.wayad.corp.wayport.net> <20060310183820.GA5456@gblx.net> Message-ID: <20060310200606.GX14112@shrubbery.net> Fri, Mar 10, 2006 at 10:38:20AM -0800, Austin Schutz: > Rancid doesn't care where the cvs server is as long as it works, > and doesn't require rancid to do any interactive authentication. > We have this set up here using ssh, but it would work with other > forms of transport as well. With pserver you would just do a cvs login > and it would cache the password in ~/.cvspass. I've never used gserver, > but I would imagine there is a similar (if not identical) process. Not that rancid-cvs does not support this. To handle that, you'll have to create the repository and check-out local version manually. From heas at shrubbery.net Fri Mar 10 20:22:56 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 10 Mar 2006 12:22:56 -0800 Subject: [rancid] Re: nsrancid In-Reply-To: <20060309154728.47831.qmail@web52804.mail.yahoo.com> References: <20060309154728.47831.qmail@web52804.mail.yahoo.com> Message-ID: <20060310202256.GB14054@shrubbery.net> Thu, Mar 09, 2006 at 07:47:28AM -0800, mark_scheuber at yahoo.com: > Hi, > I was working with a newer version of Netscaler's OS (6.1) which my company just purchased and it seems like they've extensively redone the CLI. For example, typing the command "shell" is now required in order to access a BSD style interface. Looking at the commands in nsrancid I'm guessing the CLI for the 5.0 series of code was significantly different. So the command's in nsrancid need to be modified to work with the new code. nslogin also seems to be hanging after two returns, or on any command's output. I know there was a similar thread a month or two ago and I was wondering if anything had come of that conversation or if it was ever confirmed working? Thanks, I am not very familiar with the netscalar. Can anyone offer remote access to one with the new CLI (also having one with the old would be good)? From heas at shrubbery.net Fri Mar 10 20:32:20 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 10 Mar 2006 12:32:20 -0800 Subject: [rancid] Re: netscreen --- more --- In-Reply-To: <05fccbefa6d77e128715872c6bd85fa7@ack.berkeley.edu> References: <05fccbefa6d77e128715872c6bd85fa7@ack.berkeley.edu> Message-ID: <20060310203220.GD14054@shrubbery.net> Wed, Mar 08, 2006 at 04:22:53PM -0800, David Paul Zimmerman: > Hi, all. I'm running nlogin/nrancid as a read-only user on our > NetScreens, and see things like missing "exit" lines in a "set policy" > section, "set policy" sections with no attendant permit or deny, stuff > like that where you *know* something _was_ there. > > The "set console page 0" command doesn't exist in read-only mode (it > errors, but continues on), so RANCID needs to deal with output that > pages. My theory is subsequently that the "--- more --- " processing > is also eating the line after it, which manual experimentation seems to > bear out. > > Has anyone else seen this problem? I'm using the nlogin/nrancid from > 2.3.2a3. Dont have a netscreen myself, but my best guess is that its not eating a line but rather you're bitten by overstriking that removes the pager prompt. If you use an editor that does not filter/interpret control characters, do the missing lines appear in the file in the repository or a .raw file (export NOPIPE=YES; nrancid -d host)? From dpz at ack.berkeley.edu Fri Mar 10 22:08:19 2006 From: dpz at ack.berkeley.edu (David Paul Zimmerman) Date: Fri, 10 Mar 2006 14:08:19 -0800 Subject: [rancid] Re: netscreen --- more --- In-Reply-To: <20060310203220.GD14054@shrubbery.net> References: <05fccbefa6d77e128715872c6bd85fa7@ack.berkeley.edu> <20060310203220.GD14054@shrubbery.net> Message-ID: <18cb5808f7d8e68b37d678715e0d58cf@ack.berkeley.edu> On Mar 10, 2006, at 12:32 PM, john heasley wrote: > Wed, Mar 08, 2006 at 04:22:53PM -0800, David Paul Zimmerman: >> Hi, all. I'm running nlogin/nrancid as a read-only user on our >> NetScreens, and see things like missing "exit" lines in a "set policy" >> section, "set policy" sections with no attendant permit or deny, stuff >> like that where you *know* something _was_ there. >> >> The "set console page 0" command doesn't exist in read-only mode (it >> errors, but continues on), so RANCID needs to deal with output that >> pages. My theory is subsequently that the "--- more --- " processing >> is also eating the line after it, which manual experimentation seems >> to >> bear out. >> >> Has anyone else seen this problem? I'm using the nlogin/nrancid from >> 2.3.2a3. > > Dont have a netscreen myself, but my best guess is that its not eating > a > line but rather you're bitten by overstriking that removes the pager > prompt. If you use an editor that does not filter/interpret control > characters, do the missing lines appear in the file in the repository > or a .raw file (export NOPIPE=YES; nrancid -d host)? Hm... I used both emacs and od on the repository file, and there's no sign of the missing line that I can see. However, when I made a .raw file as you suggested, it looks much better. dp From chrisz at urbancom.net Tue Mar 14 17:44:32 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 11:44:32 -0600 Subject: [rancid] Troubles getting RANCID working with Cisco Message-ID: <000001c6478e$f3a91370$08680740@ADAM> Hi, I am installing RANCID for the first time. We are having troubles getting it to work. We are running RedHat 9.0, and have expect v5.40.1 I have tried to run the "clogin" for testing. It will connect to my router, but hangs at the login prompt. How can I tell if this is a problem with expect, or if I have something else going on? Chris ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060314/796d17cb/attachment.html From laker_netman at yahoo.com Tue Mar 14 21:04:42 2006 From: laker_netman at yahoo.com (Laker Netman) Date: Tue, 14 Mar 2006 13:04:42 -0800 (PST) Subject: [rancid] problem with rancid-run (path related?) Message-ID: <20060314210442.16173.qmail@web50504.mail.yahoo.com> Hi all. I installed rancid (2.3.2a3) on a Fedora Core 4 box last night using the guide referenced under "Getting Started" on the Shrubbery website. Installation proceeded without incident (though I did notice a typo in the guide regarding the .cloginrc filename, TWIMC). Expect 5.43.0-1 and TCL 8.4.9-3 are installed. Here is my rancid.conf (less comments): TERM=network;export TERM umask 027 TMPDIR=/tmp; export TMPDIR BASEDIR=/usr/local/rancid/var; export BASEDIR PATH=/usr/local/rancid/bin:/usr/bin:/usr/sbin:/bin:/usr/kerberos/bin:/usr/local/bin:/usr/bin; export PATH CVSROOT=$BASEDIR/CVS; export CVSROOT LOGDIR=$BASEDIR/logs; export LOGDIR RCSSYS=cvs; export RCSSYS FILTER_PWDS=NO; export FILTER_PWDS NOCOMMSTR=NO; export NOCOMMSTR OLDTIME=4; export OLDTIME LIST_OF_GROUPS="mynetwork" And here is my router.db: 192.168.12.11:cisco:up 192.168.12.12:cisco:up 192.168.12.23:cisco:up 192.168.12.18:cisco:up 192.168.12.5:cisco:up 192.168.12.20:cisco:up 192.168.12.19:cisco:up 192.168.12.21:cisco:up 192.168.12.7:cisco:up 192.168.12.8:cisco:up 192.168.12.9:cisco:up 192.168.12.24:cisco:up 192.168.12.13:cisco:up 192.168.12.16:cisco:up 192.168.12.15:cisco:up 192.168.12.4:cisco:up 192.168.12.6:cisco:up 192.168.12.22:cisco:up 192.168.12.17:cisco:up My only modification to .cloginrc was the addition of an "add password * {zzzzzz} {zzzzz}" line, as well as commenting out the unneeded example lines. The "clogin" test worked as expected, but I had to manually append "/usr/local/rancid/bin" to PATH to get "rancid" working. However, "rancid-run" returns immediately and the log file only contains the following: starting: Tue Mar 14 14:01:01 CST 2006 ending: Tue Mar 14 14:01:02 CST 2006 regardless of what I try. I even included an "echo $PATH" at the end of the rancid.conf file to visually confirm the correct path was being exported in the shell. Ideas? Thanks in advance, Laker __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From chrisz at urbancom.net Tue Mar 14 21:07:47 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 15:07:47 -0600 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <20060314191140.GJ27898@shrubbery.net> Message-ID: <000c01c647ab$58369670$08680740@ADAM> This isn't the problem ... As I stated, it hangs at the "Username:" prompt .... It just never logs in ... [rancid at engineering rancid]$ bin/clogin 64.x.xx.xx 64.x.xx.xx spawn telnet 64.x.xx.xx Trying 64.x.xx.xx... Connected to 64.x.xx.xx. Escape character is '^]'. User Access Verification Username: And there it just sits. It refuses to attempt to log in. ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, March 14, 2006 1:12 PM To: Chris Zimmerman Subject: Re: [rancid] Troubles getting RANCID working with Cisco see the autoenable directive of cloginrc(5). Tue, Mar 14, 2006 at 11:44:32AM -0600, Chris Zimmerman: > Hi, I am installing RANCID for the first time. We are having troubles > getting it to work. > > > > We are running RedHat 9.0, and have expect v5.40.1 > > > > I have tried to run the "clogin" for testing. It will connect to my router, > but hangs at the login prompt. How can I tell if this is a problem with > expect, or if I have something else going on? > > > > > > > > Chris > > > > > > > > > > > > ------------------------------------- > > Chris Zimmerman > > Senior Network Engineer > > chrisz at urbancom.net > > (708) 687-2090 > > > > > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From chrisz at urbancom.net Tue Mar 14 21:39:46 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 15:39:46 -0600 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <20060314212942.GA16604@shrubbery.net> Message-ID: <000d01c647af$d01788d0$08680740@ADAM> Yes, I have not only tried to apply the patch to the source, and recompile expect, but I have also tried to use the pre-compiled version of Expect that has the patch included. I am at a complete loss that this point .... ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -----Original Message----- From: 'john heasley' [mailto:heas at shrubbery.net] Sent: Tuesday, March 14, 2006 3:30 PM To: Chris Zimmerman Subject: Re: [rancid] Troubles getting RANCID working with Cisco did you use this: http://www.shrubbery.net/rancid/#osystems Tue, Mar 14, 2006 at 02:48:46PM -0600, Chris Zimmerman: > That isn't the issue ... It just never logs in ... > > > [rancid at engineering rancid]$ bin/clogin 64.x.xx.xx > 64.x.xx.xx > spawn telnet 64.x.xx.xx > Trying 64.x.xx.xx... > Connected to 64.x.xx.xx. > Escape character is '^]'. > > > User Access Verification > > Username: > > > > And there it just sits. It refuses to attempt to log in. > > > > > > > > ------------------------------------- > Chris Zimmerman > Senior Network Engineer > chrisz at urbancom.net > (708) 687-2090 > > > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Tuesday, March 14, 2006 1:12 PM > To: Chris Zimmerman > Subject: Re: [rancid] Troubles getting RANCID working with Cisco > > see the autoenable directive of cloginrc(5). > > Tue, Mar 14, 2006 at 11:44:32AM -0600, Chris Zimmerman: > > Hi, I am installing RANCID for the first time. We are having troubles > > getting it to work. > > > > > > > > We are running RedHat 9.0, and have expect v5.40.1 > > > > > > > > I have tried to run the "clogin" for testing. It will connect to my > router, > > but hangs at the login prompt. How can I tell if this is a problem with > > expect, or if I have something else going on? > > > > > > > > > > > > > > > > Chris > > > > > > > > > > > > > > > > > > > > > > > > ------------------------------------- > > > > Chris Zimmerman > > > > Senior Network Engineer > > > > chrisz at urbancom.net > > > > (708) 687-2090 > > > > > > > > > > > > > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From tex at off.org Tue Mar 14 21:42:31 2006 From: tex at off.org (Austin Schutz) Date: Tue, 14 Mar 2006 13:42:31 -0800 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <000c01c647ab$58369670$08680740@ADAM> References: <20060314191140.GJ27898@shrubbery.net> <000c01c647ab$58369670$08680740@ADAM> Message-ID: <20060314214231.GE11640@gblx.net> You can put: exp_internal 1; near the top of clogin temporarily for debugging. That will tell you what expect is sending/receiving from the remote host. I thought I had passed in a patch for a debugging flag for this, must have forgotten. One more for the todo list... Austin On Tue, Mar 14, 2006 at 03:07:47PM -0600, Chris Zimmerman wrote: > This isn't the problem ... As I stated, it hangs at the "Username:" prompt > .... > > > > It just never logs in ... > > > [rancid at engineering rancid]$ bin/clogin 64.x.xx.xx 64.x.xx.xx spawn telnet > 64.x.xx.xx Trying 64.x.xx.xx... > Connected to 64.x.xx.xx. > Escape character is '^]'. > > > User Access Verification > > Username: > > > > And there it just sits. It refuses to attempt to log in. > > > > > > > > > > > ------------------------------------- > Chris Zimmerman > Senior Network Engineer > chrisz at urbancom.net > (708) 687-2090 > > > > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Tuesday, March 14, 2006 1:12 PM > To: Chris Zimmerman > Subject: Re: [rancid] Troubles getting RANCID working with Cisco > > see the autoenable directive of cloginrc(5). > > Tue, Mar 14, 2006 at 11:44:32AM -0600, Chris Zimmerman: > > Hi, I am installing RANCID for the first time. We are having troubles > > getting it to work. > > > > > > > > We are running RedHat 9.0, and have expect v5.40.1 > > > > > > > > I have tried to run the "clogin" for testing. It will connect to my > router, > > but hangs at the login prompt. How can I tell if this is a problem