From elliot.wilen at aechelon.com  Fri Jan  3 23:43:23 2014
From: elliot.wilen at aechelon.com (Elliot Wilen)
Date: Fri, 3 Jan 2014 23:43:23 +0000
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
Message-ID: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>

Hello,

I've been playing with rancid and with the scripts for ciscowlc that have been posted to this list. There was a major variant posted at http://www.shrubbery.net/pipermail/rancid-discuss/2012-March/006276.html, however I've been working with the "mainstream" scripts which I found most recently at http://www.shrubbery.net/pipermail/rancid-discuss/2013-July/006971.html The only variations I've found in the main line are:

wlogin: control paging with set length0/term length 0, vs. config paging disable
ciscowlc: show running-config, vs. show run-config commands

Since the second option in each script seems to work on our device, I've opted to use those. Our device is running software version 7.0.220.0.

About the only other wrinkle I found was that I had to "add autoenable <device> 1" for the device within the .cloginrc.

Now wlogin works fine, and rancid-run completes successfully. But I'm not sure the archived configuration is really usable as-is for restoring the configuration. When I compare it to the file I get when I upload the config via tftp, I see:

tftp'd file uses "config" for each line (this is trivial)
a number of configuration lines in the tftp'd file don't seem to have an exact equivalent
a few odd lines appear in the rancid config archive such as:

"Not supported"
"Max no. of clients 0Max no. of clients 0Max no. of clients 0"

I've verified that these differences are from the output of "show run-config commands." I.e., it's Cisco's fault.

But I'm wondering if the archived config produced by rancid is something I can trust as an actual backup. Has anyone tried restoring the config from rancid?

I wonder if I might be better off having rancid trigger tftp (ftp, sftp, etc.) and then grab the file. This page has some ideas that might be incorporated: http://networkengineering.stackexchange.com/questions/3246/is-there-an-automatable-way-to-backup-the-configuration-from-a-wlc-2504-controll

Thoughts?

--
Elliot Wilen
Sr. System Administrator
Aechelon Technology
E-Mail: elliot.wilen at aechelon.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140103/8e6130e8/attachment.html>

From daniel.schmidt at wyo.gov  Sun Jan  5 03:36:19 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Sat, 4 Jan 2014 20:36:19 -0700
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
Message-ID: <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>

>But I?m wondering if the archived config produced by rancid is something I
can trust as an actual backup. Has anyone tried restoring the config from
rancid?

Yup.  Worked 4 me.


On Fri, Jan 3, 2014 at 4:43 PM, Elliot Wilen <elliot.wilen at aechelon.com>wrote:

>  Hello,
>
>
>
> I?ve been playing with rancid and with the scripts for ciscowlc that have
> been posted to this list. There was a major variant posted at
> http://www.shrubbery.net/pipermail/rancid-discuss/2012-March/006276.html,
> however I?ve been working with the ?mainstream? scripts which I found most
> recently at
> http://www.shrubbery.net/pipermail/rancid-discuss/2013-July/006971.htmlThe only variations I?ve found in the main line are:
>
>
>
> wlogin: control paging with set length0/term length 0, vs. config paging
> disable
>
> ciscowlc: show running-config, vs. show run-config commands
>
>
>
> Since the second option in each script seems to work on our device, I?ve
> opted to use those. Our device is running software version 7.0.220.0.
>
>
>
> About the only other wrinkle I found was that I had to ?add autoenable
> <device> 1? for the device within the .cloginrc.
>
>
>
> Now wlogin works fine, and rancid-run completes successfully. But I?m not
> sure the archived configuration is really usable as-is for restoring the
> configuration. When I compare it to the file I get when I upload the config
> via tftp, I see:
>
>
>
> tftp?d file uses ?config? for each line (this is trivial)
>
> a number of configuration lines in the tftp?d file don?t seem to have an
> exact equivalent
>
> a few odd lines appear in the rancid config archive such as:
>
>
>
> ?Not supported?
>
> ?Max no. of clients 0Max no. of clients 0Max no. of clients 0?
>
>
>
> I?ve verified that these differences are from the output of ?show
> run-config commands.? I.e., it?s Cisco?s fault.
>
>
>
> But I?m wondering if the archived config produced by rancid is something I
> can trust as an actual backup. Has anyone tried restoring the config from
> rancid?
>
>
>
> I wonder if I might be better off having rancid trigger tftp (ftp, sftp,
> etc.) and then grab the file. This page has some ideas that might be
> incorporated:
> http://networkengineering.stackexchange.com/questions/3246/is-there-an-automatable-way-to-backup-the-configuration-from-a-wlc-2504-controll
>
>
>
> Thoughts?
>
>
>
> --
>
> Elliot Wilen
>
> Sr. System Administrator
>
> Aechelon Technology
>
> E-Mail: elliot.wilen at aechelon.com
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140104/b866a062/attachment.html>

From elliot.wilen at aechelon.com  Sun Jan  5 13:07:10 2014
From: elliot.wilen at aechelon.com (Elliot Wilen)
Date: Sun, 5 Jan 2014 13:07:10 +0000
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>,
 <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
Message-ID: <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>


On Jan 4, 2014, at 7:36 PM, "Daniel Schmidt" <daniel.schmidt at wyo.gov<mailto:daniel.schmidt at wyo.gov>> wrote:

>But I?m wondering if the archived config produced by rancid is something I can trust as an actual backup. Has anyone tried restoring the config from rancid?

Yup.  Worked 4 me.

Hi, Daniel,

Do you know if you get any of those funny lines in the output?

What was you restore method, if I may ask?

Thanks.

--Elliot Wilen


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140105/dede32fd/attachment.html>

From dotrainexpress at gmail.com  Mon Jan  6 21:08:52 2014
From: dotrainexpress at gmail.com (Jason Dotray)
Date: Mon, 6 Jan 2014 15:08:52 -0600
Subject: [rancid] clogin error
Message-ID: <CAOHP7iYJG6QV7qJdc-tuddgiRzsg+TupBZAOj=WzL=BJ4AgiZw@mail.gmail.com>

Hello -
I've been successfully running Rancid to backup my switches for about 4
months. I updated the code on one of my cisco switches and after rebooting
it, rancid reports that it cannot connect to it. Checking the
/usr/local/rancid/var/logs file, the most recent file states:

clogin error: Error: Connection closed (ssh)

However, I can successfully ssh admin at x.x.x.x and connect to the switch
without any issues while logged in as rancid or root.

Any suggestions on what else I can try?

Thank you!

Jason
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140106/e5a3a72e/attachment.html>

From alan.mckinnon at gmail.com  Mon Jan  6 22:24:15 2014
From: alan.mckinnon at gmail.com (Alan McKinnon)
Date: Tue, 07 Jan 2014 00:24:15 +0200
Subject: [rancid] clogin error
In-Reply-To: <CAOHP7iYJG6QV7qJdc-tuddgiRzsg+TupBZAOj=WzL=BJ4AgiZw@mail.gmail.com>
References: <CAOHP7iYJG6QV7qJdc-tuddgiRzsg+TupBZAOj=WzL=BJ4AgiZw@mail.gmail.com>
Message-ID: <52CB2D0F.60209@gmail.com>

On 06/01/2014 23:08, Jason Dotray wrote:
> Hello - 
> I've been successfully running Rancid to backup my switches for about 4
> months. I updated the code on one of my cisco switches and after
> rebooting it, rancid reports that it cannot connect to it. Checking the
> /usr/local/rancid/var/logs file, the most recent file states:
> 
> clogin error: Error: Connection closed (ssh)
> 
> However, I can successfully ssh admin at x.x.x.x and connect to the switch
> without any issues while logged in as rancid or root.
> 
> Any suggestions on what else I can try?

To debug clogin issues the best approach by far is to log in as the user
rancid runs as and run

clogin <hostname>

where <hostname> is whatever you have in .cloginrc.
Login issues are immediately apparent this way and the output does not
make it into rancid's logs. All you get there is a generic message that
essentially says "something went wrong"


-- 
Alan McKinnon
alan.mckinnon at gmail.com


From fanachos at gmail.com  Tue Jan  7 10:06:01 2014
From: fanachos at gmail.com (Andrei Sabau)
Date: Tue, 7 Jan 2014 12:06:01 +0200
Subject: [rancid] Cisco connect through multiple devices?
Message-ID: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>

Hello. I am in a situation.

I need RANCID to get the router information through another router. Both
are cisco, both are telnet-able, both are managed.

Mainly, it's something like this :
Rancid Server --> Gateway Router -> Cisco switch1
                                                               -> Cisco
switch2
                                                               -> Cisco
switch3


How could this be implemented? A custom wrapper with a script?

Any help will be very appreciated ! :D
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/7afaf10e/attachment.html>

From Douglas.Hughes at DEShawResearch.com  Tue Jan  7 14:28:00 2014
From: Douglas.Hughes at DEShawResearch.com (Hughes, Doug)
Date: Tue, 7 Jan 2014 14:28:00 +0000
Subject: [rancid] Cisco connect through multiple devices?
In-Reply-To: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
References: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
Message-ID: <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>

I don't understand the question. Are you saying that you cannping ping cisco1, cisco2, or cisco3 through gateway? You don't have routing enabled?

From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Andrei Sabau
Sent: Tuesday, January 07, 2014 5:06 AM
To: rancid-discuss at shrubbery.net
Subject: [rancid] Cisco connect through multiple devices?

Hello. I am in a situation.
I need RANCID to get the router information through another router. Both are cisco, both are telnet-able, both are managed.
Mainly, it's something like this :
Rancid Server --> Gateway Router -> Cisco switch1
                                                               -> Cisco switch2
                                                               -> Cisco switch3

How could this be implemented? A custom wrapper with a script?

Any help will be very appreciated ! :D

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/63005fdc/attachment.html>

From Douglas.Hughes at DEShawResearch.com  Tue Jan  7 14:40:24 2014
From: Douglas.Hughes at DEShawResearch.com (Hughes, Doug)
Date: Tue, 7 Jan 2014 14:40:24 +0000
Subject: [rancid] Cisco connect through multiple devices?
In-Reply-To: <CAFDP=4ysWdbG-C-KGkyJ2rL6BS7Y6ZkTezeFcFhd4M3dA+yGcw@mail.gmail.com>
References: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
 <CAFDP=4ysWdbG-C-KGkyJ2rL6BS7Y6ZkTezeFcFhd4M3dA+yGcw@mail.gmail.com>
Message-ID: <FE83190899DE5B41BD7B5C3FD84CDF8F3601797B@mailnycmb5a.winmail.deshaw.com>

Why can't you just connect the management Ethernet cable for switch1-3 up to a network that is reachable by rancid host?
That's the best solution.

From: Andrei Sabau [mailto:fanachos at gmail.com]
Sent: Tuesday, January 07, 2014 9:38 AM
To: Hughes, Doug
Cc: rancid-discuss at shrubbery.net
Subject: Re: [rancid] Cisco connect through multiple devices?

I need to tell RANCID that it can access and manage X internal ip's through the router Y. Both X ips are cisco managed switches/routers and Y is a cisco router as well.
I've tried this solution after some searching : http://www.shrubbery.net/pipermail/rancid-discuss/2004-November/000905.html but apparently i can clogin but rancid-run gives me timeouts in the log.

On Tue, Jan 7, 2014 at 4:28 PM, Hughes, Doug <Douglas.Hughes at deshawresearch.com<mailto:Douglas.Hughes at deshawresearch.com>> wrote:
I don't understand the question. Are you saying that you cannping ping cisco1, cisco2, or cisco3 through gateway? You don't have routing enabled?

From: rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net> [mailto:rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net>] On Behalf Of Andrei Sabau
Sent: Tuesday, January 07, 2014 5:06 AM
To: rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>
Subject: [rancid] Cisco connect through multiple devices?

Hello. I am in a situation.
I need RANCID to get the router information through another router. Both are cisco, both are telnet-able, both are managed.
Mainly, it's something like this :
Rancid Server --> Gateway Router -> Cisco switch1
                                                               -> Cisco switch2
                                                               -> Cisco switch3
How could this be implemented? A custom wrapper with a script?

Any help will be very appreciated ! :D


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/47e6ecbb/attachment.html>

From fanachos at gmail.com  Tue Jan  7 15:02:08 2014
From: fanachos at gmail.com (Andrei Sabau)
Date: Tue, 7 Jan 2014 17:02:08 +0200
Subject: [rancid] Cisco connect through multiple devices?
In-Reply-To: <FE83190899DE5B41BD7B5C3FD84CDF8F360179AA@mailnycmb5a.winmail.deshaw.com>
References: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
 <CAFDP=4ysWdbG-C-KGkyJ2rL6BS7Y6ZkTezeFcFhd4M3dA+yGcw@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F3601797B@mailnycmb5a.winmail.deshaw.com>
 <CAFDP=4xbxqP8DxNRzAonyNx-e57+Hu6D4DP=-sKmhVskXajG_g@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F360179AA@mailnycmb5a.winmail.deshaw.com>
Message-ID: <CAFDP=4z=M1DOJgMH=xo4e9PpDSGZ5AsEDPM9P_WHCKMXwzJ+Ng@mail.gmail.com>

I cannot ping the host from the rancid server to the cisco switches. Only
the Gateway, hence i used the method in the link.


On Tue, Jan 7, 2014 at 4:56 PM, Hughes, Doug <
Douglas.Hughes at deshawresearch.com> wrote:

>  If you can ping the host, and clogin works, then you don?t need an
> intermediary telnet.. There?s something else going on that needs to be
> debugged.
>
>
>
> *From:* Andrei Sabau [mailto:fanachos at gmail.com]
> *Sent:* Tuesday, January 07, 2014 9:50 AM
> *To:* Hughes, Doug
>
> *Subject:* Re: [rancid] Cisco connect through multiple devices?
>
>
>
> It is the best, however it is not possible. Only if it were that easy.
>
> My issue is that i can clogin in it but cannot rancid-run the host. It
> Timeout's.
>
>
>
> On Tue, Jan 7, 2014 at 4:40 PM, Hughes, Doug <
> Douglas.Hughes at deshawresearch.com> wrote:
>
> Why can?t you just connect the management Ethernet cable for switch1-3 up
> to a network that is reachable by rancid host?
>
> That?s the best solution.
>
>
>
> *From:* Andrei Sabau [mailto:fanachos at gmail.com]
> *Sent:* Tuesday, January 07, 2014 9:38 AM
> *To:* Hughes, Doug
> *Cc:* rancid-discuss at shrubbery.net
> *Subject:* Re: [rancid] Cisco connect through multiple devices?
>
>
>
> I need to tell RANCID that it can access and manage X internal ip's
> through the router Y. Both X ips are cisco managed switches/routers and Y
> is a cisco router as well.
>
> I've tried this solution after some searching :
> http://www.shrubbery.net/pipermail/rancid-discuss/2004-November/000905.htmlbut apparently i can clogin but rancid-run gives me timeouts in the log.
>
>
>
> On Tue, Jan 7, 2014 at 4:28 PM, Hughes, Doug <
> Douglas.Hughes at deshawresearch.com> wrote:
>
> I don?t understand the question. Are you saying that you cannping ping
> cisco1, cisco2, or cisco3 through gateway? You don?t have routing enabled?
>
>
>
> *From:* rancid-discuss-bounces at shrubbery.net [mailto:
> rancid-discuss-bounces at shrubbery.net] *On Behalf Of *Andrei Sabau
> *Sent:* Tuesday, January 07, 2014 5:06 AM
> *To:* rancid-discuss at shrubbery.net
> *Subject:* [rancid] Cisco connect through multiple devices?
>
>
>
> Hello. I am in a situation.
>
> I need RANCID to get the router information through another router. Both
> are cisco, both are telnet-able, both are managed.
>
> Mainly, it's something like this :
>
> Rancid Server --> Gateway Router -> Cisco switch1
>
>                                                                -> Cisco
> switch2
>
>                                                                -> Cisco
> switch3
>
> How could this be implemented? A custom wrapper with a script?
>
> Any help will be very appreciated ! :D
>
>
>
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/f91e0d02/attachment.html>

From dotrainexpress at gmail.com  Tue Jan  7 13:36:13 2014
From: dotrainexpress at gmail.com (Jason Dotray)
Date: Tue, 7 Jan 2014 07:36:13 -0600
Subject: [rancid] clogin error
In-Reply-To: <52CB2D0F.60209@gmail.com>
References: <CAOHP7iYJG6QV7qJdc-tuddgiRzsg+TupBZAOj=WzL=BJ4AgiZw@mail.gmail.com>
 <52CB2D0F.60209@gmail.com>
Message-ID: <CAOHP7iYFB97kTdOG8-TOhh1pLPiTgwZ9ZdxUY0ZS4ZdnJJ2Z=g@mail.gmail.com>

Thanks Alan!

I ran bin/clogin x.x.x.x and it came back with:

-bash-4.2$ bin/clogin x.x.x.x

x.x.x.x

spawn ssh -c 3des -x -l admin x.x.x.x

Connection closed by x.x.x.x

Error: Connection closed (ssh): x.x.x.x

I did some testing and ssh -x -l admin x.x.x.x works fine but it fails when
I throw in the -c and specify 3des. It appears I'm not running the proper
encryption software on the switch.

Thanks for the help and suggestion!


On Mon, Jan 6, 2014 at 4:24 PM, Alan McKinnon <alan.mckinnon at gmail.com>wrote:

> On 06/01/2014 23:08, Jason Dotray wrote:
> > Hello -
> > I've been successfully running Rancid to backup my switches for about 4
> > months. I updated the code on one of my cisco switches and after
> > rebooting it, rancid reports that it cannot connect to it. Checking the
> > /usr/local/rancid/var/logs file, the most recent file states:
> >
> > clogin error: Error: Connection closed (ssh)
> >
> > However, I can successfully ssh admin at x.x.x.x and connect to the switch
> > without any issues while logged in as rancid or root.
> >
> > Any suggestions on what else I can try?
>
> To debug clogin issues the best approach by far is to log in as the user
> rancid runs as and run
>
> clogin <hostname>
>
> where <hostname> is whatever you have in .cloginrc.
> Login issues are immediately apparent this way and the output does not
> make it into rancid's logs. All you get there is a generic message that
> essentially says "something went wrong"
>
>
> --
> Alan McKinnon
> alan.mckinnon at gmail.com
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/21b9d0e4/attachment.html>

From fanachos at gmail.com  Tue Jan  7 14:37:35 2014
From: fanachos at gmail.com (Andrei Sabau)
Date: Tue, 7 Jan 2014 16:37:35 +0200
Subject: [rancid] Cisco connect through multiple devices?
In-Reply-To: <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
References: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
Message-ID: <CAFDP=4ysWdbG-C-KGkyJ2rL6BS7Y6ZkTezeFcFhd4M3dA+yGcw@mail.gmail.com>

I need to tell RANCID that it can access and manage X internal ip's through
the router Y. Both X ips are cisco managed switches/routers and Y is a
cisco router as well.

I've tried this solution after some searching :
http://www.shrubbery.net/pipermail/rancid-discuss/2004-November/000905.htmlbut
apparently i can clogin but rancid-run gives me timeouts in the log.


On Tue, Jan 7, 2014 at 4:28 PM, Hughes, Doug <
Douglas.Hughes at deshawresearch.com> wrote:

>  I don?t understand the question. Are you saying that you cannping ping
> cisco1, cisco2, or cisco3 through gateway? You don?t have routing enabled?
>
>
>
> *From:* rancid-discuss-bounces at shrubbery.net [mailto:
> rancid-discuss-bounces at shrubbery.net] *On Behalf Of *Andrei Sabau
> *Sent:* Tuesday, January 07, 2014 5:06 AM
> *To:* rancid-discuss at shrubbery.net
> *Subject:* [rancid] Cisco connect through multiple devices?
>
>
>
> Hello. I am in a situation.
>
> I need RANCID to get the router information through another router. Both
> are cisco, both are telnet-able, both are managed.
>
> Mainly, it's something like this :
>
> Rancid Server --> Gateway Router -> Cisco switch1
>
>                                                                -> Cisco
> switch2
>
>                                                                -> Cisco
> switch3
>
>   How could this be implemented? A custom wrapper with a script?
>
> Any help will be very appreciated ! :D
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/129502bb/attachment.html>

From dtuecks at googlemail.com  Tue Jan  7 14:32:59 2014
From: dtuecks at googlemail.com (Daniel Tuecks)
Date: Tue, 7 Jan 2014 15:32:59 +0100
Subject: [rancid] Cisco connect through multiple devices?
In-Reply-To: <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
References: <CAFDP=4wKfO5b7wwVwyTDczsKxEs+-GmsM6AMiXH4+EZR2CvOKg@mail.gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F3601784E@mailnycmb5a.winmail.deshaw.com>
Message-ID: <CAE3K2Ogy9ujYKnkNju7D-8umNqK9mPkS=jYbuF631rzUDi2W7A@mail.gmail.com>

Hi Andrei,

have a look at this patch:
http://www.shrubbery.net/pipermail/rancid-discuss/2006-May/001490.html.
This might work for you ( I use this method to get the config from asa
contexts ).

Regards.
Daniel


2014/1/7 Hughes, Doug <Douglas.Hughes at deshawresearch.com>

>  I don?t understand the question. Are you saying that you cannping ping
> cisco1, cisco2, or cisco3 through gateway? You don?t have routing enabled?
>
>
>
> *From:* rancid-discuss-bounces at shrubbery.net [mailto:
> rancid-discuss-bounces at shrubbery.net] *On Behalf Of *Andrei Sabau
> *Sent:* Tuesday, January 07, 2014 5:06 AM
> *To:* rancid-discuss at shrubbery.net
> *Subject:* [rancid] Cisco connect through multiple devices?
>
>
>
> Hello. I am in a situation.
>
> I need RANCID to get the router information through another router. Both
> are cisco, both are telnet-able, both are managed.
>
> Mainly, it's something like this :
>
> Rancid Server --> Gateway Router -> Cisco switch1
>
>                                                                -> Cisco
> switch2
>
>                                                                -> Cisco
> switch3
>
>   How could this be implemented? A custom wrapper with a script?
>
> Any help will be very appreciated ! :D
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140107/6eddb0b0/attachment.html>

From daniel.schmidt at wyo.gov  Wed Jan  8 15:59:32 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Wed, 8 Jan 2014 08:59:32 -0700
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
 <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
 <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>
Message-ID: <CAOyMAK=Zijy+T+eCDvOYGtZ3zXeT1towQAUUyp8+0_3eEkyWdw@mail.gmail.com>

I can't remember - I think I just copied it from command line, or maybe to
start.  I don't have those lines of garbage.


On Sun, Jan 5, 2014 at 6:07 AM, Elliot Wilen <elliot.wilen at aechelon.com>wrote:

>
>  On Jan 4, 2014, at 7:36 PM, "Daniel Schmidt" <daniel.schmidt at wyo.gov>
> wrote:
>
>    >But I?m wondering if the archived config produced by rancid is
> something I can trust as an actual backup. Has anyone tried restoring the
> config from rancid?
>
>  Yup.  Worked 4 me.
>
>
> Hi, Daniel,
>
>  Do you know if you get any of those funny lines in the output?
>
>  What was you restore method, if I may ask?
>
>  Thanks.
>
>  --Elliot Wilen
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140108/dff412ad/attachment.html>

From VLow at atomicdata.com  Wed Jan  8 20:09:51 2014
From: VLow at atomicdata.com (Vincent Low)
Date: Wed, 8 Jan 2014 20:09:51 +0000
Subject: [rancid] Rancid Issues with symbols in passwords
Message-ID: <CEF30CA8.372B3%vlow@atomicdata.com>

Hi everyone,
My company has been using Rancid for many years and it has been working great.

It was recently brought to my attention that our Rancid fails when our passwords have symbols in them (for example !, $,*, etc). Does anyone know if this is limited to particular symbols? Or is it all of the symbols: !@#$%^&*

This is my first post so if I am missing anything, let me know.Thanks in advance!

Regards,

Vincent Low - Infrastructure Engineer

Atomic Data
615 North 3rd Street
Minneapolis, MN 55401
612.466.2000 Main Line
612.466.2041 Direct Dial

Twitter<http://twitter.com/AtomicData> | Facebook<http://www.facebook.com/AtomicDataCenters> | LinkedIn<http://www.linkedin.com/companies/atomic-data>

Simple. Safe. Smart.
www.atomicdata.com<http://www.atomicdata.com/>

This message and any information or attachments included therewith is intended only for the individual or entity named above. If the reader is not the intended recipient, you are hereby notified that any use, dissemination, distribution or copy of this message or any information attached or contained therein is strictly prohibited. If you have received this message in error, please notify the sender by return e-mail and destroy all copies of the message and any attachments.

Thank you.

Please consider the environment before printing this email.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140108/803a5f72/attachment.html>

From Michael.Josten at hs-niederrhein.de  Thu Jan  9 15:32:04 2014
From: Michael.Josten at hs-niederrhein.de (Josten, Michael)
Date: Thu, 9 Jan 2014 16:32:04 +0100
Subject: [rancid] Rancid Issues with symbols in passwords
In-Reply-To: <CEF30CA8.372B3%vlow@atomicdata.com>
References: <CEF30CA8.372B3%vlow@atomicdata.com>
Message-ID: <9BDA0B754D62C64FBE6B0CFFA429C47A2169947005@prometheus>

I just checked a password including the symbols *! and rancid logs in on a brocade fcx6610 switch.