with > > expect, or if I have something else going on? > > > > > > > > > > > > > > > > Chris > > > > > > > > > > > > > > > > > > > > > > > > ------------------------------------- > > > > Chris Zimmerman > > > > Senior Network Engineer > > > > chrisz at urbancom.net > > > > (708) 687-2090 > > > > > > > > > > > > > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From chrisz at urbancom.net Tue Mar 14 21:49:37 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 15:49:37 -0600 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <20060314214231.GE11640@gblx.net> Message-ID: <000e01c647b1$30b52840$08680740@ADAM> Can anyone help? [rancid at engineering rancid]$ /usr/local/rancid/bin/clogin 64.7.96.38 64.7.96.38 spawn telnet 64.7.96.38 parent: waiting for sync byte parent: telling child to go ahead parent: now unsynchronized from child spawn: returns {14774} expect: does "" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no Trying 64.7.96.38... Connected to 64.7.96.38. Escape character is '^]'. expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no User Access Verification Username: expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no % Username: timeout expired! Username: expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no expect: timed out Error: TIMEOUT reached [rancid at engineering rancid]$ [rancid at engineering rancid]$ [rancid at engineering rancid]$ ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -----Original Message----- From: Austin Schutz [mailto:tex at off.org] Sent: Tuesday, March 14, 2006 3:43 PM To: Chris Zimmerman Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Re: Troubles getting RANCID working with Cisco You can put: exp_internal 1; near the top of clogin temporarily for debugging. That will tell you what expect is sending/receiving from the remote host. I thought I had passed in a patch for a debugging flag for this, must have forgotten. One more for the todo list... Austin On Tue, Mar 14, 2006 at 03:07:47PM -0600, Chris Zimmerman wrote: > This isn't the problem ... As I stated, it hangs at the "Username:" prompt > .... > > > > It just never logs in ... > > > [rancid at engineering rancid]$ bin/clogin 64.x.xx.xx 64.x.xx.xx spawn telnet > 64.x.xx.xx Trying 64.x.xx.xx... > Connected to 64.x.xx.xx. > Escape character is '^]'. > > > User Access Verification > > Username: > > > > And there it just sits. It refuses to attempt to log in. > > > > > > > > > > > ------------------------------------- > Chris Zimmerman > Senior Network Engineer > chrisz at urbancom.net > (708) 687-2090 > > > > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Tuesday, March 14, 2006 1:12 PM > To: Chris Zimmerman > Subject: Re: [rancid] Troubles getting RANCID working with Cisco > > see the autoenable directive of cloginrc(5). > > Tue, Mar 14, 2006 at 11:44:32AM -0600, Chris Zimmerman: > > Hi, I am installing RANCID for the first time. We are having troubles > > getting it to work. > > > > > > > > We are running RedHat 9.0, and have expect v5.40.1 > > > > > > > > I have tried to run the "clogin" for testing. It will connect to my > router, > > but hangs at the login prompt. How can I tell if this is a problem with > > expect, or if I have something else going on? > > > > > > > > > > > > > > > > Chris > > > > > > > > > > > > > > > > > > > > > > > > ------------------------------------- > > > > Chris Zimmerman > > > > Senior Network Engineer > > > > chrisz at urbancom.net > > > > (708) 687-2090 > > > > > > > > > > > > > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From chrisz at urbancom.net Tue Mar 14 22:03:25 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 16:03:25 -0600 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <20060314215832.GC16604@shrubbery.net> Message-ID: <000f01c647b3$1e313fe0$08680740@ADAM> I am absolutely sure, and just to prove it ... [rancid at engineering rancid]$ /usr/local/bin/expect -v expect version 5.40.1 [rancid at engineering rancid]$ /usr/local/bin/expect /usr/local/rancid/bin/clogin 64.7.96.38 64.7.96.38 spawn telnet 64.7.96.38 parent: waiting for sync byte parent: telling child to go ahead parent: now unsynchronized from child spawn: returns {14885} expect: does "" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no Trying 64.7.96.38... Connected to 64.7.96.38. Escape character is '^]'. expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no User Access Verification Username: expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no % Username: timeout expired! Username: expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown host\r"? no expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no "(#| \(enable\))"? no "Login invalid"? no expect: timed out Error: TIMEOUT reached [rancid at engineering rancid]$ ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, March 14, 2006 3:59 PM To: Chris Zimmerman Subject: Re: [rancid] Re: Troubles getting RANCID working with Cisco Are you _really_ using the expect that you built with the patch? try it explicitly; /path/expect /path/clogin host Tue, Mar 14, 2006 at 03:49:37PM -0600, Chris Zimmerman: > Can anyone help? > > > > > > [rancid at engineering rancid]$ /usr/local/rancid/bin/clogin 64.7.96.38 > 64.7.96.38 > spawn telnet 64.7.96.38 > parent: waiting for sync byte > parent: telling child to go ahead > parent: now unsynchronized from child > spawn: returns {14774} > > expect: does "" (spawn_id exp4) match regular expression "(Connection > refused|Secure connection [^\n\r]+ refused)"? no > "(Connection closed by|Connection to [^\n\r]+ closed)"? no > > expect: does "" (spawn_id exp4) match glob pattern "unknown host\r"? no > > expect: does "" (spawn_id exp4) match glob pattern "Host is unreachable"? no > "No address associated with name"? no > "(Host key not found |The authenticity of host .* be > established).*(yes/no)?"? no > "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no > "Offending key for .* (yes/no)?"? no > "(denied|Sorry)"? no > "Login failed"? no > "% (Bad passwords|Authentication failed)"? no > "Press any key to continue."? no > "Enter Selection: "? no > "@[^\r\n]+ ([Pp]assword|passwd):"? no > "(Username|Login|login|user name):"? no > "([Pp]assword|passwd):"? no > "(#| \(enable\))"? no > "Login invalid"? no > Trying 64.7.96.38... > Connected to 64.7.96.38. > Escape character is '^]'. > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match regular expression > "(Connection refused|Secure connection [^\n\r]+ refused)"? no > "(Connection closed by|Connection to [^\n\r]+ closed)"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown > host\r"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is > unreachable"? no > "No address associated with name"? no > "(Host key not found |The authenticity of host .* be > established).*(yes/no)?"? no > "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no > "Offending key for .* (yes/no)?"? no > "(denied|Sorry)"? no > "Login failed"? no > "% (Bad passwords|Authentication failed)"? no > "Press any key to continue."? no > "Enter Selection: "? no > "@[^\r\n]+ ([Pp]assword|passwd):"? no > "(Username|Login|login|user name):"? no > "([Pp]assword|passwd):"? no > "(#| \(enable\))"? no > "Login invalid"? no > > > User Access Verification > > Username: > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match regular expression > "(Connection refused|Secure connection [^\n\r]+ refused)"? no > "(Connection closed by|Connection to [^\n\r]+ closed)"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown > host\r"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is > unreachable"? no > "No address associated with name"? no > "(Host key not found |The authenticity of host .* be > established).*(yes/no)?"? no > "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no > "Offending key for .* (yes/no)?"? no > "(denied|Sorry)"? no > "Login failed"? no > "% (Bad passwords|Authentication failed)"? no > "Press any key to continue."? no > "Enter Selection: "? no > "@[^\r\n]+ ([Pp]assword|passwd):"? no > "(Username|Login|login|user name):"? no > "([Pp]assword|passwd):"? no > "(#| \(enable\))"? no > "Login invalid"? no > > % Username: timeout expired! > Username: > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match regular expression > "(Connection refused|Secure connection [^\n\r]+ refused)"? no > "(Connection closed by|Connection to [^\n\r]+ closed)"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "unknown > host\r"? no > > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is > unreachable"? no > "No address associated with name"? no > "(Host key not found |The authenticity of host .* be > established).*(yes/no)?"? no > "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no > "Offending key for .* (yes/no)?"? no > "(denied|Sorry)"? no > "Login failed"? no > "% (Bad passwords|Authentication failed)"? no > "Press any key to continue."? no > "Enter Selection: "? no > "@[^\r\n]+ ([Pp]assword|passwd):"? no > "(Username|Login|login|user name):"? no > "([Pp]assword|passwd):"? no > "(#| \(enable\))"? no > "Login invalid"? no > expect: timed out > > Error: TIMEOUT reached > [rancid at engineering rancid]$ > [rancid at engineering rancid]$ > [rancid at engineering rancid]$ > > > > > ------------------------------------- > Chris Zimmerman > Senior Network Engineer > chrisz at urbancom.net > (708) 687-2090 > > > > -----Original Message----- > From: Austin Schutz [mailto:tex at off.org] > Sent: Tuesday, March 14, 2006 3:43 PM > To: Chris Zimmerman > Cc: rancid-discuss at shrubbery.net > Subject: Re: [rancid] Re: Troubles getting RANCID working with Cisco > > > You can put: > > exp_internal 1; > > near the top of clogin temporarily for debugging. That will tell > you what expect is sending/receiving from the remote host. > > I thought I had passed in a patch for a debugging flag for this, > must have forgotten. One more for the todo list... > > Austin > > On Tue, Mar 14, 2006 at 03:07:47PM -0600, Chris Zimmerman wrote: > > This isn't the problem ... As I stated, it hangs at the "Username:" > prompt > > .... > > > > > > > > It just never logs in ... > > > > > > [rancid at engineering rancid]$ bin/clogin 64.x.xx.xx 64.x.xx.xx spawn telnet > > 64.x.xx.xx Trying 64.x.xx.xx... > > Connected to 64.x.xx.xx. > > Escape character is '^]'. > > > > > > User Access Verification > > > > Username: > > > > > > > > And there it just sits. It refuses to attempt to log in. > > > > > > > > > > > > > > > > > > > > > > ------------------------------------- > > Chris Zimmerman > > Senior Network Engineer > > chrisz at urbancom.net > > (708) 687-2090 > > > > > > > > -----Original Message----- > > From: john heasley [mailto:heas at shrubbery.net] > > Sent: Tuesday, March 14, 2006 1:12 PM > > To: Chris Zimmerman > > Subject: Re: [rancid] Troubles getting RANCID working with Cisco > > > > see the autoenable directive of cloginrc(5). > > > > Tue, Mar 14, 2006 at 11:44:32AM -0600, Chris Zimmerman: > > > Hi, I am installing RANCID for the first time. We are having troubles > > > getting it to work. > > > > > > > > > > > > We are running RedHat 9.0, and have expect v5.40.1 > > > > > > > > > > > > I have tried to run the "clogin" for testing. It will connect to my > > router, > > > but hangs at the login prompt. How can I tell if this is a problem with > > > expect, or if I have something else going on? > > > > > > > > > > > > > > > > > > > > > > > > Chris > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > ------------------------------------- > > > > > > Chris Zimmerman > > > > > > Senior Network Engineer > > > > > > chrisz at urbancom.net > > > > > > (708) 687-2090 > > > > > > > > > > > > > > > > > > > > > > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From tex at off.org Tue Mar 14 22:21:09 2006 From: tex at off.org (Austin Schutz) Date: Tue, 14 Mar 2006 14:21:09 -0800 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <000e01c647b1$30b52840$08680740@ADAM> References: <20060314214231.GE11640@gblx.net> <000e01c647b1$30b52840$08680740@ADAM> Message-ID: <20060314222109.GF11640@gblx.net> On Tue, Mar 14, 2006 at 03:49:37PM -0600, Chris Zimmerman wrote: > Can anyone help? > > [rancid at engineering rancid]$ /usr/local/rancid/bin/clogin 64.7.96.38 > 64.7.96.38 > spawn telnet 64.7.96.38 > parent: waiting for sync byte > parent: telling child to go ahead > parent: now unsynchronized from child > spawn: returns {14774} > ... > Trying 64.7.96.38... > Connected to 64.7.96.38. > Escape character is '^]'. > > User Access Verification > > Username: > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is > unreachable"? no ... It looks like expect isn't seeing anything after the Escape character line. From here that would seem to be a bug in your version of expect, unless your telnet client is doing something super funky. Austin From chrisz at urbancom.net Tue Mar 14 23:20:53 2006 From: chrisz at urbancom.net (Chris Zimmerman) Date: Tue, 14 Mar 2006 17:20:53 -0600 Subject: [rancid] Re: Troubles getting RANCID working with Cisco In-Reply-To: <20060314222109.GF11640@gblx.net> Message-ID: <001c01c647bd$f0c485c0$08680740@ADAM> As it turned out, it was a problem with the version of Tcl. I uninstalled everything, and re-installed, and now it works. ------------------------------------- Chris Zimmerman Senior Network Engineer chrisz at urbancom.net (708) 687-2090 -----Original Message----- From: Austin Schutz [mailto:tex at off.org] Sent: Tuesday, March 14, 2006 4:21 PM To: Chris Zimmerman Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Re: Troubles getting RANCID working with Cisco On Tue, Mar 14, 2006 at 03:49:37PM -0600, Chris Zimmerman wrote: > Can anyone help? > > [rancid at engineering rancid]$ /usr/local/rancid/bin/clogin 64.7.96.38 > 64.7.96.38 > spawn telnet 64.7.96.38 > parent: waiting for sync byte > parent: telling child to go ahead > parent: now unsynchronized from child > spawn: returns {14774} > ... > Trying 64.7.96.38... > Connected to 64.7.96.38. > Escape character is '^]'. > > User Access Verification > > Username: > expect: does "Trying 64.7.96.38...\r\r\nConnected to 64.7.96.38.\r\r\nEscape > character is '^]'.\r\r\n" (spawn_id exp4) match glob pattern "Host is > unreachable"? no ... It looks like expect isn't seeing anything after the Escape character line. From here that would seem to be a bug in your version of expect, unless your telnet client is doing something super funky. Austin From tore at linpro.no Thu Mar 16 10:10:01 2006 From: tore at linpro.no (Tore Anderson) Date: Thu, 16 Mar 2006 11:10:01 +0100 Subject: [rancid] Problems with clogin and Extreme XOS Message-ID: <1142503802.2286.41.camel@echo.e.linpro.no> Hi. I'm having some issues using RANCID (v2.3.2a3) with some switches running Extreme XOS (version 11.3.3.7). My ~/.cloginrc looks as follows: add password * passwordhere add user * admin add passprompt * "password" add method * ssh add autoenable * 1 First, a minor issue. When I run clogin with the -c argument, it seems to insist on first running the command "term length 0", which isn't available in XOS. The supplied command is afterwards run without any problems, even if the output would normally cause paging. (The XOS command for disabling the pager for one session only is "disable clipaging"). A bigger problem, is that the prompt changes when the configuration is unsaved - the string "* " is prepended. RANCID is appararantly unable to cope with this: tore at echo :) clogin -c "show version" cs0-hmg9.int cs0-hmg9.int spawn ssh -c 3des -x -l admin cs0-hmg9.int Keyboard-interactive authentication Enter password for admin: ExtremeWare XOS Copyright (C) 2000-2005 Extreme Networks. All rights reserved. Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. ============================================================================== Press the or '?' key at any time for completions. Remember to save your configuration changes. * cs0.hmg9.no.linpro.net.1 # * cs0.hmg9.no.linpro.net.1 # couldn't compile regular expression pattern: quantifier operand invalid while executing "expect -nobrace -re {* cs0.hmg9.no.([^#>\r\n]+)?[#>](\([^)\r\n]+\))?} {} -re {[ ]+} { exp_continue }" invoked from within "expect { -re $reprompt {} -re "\[\n\r]+" { exp_continue } }" (procedure "run_commands" line 23) invoked from within "run_commands $prompt $command" ("foreach" body line 145) invoked from within "foreach router [lrange $argv $i end] { set router [string tolower $router] send_user "$router\n" # Figure out the prompt. # autoenabl..." (file "/stat/home0/tore/local/bin/clogin" line 686) tore at echo :( It is also impossible to run a command which changes the config and thus the prompt: tore at echo :) clogin -c "configure vlan Adm name SomethingElse; sh ver" cs0-hmg9.int cs0-hmg9.int spawn ssh -c 3des -x -l admin cs0-hmg9.int Keyboard-interactive authentication Enter password for admin: ExtremeWare XOS Copyright (C) 2000-2005 Extreme Networks. All rights reserved. Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. ============================================================================== Press the or '?' key at any time for completions. Remember to save your configuration changes. cs0.hmg9.no.linpro.net.1 # cs0.hmg9.no.linpro.net.1 # term length 0 ^ %% Invalid input detected at '^' marker. cs0.hmg9.no.linpro.net.2 # configure vlan Adm name SomethingElse * cs0.hmg9.no.linpro.net.3 # Error: TIMEOUT reached tore at echo :) Had I run "sh ver; sh ver" instead, it would have run both command and successfully logged out of the script. Side note, shouldn't clogin return unsuccessfully when such a timeout error occur? I have also a few more low-end Extreme switches running ExtremeWare 7.4. Their prompt behaves just like in XOS, yet they work flawlessly with RANCID. I don't really know expect, but reading the source code of clogin I see that there appears to be a variable named "platform" that gets the value "extreme" in some cases. I do not think that is correctly set on a switch running XOS. However, there seems to be another problem - when I explicitly change the variable to be "extreme" in all cases, it still bombs out when the prompt indicating unsaved configuration is shown, and it also hangs after having run the (first) command: tore at echo :) clogin -c "sh ver; sh ver" cs1-hmg9.int cs1-hmg9.int sterm length 0pawn ssh -c 3des -x -l admin cs1-hmg9.int Keyboard-interactive authentication Enter password for admin: ExtremeWare XOS Copyright (C) 2000-2005 Extreme Networks. All rights reserved. Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. ============================================================================== Press the or '?' key at any time for completions. Remember to save your configuration changes. cs1.hmg9.no.linpro.net.1 # cs1.hmg9.no.linpro.net.1 # sh ver Switch : 800143-00-04 0547G-00763 Rev 4.0 BootROM: 1.0.0.9 IMG: 11.3.3.7 XGM-2xn-1 : Image : ExtremeWare XOS version 11.3.3.7 v1133b7 by release-manager on Thu Feb 9 11:58:36 PST 2006 BootROM : 1.0.0.9 Error: TIMEOUT reached tore at echo :) (Note that it doesn't attempt to run "term length 0" any longer.) Any suggestions? Kind regards -- Tore Anderson From rancid at congiman.com Thu Mar 16 21:52:52 2006 From: rancid at congiman.com (Colin Corbett) Date: Thu, 16 Mar 2006 13:52:52 -0800 (PST) Subject: [rancid] force10 S-50 support in rancid Message-ID: Hey folks, first time posting so go easy. (I looked in the archives and didnt see this covered). I had a devil of a time getting rancid (2.3.1) to work with the force10 S-50 (running rev 2.3.1). (code rev is a strange co-incidence). problems encountered: 1: when telnetting/sshing in, the S-50 may miss various bits of the enable password. (if its a 10 character password, some characters in the middle get munged.) Ideal fix: have force10 figure this out and ensure that they do not miss characters when enabling (ticket opened) Possible rancid fix: create a loop in clogin to ensure that for each character sent a "*" is received. my hack was to modify clogin: -----Do not do this----- -re "$e_prompt" { send "X";sleep 1;send "X"; sleep 1;send "X"; sleep 1; send "X"; sleep 1; send "\r"; exp_continue} ---- (this was truly horrible.) 2: in the rancid-force10: I added: next if (/^!Current Configuration\s*:/i); (as thats how the current config starts) 3: Rancid cannot tell where the end of the config is as the force10 doesnt say when the end is. Ideal fix: have force 10 delimit the end of the config Possible rancid fix: Determine what the prompt is, and look for that as matching. My hack: look for something near the end of the config and match that as the end. if (/^tacacs-server host/) { 4: the S-50 expects "logout" to actually log you out (not exit). Possible rancid fix, add this as another "if" platform compare to clogin. My hack into clogin: if { [ string compare "force10" "$platform" ] } { send "logout\r" } else { send "quit\r" } 4a: There is still something missing in the above, as the S-50 may prompt you if there are unsaved changes: The system has unsaved changes. Would you like to save them now? (y/n) (I didnt build logic in for this). Hopefully theres a skilled perl person that can build some of this into the next rev, and worst case, maybe theres someone with an S-50 that will get some value from this. Also, I got rid of most of the commands that rancid does, as the S50 (L2) supports only a few of the commands: %commands=( 'show version' => "ShowVersion", 'dir nvram' => "DirSlotN", 'show vlan' => "ShowVLAN", 'show running' => "WriteTerm" ); note: I have no idea how my changes may affect the E series Force10 boxes, as I'm only trying to make this work on the S series (I dont have any E series). If you have both, maybe you want to make 2 different setups? --C p.s. apologies if this shows up as a double post. (I posted from the wrong source address the first attempt (so it might be queued). From heas at shrubbery.net Thu Mar 16 23:53:28 2006 From: heas at shrubbery.net (john heasley) Date: Thu, 16 Mar 2006 15:53:28 -0800 Subject: [rancid] Re: Problems with clogin and Extreme XOS In-Reply-To: <1142503802.2286.41.camel@echo.e.linpro.no> References: <1142503802.2286.41.camel@echo.e.linpro.no> Message-ID: <20060316235328.GX16604@shrubbery.net> Thu, Mar 16, 2006 at 11:10:01AM +0100, Tore Anderson: > > Hi. I'm having some issues using RANCID (v2.3.2a3) with some switches > running Extreme XOS (version 11.3.3.7). My ~/.cloginrc looks as > follows: > > add password * passwordhere > add user * admin > add passprompt * "password" > add method * ssh > add autoenable * 1 > > First, a minor issue. When I run clogin with the -c argument, it > seems to insist on first running the command "term length 0", which > isn't available in XOS. The supplied command is afterwards run without > any problems, even if the output would normally cause paging. (The XOS > command for disabling the pager for one session only is "disable > clipaging"). when clogin connects, it looks for that weird extreme prompt enumeration and marks the host as an extreme. with that in mind, it should deal with the * in the prompt and not try to adjust the (global) term length value. It looks like they changed their prompt format from :N to .N, or does it allow you to do that in the configuration? > A bigger problem, is that the prompt changes when the configuration is > unsaved - the string "* " is prepended. RANCID is appararantly unable > to cope with this: > > tore at echo :) clogin -c "show version" cs0-hmg9.int > cs0-hmg9.int > spawn ssh -c 3des -x -l admin cs0-hmg9.int > Keyboard-interactive authentication > Enter password for admin: > ExtremeWare XOS > Copyright (C) 2000-2005 Extreme Networks. All rights reserved. > Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. > ============================================================================== > > Press the or '?' key at any time for completions. > Remember to save your configuration changes. > > * cs0.hmg9.no.linpro.net.1 # > * cs0.hmg9.no.linpro.net.1 # couldn't compile regular expression pattern: quantifier operand invalid > while executing > "expect -nobrace -re {* cs0.hmg9.no.([^#>\r\n]+)?[#>](\([^)\r\n]+\))?} {} -re {[ > ]+} { exp_continue }" > invoked from within > "expect { > -re $reprompt {} > -re "\[\n\r]+" { exp_continue } > }" > (procedure "run_commands" line 23) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 145) > invoked from within > "foreach router [lrange $argv $i end] { > set router [string tolower $router] > send_user "$router\n" > > # Figure out the prompt. > # autoenabl..." > (file "/stat/home0/tore/local/bin/clogin" line 686) > tore at echo :( > > It is also impossible to run a command which changes the config and > thus the prompt: > > tore at echo :) clogin -c "configure vlan Adm name SomethingElse; sh ver" cs0-hmg9.int > cs0-hmg9.int > spawn ssh -c 3des -x -l admin cs0-hmg9.int > Keyboard-interactive authentication > Enter password for admin: > ExtremeWare XOS > Copyright (C) 2000-2005 Extreme Networks. All rights reserved. > Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. > ============================================================================== > > Press the or '?' key at any time for completions. > Remember to save your configuration changes. > > cs0.hmg9.no.linpro.net.1 # > cs0.hmg9.no.linpro.net.1 # term length 0 > ^ > %% Invalid input detected at '^' marker. > cs0.hmg9.no.linpro.net.2 # configure vlan Adm name SomethingElse > * cs0.hmg9.no.linpro.net.3 # > Error: TIMEOUT reached > tore at echo :) > > Had I run "sh ver; sh ver" instead, it would have run both command and > successfully logged out of the script. Side note, shouldn't clogin > return unsuccessfully when such a timeout error occur? yes, that needs to be fixed. problem is, accumulative or errored or last result? ie: for multiple hosts on the command-line, add the errors (or just 1), or stop after the first error, or return the result of the last host. > I have also a few more low-end Extreme switches running ExtremeWare > 7.4. Their prompt behaves just like in XOS, yet they work flawlessly > with RANCID. I don't really know expect, but reading the source code > of clogin I see that there appears to be a variable named "platform" > that gets the value "extreme" in some cases. I do not think that is > correctly set on a switch running XOS. However, there seems to be > another problem - when I explicitly change the variable to be "extreme" > in all cases, it still bombs out when the prompt indicating unsaved > configuration is shown, and it also hangs after having run the (first) > command: > > tore at echo :) clogin -c "sh ver; sh ver" cs1-hmg9.int > cs1-hmg9.int > sterm length 0pawn ssh -c 3des -x -l admin cs1-hmg9.int > Keyboard-interactive authentication > Enter password for admin: > ExtremeWare XOS > Copyright (C) 2000-2005 Extreme Networks. All rights reserved. > Protected by US Patent Nos: 6,678,248; 6,104,700; 6,766,482; 6,618,388; 6,034,957; 6,859,438. > ============================================================================== > > Press the or '?' key at any time for completions. > Remember to save your