________________________________
Von: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] Im Auftrag von Vincent Low
Gesendet: Mittwoch, 8. Januar 2014 21:10
An: rancid-discuss at shrubbery.net
Betreff: [rancid] Rancid Issues with symbols in passwords

Hi everyone,
My company has been using Rancid for many years and it has been working great.

It was recently brought to my attention that our Rancid fails when our passwords have symbols in them (for example !, $,*, etc). Does anyone know if this is limited to particular symbols? Or is it all of the symbols: !@#$%^&*

This is my first post so if I am missing anything, let me know.Thanks in advance!

Regards,

Vincent Low - Infrastructure Engineer

Atomic Data
615 North 3rd Street
Minneapolis, MN 55401
612.466.2000 Main Line
612.466.2041 Direct Dial

Twitter<http://twitter.com/AtomicData> | Facebook<http://www.facebook.com/AtomicDataCenters> | LinkedIn<http://www.linkedin.com/companies/atomic-data>

Simple. Safe. Smart.
www.atomicdata.com<http://www.atomicdata.com/>

This message and any information or attachments included therewith is intended only for the individual or entity named above. If the reader is not the intended recipient, you are hereby notified that any use, dissemination, distribution or copy of this message or any information attached or contained therein is strictly prohibited. If you have received this message in error, please notify the sender by return e-mail and destroy all copies of the message and any attachments.

Thank you.

Please consider the environment before printing this email.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140109/c16e0c94/attachment.html>

From heas at shrubbery.net  Thu Jan  9 15:36:18 2014
From: heas at shrubbery.net (heasley)
Date: Thu, 9 Jan 2014 15:36:18 +0000
Subject: [rancid] Rancid Issues with symbols in passwords
In-Reply-To: <CEF30CA8.372B3%vlow@atomicdata.com>
References: <CEF30CA8.372B3%vlow@atomicdata.com>
Message-ID: <20140109153618.GC12629@shrubbery.net>

Wed, Jan 08, 2014 at 08:09:51PM +0000, Vincent Low:
> Hi everyone,
> My company has been using Rancid for many years and it has been working great.
> 
> It was recently brought to my attention that our Rancid fails when our passwords have symbols in them (for example !, $,*, etc). Does anyone know if this is limited to particular symbols? Or is it all of the symbols: !@#$%^&*
> 
> This is my first post so if I am missing anything, let me know.Thanks in advance!

assuming youre not using an old version, you should be able to escape
meta characters with backslashes.  see the clogin manpage.

From MShoaib at paciolan.com  Thu Jan  9 16:51:45 2014
From: MShoaib at paciolan.com (Muhammad Shoaib)
Date: Thu, 9 Jan 2014 16:51:45 +0000
Subject: [rancid] Cisco connect through multiple devices?
Message-ID: <2C701567353EE74DBF149C7B747FF58F27A1A4AB@CA-IRVM-EXCH01.paciolan.corp>

Good morning,

I had a similar situation in Nov 2013 and the resolution requires a patch to rancid distro. I have tried the old patches out there but nothing worked.

Heasley responded that old patches out there need to be pulled in to the newer version to make it work.

I highly appreciate if someone knowledgeable can update the patch for the latest version of rancid.

http://www.shrubbery.net/pipermail/rancid-discuss/2013-November/007307.html

Thanks in advance

-Muhammad









-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140109/b1240adb/attachment.html>

From elliot.wilen at aechelon.com  Thu Jan  9 22:35:16 2014
From: elliot.wilen at aechelon.com (Elliot Wilen)
Date: Thu, 9 Jan 2014 22:35:16 +0000
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <CAOyMAK=Zijy+T+eCDvOYGtZ3zXeT1towQAUUyp8+0_3eEkyWdw@mail.gmail.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
 <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
 <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>
 <CAOyMAK=Zijy+T+eCDvOYGtZ3zXeT1towQAUUyp8+0_3eEkyWdw@mail.gmail.com>
Message-ID: <736C3AA4541A56418A535328BDC357591B2B8C6F@ATC1.corp.aechelon.com>

Thanks, Daniel. I think my firmware version must be different. In addition to the garbage output, even the commands don't seem to follow the right syntax to just dump them back into the device. (I.e., not just lack of "config" at the start of each line.)

While we wait to upgrade our firmware I'm going to work on plan B: uploading the config from the WLC with tftp and then importing. For this I'm debating using wraprancid (https://sites.google.com/site/jrbinks/code/rancid/wraprancid) vs. clogin -s and rancid -f.
--
Elliot Wilen
Sr. System Administrator
Aechelon Technology


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140109/bde05a28/attachment.html>

From daniel.schmidt at wyo.gov  Fri Jan 10 16:23:32 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Fri, 10 Jan 2014 09:23:32 -0700
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <736C3AA4541A56418A535328BDC357591B2B8C6F@ATC1.corp.aechelon.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
 <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
 <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>
 <CAOyMAK=Zijy+T+eCDvOYGtZ3zXeT1towQAUUyp8+0_3eEkyWdw@mail.gmail.com>
 <736C3AA4541A56418A535328BDC357591B2B8C6F@ATC1.corp.aechelon.com>
Message-ID: <CAOyMAK=eOXLYZnWr025ay2Cz6=You-MqF0nJyUbvAG6K9L_GqQ@mail.gmail.com>

Works fine 4 me.  U ARE using cisco-wlc5 rancid type, right?


! Manufacturer's Name.............................. Cisco Systems Inc.
! Product Name..................................... Cisco Controller
! Product Version.................................. 7.4.103.5
! RTOS Version..................................... 7.4.103.5
! Bootloader Version............................... 7.0.220.0
! Emergency Image Version.......................... 7.2.104.17



On Thu, Jan 9, 2014 at 3:35 PM, Elliot Wilen <elliot.wilen at aechelon.com>wrote:

>  Thanks, Daniel. I think my firmware version must be different. In
> addition to the garbage output, even the commands don?t seem to follow the
> right syntax to just dump them back into the device. (I.e., not just lack
> of ?config? at the start of each line.)
>
>
>
> While we wait to upgrade our firmware I?m going to work on plan B:
> uploading the config from the WLC with tftp and then importing. For this
> I?m debating using wraprancid (
> https://sites.google.com/site/jrbinks/code/rancid/wraprancid) vs. clogin
> ?s and rancid ?f.
>
> --
>
> Elliot Wilen
>
> Sr. System Administrator
>
> Aechelon Technology
>
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/d47d305f/attachment.html>

From bruccoo at gmail.com  Fri Jan 10 16:26:49 2014
From: bruccoo at gmail.com (Gregory Bruccoleri)
Date: Fri, 10 Jan 2014 11:26:49 -0500
Subject: [rancid] "copy run start" from a script
Message-ID: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>

Hello all, I have the following script but want to ensure that when changes
are completed that the configuration changes are written to the startup
config.

Here is my script:

#!/bin/bash
for line in $(cat routers.txt)
do
su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
$line"
done

I've tried using the flat text command within "commands.cmds" to no avail
and the -S option without success.

Does anyone have any input on how to make this work?

Thanks in advance,
G
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/7ac471ff/attachment.html>

From daniel.schmidt at wyo.gov  Fri Jan 10 19:27:17 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Fri, 10 Jan 2014 12:27:17 -0700
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
Message-ID: <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>

Y reinvent wheel?

http://sourceforge.net/projects/cosi-nms/files/ciscocmd/



On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:

> Hello all, I have the following script but want to ensure that when
> changes are completed that the configuration changes are written to the
> startup config.
>
> Here is my script:
>
> #!/bin/bash
> for line in $(cat routers.txt)
> do
> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
> $line"
> done
>
> I've tried using the flat text command within "commands.cmds" to no avail
> and the -S option without success.
>
> Does anyone have any input on how to make this work?
>
> Thanks in advance,
> G
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/8523f688/attachment.html>

From mezino.clement at gmail.com  Fri Jan 10 14:08:00 2014
From: mezino.clement at gmail.com (=?ISO-8859-1?Q?Cl=E9ment_M=2E?=)
Date: Fri, 10 Jan 2014 15:08:00 +0100
Subject: [rancid] Problem using rancid
Message-ID: <CAF+oNJ5r6Ly9ANyNAm0gt3wRFmu7ETMr1Gxo9XwzEkX7jAA00w@mail.gmail.com>

Hi,

I'm having some issues using rancid at work.

I want to manage cisco switches and everything works fine except for one :(

In fact, most of them are using telnet and the one that doesn't work uses
ssh.

Here's where I am so far :

clogin -c "show run"  192.168.1.18
spawn ssh -p 22 -c 3des -x -l admin 192.168.1.18
SW>
SW>terminal length 0
SW>terminal width 132
SW>show run
                   ^
% Invalid input detected at '^' marker.

SW>exit
Connection to 192.168.1.18 closed.

Not working !

But when i try a telnet switch, it's all good :

My cloginrc looks like this :

add method 192.168.1.18         {ssh:22}
add user 192.168.1.18           admin
add autonenable 192.168.1.18    0
add method 192.168.1.*          {telnet:23}
add password 192.168.1.*        {"pass"} {"enable_pass"} --> (Same for all)

I'm using telnet for all my switches except for this one. I'm running
rancid on a RHEL 6 system.
Can you help me ?

Thanks,
K
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/de84a929/attachment.html>

From malmgren at skyfire.com  Fri Jan 10 20:12:28 2014
From: malmgren at skyfire.com (Matt Almgren)
Date: Fri, 10 Jan 2014 12:12:28 -0800
Subject: [rancid] Problem using rancid
In-Reply-To: <CAF+oNJ5r6Ly9ANyNAm0gt3wRFmu7ETMr1Gxo9XwzEkX7jAA00w@mail.gmail.com>
References: <CAF+oNJ5r6Ly9ANyNAm0gt3wRFmu7ETMr1Gxo9XwzEkX7jAA00w@mail.gmail.com>
Message-ID: <CEF6127E.BCD2%malmgren@skyfire.com>

I could be mistaken here, but it appears you're not in privilege mode when rancid tries to do "show run".   There's no # in the prompt.

Maybe this value should be set to "1" for rancid to "enable" the device.

 add autonenable 192.168.1.18    0

 -- Matt


From: "Cl???ment M." <mezino.clement at gmail.com<mailto:mezino.clement at gmail.com>>
Date: Friday, January 10, 2014 6:08 AM
To: "rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>" <rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>>
Subject: [rancid] Problem using rancid

Hi,

I'm having some issues using rancid at work.

I want to manage cisco switches and everything works fine except for one :(

In fact, most of them are using telnet and the one that doesn't work uses ssh.

Here's where I am so far :

clogin -c "show run"  192.168.1.18
spawn ssh -p 22 -c 3des -x -l admin 192.168.1.18
SW>
SW>terminal length 0
SW>terminal width 132
SW>show run
                   ^
% Invalid input detected at '^' marker.

SW>exit
Connection to 192.168.1.18 closed.

Not working !

But when i try a telnet switch, it's all good :

My cloginrc looks like this :

add method 192.168.1.18         {ssh:22}
add user 192.168.1.18           admin
add autonenable 192.168.1.18    0
add method 192.168.1.*          {telnet:23}
add password 192.168.1.*        {"pass"} {"enable_pass"} --> (Same for all)

I'm using telnet for all my switches except for this one. I'm running rancid on a RHEL 6 system.
Can you help me ?

Thanks,
K

________________________________
This message is being sent by Skyfire Labs. It is intended exclusively for the individuals and entities to which it is addressed. This communication, including any attachments, may contain information that is proprietary, privileged, confidential, or otherwise subject to restrictions on disclosure pursuant to applicable law. If you are not the named addressee, you are not authorized to read, print, retain copy or disseminate this message or any part of it. If you have received this message in error, please notify the sender immediately by email and delete all copies of this message. This message is protected by applicable legal privileges and is confidential.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/f395d1d2/attachment.html>

From elliot.wilen at aechelon.com  Fri Jan 10 20:13:29 2014
From: elliot.wilen at aechelon.com (Elliot Wilen)
Date: Fri, 10 Jan 2014 20:13:29 +0000
Subject: [rancid] Restoring Cisco Wireless Lan Controller from rancid?
In-Reply-To: <CAOyMAK=eOXLYZnWr025ay2Cz6=You-MqF0nJyUbvAG6K9L_GqQ@mail.gmail.com>
References: <736C3AA4541A56418A535328BDC3575913FC2125@ATC1.corp.aechelon.com>
 <CAOyMAKmsNe6M9bJihZwBy6K+r3EFAtiJ-GuYEamsqkstD9S8iQ@mail.gmail.com>
 <D428963F-9FF2-4D0C-BFF9-DB480CD8B284@aechelon.com>
 <CAOyMAK=Zijy+T+eCDvOYGtZ3zXeT1towQAUUyp8+0_3eEkyWdw@mail.gmail.com>
 <736C3AA4541A56418A535328BDC357591B2B8C6F@ATC1.corp.aechelon.com>
 <CAOyMAK=eOXLYZnWr025ay2Cz6=You-MqF0nJyUbvAG6K9L_GqQ@mail.gmail.com>
Message-ID: <736C3AA4541A56418A535328BDC357591B2CA7B0@ATC1.corp.aechelon.com>

Yes, I am, but note from my earlier message that my current firmware (Product Version) is 7.0.220.0.