configuration changes. > > cs1.hmg9.no.linpro.net.1 # > cs1.hmg9.no.linpro.net.1 # sh ver > Switch : 800143-00-04 0547G-00763 Rev 4.0 BootROM: 1.0.0.9 IMG: 11.3.3.7 > XGM-2xn-1 : > > Image : ExtremeWare XOS version 11.3.3.7 v1133b7 by release-manager > on Thu Feb 9 11:58:36 PST 2006 > BootROM : 1.0.0.9 > > Error: TIMEOUT reached > tore at echo :) > > (Note that it doesn't attempt to run "term length 0" any longer.) > > Any suggestions? > > Kind regards > -- > Tore Anderson > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From asr at latency.net Fri Mar 17 00:06:31 2006 From: asr at latency.net (Adam Rothschild) Date: Thu, 16 Mar 2006 19:06:31 -0500 Subject: [rancid] Re: Problems with clogin and Extreme XOS In-Reply-To: <20060316235328.GX16604@shrubbery.net> References: <1142503802.2286.41.camel@echo.e.linpro.no> <20060316235328.GX16604@shrubbery.net> Message-ID: <20060317000631.GS31686@latency.net> On 2006-03-16-18:53:28, john heasley wrote: [...] > It looks like they changed their prompt format from :N to .N, or does it > allow you to do that in the configuration? It appears as though XOS (Extreme's "new and improved" CLI, found on such boxes as the Summit x450, and I believe some of the new MSMs) uses the '.N' formatting, while legacy Extreme code still uses the ':N'. This is not a configurable option as best I can tell... HTH, -a From heas at shrubbery.net Fri Mar 17 00:11:02 2006 From: heas at shrubbery.net (john heasley) Date: Thu, 16 Mar 2006 16:11:02 -0800 Subject: [rancid] Re: storing configs in non-local (gserver) cvs server In-Reply-To: <20060310200606.GX14112@shrubbery.net> References: <52AD365BD79BA048B359E3F4411D45150D121D46@exchange01.wayad.corp.wayport.net> <20060310183820.GA5456@gblx.net> <20060310200606.GX14112@shrubbery.net> Message-ID: <20060317001102.GA3960@shrubbery.net> Fri, Mar 10, 2006 at 12:06:06PM -0800, john heasley: > Fri, Mar 10, 2006 at 10:38:20AM -0800, Austin Schutz: > > Rancid doesn't care where the cvs server is as long as it works, > > and doesn't require rancid to do any interactive authentication. > > We have this set up here using ssh, but it would work with other > > forms of transport as well. With pserver you would just do a cvs login > > and it would cache the password in ~/.cvspass. I've never used gserver, > > but I would imagine there is a similar (if not identical) process. > > Not that rancid-cvs does not support this. To handle that, you'll have to > create the repository and check-out local version manually. This is not right. I've mucked around with this a bit and it works fine. Just set CVS_RSH & CVSROOT in rancid.conf. eg: CVS_RSH=ssh; export CVS_RSH CVSROOT="myhost:/fqpn/CVS"; export CVSROOT Not to go on a CVS tutorial here, but assuming you are starting fresh, this should be the only change necessary. Justin Grote mentioned in a private email that it should be possible with subversion as well. I'll let him expand on that, as i'm quite new to svn. From karpenko at willers.employees.org Fri Mar 17 04:27:11 2006 From: karpenko at willers.employees.org (jkarpenko) Date: Thu, 16 Mar 2006 20:27:11 -0800 (PST) Subject: [rancid] Re: End of run not found In-Reply-To: <20060308001549.GX9132@shrubbery.net> References: <20060307123817.P11941@willers.employees.org> <20060308001549.GX9132@shrubbery.net> Message-ID: <20060316201155.P61956@willers.employees.org> John, thanks for the response. I totally agree with you, I would rather match on a string that I know is the end of the config than potentially cause some other adverse affects. I know that seeing the device prompt would do this, and I've modified the perl script [if (/^(: +)?end$/) {] several times trying to accomplish this, but I've got to be missing something. I tried a simple [if (/^$prompt/) {] and that didn't work so I'm trying to understand why. /karpenko/ On Tue, 7 Mar 2006, john heasley wrote: > I do not recommend it, but the key is the exit code, not the text. > From tore at linpro.no Fri Mar 17 10:23:23 2006 From: tore at linpro.no (Tore Anderson) Date: Fri, 17 Mar 2006 11:23:23 +0100 Subject: [rancid] Re: Problems with clogin and Extreme XOS In-Reply-To: <20060316235328.GX16604@shrubbery.net> References: <1142503802.2286.41.camel@echo.e.linpro.no> <20060316235328.GX16604@shrubbery.net> Message-ID: <1142591004.12357.66.camel@echo.e.linpro.no> * john heasley > when clogin connects, it looks for that weird extreme prompt > enumeration and marks the host as an extreme. with that in mind, it > should deal with the * in the prompt and not try to adjust the > (global) term length value. > > It looks like they changed their prompt format from :N to .N, or does > it allow you to do that in the configuration? Wow. I hadn't even noticed that difference before. :-) Patch attached; makes clogin work flawlessly with XOS as far as I can tell. I've also attached a patch to xrancid that does the same thing, which seems to be required for it to be able to get beyond the first command. It still complains "End of run not found", though. XOS doesn't have a comment indicating the end of the configuration file like ExtremeWare has. I've hacked around this by setting $found_end to 1 if I see "# Module vrrp configuration", which is the concluding comment in my config file as I do not use VRRP, but obviously that isn't a generic solution. :-) There's another problem, too, that XOS doesn't have "show configuration detail" (only "show configuration"), while ExtremeWare has both. I will look more into it later; Perl is easier for me. Maybe I'll be able to provide a decent patch, even. Cheers -- Tore Anderson -------------- next part -------------- A non-text attachment was scrubbed... Name: xrancid.patch Type: text/x-patch Size: 410 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060317/ec2a5913/attachment.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: clogin.patch Type: text/x-patch Size: 461 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060317/ec2a5913/attachment-0001.bin From yuvalba at netvision.net.il Mon Mar 20 19:49:05 2006 From: yuvalba at netvision.net.il (Yuval Ben-Ari) Date: Mon, 20 Mar 2006 21:49:05 +0200 Subject: [rancid] sorting of lists Message-ID: <58D14E53A4F69C4EAF4D29171C447CC42CF0F9@NTX-CL.forest.netvision.net.il> Hi, We just upgraded to 2.3.1 after several years of using 2.2.2 It made me run again into an old problem that I fixed by patching the 2.2.2 and I think I already discussed here in the past. By default rancid will do all kind of sorting for various lists on the config like: access-lists, prefix-lists, route-maps and few more In prefix-lists it will also remove the sequence numbers. I find this behaviour to be undesired because if someone uses rancid repository as routers config backup it would probably be wise that the stored config will be as loyal to the origin and with no changes. Also sometimes the sequence does have meaning like: ip prefix-list FOO seq 10 deny x.x.x.x ip prefix-list FOO seq 20 deny y.y.y.y ip prefix-list FOO seq 1000 permit 0.0.0.0/0 le 32 this prefix-list used to deny stuff with default permit as seq 1000 the default rancid behaviour will break this and make it: ip prefix-list FOO deny x.x.x.x ip prefix-list FOO deny y.y.y.y ip prefix-list FOO permit 0.0.0.0/0 le 32 I understand the motivation to sorting was to prevent config oscilation due to list entry reordering. However, I did not witnessed such changes, and I think recent IOS will sort stuff on it's own. For now, I simply comment all the sorting done in bin/rancid in sub WriteTerm. It would be great to have this as a configureable parameter in rancid.conf What do you think ? -- Yuval From jon.tripkehughes at usfood.com Tue Mar 21 17:33:16 2006 From: jon.tripkehughes at usfood.com (Jon TripkeHughes) Date: Tue, 21 Mar 2006 10:33:16 -0700 Subject: [rancid] Access Required For Rancid ID Message-ID: Hello All, i am trying to work with our networking tea mto setup Rancid and they have concerns about the level of access we would be granting the Rancid login id for the routers and switches. is there such thing as a "read-only" Rancid login or, by design, does Rancid require more rights? any help would be greatly appreciated. Jon STATEMENT OF CONFIDENTIALITY "The information in this email and in any attachments may contain confidential information and is intended solely for the attention and use of the named addressee(s). It may not be disclosed to any person without authorization. If you are not the intended recipient, or a person responsible for delivering it to the intended recipient, you are not authorized to and must not disclose, copy, distribute or retain this message or any part of it." From justin at grote.name Tue Mar 21 17:37:08 2006 From: justin at grote.name (Justin Grote) Date: Tue, 21 Mar 2006 10:37:08 -0700 Subject: [rancid] Re: Access Required For Rancid ID In-Reply-To: References: Message-ID: <442039C4.9040102@grote.name> Jon TripkeHughes wrote: >Hello All, > >i am trying to work with our networking tea mto setup Rancid and they have >concerns about the level of access we would be granting the Rancid login id >for the routers and switches. > >is there such thing as a "read-only" Rancid login or, by design, does >Rancid require more rights? > >any help would be greatly appreciated. > > If you're using TACACS+, you can set up the rancid login account to only be able to execute the commands it needs, such as. "show run" and "show controller", but nothing else. If you're using RADIUS or some other means, you can set up a privilege level that does the same: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftprienh.htm -- Justin Grote Network Architect JWG Networks From eravin at panix.com Tue Mar 21 17:55:55 2006 From: eravin at panix.com (Ed Ravin) Date: Tue, 21 Mar 2006 12:55:55 -0500 Subject: [rancid] Re: Access Required For Rancid ID In-Reply-To: References: Message-ID: <20060321175555.GA6038@panix.com> On Tue, Mar 21, 2006 at 10:33:16AM -0700, Jon TripkeHughes wrote: > i am trying to work with our networking tea mto setup Rancid and they have > concerns about the level of access we would be granting the Rancid login id > for the routers and switches. > > is there such thing as a "read-only" Rancid login or, by design, does > Rancid require more rights? For Cisco IOS devices, RANCID needs the abililty to dump out the config. That can only be provided at privilege level 15, due to the way IOS sets permissions on viewing the current config. If you have a TACACS+ server, you may be able to set things up so that the RANCID user can only log in from the expected IP addresses (i.e. the server that runs RANCID and stores the configs). If you have a TACACS+ server and want to get into the thicket of per-command authorization, you should be able to create the equivalent of a "read-only" user by restricting the commands available to the login used by RANCID. I haven't done this myself and I don't recall anyone posting working configs for those scenarios, though an archive search might prove me wrong (wouldn't be the first time). It's probably a good idea to review the existing access schemes for the routers and switches and improve overall security rather than just fixing things for one automated user. For example, enabling SSH where possible, using a TACACS server to restrict and log all accesses, using an S/Key one-time password scheme (supported by my patches posted to the RANCID list a few months ago), restricting which hosts can access your gear's management interfaces, etc. From jallohmarju at yahoo.com Tue Mar 21 19:33:17 2006 From: jallohmarju at yahoo.com (marju jalloh) Date: Tue, 21 Mar 2006 11:33:17 -0800 (PST) Subject: [rancid] rancid & mysql Message-ID: <20060321193318.24833.qmail@web54105.mail.yahoo.com> Hello everyone, I` m using Rancid and Viewcvs as a web interface and they are working fine. I hardcoded my devices(ip addresses) and password and everything is working. What I wanted is for Rancid to get device name(ip address ) and password from a mysql database. I will write a web application later to manage the devices (ip addresses) . I know one can include file in .cloginrc. I have tested it and it works perfect but that involves hard coding ip adresses and password Has anyone used Rancid and mysql or use other method to solve the above mentioned situation. I need your help Thanks in advance Byfour __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060321/ae28f987/attachment.html From justin at grote.name Tue Mar 21 19:36:52 2006 From: justin at grote.name (Justin Grote) Date: Tue, 21 Mar 2006 12:36:52 -0700 Subject: [rancid] [Fwd: Re: rancid & mysql] Message-ID: <442055D4.1000700@grote.name> -------------- next part -------------- An embedded message was scrubbed... From: Justin Grote Subject: Re: [rancid] rancid & mysql Date: Tue, 21 Mar 2006 12:36:23 -0700 Size: 925 Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060321/9eeb38f7/attachment.mht From justin at grote.name Tue Mar 21 20:02:34 2006 From: justin at grote.name (Justin Grote) Date: Tue, 21 Mar 2006 13:02:34 -0700 Subject: [rancid] Re: [Fwd: Re: rancid & mysql] In-Reply-To: <20060321195104.94391.qmail@web54106.mail.yahoo.com> References: <20060321195104.94391.qmail@web54106.mail.yahoo.com> Message-ID: <44205BDA.3020207@grote.name> marju jalloh wrote: > Will you break it down a bit? I`m really not a guru Everything in rancid is pretty much scripts written in perl, shell, and expect except for one hp-specific binary. The primary rancid script (rancid) is a perl script. If you look on line 1539, this is where rancid calls the clogin script which does the actual connection to the router. clogin accepts -u and -p arguments for username and password, so you simply write a few perl lines that do a mysql query like "SELECT username, password FROM rancid WHERE host=$host" to get the username and password combination for the device, and then stick that username and password in as something like -u $username, -p $password. If that's too hard, you could simply write a script in any language of your choice that generates a .cloginrc file from the mysql table, and sticks that in the rancid homedir, and then set up a cron job to run the script every 5 minutes. -- Justin Grote Network Architect JWG Networks From eravin at panix.com Tue Mar 21 21:56:41 2006 From: eravin at panix.com (Ed Ravin) Date: Tue, 21 Mar 2006 16:56:41 -0500 Subject: [rancid] Re: [Fwd: Re: rancid & mysql] In-Reply-To: <44205BDA.3020207@grote.name> References: <20060321195104.94391.qmail@web54106.mail.yahoo.com> <44205BDA.3020207@grote.name> Message-ID: <20060321215641.GB5282@panix.com> On Tue, Mar 21, 2006 at 01:02:34PM -0700, Justin Grote wrote: > Everything in rancid is pretty much scripts written in perl, shell, and > expect except for one hp-specific binary. ... > you could simply write a script in any language of > your choice that generates a .cloginrc file from the mysql table, and > sticks that in the rancid homedir, and then set up a cron job to run the > script every 5 minutes. Alternatively, since .cloginrc is executed by clogin, you could put Expect code in there to create a password file from the mysql table in .cloginrc, then source that output file to load in the passwords. Or to be really elegant, parse the argv vector (shown below in a code excerpt from clogin) so you could just load in the passwords you need for the run. # # For each router... (this is main loop) # source_password_file $password_file set in_proc 0 foreach router [lrange $argv $i end] { [...] From tex at off.org Tue Mar 21 22:17:27 2006 From: tex at off.org (Austin Schutz) Date: Tue, 21 Mar 2006 14:17:27 -0800 Subject: [rancid] Re: [Fwd: Re: rancid & mysql] In-Reply-To: <44205BDA.3020207@grote.name> References: <20060321195104.94391.qmail@web54106.mail.yahoo.com> <44205BDA.3020207@grote.name> Message-ID: <20060321221727.GK11640@gblx.net> On Tue, Mar 21, 2006 at 01:02:34PM -0700, Justin Grote wrote: > marju jalloh wrote: > > > Will you break it down a bit? I`m really not a guru > > Everything in rancid is pretty much scripts written in perl, shell, and > expect except for one hp-specific binary. > > The primary rancid script (rancid) is a perl script. If you look on line > 1539, this is where rancid calls the clogin script which does the actual > connection to the router. clogin accepts -u and -p arguments for > username and password, so you simply write a few perl lines that do a > mysql query like "SELECT username, password FROM rancid WHERE > host=$host" to get the username and password combination for the device, > and then stick that username and password in as something like -u > $username, -p $password. > > If that's too hard, you could simply write a script in any language of > your choice that generates a .cloginrc file from the mysql table, and > sticks that in the rancid homedir, and then set up a cron job to run the > script every 5 minutes. > The cron job approach seems like the best one, as the generated file won't change much and there may be times where the database is unavailable. It's also faster as it doesn't require a database connect for every device. You could also put it in your crontab to run directly before rancid instead of every 5 mins. Austin From heas at shrubbery.net Tue Mar 21 23:43:56 2006 From: heas at shrubbery.net (john heasley) Date: Tue, 21 Mar 2006 15:43:56 -0800 Subject: [rancid] Re: force10 S-50 support in rancid In-Reply-To: References: Message-ID: <20060321234356.GM17015@shrubbery.net> Thu, Mar 16, 2006 at 01:52:52PM -0800, Colin Corbett: > Hey folks, > first time posting so go easy. (I looked in the archives and didnt see > this covered). > > I had a devil of a time getting rancid (2.3.1) to work with the force10 > S-50 (running rev 2.3.1). (code rev is a strange co-incidence). > > problems encountered: > 1: when telnetting/sshing in, the S-50 may miss various bits of the enable > password. (if its a 10 character password, some characters in the middle > get munged.) > Ideal fix: have force10 figure this out and ensure that they do not miss > characters when enabling (ticket opened) > Possible rancid fix: create a loop in clogin to ensure that for each > character sent a "*" is received. > > my hack was to modify clogin: > -----Do not do this----- > -re "$e_prompt" { send "X";sleep 1;send "X"; sleep 1;send "X"; > sleep 1; send "X"; sleep 1; send "\r"; exp_continue} > ---- > (this was truly horrible.) I think they'll just have to fix that. Please report it to them. a better hack, maybe: set send_human {.1 .3 1 .05 2} send -h .... From heas at shrubbery.net Wed Mar 22 00:08:42 2006 From: heas at shrubbery.net (john heasley) Date: Tue, 21 Mar 2006 16:08:42 -0800 Subject: [rancid] Re: Problems with clogin and Extreme XOS In-Reply-To: <1142591004.12357.66.camel@echo.e.linpro.no> References: <1142503802.2286.41.camel@echo.e.linpro.no> <20060316235328.GX16604@shrubbery.net> <1142591004.12357.66.camel@echo.e.linpro.no> Message-ID: <20060322000842.GP17015@shrubbery.net> Fri, Mar 17, 2006 at 11:23:23AM +0100, Tore Anderson: > * john heasley > > > when clogin connects, it looks for that weird extreme prompt > > enumeration and marks the host as an extreme. with that in mind, it > > should deal with the * in the prompt and not try to adjust the > > (global) term length value. > > > > It looks like they changed their prompt format from :N to .N, or does > > it allow you to do that in the configuration? > > Wow. I hadn't even noticed that difference before. :-) Patch > attached; makes clogin work flawlessly with XOS as far as I can tell. > I've also attached a patch to xrancid that does the same thing, which > seems to be required for it to be able to get beyond the first command. > > It still complains "End of run not found", though. XOS doesn't have > a comment indicating the end of the configuration file like ExtremeWare > has. I've hacked around this by setting $found_end to 1 if I see > "# Module vrrp configuration", which is the concluding comment in my > config file as I do not use VRRP, but obviously that isn't a generic > solution. :-) There's another problem, too, that XOS doesn't have > "show configuration detail" (only "show configuration"), while > ExtremeWare has both. I will look more into it later; Perl is easier > for me. Maybe I'll be able to provide a decent patch, even. > > Cheers > -- > Tore Anderson --- xrancid-orig 2006-03-17 10:50:27.000000000 +0100 +++ xrancid 2006-03-17 11:04:46.000000000 +0100 @@ -448,7 +450,7 @@ if (!defined($prompt)) { $prompt = ($_ =~ /^([^#]+#)/)[0]; $prompt =~ s/([][}{)(\\])/\\$1/g; - $prompt =~ s/:(\d+ ?)#/:\\d+ ?#/; + $prompt =~ s/[:\.](\d+ ?)#/[:\\.]\\d+ ?#/; ^ is that necessary? '.' does not have any special meaning with in a set atom, iirc. $prompt =~ s/\*/\\\*/; print STDERR ("PROMPT MATCH: $prompt\n") if ($debug); } From jallohmarju at yahoo.com Wed Mar 22 08:24:48 2006 From: jallohmarju at yahoo.com (marju jalloh) Date: Wed, 22 Mar 2006 00:24:48 -0800 (PST) Subject: [rancid] add new devices Message-ID: <20060322082448.18732.qmail@web54105.mail.yahoo.com> Hello, I want to add new device into an existing group. What I did was to add the new device into an existing router.db and ran rancid-cvs and expecting the existing groups to be updated. What I notice is rancid-cvs does not run if rancid.config is not edited.Because when I made a new group in rancid.conf and ran rancid-cvs it worked well. My question is how do you add device in to an existing group. thanks, Byfour --------------------------------- Yahoo! Mail Use Photomail to share photos without annoying attachments. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060322/b6f5977c/attachment.html From tore at linpro.no Wed Mar 22 09:00:06 2006 From: tore at linpro.no (Tore Anderson) Date: Wed, 22 Mar 2006 10:00:06 +0100 Subject: [rancid] Re: Problems with clogin and Extreme XOS In-Reply-To: <20060322000842.GP17015@shrubbery.net> References: <1142503802.2286.41.camel@echo.e.linpro.no> <20060316235328.GX16604@shrubbery.net> <1142591004.12357.66.camel@echo.e.linpro.no> <20060322000842.GP17015@shrubbery.net> Message-ID: <1143018006.18418.9.camel@echo.e.linpro.no> * john heasley > '.' does not have any special meaning with in a set atom, iirc. Quite right you are. (Bad) habit of mine; it works anyway. :-) -- Tore Anderson From heas at shrubbery.net Wed Mar 22 16:11:45 2006 From: heas at shrubbery.net (john heasley) Date: Wed, 22 Mar 2006 08:11:45 -0800 Subject: [rancid] Re: add new devices In-Reply-To: <20060322082448.18732.qmail@web54105.mail.yahoo.com> References: <20060322082448.18732.qmail@web54105.mail.yahoo.com> Message-ID: <20060322161145.GA770@shrubbery.net> Wed, Mar 22, 2006 at 12:24:48AM -0800, marju jalloh: > Hello, > > I want to add new device into an existing group. What I did was to add the new device into an existing router.db and ran rancid-cvs and expecting the existing groups to be updated. > > What I notice is rancid-cvs does not run if rancid.config is not edited.Because when I made a new group in rancid.conf and ran rancid-cvs it worked well. > > My question is how do you add device in to an existing group. rancid-cvs need only be run when LIST_OF_GROUPS is appended. Files for individual devices are added as needed during rancid-run. From laker_netman at yahoo.com Thu Mar 23 20:27:28 2006 From: laker_netman at yahoo.com (Laker Netman) Date: Thu, 23 Mar 2006 12:27:28 -0800 (PST) Subject: [rancid] Removing a group Message-ID: <20060323202728.59206.qmail@web50514.mail.yahoo.com> What is the correct way to *completely* remove a group from rancid? Thanks, Laker __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com From mark_scheuber at yahoo.com Thu Mar 23 23:47:11 2006 From: mark_scheuber at yahoo.com (mark_scheuber at yahoo.com) Date: Thu, 23 Mar 2006 15:47:11 -0800 (PST) Subject: [rancid] Netscaler RANCID Message-ID: <20060323234711.61021.qmail@web52810.mail.yahoo.com> Hi Guys, I have a preliminary script for the netscalers that a co-worker (Patrick Pirwitz) created. He's the guy using these devices. This assumes SSH keys have already been set up. (ssh keys on the netscaler are in /root/.ssh - there's a permission issue in that only root has access to ns.conf) It copies all of the SSL certs (In case the box goes down hard and you need to recover) and the config ns.conf. I'm just working on scripting a cvs check in at the end as incorporating this into rancid's script archetecture looked like a lot of work. Any pointers on that John? The script is below #!/usr/bin/ksh LIST="10.10.10.1 10.10.10.2" FILE="/nsconfig/ssl/*" FILE2="/nsconfig/ns.conf" USER="nsroot" for NODE in $LIST do #echo xfer $FILE to $NODE scp -p $USER@$NODE:$FILE /export/home/rancid/var/rancid/Netscaler/SSL/$NODE scp -p $USER@$NODE:$FILE2 /export/home/rancid/var/rancid/Netscaler/configs/$NODE done Thanks --------------------------------- Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2?/min or less. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060323/bbfcdafb/attachment.html From yuvalba at netvision.net.il Fri Mar 24 15:36:34 2006 From: yuvalba at netvision.net.il (Yuval Ben-Ari) Date: Fri, 24 Mar 2006 17:36:34 +0200 Subject: [rancid] config difsf after "write mem" Message-ID: <58D14E53A4F69C4EAF4D29171C447CC42CF12C@NTX-CL.forest.netvision.net.il> every time a config is saved on an IOS router/switch. ("write mem"/"copy run start") it will generate a diff report due to time stamp changes of the flash files: ! !Flash: Directory of flash:/ !Flash: 2 -rwx 109 Mar 01 1993 02:04:01 info - !Flash: 3 -rwx 8836 Mar 15 2006 09:39:59 config.text !Flash: 4 -rwx 1803795 Jul 06 2003 11:04:09 c3500xl-c3h2s-mz.120-5.WC8.bin !Flash: 161 -rwx 109 Mar 01 1993 02:05:41 info.ver + !Flash: 5 -rwx 8836 Mar 24 2006 17:35:01 config.text !Flash: 6 -rwx 297 Oct 12 2003 05:22:12 env_vars !Flash: 3612672 bytes total (1795584 bytes free) ! does it make sense to track those changes ? does anyone have a workaround for this ? or just filter it out ? From justin at grote.name Fri Mar 24 15:44:46 2006 From: justin at grote.name (Justin Grote) Date: Fri, 24 Mar 2006 08:44:46 -0700 Subject: [rancid] Re: config difsf after "write mem" Message-ID: <442413EE.2010305@grote.name> Forgot to cc the list. Whoops. -------------- next part -------------- An embedded message was scrubbed... From: Justin Grote Subject: Re: [rancid] config difsf after "write mem" Date: Fri, 24 Mar 2006 08:44:06 -0700 Size: 913 Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060324/47e36ceb/attachment.mht From jgrote at jwgnetworks.com Fri Mar 24 15:58:13 2006 From: jgrote at jwgnetworks.com (Justin Grote) Date: Fri, 24 Mar 2006 08:58:13 -0700 Subject: [rancid] Re: config difsf after "write mem" In-Reply-To: <58D14E53A4F69C4EAF4D29171C447CC42CF12C@NTX-CL.forest.netvision.net.il> References: <58D14E53A4F69C4EAF4D29171C447CC42CF12C@NTX-CL.forest.netvision.net.il> Message-ID: Yuval Ben-Ari wrote: > in this example it was a Cisco 3500XL switch > as far as I know all IOS switch save the config to flash:/config.text > check it if you have an IOS switch > My Cisco 2821's, 4006's, 2841's, and 2950's all save