Probably Cisco has fixed some things since then, and we'll be upgrading shortly. But I think I'll still feel more comfortable having a backup using the approved method. At worst (i.e., being lazy) I can probably do it both the rancid way to capture the UDI and system info, and with tftp with wraprancid, by having separate entries in router.db.

I'll post back to the list once I've got a decent wrapper script.

--
Elliot Wilen
Sr. System Administrator
Aechelon Technology

From: Daniel Schmidt [mailto:daniel.schmidt at wyo.gov]

Works fine 4 me.  U ARE using cisco-wlc5 rancid type, right?





! Manufacturer's Name.............................. Cisco Systems Inc.

! Product Name..................................... Cisco Controller

! Product Version.................................. 7.4.103.5

! RTOS Version..................................... 7.4.103.5

! Bootloader Version............................... 7.0.220.0

! Emergency Image Version.......................... 7.2.104.17
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/fb23b624/attachment.html>

From bruccoo at gmail.com  Fri Jan 10 21:08:56 2014
From: bruccoo at gmail.com (Gregory Bruccoleri)
Date: Fri, 10 Jan 2014 16:08:56 -0500
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
 <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
Message-ID: <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>

Hi Daniel,

Thanks for the link but I'm looking for something to run exclusively within
rancid and bash.  The script I have works except sending the carriage
return when writing the config to startup.  I figure an option on the last
line would do it but no dice.

#!/bin/bash
for line in $(cat routers.txt)
do
su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -c 'copy run start'
$line"
done

I'm getting closer it seems as when this is ran it will display the command
but after entering the command it times out:

router#copy run start

Error: TIMEOUT reached



On Fri, Jan 10, 2014 at 2:27 PM, Daniel Schmidt <daniel.schmidt at wyo.gov>wrote:

> Y reinvent wheel?
>
> http://sourceforge.net/projects/cosi-nms/files/ciscocmd/
>
>
>
> On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:
>
>> Hello all, I have the following script but want to ensure that when
>> changes are completed that the configuration changes are written to the
>> startup config.
>>
>> Here is my script:
>>
>> #!/bin/bash
>> for line in $(cat routers.txt)
>> do
>> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
>> $line"
>> done
>>
>> I've tried using the flat text command within "commands.cmds" to no avail
>> and the -S option without success.
>>
>> Does anyone have any input on how to make this work?
>>
>>  Thanks in advance,
>> G
>>
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-discuss at shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>>
>
> E-Mail to and from me, in connection with the transaction
> of public business, is subject to the Wyoming Public Records
> Act and may be disclosed to third parties.
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/6a36cbb0/attachment.html>

From bruccoo at gmail.com  Fri Jan 10 19:48:51 2014
From: bruccoo at gmail.com (Gregory Bruccoleri)
Date: Fri, 10 Jan 2014 14:48:51 -0500
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
 <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
Message-ID: <CAFDWfRGLT3A3bsUZq3sbUkrJOh1AdOMqVM4jk0kUcgMzXy1LDQ@mail.gmail.com>

Hi Daniel,

Thanks for the link but I'm looking for something to run exclusively within
rancid and bash.  The script I have works except sending the carriage
return when writing the config to startup.  I figure an option on the last
line would do it but no dice.

Thanks,
G


On Fri, Jan 10, 2014 at 2:27 PM, Daniel Schmidt <daniel.schmidt at wyo.gov>wrote:

> Y reinvent wheel?
>
> http://sourceforge.net/projects/cosi-nms/files/ciscocmd/
>
>
>
> On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:
>
>> Hello all, I have the following script but want to ensure that when
>> changes are completed that the configuration changes are written to the
>> startup config.
>>
>> Here is my script:
>>
>> #!/bin/bash
>> for line in $(cat routers.txt)
>> do
>> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
>> $line"
>> done
>>
>> I've tried using the flat text command within "commands.cmds" to no avail
>> and the -S option without success.
>>
>> Does anyone have any input on how to make this work?
>>
>>  Thanks in advance,
>> G
>>
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-discuss at shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>>
>
> E-Mail to and from me, in connection with the transaction
> of public business, is subject to the Wyoming Public Records
> Act and may be disclosed to third parties.
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/35013945/attachment.html>

From heas at shrubbery.net  Fri Jan 10 22:50:04 2014
From: heas at shrubbery.net (heasley)
Date: Fri, 10 Jan 2014 22:50:04 +0000
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
 <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
 <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
Message-ID: <20140110225004.GB63408@shrubbery.net>

Fri, Jan 10, 2014 at 04:08:56PM -0500, Gregory Bruccoleri:
> Hi Daniel,
> 
> Thanks for the link but I'm looking for something to run exclusively within
> rancid and bash.  The script I have works except sending the carriage
> return when writing the config to startup.  I figure an option on the last
> line would do it but no dice.
> 
> #!/bin/bash
> for line in $(cat routers.txt)
> do
> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -c 'copy run start'
> $line"
> done
> 
> I'm getting closer it seems as when this is ran it will display the command
> but after entering the command it times out:
> 
> router#copy run start

clogin -c 'write mem' device

> Error: TIMEOUT reached
> 
> 
> 
> On Fri, Jan 10, 2014 at 2:27 PM, Daniel Schmidt <daniel.schmidt at wyo.gov>wrote:
> 
> > Y reinvent wheel?
> >
> > http://sourceforge.net/projects/cosi-nms/files/ciscocmd/
> >
> >
> >
> > On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:
> >
> >> Hello all, I have the following script but want to ensure that when
> >> changes are completed that the configuration changes are written to the
> >> startup config.
> >>
> >> Here is my script:
> >>
> >> #!/bin/bash
> >> for line in $(cat routers.txt)
> >> do
> >> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
> >> $line"
> >> done
> >>
> >> I've tried using the flat text command within "commands.cmds" to no avail
> >> and the -S option without success.
> >>
> >> Does anyone have any input on how to make this work?
> >>
> >>  Thanks in advance,
> >> G
> >>
> >> _______________________________________________
> >> Rancid-discuss mailing list
> >> Rancid-discuss at shrubbery.net
> >> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
> >>
> >
> > E-Mail to and from me, in connection with the transaction
> > of public business, is subject to the Wyoming Public Records
> > Act and may be disclosed to third parties.
> >
> >
> >

> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss


From howie at thingy.com  Fri Jan 10 23:29:40 2014
From: howie at thingy.com (Howard Jones)
Date: Fri, 10 Jan 2014 23:29:40 +0000
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
 <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
 <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
Message-ID: <52D08264.30405@thingy.com>

http://networkengineering.stackexchange.com/questions/3791/suppress-confirmation-prompts-in-ios-when-copying-files

Either "write memory" for older devices, or apparently you can disable 
that prompt. It's a global config option though, not a command-line 
thing on the copy command.

On 10/01/2014 21:08, Gregory Bruccoleri wrote:
> Hi Daniel,
>
> Thanks for the link but I'm looking for something to run exclusively 
> within rancid and bash.  The script I have works except sending the 
> carriage return when writing the config to startup.  I figure an 
> option on the last line would do it but no dice.
>
> #!/bin/bash
> for line in $(cat routers.txt)
> do
> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -c 'copy run 
> start' $line"
> done
>
> I'm getting closer it seems as when this is ran it will display the 
> command but after entering the command it times out:
>
> router#copy run start
>
> Error: TIMEOUT reached
>
>
>
> On Fri, Jan 10, 2014 at 2:27 PM, Daniel Schmidt 
> <daniel.schmidt at wyo.gov <mailto:daniel.schmidt at wyo.gov>> wrote:
>
>     Y reinvent wheel?
>
>     http://sourceforge.net/projects/cosi-nms/files/ciscocmd/
>
>
>
>     On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri
>     <bruccoo at gmail.com <mailto:bruccoo at gmail.com>> wrote:
>
>         Hello all, I have the following script but want to ensure that
>         when changes are completed that the configuration changes are
>         written to the startup config.
>
>         Here is my script:
>
>         #!/bin/bash
>         for line in $(cat routers.txt)
>         do
>         su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x
>         commands.cmds $line"
>         done
>
>         I've tried using the flat text command within "commands.cmds"
>         to no avail and the -S option without success.
>
>         Does anyone have any input on how to make this work?
>
>         Thanks in advance,
>         G
>
>         _______________________________________________
>         Rancid-discuss mailing list
>         Rancid-discuss at shrubbery.net <mailto:Rancid-discuss at shrubbery.net>
>         http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>
>
>     E-Mail to and from me, in connection with the transaction
>     of public business, is subject to the Wyoming Public Records
>     Act and may be disclosed to third parties.
>
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss


From gaurav at inwire.net  Fri Jan 10 21:41:13 2014
From: gaurav at inwire.net (Gaurav Sabharwal)
Date: Fri, 10 Jan 2014 16:41:13 -0500
Subject: [rancid] "copy run start" from a script
In-Reply-To: <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
References: <CAFDWfREZMTv08Kp7+h5ZJLJRihGjS2nX_MwfUWj3fMvhiXjf1A@mail.gmail.com>
 <CAOyMAKm2ds8gpZKLysaODg_vPUK800TnFErN_BaE6fUHeoKh-w@mail.gmail.com>
 <CAFDWfRHxxyOxYfjPsiXZQcAhkn0OEWneDF=DuKJDsiErPwzidw@mail.gmail.com>
Message-ID: <CAHKUyCexHypQQfjLLuVsAEeHinVP0_FcGAJCXfU9=WCHWde21w@mail.gmail.com>

Greg,

I don't see how that will work as the command is interactive. You might
want to use 'wr mem' or depending upon what you trying to do you can use an
EEM that gets triggered on a logout and does a wr mem.

Ping me at work! Unity! :)

Gaurav


On Fri, Jan 10, 2014 at 4:08 PM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:

> Hi Daniel,
>
> Thanks for the link but I'm looking for something to run exclusively
> within rancid and bash.  The script I have works except sending the
> carriage return when writing the config to startup.  I figure an option on
> the last line would do it but no dice.
>
> #!/bin/bash
> for line in $(cat routers.txt)
> do
> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -c 'copy run start'
> $line"
> done
>
> I'm getting closer it seems as when this is ran it will display the
> command but after entering the command it times out:
>
> router#copy run start
>
> Error: TIMEOUT reached
>
>
>
> On Fri, Jan 10, 2014 at 2:27 PM, Daniel Schmidt <daniel.schmidt at wyo.gov>wrote:
>
>> Y reinvent wheel?
>>
>> http://sourceforge.net/projects/cosi-nms/files/ciscocmd/
>>
>>
>>
>> On Fri, Jan 10, 2014 at 9:26 AM, Gregory Bruccoleri <bruccoo at gmail.com>wrote:
>>
>>> Hello all, I have the following script but want to ensure that when
>>> changes are completed that the configuration changes are written to the
>>> startup config.
>>>
>>> Here is my script:
>>>
>>> #!/bin/bash
>>> for line in $(cat routers.txt)
>>> do
>>> su -s /bin/bash -l rancid -c "/home/rancid/bin/clogin -x commands.cmds
>>> $line"
>>> done
>>>
>>> I've tried using the flat text command within "commands.cmds" to no
>>> avail and the -S option without success.
>>>
>>> Does anyone have any input on how to make this work?
>>>
>>>  Thanks in advance,
>>> G
>>>
>>> _______________________________________________
>>> Rancid-discuss mailing list
>>> Rancid-discuss at shrubbery.net
>>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>>>
>>
>> E-Mail to and from me, in connection with the transaction
>> of public business, is subject to the Wyoming Public Records
>> Act and may be disclosed to third parties.
>>
>>
>>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/fc60b24e/attachment.html>