to nvram, not flash. All run IOS: WanRouter#show file systems | inc flash|nvram * 63885312 29593600 disk rw flash:# 245752 231888 nvram rw nvram : WanRouter#show flash: -#- --length-- -----date/time------ path 1 13275156 Feb 11 2005 14:11:50 -07:00 c2800nm-ipbase-mz.123-8.T6.bin 2 1541 Feb 11 2005 14:19:46 -07:00 sdmconfig-28xx.cfg 3 3885056 Feb 11 2005 14:20:08 -07:00 sdm.tar 4 1463 Feb 11 2005 14:20:24 -07:00 home.html 5 270848 Feb 11 2005 14:20:36 -07:00 home.tar 6 93095 Feb 11 2005 14:20:54 -07:00 attack-drop.sdf 7 1187840 Feb 11 2005 14:21:08 -07:00 ips.tar 8 15560184 May 09 2005 13:19:24 -06:00 c2800nm-ipbasek9-mz.124-1.bin WanRouter#show file inf nvram:startup-config nvram:startup-config: type is config -- Justin Grote Network Architect JWG Networks From rancid at gheek.net Fri Mar 24 16:27:44 2006 From: rancid at gheek.net (Lance Vermilion) Date: Fri, 24 Mar 2006 08:27:44 -0800 Subject: [rancid] Re: config difsf after "write mem" In-Reply-To: <442413EE.2010305@grote.name> References: <442413EE.2010305@grote.name> Message-ID: <20060324162744.GA61670@viol8tr.com> Yuval/Justin, Just look in your ////bin/ and modify the commandtable. The commandtable should be found in the rancid file around line 1706. When you see a command there that you don't want ran just put a "#" in from of the line to comment it out. Here is an example of my commandtable. file:/usr/local/rancid/bin/rancid # Main @commandtable = ( {'admin show version' => 'ShowVersion'}, {'show version' => 'ShowVersion'}, {'show redundancy secondary' => 'ShowRedundancy'}, {'show idprom backplane', => 'ShowIDprom'}, {'show install active' => 'ShowInstallActive'}, {'admin show env all' => 'ShowEnv'}, {'show env all' => 'ShowEnv'}, {'show rsp chassis-info', => 'ShowRSP'}, {'show gsr chassis' => 'ShowGSR'}, {'show boot' => 'ShowBoot'}, #{'show bootvar' => 'ShowBoot'}, #{'show variables boot' => 'ShowBoot'}, #{'show flash' => 'ShowFlash'}, #{'dir /all nvram:' => 'DirSlotN'}, #{'dir /all bootflash:' => 'DirSlotN'}, #{'dir /all slot0:' => 'DirSlotN'}, #{'dir /all disk0:' => 'DirSlotN'}, #{'dir /all slot1:' => 'DirSlotN'}, #{'dir /all disk1:' => 'DirSlotN'}, #{'dir /all slot2:' => 'DirSlotN'}, #{'dir /all disk2:' => 'DirSlotN'}, #{'dir /all harddisk:' => 'DirSlotN'}, #{'dir /all harddiska:' => 'DirSlotN'}, #{'dir /all harddiskb:' => 'DirSlotN'}, #{'dir /all sup-bootflash:' => 'DirSlotN'}, # cat 6500-ios #{'dir /all sup-microcode:' => 'DirSlotN'}, # cat 6500-ios #{'dir /all slavenvram:' => 'DirSlotN'}, #{'dir /all slavebootflash:' => 'DirSlotN'}, #{'dir /all slaveslot0:' => 'DirSlotN'}, #{'dir /all slavedisk0:' => 'DirSlotN'}, #{'dir /all slaveslot1:' => 'DirSlotN'}, #{'dir /all slavedisk1:' => 'DirSlotN'}, #{'dir /all slaveslot2:' => 'DirSlotN'}, #{'dir /all slavedisk2:' => 'DirSlotN'}, #{'dir /all slavesup-bootflash:' => 'DirSlotN'}, # cat 7609 #{'dir /all sec-nvram:' => 'DirSlotN'}, #{'dir /all sec-bootflash:' => 'DirSlotN'}, #{'dir /all sec-slot0:' => 'DirSlotN'}, #{'dir /all sec-disk0:' => 'DirSlotN'}, #{'dir /all sec-slot1:' => 'DirSlotN'}, #{'dir /all sec-disk1:' => 'DirSlotN'}, #{'dir /all sec-slot2:' => 'DirSlotN'}, #{'dir /all sec-disk2:' => 'DirSlotN'}, {'show controllers' => 'ShowContAll'}, {'show controllers cbus' => 'ShowContCbus'}, {'show diagbus' => 'ShowDiagbus'}, {'admin show diag' => 'ShowDiag'}, {'show diag' => 'ShowDiag'}, {'show module' => 'ShowModule'}, # cat 6500-ios {'show spe version' => 'ShowSpeVersion'}, {'show c7200' => 'ShowC7200'}, {'show inventory raw' => 'ShowInventory'}, {'show vtp status' => 'ShowVTP'}, {'show vlan' => 'ShowVLAN'}, {'show running-config' => 'WriteTerm'}, {'write term' => 'WriteTerm'}, ); On Fri, Mar 24, 2006 at 08:44:46AM -0700, Justin Grote wrote: > Forgot to cc the list. Whoops. > > Date: Fri, 24 Mar 2006 08:44:06 -0700 > From: Justin Grote > To: Yuval Ben-Ari > Subject: Re: [rancid] config difsf after "write mem" > > Yuval Ben-Ari wrote: > >does it make sense to track those changes ? > >does anyone have a workaround for this ? or just filter it out ? > > > What platform is this? Most routers store their configs in NVRAM, not > flash, so this doesn't occur because RANCID doesn't do a show nvram. > > -- > Justin Grote > Network Architect > JWG Networks > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -- -Lance From jashton at progresstelecom.com Fri Mar 24 18:59:18 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Fri, 24 Mar 2006 13:59:18 -0500 Subject: [rancid] Cisco 1900 issues Message-ID: I have several Cisco 1900s in production at the moment. I am unable to upgrade them to a newer revision of the OS and I am having an issue with Clogin. Clogin is unable to set: "term length 0" so it is prompting for line feeds. Does anyone have a clogin patch to deal with this? James Ashton -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060324/7f384863/attachment.html From rancid at gheek.net Fri Mar 24 19:08:21 2006 From: rancid at gheek.net (Lance Vermilion) Date: Fri, 24 Mar 2006 11:08:21 -0800 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: References: Message-ID: <20060324190821.GA66529@viol8tr.com> Ashton, What is the command you use on your 1900 that is similar to "term len 0" ? What error do you get if you do execute "term len 0" from the command line of the switch? -- -Lance On Fri, Mar 24, 2006 at 01:59:18PM -0500, Ashton, James P. wrote: > w3m: not found > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Fri Mar 24 20:33:48 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 24 Mar 2006 12:33:48 -0800 Subject: [rancid] Re: config difsf after "write mem" In-Reply-To: <442413EE.2010305@grote.name> References: <442413EE.2010305@grote.name> Message-ID: <20060324203348.GG770@shrubbery.net> Fri, Mar 24, 2006 at 08:44:46AM -0700, Justin Grote: > Forgot to cc the list. Whoops. > > From: Justin Grote > To: Yuval Ben-Ari > Subject: Re: [rancid] config difsf after "write mem" > Date: Fri, 24 Mar 2006 08:44:06 -0700 > > Yuval Ben-Ari wrote: > >does it make sense to track those changes ? > >does anyone have a workaround for this ? or just filter it out ? > > > What platform is this? Most routers store their configs in NVRAM, not > flash, so this doesn't occur because RANCID doesn't do a show nvram. The 3500 writes to both; why I have no idea. Whether that is useful is a personal choice. For those who generate their configs, it is desirable. From heas at shrubbery.net Fri Mar 24 21:06:05 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 24 Mar 2006 13:06:05 -0800 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: References: Message-ID: <20060324210605.GH770@shrubbery.net> Fri, Mar 24, 2006 at 01:59:18PM -0500, Ashton, James P.: > I have several Cisco 1900s in production at the moment. I am unable to > upgrade them to a newer revision of the OS and I am having an issue with > Clogin. > > > > Clogin is unable to set: > > > > "term length 0" > > > > so it is prompting for line feeds. > > > > Does anyone have a clogin patch to deal with this? It ought to; of course its possible that is (yet another) a different pager prompt than what clogin recognizes: -re "^ *--More--\[^\n\r]*" { -re "^<-+ More -+>\[^\n\r]*" { From jashton at progresstelecom.com Fri Mar 24 21:26:24 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Fri, 24 Mar 2006 16:26:24 -0500 Subject: [rancid] Re: Cisco 1900 issues Message-ID: Unfortunatly it is one that clogin should recognize. --More-- Im not sure why it is not working. Im not sure where to go from here.. James -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Friday, March 24, 2006 4:06 PM To: Ashton, James P. Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Cisco 1900 issues Fri, Mar 24, 2006 at 01:59:18PM -0500, Ashton, James P.: > I have several Cisco 1900s in production at the moment. I am unable to > upgrade them to a newer revision of the OS and I am having an issue with > Clogin. > > > > Clogin is unable to set: > > > > "term length 0" > > > > so it is prompting for line feeds. > > > > Does anyone have a clogin patch to deal with this? It ought to; of course its possible that is (yet another) a different pager prompt than what clogin recognizes: -re "^ *--More--\[^\n\r]*" { -re "^<-+ More -+>\[^\n\r]*" { From heas at shrubbery.net Fri Mar 24 21:31:31 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 24 Mar 2006 13:31:31 -0800 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: References: Message-ID: <20060324213131.GJ770@shrubbery.net> Fri, Mar 24, 2006 at 04:26:24PM -0500, Ashton, James P.: > Unfortunatly it is one that clogin should recognize. > > --More-- That should match the first regex. If the following command: clogin -c 'show version;show version' hostname which I assume produces enough output to trigger the pager, does not work, please supply a transcript. > -re "^ *--More--\[^\n\r]*" { > -re "^<-+ More -+>\[^\n\r]*" { From jashton at progresstelecom.com Fri Mar 24 21:53:15 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Fri, 24 Mar 2006 16:53:15 -0500 Subject: [rancid] Re: Cisco 1900 issues Message-ID: Here is a console output. ======================================================================== ==== bash-3.00# ./clogin -c"sh run" 172.16.29.40 172.16.29.40 spawn telnet 172.16.29.40 Trying 172.16.29.40... Connected to 172.16.29.40. Escape character is '^]'. ************************************************************************ This is a private computer facility. Users may be monitored UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!! Please disconnect if you are not authorized to use these facilities ************************************************************************ Press any key to continue. Catalyst 1900 Management Console Copyright (c) Cisco Systems, Inc. 1993-1999 All rights reserved. Enterprise Edition Software Ethernet Address: 00-05-32-12-18-40 PCA Number: 73-3121-04 PCA Serial Number: FAB0506C2LO Model Number: WS-C1924-EN-DC System Serial Number: FAB0506W1JJ Power Supply S/N: PHI044100CW PCB Serial Number: FAB0506C2LO,73-3121-04 ------------------------------------------------- 1 user(s) now active on Management Console. User Interface Menu [M] Menus [K] Command Line Enter Selection: K CLI session with the switch is open. To end the CLI session, enter [Exit]. S_CentStaLab_1924> S_CentStaLab_1924>enable Enter password: ******** S_CentStaLab_1924# S_CentStaLab_1924#term length 0 ^ % Invalid input detected at '^' marker. S_CentStaLab_1924#sh run Building configuration... Current configuration: ! ! ! ! ! ! ! hostname "S_CentStaLab_1924" ! ! ! ! ip address 172.16.29.40 255.255.255.0 ip default-gateway 172.16.29.1 ! no ip http server ! ip http port 0 ! no snmp-server community public snmp-server community "m1ck3y" ro --More-- ================================================================== From tex at off.org Fri Mar 24 22:07:03 2006 From: tex at off.org (Austin Schutz) Date: Fri, 24 Mar 2006 14:07:03 -0800 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: References: Message-ID: <20060324220703.GX11640@gblx.net> Please re-send with 'exp_internal 1' set near the top of the script. Austin On Fri, Mar 24, 2006 at 04:53:15PM -0500, Ashton, James P. wrote: > > > Here is a console output. > > > > ======================================================================== > ==== > > bash-3.00# ./clogin -c"sh run" 172.16.29.40 > 172.16.29.40 > spawn telnet 172.16.29.40 > Trying 172.16.29.40... > Connected to 172.16.29.40. > Escape character is '^]'. > > > > > > > > > > > ************************************************************************ > > This is a private computer facility. Users may be monitored > > UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!! > > Please disconnect if you are not authorized to use these facilities > > ************************************************************************ > > Press any key to continue. > > > > > > > > > > > Catalyst 1900 Management Console > Copyright (c) Cisco Systems, Inc. 1993-1999 > All rights reserved. > Enterprise Edition Software > Ethernet Address: 00-05-32-12-18-40 > > PCA Number: 73-3121-04 > PCA Serial Number: FAB0506C2LO > Model Number: WS-C1924-EN-DC > System Serial Number: FAB0506W1JJ > Power Supply S/N: PHI044100CW > PCB Serial Number: FAB0506C2LO,73-3121-04 > ------------------------------------------------- > > 1 user(s) now active on Management Console. > > User Interface Menu > > [M] Menus > [K] Command Line > > Enter Selection: K > > > CLI session with the switch is open. > To end the CLI session, enter [Exit]. > > S_CentStaLab_1924> > S_CentStaLab_1924>enable > Enter password: ******** > S_CentStaLab_1924# > S_CentStaLab_1924#term length 0 > ^ > % Invalid input detected at '^' marker. > S_CentStaLab_1924#sh run > Building configuration... > Current configuration: > ! > ! > ! > ! > ! > ! > ! > hostname "S_CentStaLab_1924" > ! > ! > ! > ! > ip address 172.16.29.40 255.255.255.0 > ip default-gateway 172.16.29.1 > ! > no ip http server > ! > ip http port 0 > ! > no snmp-server community public > snmp-server community "m1ck3y" ro > > --More-- > > ================================================================== > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From eravin at panix.com Fri Mar 24 22:15:03 2006 From: eravin at panix.com (Ed Ravin) Date: Fri, 24 Mar 2006 17:15:03 -0500 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: References: Message-ID: <20060324221503.GA3744@panix.com> On Fri, Mar 24, 2006 at 04:53:15PM -0500, Ashton, James P. wrote: > > bash-3.00# ./clogin -c"sh run" 172.16.29.40 > 172.16.29.40 > spawn telnet 172.16.29.40 > Trying 172.16.29.40... > Connected to 172.16.29.40. > Escape character is '^]'. ... > ip address 172.16.29.40 255.255.255.0 > ip default-gateway 172.16.29.1 > ! > no ip http server > ! > ip http port 0 > ! > no snmp-server community public > snmp-server community "m1ck3y" ro > > --More-- > Check the control characters at the end - is there a normal CR/LF before the --More-- prompt, or maybe it's LF/CR? I ran into a device that issued LF/CR instead of CR/LF and my RANCID script needed special code for that in the regexps. From heas at shrubbery.net Fri Mar 24 22:28:31 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 24 Mar 2006 14:28:31 -0800 Subject: [rancid] Re: Netscaler RANCID In-Reply-To: <20060323234711.61021.qmail@web52810.mail.yahoo.com> References: <20060323234711.61021.qmail@web52810.mail.yahoo.com> Message-ID: <20060324222831.GQ770@shrubbery.net> Thu, Mar 23, 2006 at 03:47:11PM -0800, mark_scheuber at yahoo.com: > Hi Guys, > I have a preliminary script for the netscalers that a co-worker (Patrick Pirwitz) created. He's the guy using these devices. This assumes SSH keys have already been set up. (ssh keys on the netscaler are in /root/.ssh - there's a permission issue in that only root has access to ns.conf) It copies all of the SSL certs (In case the box goes down hard and you need to recover) and the config ns.conf. Is the existing netscalar, ie: device type netscalar, support insufficient? i do not have one, so I really do not know what it looks like or if you're telling us that the certs are not in the data already being collected. > I'm just working on scripting a cvs check in at the end as incorporating this into rancid's script archetecture looked like a lot of work. Any pointers on that John? The script is below the cvs should be handled by control_rancid, not the/a netscalar rancid script. > > #!