From tommy.f.gilmore at gmail.com  Fri Jan 10 17:05:00 2014
From: tommy.f.gilmore at gmail.com (tom gilmore)
Date: Fri, 10 Jan 2014 09:05:00 -0800 (PST)
Subject: [rancid] f5rancid.in how to ?  (TMSH on BigIP)
Message-ID: <24daa506-c7d0-4ddf-88ab-54181fec4f93@googlegroups.com>

I have been trying to get f5rancid to collect configs from our BigIP boxes. 
They are running BigIP version 11.0
I have download several f5rancid.in patches,, but none of them seem to work.
the most common error that I see is "command' not found when I attempt to 
run ./f5rancidin -d x.x.x.x
I can see the @commandtable has the correct list of commands that can 
collect information from me ,, but I cannot get the script to work.

for example,, I downloaded this patch found under gossemer threads
http://www.gossamer-threads.com/lists/engine?do=post_attachment;postatt_id=255;list=rancid

but when I run the script,, I get these errors
(essentially the first 50 lines of f5rancid.in are commented out,, so 
"command not found" is seen on line 51
******************************
 ./f5rancid -d 10.232.96.14
: command not found 
: command not found 
./f5rancid: line 51: use: command not found
: command not found: 
./f5rancid: line 52: syntax error near unexpected token `'dflV''
'/f5rancid: line 52: `getopts('dflV');
*******************************

Line 51 says "use Getopt::Std;"
Line 52 -55 says 
getopts('dflV');
if ($opt_V) {
    print "@PACKAGE@ @VERSION@\n";
    exit(0);
}



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140110/692c7609/attachment.html>

From alan.mckinnon at gmail.com  Sat Jan 11 23:37:02 2014
From: alan.mckinnon at gmail.com (Alan McKinnon)
Date: Sun, 12 Jan 2014 01:37:02 +0200
Subject: [rancid] f5rancid.in how to ?  (TMSH on BigIP)
In-Reply-To: <24daa506-c7d0-4ddf-88ab-54181fec4f93@googlegroups.com>
References: <24daa506-c7d0-4ddf-88ab-54181fec4f93@googlegroups.com>
Message-ID: <52D1D59E.7050302@gmail.com>

On 10/01/2014 19:05, tom gilmore wrote:
> I have been trying to get f5rancid to collect configs from our BigIP
> boxes. They are running BigIP version 11.0
> I have download several f5rancid.in patches,, but none of them seem to work.
> the most common error that I see is "command' not found when I attempt
> to run ./f5rancidin -d x.x.x.x
> I can see the @commandtable has the correct list of commands that can
> collect information from me ,, but I cannot get the script to work.
> 
> for example,, I downloaded this patch found under gossemer threads
> http://www.gossamer-threads.com/lists/engine?do=post_attachment;postatt_id=255;list=rancid
> 
> but when I run the script,, I get these errors
> (essentially the first 50 lines of f5rancid.in are commented out,, so
> "command not found" is seen on line 51
> ******************************
>  ./f5rancid -d 10.232.96.14
> : command not found 
> : command not found 
> ./f5rancid: line 51: use: command not found
> : command not found: 
> ./f5rancid: line 52: syntax error near unexpected token `'dflV''
> '/f5rancid: line 52: `getopts('dflV');
> *******************************
> 
> Line 51 says "use Getopt::Std;"
> Line 52 -55 says 
> getopts('dflV');
> if ($opt_V) {
>     print "@PACKAGE@ @VERSION@\n";
>     exit(0);
> }


install GetOpt::Std

It's a perl module and it's missing on your system.

This is a package manager problem and is solved there; it is not caused
by rancid. All the subsequent syntax errors are caused by that module
being missing, so the perl interpreter has no idea what to do


-- 
Alan McKinnon
alan.mckinnon at gmail.com


From mathieu.poussin at netyxia.net  Mon Jan 13 14:50:22 2014
From: mathieu.poussin at netyxia.net (Mathieu Poussin)
Date: Mon, 13 Jan 2014 15:50:22 +0100
Subject: [rancid] Prompt issue on Alcatel using alulogin : Stop after the
	first command
Message-ID: <CALgt2ADJgkBEgbmXDcFmSTvRomb_9fz2s2j+f-je_ChwG3mdLA@mail.gmail.com>

Hello,

I need to setup rancid to backup many Alcatel Omniswitch.

It looks like alulogin is wrote for old version of alcatel Omniswitch,

I did modifications about prompts and "no more" commands to make it compatible.

Everything run fine until I run the first command :

rancid at RSFRGUY-TESTMON:~/bin$ ./alulogin -c "show cmm" SW-ALCATEL-TEST1
sw-alcatel-test1
spawn telnet sw-alcatel-test1
Trying 30.0.0.3...
Connected to SW-ALCATEL-TEST1.
Escape character is '^]'.
login : admin
password :

Welcome to the Alcatel-Lucent OmniSwitch 6000
Software Version 6.4.4.343.R01 GA, June 23, 2011.

Copyright(c), 1994-2011 Alcatel-Lucent. All Rights reserved.

OmniSwitch(TM) is a trademark of Alcatel-Lucent registered
in the United States Patent and Trademark Office.

->
-> no more
-> show cmm
CMM in slot 1
  Model Name:                    OS6850-48X,
  Description:                   CMM,
  Part Number:                   902462-90,
  Hardware Revision:             07,
  Serial Number:                 M4381085,
  Manufacture Date:              OCT 21 2011,
  Firmware Version:              ,
  Admin Status:                  POWER ON,
  Operational Status:            UP,
  Power Consumption:             115,
  Power Control Checksum:        0xb87e,
  CPU Model Type   :             Motorola MPC8248,
  MAC Address:                   e8:e7:32:26:fd:18,




Error: TIMEOUT reached

Here is what I get from debug for the same command:

expect: does "  MAC Address:
e8:e7:32:26:fd:18,\r\n\r\n\r\n\r\n-> " (spawn_id exp6) match regular
expression "\u0008+"? (No Gate, RE only) gate=yes re=no
"^[^\n\r *]*\r\n-> "? Gate "*\r\n-> "? gate=yes re=no
"^[^\n\r]*\r\n-> ."? Gate "*\r\n-> ?"? gate=no
"^--More--[\r\n]+"? Gate "--More--*"? gate=no
"[\n\r]+"? (No Gate, RE only) gate=yes re=yes
expect: set expect_out(0,string) "\r\n\r\n\r\n\r\n"
expect: set expect_out(spawn_id) "exp6"
expect: set expect_out(buffer) "  MAC Address:
e8:e7:32:26:fd:18,\r\n\r\n\r\n\r\n"
expect: continuing expect

expect: does "-> " (spawn_id exp6) match regular expression "\u0008+"?
(No Gate, RE only) gate=yes re=no
"^[^\n\r *]*\r\n-> "? Gate "*\r\n-> "? gate=no
"^[^\n\r]*\r\n-> ."? Gate "*\r\n-> ?"? gate=no
"^--More--[\r\n]+"? Gate "--More--*"? gate=no
"[\n\r]+"? (No Gate, RE only) gate=yes re=no
"[^\r\n]*Press <SPACE> to cont[^\r\n]*"? Gate "*Press <SPACE> to cont*"? gate=no
"Press any key to continue (Q to quit)[^\r\n]*"? Gate "Press any key
to continue Q to quit*"? gate=no
"^ *--More--[^\n\r]*"? Gate "*--More--*"? gate=no
"^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no
expect: timed out

The prompt is always "-> ", I've done modifications on the alulogin file.

Here are the modifications I made :

398a399
>
645c646
<     send "environment no more\r"
---
>     send "no more\r"
868c869
<       set u_prompt "(Username|Login|login|user name|User):"
---
>       set u_prompt "(Username|Login|login|user name|User) :"
874c875
<       set p_prompt "(\[Pp]assword|passwd|Enter password for \[^ :]+):"
---
>       set p_prompt "(\[Pp]assword|passwd|Enter password for \[^ :]+) :"
880c881
<       set e_prompt "\[Pp]assword:"
---
>       set e_prompt "\[Pp]assword :"
884a886,889
>     set prompt [find prompt $router]
>     if { "$prompt" == "" } {
>         set prompt "-> "
>     }
920c925,926
<       -re "\[\r\n]+"          { exp_continue; }
---
>       #-re "\[\r\n]+"         { exp_continue; }
>         -re "^.$prompt" { exp_continue }

I can't find what can be the problem, i'm new to rancid and not an
expert in Perl.

Can you help me ?

Thank you.

Best regards,
Mathieu

From victor.ruiz at satec.es  Tue Jan 14 09:48:16 2014
From: victor.ruiz at satec.es (Victor Ruiz)
Date: Tue, 14 Jan 2014 09:48:16 +0000
Subject: [rancid] Rancid Radware AppDirector (End of run not found)
Message-ID: <366D52316F908E4795F6D113AE0627AD01A9FDADA1DC@MBXVS01.ihost.local>


Hello group;

We've some problems working with RANCID and Radware AppDirector Switches. I am working with rlogin-addon and rrancid-addon to get the switch conf, and is very strange because running the command:
$> bin/rlogin-addon -t 90 -c"system config immediate" imi-br-gl-1

The RANBCID can connect and get the configuration without problems, if I run:

$> bin/rrancid-addon -d imi-br-gl-1

I get the following output:

executing rlogin-addon -t 90 -c"system config immediate" imi-br-gl-1
HIT COMMAND:AppDirector#system config immediate
    In SystemConfigImmediate: AppDirector#system config immediate
imi-br-gl-1: End of run not found
imi-br-gl-1: End of run not found
Connection closed by foreign host.

But  in the host_file.new file I've the Radware configuration but in the SVN the configuration is not upload, in the logfile for this group when I run rancid-run -f /usr/local/rancid/etc/rancid.conf -r imi-br-gl-1 show:

Trying to get all of the configs.
imi-br-gl-1: End of run not found
Connection closed by foreign host.
=====================================
Getting missed routers: round 1.
imi-br-gl-1: End of run not found
Connection closed by foreign host.
=====================================
Getting missed routers: round 2.
imi-br-gl-1: End of run not found
Connection closed by foreign host.
=====================================
Getting missed routers: round 3.
imi-br-gl-1: End of run not found
Connection closed by foreign host.
=====================================
Getting missed routers: round 4.
imi-br-gl-1: End of run not found
Connection closed by foreign host.

I was looking for answer  in the Internet to this issue but I don't have answers, anyone with experience in this kind of vendor can help me.

The perl script for RANCID that I am using are:

use Getopt::Std;
getopts('dflV');
if ($opt_V) {
    print "rancid 2.3.6\n";
    exit(0);
}
$log = $opt_l;
$debug = $opt_d;
$file = $opt_f;
$host = $ARGV[0];
$clean_run = 0;
$found_end = 0;
$prompt = "#";
$timeo = 90;

my(@commandtable, %commands, @commands);# command lists
my($aclsort) = ("ipsort");              # ACL sorting mode
my($filter_commstr);                    # SNMP community string filtering
my($filter_pwds);                       # password filtering mode
#my $hist_tag="";
#my $command="";
# This routine is used to print out the router configuration
sub ProcessHistory {
    my($new_hist_tag,$new_command,$command_string, at string) = (@_);
    if ((($new_hist_tag ne $hist_tag) || ($new_command ne $command))
        && scalar(%history)) {
        print eval "$command \%history";
        undef %history;
    }
    if (($new_hist_tag) && ($new_command) && ($command_string)) {
        if ($history{$command_string}) {
            $history{$command_string} = "$history{$command_string}@string";
        } else {
            $history{$command_string} = "@string";
        }
    } elsif (($new_hist_tag) && ($new_command)) {
        $history{++$#history} = "@string";
    } else {
        print "@string";
    }
    $hist_tag = $new_hist_tag;
    $command = $new_command;
    1;

}

sub numerically { $a <=> $b; }

# This is a sort routine that will sort numerically on the
# keys of a hash as if it were a normal array.
sub keynsort {
    local(%lines) = @_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort numerically keys(%lines)) {
        $sorted_lines[$i] = $lines{$key};
        $i++;
    }
    @sorted_lines;
}

# This is a sort routine that will sort on the
# keys of a hash as if it were a normal array.
sub keysort {
    local(%lines) = @_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort keys(%lines)) {
        $sorted_lines[$i] = $lines{$key};
        $i++;
    }
    @sorted_lines;
}

# This is a sort routine that will sort on the
# values of a hash as if it were a normal array.
sub valsort{
    local(%lines) = @_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort values %lines) {
        $sorted_lines[$i] = $key;
        $i++;
    }
    @sorted_lines;
}

# This is a numerical sort routine (ascending).
sub numsort {
    local(%lines) = @_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $num (sort {$a <=> $b} keys %lines) {
        $sorted_lines[$i] = $lines{$num};
        $i++;
    }
    @sorted_lines;
}