/usr/bin/ksh > LIST="10.10.10.1 10.10.10.2" > FILE="/nsconfig/ssl/*" > FILE2="/nsconfig/ns.conf" > USER="nsroot" > for NODE in $LIST > do > #echo xfer $FILE to $NODE > scp -p $USER@$NODE:$FILE /export/home/rancid/var/rancid/Netscaler/SSL/$NODE > scp -p $USER@$NODE:$FILE2 /export/home/rancid/var/rancid/Netscaler/configs/$NODE > done > > > Thanks > > > > --------------------------------- > Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2?/min or less. > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Fri Mar 24 22:30:00 2006 From: heas at shrubbery.net (john heasley) Date: Fri, 24 Mar 2006 14:30:00 -0800 Subject: [rancid] Re: Cisco 1900 issues In-Reply-To: <20060324220703.GX11640@gblx.net> References: <20060324220703.GX11640@gblx.net> Message-ID: <20060324223000.GR770@shrubbery.net> Fri, Mar 24, 2006 at 02:07:03PM -0800, Austin Schutz: > Please re-send with 'exp_internal 1' set near the top of the script. or more easily expect -d /path/to/clogin -c 'show running' hostname > log 2>&1 From jashton at progresstelecom.com Sat Mar 25 00:42:08 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Fri, 24 Mar 2006 19:42:08 -0500 Subject: [rancid] Re: Cisco 1900 issues Message-ID: Sorry for the delay. Had to get home from work. bash-3.00# expect -d /export/home/rancid/bin/clogin -c 'show running' 172.16.29.40 expect version 5.42.1 argv[0] = expect argv[1] = -d argv[2] = /export/home/rancid/bin/clogin argv[3] = -c argv[4] = show running argv[5] = 172.16.29.40 set argc 3 set argv0 "/export/home/rancid/bin/clogin" set argv "-c {show running} 172.16.29.40" executing commands from command file /export/home/rancid/bin/clogin 172.16.29.40 spawn telnet 172.16.29.40 parent: waiting for sync byte parent: telling child to go ahead parent: now unsynchronized from child spawn: returns {16228} expect: does "" (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "" (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no ">"? no "Login invalid"? no Trying 172.16.29.40... Connected to 172.16.29.40. Escape character is '^]'. ************************************************************************ This is a private computer facility. Users may be monitored UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!! Please disconnect if you are not authorized to use these facilities ************************************************************************ Press any key to continue. expect: does "Trying 172.16.29.40...\r\nConnected to 172.16.29.40.\r\nEscape character is '^]'.\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n*** *********************************************************************\r\ n\r\nThis is a private computer facility. Users may be monitored\r\n\r\n UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!!\r\n\r\nPlease disconnect if you are not authorized to use these facilities\r\n\r\n****************************************************** ******************\r\n\r\nPress any key to continue.\r\n" (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "Trying 172.16.29.40...\r\nConnected to 172.16.29.40.\r\nEscape character is '^]'.\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n*** *********************************************************************\r\ n\r\nThis is a private computer facility. Users may be monitored\r\n\r\n UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!!\r\n\r\nPlease disconnect if you are not authorized to use these facilities\r\n\r\n****************************************************** ******************\r\n\r\nPress any key to continue.\r\n" (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does "Trying 172.16.29.40...\r\nConnected to 172.16.29.40.\r\nEscape character is '^]'.\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n*** *********************************************************************\r\ n\r\nThis is a private computer facility. Users may be monitored\r\n\r\n UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!!\r\n\r\nPlease disconnect if you are not authorized to use these facilities\r\n\r\n****************************************************** ******************\r\n\r\nPress any key to continue.\r\n" (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? yes expect: set expect_out(0,string) "Press any key to continue." expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "Trying 172.16.29.40...\r\nConnected to 172.16.29.40.\r\nEscape character is '^]'.\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\ n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n*** *********************************************************************\r\ n\r\nThis is a private computer facility. Users may be monitored\r\n\r\n UNAUTHORIZED ACCESS OR USE IS ILLEGAL !!!\r\n\r\nPlease disconnect if you are not authorized to use these facilities\r\n\r\n****************************************************** ******************\r\n\r\nPress any key to continue." send: sending "\r" to { exp6 } expect: continuing expect expect: does "\r\n" (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "\r\n" (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does "\r\n" (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no ">"? no "Login invalid"? no Catalyst 1900 Management Console Copyright (c) Cisco Systems, Inc. 1993-1999 All rights reserved. Enterprise Edition Software Ethernet Address: 00-05-32-12-18-40 PCA Number: 73-3121-04 PCA Serial Number: FAB0506C2LO Model Number: WS-C1924-EN-DC System Serial Number: FAB0506W1JJ Power Supply S/N: PHI044100CW PCB Serial Number: FAB0506C2LO,73-3121-04 ------------------------------------------------- 1 user(s) now active on Management Console. User Interface Menu [M] Menus [K] Command Line Enter Selection: expect: does "\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nCatalyst 1900 Management Console\r\nCopyright (c) Cisco Systems, Inc. 1993-1999\r\nAll rights reserved.\r\nEnterprise Edition Software\r\nEthernet Address: 00-05-32-12-18-40\r\n\r\nPCA Number: 73-3121-04\r\nPCA Serial Number: FAB0506C2LO\r\nModel Number: WS-C1924-EN-DC\r\nSystem Serial Number: FAB0506W1JJ\r\nPower Supply S/N: PHI044100CW\r\nPCB Serial Number: FAB0506C2LO,73-3121-04\r\n---------------------------------------------- ---\r\n\r\n1 user(s) now active on Management Console.\r\n\r\n User Interface Menu\r\n\r\n [M] Menus\r\n [K] Command Line\r\n\r\nEnter Selection: " (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does "\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nCatalyst 1900 Management Console\r\nCopyright (c) Cisco Systems, Inc. 1993-1999\r\nAll rights reserved.\r\nEnterprise Edition Software\r\nEthernet Address: 00-05-32-12-18-40\r\n\r\nPCA Number: 73-3121-04\r\nPCA Serial Number: FAB0506C2LO\r\nModel Number: WS-C1924-EN-DC\r\nSystem Serial Number: FAB0506W1JJ\r\nPower Supply S/N: PHI044100CW\r\nPCB Serial Number: FAB0506C2LO,73-3121-04\r\n---------------------------------------------- ---\r\n\r\n1 user(s) now active on Management Console.\r\n\r\n User Interface Menu\r\n\r\n [M] Menus\r\n [K] Command Line\r\n\r\nEnter Selection: " (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does "\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nCatalyst 1900 Management Console\r\nCopyright (c) Cisco Systems, Inc. 1993-1999\r\nAll rights reserved.\r\nEnterprise Edition Software\r\nEthernet Address: 00-05-32-12-18-40\r\n\r\nPCA Number: 73-3121-04\r\nPCA Serial Number: FAB0506C2LO\r\nModel Number: WS-C1924-EN-DC\r\nSystem Serial Number: FAB0506W1JJ\r\nPower Supply S/N: PHI044100CW\r\nPCB Serial Number: FAB0506C2LO,73-3121-04\r\n---------------------------------------------- ---\r\n\r\n1 user(s) now active on Management Console.\r\n\r\n User Interface Menu\r\n\r\n [M] Menus\r\n [K] Command Line\r\n\r\nEnter Selection: " (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? yes expect: set expect_out(0,string) "Enter Selection: " expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\nCatalyst 1900 Management Console\r\nCopyright (c) Cisco Systems, Inc. 1993-1999\r\nAll rights reserved.\r\nEnterprise Edition Software\r\nEthernet Address: 00-05-32-12-18-40\r\n\r\nPCA Number: 73-3121-04\r\nPCA Serial Number: FAB0506C2LO\r\nModel Number: WS-C1924-EN-DC\r\nSystem Serial Number: FAB0506W1JJ\r\nPower Supply S/N: PHI044100CW\r\nPCB Serial Number: FAB0506C2LO,73-3121-04\r\n---------------------------------------------- ---\r\n\r\n1 user(s) now active on Management Console.\r\n\r\n User Interface Menu\r\n\r\n [M] Menus\r\n [K] Command Line\r\n\r\nEnter Selection: " send: sending "K\r" to { exp6 } expect: continuing expect expect: does " " (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does " " (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does " " (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no ">"? no "Login invalid"? no K CLI session with the switch is open. To end the CLI session, enter [Exit]. S_CentStaLab_1924> expect: does " K\r\n\r\n\r\n CLI session with the switch is open.\r\n To end the CLI session, enter [Exit].\r\n\r\nS_CentStaLab_1924>\n" (spawn_id exp6) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? no "(Connection closed by|Connection to [^\n\r]+ closed)"? no expect: does " K\r\n\r\n\r\n CLI session with the switch is open.\r\n To end the CLI session, enter [Exit].\r\n\r\nS_CentStaLab_1924>\n" (spawn_id exp6) match glob pattern "unknown host\r"? no expect: does " K\r\n\r\n\r\n CLI session with the switch is open.\r\n To end the CLI session, enter [Exit].\r\n\r\nS_CentStaLab_1924>\n" (spawn_id exp6) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established).*(yes/no)?"? no "HOST IDENTIFICATION HAS CHANGED.* (yes/no)?"? no "Offending key for .* (yes/no)?"? no "(denied|Sorry)"? no "Login failed"? no "% (Bad passwords|Authentication failed)"? no "Press any key to continue."? no "Enter Selection: "? no "@[^\r\n]+ ([Pp]assword|passwd):"? no "(Username|Login|login|user name):"? no "([Pp]assword|passwd):"? no ">"? yes expect: set expect_out(0,string) ">" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) " K\r\n\r\n\r\n CLI session with the switch is open.\r\n To end the CLI session, enter [Exit].\r\n\r\nS_CentStaLab_1924>" send: sending "enable\r" to { exp6 } expect: does "\n" (spawn_id exp6) match regular expression "(Username|Login|login|user name):"? no "[Pp]assword:"? no "#"? no "(enable)"? no "(denied|Sorry|Incorrect)"? no "% Error in authentication"? no "% Bad passwords"? no S_CentStaLab_1924>enable Enter password: expect: does "\n\rS_CentStaLab_1924>enable\n\rEnter password: " (spawn_id exp6) match regular expression "(Username|Login|login|user name):"? no "[Pp]assword:"? yes expect: set expect_out(0,string) "password:" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "\n\rS_CentStaLab_1924>enable\n\rEnter password:" send: sending "b0rab0ra\r" to { exp6 } expect: continuing expect expect: does " " (spawn_id exp6) match regular expression "(Username|Login|login|user name):"? no "[Pp]assword:"? no "#"? no "(enable)"? no "(denied|Sorry|Incorrect)"? no "% Error in authentication"? no "% Bad passwords"? no ******** expect: does " ********\r\n" (spawn_id exp6) match regular expression "(Username|Login|login|user name):"? no "[Pp]assword:"? no "#"? no "(enable)"? no "(denied|Sorry|Incorrect)"? no "% Error in authentication"? no "% Bad passwords"? no S_CentStaLab_1924# expect: does " ********\r\nS_CentStaLab_1924#" (spawn_id exp6) match regular expression "(Username|Login|login|user name):"? no "[Pp]assword:"? no "#"? yes expect: set expect_out(0,string) "#" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) " ********\r\nS_CentStaLab_1924#" send: sending "\r" to { exp6 } expect: does "" (spawn_id exp6) match regular expression "[\r\n]+"? no "^(.+:)1 #"? no "^.+#"? no "^.+> \(enable\)"? no expect: does "\n" (spawn_id exp6) match regular expression "[\r\n]+"? yes expect: set expect_out(0,string) "\n" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "\n" expect: continuing expect expect: does "" (spawn_id exp6) match regular expression "[\r\n]+"? no "^(.+:)1 #"? no "^.+#"? no "^.+> \(enable\)"? no S_CentStaLab_1924# expect: does "\rS_CentStaLab_1924#" (spawn_id exp6) match regular expression "[\r\n]+"? yes expect: set expect_out(0,string) "\r" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "\r" expect: continuing expect expect: does "S_CentStaLab_1924#" (spawn_id exp6) match regular expression "[\r\n]+"? no "^(.+:)1 #"? no "^.+#"? yes expect: set expect_out(0,string) "S_CentStaLab_1924#" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "S_CentStaLab_1924#" send: sending "term length 0\r" to { exp6 } expect: does "" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "[\n\r]+"? no term length 0 ^ % Invalid input detected at '^' marker. expect: does "term length 0\n\r ^\r\n% Invalid input detected at '^' marker.\r\n" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "[\n\r]+"? yes expect: set expect_out(0,string) "\n\r" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "term length 0\n\r" expect: continuing expect expect: does " ^\r\n% Invalid input detected at '^' marker.\r\n" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "[\n\r]+"? yes expect: set expect_out(0,string) "\r\n" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) " ^\r\n" expect: continuing expect expect: does "% Invalid input detected at '^' marker.\r\n" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "[\n\r]+"? yes expect: set expect_out(0,string) "\r\n" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "% Invalid input detected at '^' marker.\r\n" expect: continuing expect expect: does "" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "[\n\r]+"? no S_CentStaLab_1924# expect: does "S_CentStaLab_1924#" (spawn_id exp6) match regular expression "S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? yes expect: set expect_out(0,string) "S_CentStaLab_1924#" expect: set expect_out(1,string) "924" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "S_CentStaLab_1924#" send: sending "show running\r" to { exp6 } expect: does "" (spawn_id exp6) match regular expression "\u0008+"? no "^[^\n\r *]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "^[^\n\r]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?."? no "[\n\r]+"? no "[^\r\n]*Press to cont[^\r\n]*"? no "^ *--More--[^\n\r]*"? no "^<-+ More -+>[^\n\r]*"? no expect: does "show running\n\rBuilding configuration...\r\nCurrent configuration:\r\n!\r\n!\r\n!\r\n!\r\n!\r\n!\r\n!\r\nhostname "S_CentStaLab_1924"\r\n!\r\n!\r\n!\r\n!\r\nip address 172.16.29.40 255.255.255.0\r\nip default-gateway 172.16.29.1\r\n!\r\nno ip http server\r\n!\r\nip http port 0\r\n!\r\nno snmp-server community public\r\nsnmp-server community "m1ck3y" ro\r\n\r\n--More--\r\n" (spawn_id exp6) match regular expression "\u0008+"? no "^[^\n\r *]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "^[^\n\r]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?."? no "[\n\r]+"? yes expect: set expect_out(0,string) "\n\r" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "show running\n\r" show running expect: continuing expect expect: does "Building configuration...\r\nCurrent configuration:\r\n!\r\n!\r\n!\r\n!\r\n!\r\n!\r\n!\r\nhostname "S_CentStaLab_1924"\r\n!\r\n!\r\n!\r\n!\r\nip address 172.16.29.40 255.255.255.0\r\nip default-gateway 172.16.29.1\r\n!\r\nno ip http server\r\n!\r\nip http port 0\r\n!\r\nno snmp-server community public\r\nsnmp-server community "m1ck3y" ro\r\n\r\n--More--\r\n" (spawn_id exp6) match regular expression no "^[^\n\r *]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?"? no "^[^\n\r]*S_CentStaLab_1([^#>\r\n]+)?[#>](\([^)\r\n]+\))?."? no "[\n\r]+"? yes expect: set expect_out(0,string) "\r\n" expect: set expect_out(spawn_id) "exp6" expect: set expect_out(buffer) "!\r\n" expect: continuing expect expect: does "!\r\n!\r\n!\r\n!\r\n!\r\nhostname "S_CentStaLab_1924"\r\n!\r\n!\r\n!\r\n!\r\nip address 172.16.29.40 255.255.255.0\r\nip default-gateway 172.16.29.1\r\n!\r\nno ip http server\r\n!\r\nip http port 0\r\n!\r\nno snmp-server community public\r\nsnmp-server community "m1ck3y" ro\r\n\r\n--More--\r\n" (spawn_id exp6) match regular expression Building configuration... Current configuration: ! ! ! ! ! ! ! hostname "S_CentStaLab_1924" ! ! ! ! ip address 172.16.29.40 255.255.255.0 ip default-gateway 172.16.29.1 ! no ip http server ! ip http port 0 ! no snmp-server community public snmp-server community "m1ck3y" ro --More-- From asp at partan.com Sat Mar 25 21:09:56 2006 From: asp at partan.com (Andrew Partan) Date: Sat, 25 Mar 2006 16:09:56 -0500 Subject: [rancid] Re: Removing a group In-Reply-To: <20060323202728.59206.qmail@web50514.mail.yahoo.com> References: <20060323202728.59206.qmail@web50514.mail.yahoo.com> Message-ID: <20060325210956.GA75327@partan.com> On Thu, Mar 23, 2006 at 12:27:28PM -0800, Laker Netman wrote: > What is the correct way to *completely* remove a group > from rancid? Delete it from LIST_OF_GROUPS in etc/rancid.conf, rm -rf the directory ($BASEDIR/$group), rm -rf the CVS history ($CVSROOT/$group), and remove the old logs files ($LOGDIR/$group.*). I'd also look for any cron jobs that use it (typically calls to rancid-run $group). --asp From bigwavedave at gmail.com Mon Mar 27 17:06:54 2006 From: bigwavedave at gmail.com (Big Wave Dave) Date: Mon, 27 Mar 2006 09:06:54 -0800 Subject: [rancid] HP Switches Stacked Message-ID: <8e124f160603270906x7a6bcfb5s646e93f681d3ad24@mail.gmail.com> I have been monitoring an HP4104GL and HP2824, without issue, for many months. Last week the admin of the devices decided to configure them in a "stack"... managed on one IP. Now the hlogin seems to be failing. When run on the command line it gets to the prompt to select the switch. I'm confident this is causing the problem. Is there a way to pass the stack member/number? Is there another solution, besides unstacking? Thanks, Dave DETAILS: rancid-2.3.1 expect-5.42.1-1 tcl-8.4.7-2 OUTPUT: [rancid at lobster ~]$ hlogin 10.0.1.253 10.0.1.253 spawn hpuifilter -- telnet 10.0.1.253 Trying 10.0.1.253... Connected to 10.0.1.253 (10.0.1.253). Escape character is '^]'. HP J4887A ProCurve Switch 4104GL Firmware revision G.07.50 Copyright (C) 1991-2003 Hewlett-Packard Co. All Rights Reserved. RESTRICTED RIGHTS LEGEND Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subdivision (b) (3) (ii) of the Rights in Technical Data and Computer Software clause at 52.227-7013. HEWLETT-PACKARD COMPANY, 3000 Hanover St., Palo Alto, CA 94303 Username: admin Password: Stack Members SN MAC Address System Name Device Type Status -- ------------- ---------------- --------------- ------------------------- 0 000883-059900 DemoSwitch-0 HP 4104GL Commander Up 1 000883-08ad60 DemoSwitch-1 HP 2824 Member Up Enter switch number to connect to or : Error: TIMEOUT reached From jashton at progresstelecom.com Tue Mar 28 13:17:47 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Tue, 28 Mar 2006 08:17:47 -0500 Subject: [rancid] cat5 issue in 2.3.2a3 Message-ID: Hi all, More issues. I seam to be seeing some odd issues with cat5rancid in 2.3.2a3. I have set NOPIPE=YES as a test and I seam to be getting a complete host.raw file. It seams to be querying the device without any issues but the returned data doesn't appear to be being parsed. Any thoughts?? ===== When I run cat5rancid -d host it outputs this: Executing clogin -t 90 -c" a lot of commands" hostname Hostname: missed cmd(S): same list of commands Hostname: missed cmd(S): same list of commands Hostname: end of run not found Hostname: end of run not found James Ashton -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060328/eedd7aef/attachment.html From jashton at progresstelecom.com Tue Mar 28 13:52:02 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Tue, 28 Mar 2006 08:52:02 -0500 Subject: [rancid] Re: cat5 issue in 2.3.2a3 Message-ID: More info, This seams to be specific to a 2948G SW version 5.5 (10) And SW version 5.5 (7) It only seams to happen on the 2948Gs though. I am attempting to poll 3 of them and none will parse. All ofhter can5 devices seam to be working. I have tried the cat5rancid from 2.3.1. It doesn't work on these switches either. James -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ashton, James P. Sent: Tuesday, March 28, 2006 8:18 AM To: rancid-discuss at shrubbery.net Subject: [rancid] cat5 issue in 2.3.2a3 Hi all, More issues. I seam to be seeing some odd issues with cat5rancid in 2.3.2a3. I have set NOPIPE=YES as a test and I seam to be getting a complete host.raw file. It seams to be querying the device without any issues but the returned data doesn't appear to be being parsed. Any thoughts?? ===== When I run cat5rancid -d host it outputs this: Executing clogin -t 90 -c" a lot of commands" hostname Hostname: missed cmd(S): same list of commands Hostname: missed cmd(S): same list of commands Hostname: end of run not found Hostname: end of run not found James Ashton -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060328/a93ba1de/attachment.html From jashton at progresstelecom.com Tue Mar 28 14:14:22 2006 From: jashton at progresstelecom.com (Ashton, James P.) Date: Tue, 28 Mar 2006 09:14:22 -0500 Subject: [rancid] Re: cat5 issue in 2.3.2a3 Message-ID: I have attaches a copy of the host.raw file. I don't see anything that should be hanging up the processing of this file. James -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ashton, James P. Sent: Tuesday, March 28, 2006 8:52 AM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: cat5 issue in 2.3.2a3 More info, This seams to be specific to a 2948G SW version 5.5 (10) And SW version 5.5 (7) It only seams to happen on the 2948Gs though. I am attempting to poll 3 of them and none will parse. All ofhter can5 devices seam to be working. I have tried the cat5rancid from 2.3.1. It doesn't work on these switches either. James -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ashton, James P. Sent: Tuesday, March 28, 2006 8:18 AM To: rancid-discuss at shrubbery.net Subject: [rancid] cat5 issue in 2.3.2a3 Hi all, More issues. I seam to be seeing some odd issues with cat5rancid in 2.3.2a3. I have set NOPIPE=YES as a test and I seam to be getting a complete host.raw file. It seams to be querying the device without any issues but the returned data doesn't appear to be being parsed. Any thoughts?? ===== When I run cat5rancid -d host it outputs this: Executing clogin -t 90 -c" a lot of commands" hostname Hostname: missed cmd(S): same list of commands Hostname: missed cmd(S): same list of commands Hostname: end of run not found Hostname: end of run not found James Ashton -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060328/80182d70/attachment.html -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: output.txt Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20060328/80182d70/attachment.txt From heas at shrubbery.net Wed Mar 29 23:57:32 2006 From: heas at shrubbery.net (john heasley) Date: Wed, 29 Mar 2006 23:57:32 +0000 Subject: [rancid] Re: cat5 issue in 2.3.2a3 In-Reply-To: References: Message-ID: <20060329235732.GA17286@shrubbery.net> Tue, Mar 28, 2006 at 08:52:02AM -0500, Ashton, James P.: > More info, > > This seams to be specific to a 2948G > > > > SW version 5.5 (10) > > And > > SW version 5.5 (7) > > > > It only seams to happen on the 2948Gs though. > > I am attempting to poll 3 of them and none will parse. > > All ofhter can5 devices seam to be working. > > > > I have tried the cat5rancid from 2.3.1. It doesn't work on these > switches either. > > James could you give me a copy of the .raw file? > > > > > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ashton, James > P. > Sent: Tuesday, March 28, 2006 8:18 AM > To: rancid-discuss at shrubbery.net > Subject: [rancid] cat5 issue in 2.3.2a3 > > > > Hi all, > > More issues. I seam to be seeing some odd issues with cat5rancid in > 2.3.2a3. > > > > I have set NOPIPE=YES as a test and I seam to be getting a complete > host.raw file. > > > > It seams to be querying the device without any issues but the returned > data doesn't appear to be being parsed. > > > > Any thoughts?? > > > > > > ===== > > When I run cat5rancid -d host it outputs this: > > > > Executing clogin -t 90 -c" a lot of commands" hostname > > Hostname: missed cmd(S): same list of commands > > Hostname: missed cmd(S): same list of commands > > Hostname: end of run not found > > Hostname: end of run not found > > > > > > > > > > James Ashton > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Thu Mar 30 00:05:13 2006 From: heas at shrubbery.net (john heasley) Date: Thu, 30 Mar 2006 00:05:13 +0000 Subject: [rancid] Re: HP Switches Stacked In-Reply-To: <8e124f160603270906x7a6bcfb5s646e93f681d3ad24@mail.gmail.com> References: <8e124f160603270906x7a6bcfb5s646e93f681d3ad24@mail.gmail.com> Message-ID: <20060330000513.GC17286@shrubbery.net> > Username: admin > Password: > Stack Members > > SN MAC Address System Name Device Type Status > -- ------------- ---------------- --------------- ------------------------- > 0 000883-059900 DemoSwitch-0 HP 4104GL Commander Up > 1 000883-08ad60 DemoSwitch-1 HP 2824 Member Up > > Enter switch number to connect to or : > > Error: TIMEOUT reached Does the UI work normally once a stack is chosen? Does it work the same no matter which member you chose?