# This is a sort routine that will sort on the
# ip address when the ip address is anywhere in
# the strings.
sub ipsort {
    local(%lines) = @_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $addr (sort sortbyipaddr keys %lines) {
        $sorted_lines[$i] = $lines{$addr};
        $i++;
    }
    @sorted_lines;
}

# These two routines will sort based upon IP addresses
sub ipaddrval {
    my(@a) = ($_[0] =~ m#^(\d+)\.(\d+)\.(\d+)\.(\d+)$#);
    $a[3] + 256 * ($a[2] + 256 * ($a[1] +256 * $a[0]));
}
sub sortbyipaddr {
    &ipaddrval($a) <=> &ipaddrval($b);
}

# This routine processes a "system config immediate"
sub SystemConfigImmediate{
    print STDERR "    In SystemConfigImmediate: $_" if ($debug);
    my($lineauto,$comment,$linecnt) = (0,0,0);

    while (<INPUT>) {
        tr/\015//d;
        last if(/^$prompt/);
        return(0) if ($found_end);              # Only do this routine once
        s/^!File Signature: .*$/!$1 <removed>/;
        s/^!Date:.*\s*//;
        #s/^(manage radius server-secret set) .*$/!$1 <removed>/;
        #s/^(manage user table create ).* (-pw ).*$/!$1<removed> $2<removed>/;
    ProcessHistory("CONFIG","","","$_");
    }

    $found_end = 1;
    return(0);
}

# dummy function
sub DoNothing {print STDOUT;}

# Main
@commandtable = (
        {'system config immediate'              => 'SystemConfigImmediate'},
);

# Use an array to preserve the order of the commands and a hash for mapping
# commands to the subroutine and track commands that have been completed.
@commands = map(keys(%$_), @commandtable);
%commands = map(%$_, @commandtable);

$cisco_cmds=join(";", at commands);
$cmds_regexp=join("|", at commands);

if (length($host) == 0) {
    if ($file) {
        print(STDERR "Too few arguments: file name required\n");
        exit(1);
    } else {
        print(STDERR "Too few arguments: host name required\n");
       exit(1);
    }
}
open(OUTPUT,">$host.new") || die "Can't open $host.new for writing: $!\n";
select(OUTPUT);
# make OUTPUT unbuffered if debugging
if ($debug) { $| = 1; }

if ($file) {
    print STDERR "opening file $host\n" if ($debug);
    print STDOUT "opening file $host\n" if ($log);
    open(INPUT,"<$host") || die "open failed for $host: $!\n";
} else {
    print STDERR "executing rlogin-addon -t $timeo -c\"$cisco_cmds\" $host\n" if ($debug);
    print STDOUT "executing rlogin-addon -t $timeo -c\"$cisco_cmds\" $host\n" if ($log);
    if (defined($ENV{NOPIPE})) {
        system "rlogin-addon -t $timeo -c \"$cisco_cmds\" $host </dev/null > $host.raw 2>&1" || die "rlogin-addon failed for $host:
$!\n";
        open(INPUT, "< $host.raw") || die "clogin failed for $host: $!\n";
    } else {
        open(INPUT,"rlogin-addon -t $timeo -c \"$cisco_cmds\" $host </dev/null |") || die "clogin failed for $host: $!\n";
    }
}

# determine password filtering mode
#if ($ENV{"FILTER_PWDS"} =~ /no/i) {
#    $filter_pwds = 0;
#} elsif ($ENV{"FILTER_PWDS"} =~ /all/i) {
#    $filter_pwds = 2;
#} else {
    $filter_pwds = 1;
#}

ProcessHistory("","","","!RANCID-CONTENT-TYPE: radware\n!\n");
ProcessHistory("COMMENTS","keysort","B0","!\n");
ProcessHistory("COMMENTS","keysort","D0","!\n");
ProcessHistory("COMMENTS","keysort","F0","!\n");
ProcessHistory("COMMENTS","keysort","G0","!\n");
TOP: while(<INPUT>) {

    tr/\015//d;
    if (/[>#]\s?logout$/) {
        $clean_run=1;
        last;
    }
    if (/^Error:/) {
        print STDOUT ("$host clogin error: $_");
        print STDERR ("$host clogin error: $_") if ($debug);
        $clean_run=0;
        last;
    }
    while (/#\s*($cmds_regexp)\s*$/) {
        $cmd = $1;
        if (!defined($prompt)) {
            $prompt = ($_ =~ /^([^#]+#)/)[0];
            $prompt =~ s/([][}{)(\\])/\\$1/g<file:///\\])\$1\g>;
            print STDERR ("PROMPT MATCH: $prompt\n") if ($debug);
        }
        print STDERR ("HIT COMMAND:$_") if ($debug);
        if (! defined($commands{$cmd})) {
            print STDERR "$host: found unexpected command - \"$cmd\"\n";
            $clean_run = 0;
            last TOP;
        }
        $rval = &{$commands{$cmd}};
        delete($commands{$cmd});
        if ($rval == -1) {
            $clean_run = 0;
            last TOP;
        }
    }
}
print STDOUT "Done $logincmd: $_\n" if ($log);
# Flush History
ProcessHistory("","","","");
# Cleanup
close(INPUT);
close(OUTPUT);

if (defined($ENV{NOPIPE})) {
    unlink("$host.raw") if (! $debug);
}

# check for completeness
if (scalar(%commands) || !$clean_run || !$found_end) {
    if (scalar(%commands)) {
        printf(STDOUT "$host: missed cmd(s): %s\n", join(',', keys(%commands)));
        printf(STDERR "$host: missed cmd(s): %s\n", join(',', keys(%commands))) if ($debug);
    }
    if (!$clean_run || !$found_end) {
        print STDOUT "$host: End of run not found\n";
        print STDERR "$host: End of run not found\n" if ($debug);
        system("/usr/bin/tail -1 $host.new");
    }
    unlink "$host.new" if (! $debug);
}

Thanks in advance for your time and support

Best Regards
Victor







-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140114/70583c33/attachment.html>

From max.clark at gmail.com  Tue Jan 14 18:45:53 2014
From: max.clark at gmail.com (Max Clark)
Date: Tue, 14 Jan 2014 10:45:53 -0800
Subject: [rancid] Patton Electronics Support
Message-ID: <CAAaeqWdMzRz-avdxr__pAE0URDRedzsU6Tm4fKnVnAbM3iCCuA@mail.gmail.com>

Hello,

I'm interested in sponsoring development to support the Patton Smartnode
appliances. They support telnet so I'm hoping it shouldn't be too
difficult. We would provide access to a couple of units for integration and
testing.

Thanks in advance,
Max
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140114/06befec8/attachment.html>

From alan.mckinnon at gmail.com  Tue Jan 14 21:26:50 2014
From: alan.mckinnon at gmail.com (Alan McKinnon)
Date: Tue, 14 Jan 2014 23:26:50 +0200
Subject: [rancid] Patton Electronics Support
In-Reply-To: <CAAaeqWdMzRz-avdxr__pAE0URDRedzsU6Tm4fKnVnAbM3iCCuA@mail.gmail.com>
References: <CAAaeqWdMzRz-avdxr__pAE0URDRedzsU6Tm4fKnVnAbM3iCCuA@mail.gmail.com>
Message-ID: <52D5AB9A.7060404@gmail.com>

On 14/01/2014 20:45, Max Clark wrote:
> Hello,
> 
> I'm interested in sponsoring development to support the Patton Smartnode
> appliances. They support telnet so I'm hoping it shouldn't be too
> difficult. We would provide access to a couple of units for integration
> and testing.


I've done a few command parsers over the years, it's not that hard once
you've read the rancid code. I could probably help you out there.

But, I've never heard of that device at all so I'd have a small learnng
curve. Can you supply some very broad stroke info, such as how does one
interact with the device, what is the command set, and what does it's
config dump look like?


-- 
Alan McKinnon
alan.mckinnon at gmail.com


From bakapo at gmail.com  Fri Jan 17 14:13:10 2014
From: bakapo at gmail.com (Georgi Lakovski)
Date: Fri, 17 Jan 2014 14:13:10 +0000 (UTC)
Subject: [rancid] RANCID SEC Cisco intergration
Message-ID: <loom.20140117T145500-975@post.gmane.org>

  Hi,
    I need some help for the work of RANCID with SEC.pl.

    I need to achieve the following functionality observing the syslog of
Cisco devices.

1) look for a description of an interface that matches specific pattern. If
there is a match to check whether there is a "SYS-5-CONFIG_I" message in the
log and initiate a new poll of the specific device reported the messages.
The log message for the description of an interface and write config should
be for the same device and user and in 5 min interval. Otherwise nothing
should be done.

2) if the above conditions are not met as described to poll the device only
by a "SYS-5-CONFIG_I" message

  All this is with the idea to match a specific "change ID", coded in the
description and to pass it together with the user, who made the change to
RANCID. This data will appear in the logs of RANCID as global varaibles
passed to RANCID in the "bin/control_rancid" file to the 

"if [ "X$device" != "X" ] ; then
    $RCSSYS commit -m "$EXECUTOR via $SOURCE_IP due to JOB_ID updated $mailrcpt"
    subject="$GROUP/$device $subject"
else
    $RCSSYS commit -m "$EXECUTOR via $SOURCE_IP due to JOB_ID update"
    subject="$GROUP $subject"
fi"

section.

I imagine it to something like the following, but I can't make it work.

# in case of change to an interface description combined with write config

type=Pair
ptype=RegExp
pattern=\S (\w+-\w+-\w+\d) .*%PARSER-5-CFGLOG_LOGGEDCMD.* User:(\w+)  logged
command:description.*Job Id# = (\d+) .*
desc=This is the description of the changed interface
action=eval %TEST1 ( $ENV {'JOB_ID'}="$3" )
ptype2=RegExp
pattern2=\S $1 .*SYS-5-CONFIG_I.* by $2 on vty\d+ \((\d+.\d+.\d+.\d+)\) 
desc2=Please verify. There is a change in the config of $1 by $2
action2=eval %TEST2 ( $ENV {'EXECUTOR'}="$2" );\ 
        eval %TEST3 ( $ENV {'SOURCE_IP'}="$3" );\
        shellcmd /usr/local/rancid/bin/rancid-run -r $1
window=1800


# in case there is no change of description, only changes not related to
interface description 

type=Single
ptype=RegExp
pattern=\S (\w+-\w+-\w+\d) .*SYS-5-CONFIG_I.* by (\w+) on vty\d+
\((\d+.\d+.\d+.\d+)\)
desc=Please verify. There is a change in the config of $1 by $2
action=eval %TEST2 ( $ENV {'EXECUTOR'}="$2" );\
       eval %TEST3 ( $ENV {'SOURCE_IP'}="$3" );\
       shellcmd /usr/local/rancid/bin/rancid-run -r $1
window=1800

Probably the first part may be done with CONTEXTs....
Any ideas? I will appreciate any help how to accomplish my ideas.

BR, 
 Georgi



From slackert at gmail.com  Fri Jan 17 23:18:45 2014
From: slackert at gmail.com (Slacker T)
Date: Fri, 17 Jan 2014 17:18:45 -0600
Subject: [rancid] Support for Juniper SRX cluster?
Message-ID: <CAK=v1SC6G1q_MFgo2AhYoENDrTA4Guqvz5+h8SWLOq4WZj+uNA@mail.gmail.com>

Has anyone had any luck polling Juniper SRX firewall clusters? I have some
SRX550's that I'm trying to work with. Using the "juniper" type jrancid
won't login correctly. The first issue is that jrancid doesn't send "cli"
once it logs in. That problem is easily fixed, but I din't want to reinvent
the wheel if someone else had cooked up some patches.

A quick look at jrancid doesn't show any cluster commands either. My
cluster is only reachable through the cluster IP, so I'm guessing most
people *are* able to ssh directly to a node and not worry about any of this.

So, if anyone has any patches for cluster support, please share. IfI end up
getting anything to work here I'll be sure to post.

Thanks!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140117/e90e101d/attachment.html>

From mark.tinka at seacom.mu  Mon Jan 20 02:11:46 2014
From: mark.tinka at seacom.mu (Mark Tinka)
Date: Mon, 20 Jan 2014 04:11:46 +0200
Subject: [rancid] Timeout Issue with RANCID Against Junos
Message-ID: <201401200411.49770.mark.tinka@seacom.mu>

Hi all.

I seem to be hitting a new issue that just came out of the 
blue:

Trying to get all of the configs.
hostname: End of run not found
Error: TIMEOUT reached
hostname: End of run not found
Error: TIMEOUT reached
=====================================
Getting missed routers: round 1.
hostname: End of run not found
Error: TIMEOUT reached
hostname: End of run not found
Error: TIMEOUT reached
=====================================

RANCID version is 2.3.8 running on FreeBSD 9.2.

RANCID was working well all along and just started spewing 
this (I did run a system update to patch the recent NTP 
vulnerability, and that's about it).

It affects only Junos systems (IOS systems have no issue).

I've also noticed that it affects systems that have a higher 
latency. Other Junos systems which are physically closer 
seem to have no issue getting checked by RANCID. That said, 
IOS systems that have a higher latency and much busier CPU 
than the Junos one are all working fine.

At one point, the failing Junos router was successful, but 
after that, all attempts for the same and other routers have 
been unsuccessful.

Any hints would be most appreciated.

Cheers,

Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140120/0ddca434/attachment.bin>

From mark.tinka at seacom.mu  Mon Jan 20 18:13:16 2014
From: mark.tinka at seacom.mu (Mark Tinka)
Date: Mon, 20 Jan 2014 20:13:16 +0200
Subject: [rancid] Timeout Issue with RANCID Against Junos - Update!
In-Reply-To: <201401200411.49770.mark.tinka@seacom.mu>
References: <201401200411.49770.mark.tinka@seacom.mu>
Message-ID: <201401202013.16982.mark.tinka@seacom.mu>

Hi folks.

For the archives, after spending the night running tests, 
this turned out to be an IPv6 MTU issue on one of the 
transit nodes.

Fixed and everything is looking good again (still trying to 
figure out why the issue was hidden for so long, given the 
transit node had the wrong MTU for a while now).

Cheers,

Mark. 

On Monday, January 20, 2014 04:11:46 AM Mark Tinka wrote:
> Hi all.
> 
> I seem to be hitting a new issue that just came out of
> the blue:
> 
> Trying to get all of the configs.
> hostname: End of run not found
> Error: TIMEOUT reached
> hostname: End of run not found
> Error: TIMEOUT reached
> =====================================
> Getting missed routers: round 1.
> hostname: End of run not found
> Error: TIMEOUT reached
> hostname: End of run not found
> Error: TIMEOUT reached
> =====================================
> 
> RANCID version is 2.3.8 running on FreeBSD 9.2.
> 
> RANCID was working well all along and just started
> spewing this (I did run a system update to patch the
> recent NTP vulnerability, and that's about it).
> 
> It affects only Junos systems (IOS systems have no
> issue).
> 
> I've also noticed that it affects systems that have a
> higher latency. Other Junos systems which are physically
> closer seem to have no issue getting checked by RANCID.
> That said, IOS systems that have a higher latency and
> much busier CPU than the Junos one are all working fine.
> 
> At one point, the failing Junos router was successful,
> but after that, all attempts for the same and other
> routers have been unsuccessful.
> 
> Any hints would be most appreciated.
> 
> Cheers,
> 
> Mark.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140120/93d125e8/attachment.bin>

From pawel.rzepa at gmail.com  Thu Jan 23 13:26:51 2014
From: pawel.rzepa at gmail.com (=?UTF-8?B?UGF3ZcWCIFJ6ZXBh?=)
Date: Thu, 23 Jan 2014 14:26:51 +0100
Subject: [rancid] Nortel switches
Message-ID: <CAAaiH2As8U3DsxVK-jsO_X4io9o6GWmJ8XnXh8eV26Ew7hecJQ@mail.gmail.com>

Hi,

I use rancid to gather config from Nortel switches. Every time I run
'show run' command I get different output for passwords, even if the
real user password hasn't been changed:
show run:
....
access user user-password "encoded-password"
....

second execution of show run
....
access user user-password "same-password-encoded-in-different-way"
....

Obviously rancid/cvs treats it as a config change. I don't want to
filter out encoded password.

Is there any way to keep the changes saved in cvs but not to generate
a new version in cvs subsystem for this change and not to send emails
(the latter is probably the implication of the former)?


Regards,
Pawel

From alan.mckinnon at gmail.com  Thu Jan 23 15:55:58 2014
From: alan.mckinnon at gmail.com (Alan McKinnon)
Date: Thu, 23 Jan 2014 17:55:58 +0200
Subject: [rancid] Nortel switches
In-Reply-To: <CAAaiH2As8U3DsxVK-jsO_X4io9o6GWmJ8XnXh8eV26Ew7hecJQ@mail.gmail.com>
References: <CAAaiH2As8U3DsxVK-jsO_X4io9o6GWmJ8XnXh8eV26Ew7hecJQ@mail.gmail.com>
Message-ID: <52E13B8E.9040303@gmail.com>

On 01/23/14 15:26, Pawe? Rzepa wrote:
> Hi,
> 
> I use rancid to gather config from Nortel switches. Every time I run
> 'show run' command I get different output for passwords, even if the
> real user password hasn't been changed:
> show run:
> ....
> access user user-password "encoded-password"
> ....
> 
> second execution of show run
> ....
> access user user-password "same-password-encoded-in-different-way"
> ....
> 
> Obviously rancid/cvs treats it as a config change. I don't want to
> filter out encoded password.
> 
> Is there any way to keep the changes saved in cvs but not to generate
> a new version in cvs subsystem for this change and not to send emails
> (the latter is probably the implication of the former)?

That would defeat the purpose of CVS surely?

CVS is built to track every change in a file; if a file has changed you
*will* get a new version number - that is how it is supposed to work. If
you have notification mails enabled, you will get a mail.

CVS has no content intelligence, i.e. it can't determine that the only
change in a file is a Nortel password and then ignore it. A change is a
change.

I don't see that you have any other options than

1. tolerate the extra mails
2. FILTER out password strings

Maybe there's a 3rd option - to disable this "feature" on a Nortel? If
the hash is changing I assume it's being re-salted so it's either a
reversible hash-type, or the Nortel has a plain-text copy of the
password somewhere. Are these CHAP passwords at all? Outside of CHAP
there's no justification for doing that in this day and age (secret 7
<cough><cough>)



-- 
Alan McKinnon
alan.mckinnon at gmail.com


From andrew.brennan+rancid at drexel.edu  Thu Jan 23 16:58:36 2014
From: andrew.brennan+rancid at drexel.edu (andrew.brennan+rancid at drexel.edu)
Date: Thu, 23 Jan 2014 11:58:36 -0500 (EST)
Subject: [rancid] Nortel switches
In-Reply-To: <CAAaiH2As8U3DsxVK-jsO_X4io9o6GWmJ8XnXh8eV26Ew7hecJQ@mail.gmail.com>
References: <CAAaiH2As8U3DsxVK-jsO_X4io9o6GWmJ8XnXh8eV26Ew7hecJQ@mail.gmail.com>
Message-ID: <alpine.BSF.2.00.1401231148190.2032@dust.noc.drexel.edu>

Aruba equipment has a similar behavior, you can disable the encryption at 
the start of a RANCID login and re-enable it when you're done.  I am *not* 
a fan of doing that, though, as it translates to unnecessary config change 
that has it's own side effects based in Aruba's architecture.  We replace 
a number of their encrypted strings as <removed> and comment those lines.

Does the Nortel equipment let you re-enter the passwords using the strings 
you get from your "show config" output?  I vaguely remember some equipment 
that would encrypt the passwords during a show ... but they weren't usable 
in that encrypted form.

andrew.

On Thu, 23 Jan 2014, Pawe? Rzepa wrote:

> Hi,
>
> I use rancid to gather config from Nortel switches. Every time I run
> 'show run' command I get different output for passwords, even if the
> real user password hasn't been changed:
> show run:
> ....
> access user user-password "encoded-password"
> ....
>
> second execution of show run
> ....
> access user user-password "same-password-encoded-in-different-way"
> ....
>
> Obviously rancid/cvs treats it as a config change. I don't want to
> filter out encoded password.
>
> Is there any way to keep the changes saved in cvs but not to generate
> a new version in cvs subsystem for this change and not to send emails
> (the latter is probably the implication of the former)?
>
>
> Regards,
> Pawel
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>

From gr306 at ucs.cam.ac.uk  Fri Jan 24 19:30:39 2014
From: gr306 at ucs.cam.ac.uk (Gordon Ross)
Date: Fri, 24 Jan 2014 19:30:39 +0000
Subject: [rancid] Problems with Rancid and Privilege Levels
Message-ID: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>

I didn't want to give the Level 15 enable password for my ASAs to Rancid, so I've tried to configure Rancid to use a customer privilege level, but I'm stuck at the last hurdle and Rancid doesn't seem able to get the config. The steps I took were:

* Copied bin/clogin to asa-clogin.

* Changed the 'send "enable\r"' command to be 'send "enable 4\r"' in asa-clogin

* In rancid-fe, I added an entry of "'asa'               => 'asa-clogin',"

* In my router.db I added "asa1.example.com:asa:up"

 * Added the asa's credentials to .clogin

If I run (as the rancid user) "asa-clogin asa1.example.com" I end up at an enable prompt on my asa:

asa-1/act#

But when rancid runs, the logs show:

Trying to get all of the configs.
asa-1.example.com
spawn ssh -c 3des -x -l rancid asa-1.example.com
rancid at asa-1.example.com's password: 
Type help or '?' for a list of available commands.
asa-1/act> enable 4
Password: ***********
asa-1/act# 
asa-1/act# =====================================
Getting missed routers: round 1.
....

The rancid ASA can do show ver, show run, etc.

How can I find out what's wrong?

Thanks,

GTG

From jethro.binks at strath.ac.uk  Mon Jan 27 14:12:09 2014
From: jethro.binks at strath.ac.uk (Jethro R Binks)
Date: Mon, 27 Jan 2014 14:12:09 +0000 (GMT)
Subject: [rancid] Problems with Rancid and Privilege Levels
In-Reply-To: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>
References: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>
Message-ID: <alpine.BSF.2.02.1401271102250.87421@qrswnz.pp.fgengu.np.hx>

On Fri, 24 Jan 2014, Gordon Ross wrote:

> I didn't want to give the Level 15 enable password for my ASAs to 
> Rancid, so I've tried to configure Rancid to use a customer privilege 
> level, but I'm stuck at the last hurdle and Rancid doesn't seem able to 
> get the config.

I can't remember if this is all of what is required, but I have an ASA 
that looks like this:

username rancid password PASSWORD encrypted privilege 7
privilege cmd level 7 mode exec command more
privilege cmd level 7 mode exec command dir
privilege cmd level 7 mode exec command write
privilege cmd level 7 mode exec command terminal
privilege show level 7 mode exec command running-config
privilege show level 7 mode exec command version
privilege show level 7 mode exec command bootvar
privilege show level 7 mode exec command names
privilege show level 7 mode exec command vlan
privilege show level 7 mode exec command module

I'm running an old version of clogin specified as "cisco" in router.db, 
but I also have a note that I modified it to send "terminal pager 0" as 
well as "terminal length 0".

To find out where yours is going wrong though, you'll need to run rancid 
in debug mode, along the lines of:

env NOPIPE=YES PATH=${PATH}:/usr/local/libexec/rancid rancid -d devicename

and inspect the *.raw file to see where it went wrong.

Jethro.



> The steps I took were:
> 
> * Copied bin/clogin to asa-clogin.
> 
> * Changed the 'send "enable\r"' command to be 'send "enable 4\r"' in asa-clogin
> 
> * In rancid-fe, I added an entry of "'asa'               => 'asa-clogin',"
> 
> * In my router.db I added "asa1.example.com:asa:up"
> 
>  * Added the asa's credentials to .clogin
> 
> If I run (as the rancid user) "asa-clogin asa1.example.com" I end up at 
> an enable prompt on my asa:
> 
> asa-1/act#
> 
> But when rancid runs, the logs show:
> 
> Trying to get all of the configs.
> asa-1.example.com
> spawn ssh -c 3des -x -l rancid asa-1.example.com
> rancid at asa-1.example.com's password: 
> Type help or '?' for a list of available commands.
> asa-1/act> enable 4
> Password: ***********
> asa-1/act# 
> asa-1/act# =====================================
> Getting missed routers: round 1.
> ....
> 
> The rancid ASA can do show ver, show run, etc.
> 
> How can I find out what's wrong?
> 
> Thanks,
> 
> GTG
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
> 

.  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .
Jethro R Binks, Network Manager,
Information Services Directorate, University Of Strathclyde, Glasgow, UK

The University of Strathclyde is a charitable body, registered in
Scotland, number SC015263.

From daniel.schmidt at wyo.gov  Mon Jan 27 15:59:26 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Mon, 27 Jan 2014 08:59:26 -0700
Subject: [rancid] Problems with Rancid and Privilege Levels
In-Reply-To: <alpine.BSF.2.02.1401271102250.87421@qrswnz.pp.fgengu.np.hx>
References: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>
 <alpine.BSF.2.02.1401271102250.87421@qrswnz.pp.fgengu.np.hx>
Message-ID: <CAOyMAKmGEChcO3YTNtCvs_WVLXhC1RPztGbCg2g=rc7OvNxTJA@mail.gmail.com>

You're making it hard.  I'd recommenced you you look into tacacs
authorization.


On Mon, Jan 27, 2014 at 7:12 AM, Jethro R Binks
<jethro.binks at strath.ac.uk>wrote:

> On Fri, 24 Jan 2014, Gordon Ross wrote:
>
> > I didn't want to give the Level 15 enable password for my ASAs to
> > Rancid, so I've tried to configure Rancid to use a customer privilege
> > level, but I'm stuck at the last hurdle and Rancid doesn't seem able to
> > get the config.
>
> I can't remember if this is all of what is required, but I have an ASA
> that looks like this:
>
> username rancid password PASSWORD encrypted privilege 7
> privilege cmd level 7 mode exec command more
> privilege cmd level 7 mode exec command dir
> privilege cmd level 7 mode exec command write
> privilege cmd level 7 mode exec command terminal
> privilege show level 7 mode exec command running-config
> privilege show level 7 mode exec command version
> privilege show level 7 mode exec command bootvar
> privilege show level 7 mode exec command names
> privilege show level 7 mode exec command vlan
> privilege show level 7 mode exec command module
>
> I'm running an old version of clogin specified as "cisco" in router.db,
> but I also have a note that I modified it to send "terminal pager 0" as
> well as "terminal length 0".
>
> To find out where yours is going wrong though, you'll need to run rancid
> in debug mode, along the lines of:
>
> env NOPIPE=YES PATH=${PATH}:/usr/local/libexec/rancid rancid -d devicename
>
> and inspect the *.raw file to see where it went wrong.
>
> Jethro.
>
>
>
> > The steps I took were:
> >
> > * Copied bin/clogin to asa-clogin.
> >
> > * Changed the 'send "enable\r"' command to be 'send "enable 4\r"' in
> asa-clogin
> >
> > * In rancid-fe, I added an entry of "'asa'               =>
> 'asa-clogin',"
> >
> > * In my router.db I added "asa1.example.com:asa:up"
> >
> >  * Added the asa's credentials to .clogin
> >
> > If I run (as the rancid user) "asa-clogin asa1.example.com" I end up at
> > an enable prompt on my asa:
> >
> > asa-1/act#
> >
> > But when rancid runs, the logs show:
> >
> > Trying to get all of the configs.
> > asa-1.example.com
> > spawn ssh -c 3des -x -l rancid asa-1.example.com
> > rancid at asa-1.example.com's password:
> > Type help or '?' for a list of available commands.
> > asa-1/act> enable 4
> > Password: ***********
> > asa-1/act#
> > asa-1/act# =====================================
> > Getting missed routers: round 1.
> > ....
> >
> > The rancid ASA can do show ver, show run, etc.
> >
> > How can I find out what's wrong?
> >
> > Thanks,
> >
> > GTG
> > _______________________________________________
> > Rancid-discuss mailing list
> > Rancid-discuss at shrubbery.net
> > http://www.shrubbery.net/mailman/listinfo/rancid-discuss
> >
>
> .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .
> Jethro R Binks, Network Manager,
> Information Services Directorate, University Of Strathclyde, Glasgow, UK
>
> The University of Strathclyde is a charitable body, registered in
> Scotland, number SC015263.
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140127/5eb1c82b/attachment.html>

From jethro.binks at strath.ac.uk  Mon Jan 27 16:20:14 2014
From: jethro.binks at strath.ac.uk (Jethro R Binks)
Date: Mon, 27 Jan 2014 16:20:14 +0000
Subject: [rancid] Problems with Rancid and Privilege Levels
In-Reply-To: <CAOyMAKmGEChcO3YTNtCvs_WVLXhC1RPztGbCg2g=rc7OvNxTJA@mail.gmail.com>
References: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>
 <alpine.BSF.2.02.1401271102250.87421@qrswnz.pp.fgengu.np.hx>
 <CAOyMAKmGEChcO3YTNtCvs_WVLXhC1RPztGbCg2g=rc7OvNxTJA@mail.gmail.com>
Message-ID: <FD4E334B-849F-47C9-BF63-F9F143E1C02D@strath.ac.uk>

At the time I did it, many years ago, it was easier to type those lines than setup tacacs.  For the sake of anyone else looking for a solution who also does not have tacacs, that's mine; hard or otherwise, the reader can determine for themselves!

Jethro.

> On 27 Jan 2014, at 15:59, Daniel Schmidt <daniel.schmidt at wyo.gov> wrote:
> 
> You're making it hard.  I'd recommenced you you look into tacacs authorization. 
> 
> 
>> On Mon, Jan 27, 2014 at 7:12 AM, Jethro R Binks <jethro.binks at strath.ac.uk> wrote:
>> On Fri, 24 Jan 2014, Gordon Ross wrote:
>> 
>> > I didn't want to give the Level 15 enable password for my ASAs to
>> > Rancid, so I've tried to configure Rancid to use a customer privilege
>> > level, but I'm stuck at the last hurdle and Rancid doesn't seem able to
>> > get the config.
>> 
>> I can't remember if this is all of what is required, but I have an ASA
>> that looks like this:
>> 
>> username rancid password PASSWORD encrypted privilege 7
>> privilege cmd level 7 mode exec command more
>> privilege cmd level 7 mode exec command dir
>> privilege cmd level 7 mode exec command write
>> privilege cmd level 7 mode exec command terminal
>> privilege show level 7 mode exec command running-config
>> privilege show level 7 mode exec command version
>> privilege show level 7 mode exec command bootvar
>> privilege show level 7 mode exec command names
>> privilege show level 7 mode exec command vlan
>> privilege show level 7 mode exec command module
>> 
>> I'm running an old version of clogin specified as "cisco" in router.db,
>> but I also have a note that I modified it to send "terminal pager 0" as
>> well as "terminal length 0".
>> 
>> To find out where yours is going wrong though, you'll need to run rancid
>> in debug mode, along the lines of:
>> 
>> env NOPIPE=YES PATH=${PATH}:/usr/local/libexec/rancid rancid -d devicename
>> 
>> and inspect the *.raw file to see where it went wrong.
>> 
>> Jethro.
>> 
>> 
>> 
>> > The steps I took were:
>> >
>> > * Copied bin/clogin to asa-clogin.
>> >
>> > * Changed the 'send "enable\r"' command to be 'send "enable 4\r"' in asa-clogin
>> >
>> > * In rancid-fe, I added an entry of "'asa'               => 'asa-clogin',"
>> >
>> > * In my router.db I added "asa1.example.com:asa:up"
>> >
>> >  * Added the asa's credentials to .clogin
>> >
>> > If I run (as the rancid user) "asa-clogin asa1.example.com" I end up at
>> > an enable prompt on my asa:
>> >
>> > asa-1/act#
>> >
>> > But when rancid runs, the logs show:
>> >
>> > Trying to get all of the configs.
>> > asa-1.example.com
>> > spawn ssh -c 3des -x -l rancid asa-1.example.com
>> > rancid at asa-1.example.com's password:
>> > Type help or '?' for a list of available commands.
>> > asa-1/act> enable 4
>> > Password: ***********
>> > asa-1/act#
>> > asa-1/act# =====================================
>> > Getting missed routers: round 1.
>> > ....
>> >
>> > The rancid ASA can do show ver, show run, etc.
>> >
>> > How can I find out what's wrong?
>> >
>> > Thanks,
>> >
>> > GTG
>> > _______________________________________________
>> > Rancid-discuss mailing list
>> > Rancid-discuss at shrubbery.net
>> > http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>> >
>> 
>> .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .
>> Jethro R Binks, Network Manager,
>> Information Services Directorate, University Of Strathclyde, Glasgow, UK
>> 
>> The University of Strathclyde is a charitable body, registered in
>> Scotland, number SC015263.
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-discuss at shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
> 
> E-Mail to and from me, in connection with the transaction 
> of public business, is subject to the Wyoming Public Records 
> Act and may be disclosed to third parties.
> 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140127/d81c4c5f/attachment.html>

From daniel.schmidt at wyo.gov  Mon Jan 27 17:11:18 2014
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Mon, 27 Jan 2014 10:11:18 -0700
Subject: [rancid] Problems with Rancid and Privilege Levels
In-Reply-To: <FD4E334B-849F-47C9-BF63-F9F143E1C02D@strath.ac.uk>
References: <BF91B58874439D46836E264D9C8A4AB212E6BD89@STAFF-EX1.staff-ad.csi.cam.ac.uk>
 <alpine.BSF.2.02.1401271102250.87421@qrswnz.pp.fgengu.np.hx>
 <CAOyMAKmGEChcO3YTNtCvs_WVLXhC1RPztGbCg2g=rc7OvNxTJA@mail.gmail.com>
 <FD4E334B-849F-47C9-BF63-F9F143E1C02D@strath.ac.uk>
Message-ID: <CAOyMAKkSrPV+KwE--hbBwBiu5BiY+bzU-x2pFvemsTYf0jF1rQ@mail.gmail.com>

Personally, I think the absence of Tacacs is harder to manage.  Granted, my
previous reply was pretty unintelligible, so I'd understand if you didn't
heed my opinion.  Apparently "recommenced" is a real word. (#*@& spell
check)


On Mon, Jan 27, 2014 at 9:20 AM, Jethro R Binks
<jethro.binks at strath.ac.uk>wrote:

> At the time I did it, many years ago, it was easier to type those lines
> than setup tacacs.  For the sake of anyone else looking for a solution who
> also does not have tacacs, that's mine; hard or otherwise, the reader can
> determine for themselves!
>
> Jethro.
>
> On 27 Jan 2014, at 15:59, Daniel Schmidt <daniel.schmidt at wyo.gov> wrote:
>
> You're making it hard.  I'd recommenced you you look into tacacs
> authorization.
>
>
> On Mon, Jan 27, 2014 at 7:12 AM, Jethro R Binks <jethro.binks at strath.ac.uk
> > wrote:
>
>> On Fri, 24 Jan 2014, Gordon Ross wrote:
>>
>> > I didn't want to give the Level 15 enable password for my ASAs to
>> > Rancid, so I've tried to configure Rancid to use a customer privilege
>> > level, but I'm stuck at the last hurdle and Rancid doesn't seem able to
>> > get the config.
>>
>> I can't remember if this is all of what is required, but I have an ASA
>> that looks like this:
>>
>> username rancid password PASSWORD encrypted privilege 7
>> privilege cmd level 7 mode exec command more
>> privilege cmd level 7 mode exec command dir
>> privilege cmd level 7 mode exec command write
>> privilege cmd level 7 mode exec command terminal
>> privilege show level 7 mode exec command running-config
>> privilege show level 7 mode exec command version
>> privilege show level 7 mode exec command bootvar
>> privilege show level 7 mode exec command names
>> privilege show level 7 mode exec command vlan
>> privilege show level 7 mode exec command module
>>
>> I'm running an old version of clogin specified as "cisco" in router.db,
>> but I also have a note that I modified it to send "terminal pager 0" as
>> well as "terminal length 0".
>>
>> To find out where yours is going wrong though, you'll need to run rancid
>> in debug mode, along the lines of:
>>
>> env NOPIPE=YES PATH=${PATH}:/usr/local/libexec/rancid rancid -d devicename
>>
>> and inspect the *.raw file to see where it went wrong.
>>
>> Jethro.
>>
>>
>>
>> > The steps I took were:
>> >
>> > * Copied bin/clogin to asa-clogin.
>> >
>> > * Changed the 'send "enable\r"' command to be 'send "enable 4\r"' in
>> asa-clogin
>> >
>> > * In rancid-fe, I added an entry of "'asa'               =>
>> 'asa-clogin',"
>> >
>> > * In my router.db I added "asa1.example.com:asa:up"
>> >
>> >  * Added the asa's credentials to .clogin
>> >
>> > If I run (as the rancid user) "asa-clogin asa1.example.com" I end up at
>> > an enable prompt on my asa:
>> >
>> > asa-1/act#
>> >
>> > But when rancid runs, the logs show:
>> >
>> > Trying to get all of the configs.
>> > asa-1.example.com
>> > spawn ssh -c 3des -x -l rancid asa-1.example.com
>> > rancid at asa-1.example.com's password:
>> > Type help or '?' for a list of available commands.
>> > asa-1/act> enable 4
>> > Password: ***********
>> > asa-1/act#
>> > asa-1/act# =====================================
>> > Getting missed routers: round 1.
>> > ....
>> >
>> > The rancid ASA can do show ver, show run, etc.
>> >
>> > How can I find out what's wrong?
>> >
>> > Thanks,
>> >
>> > GTG
>> > _______________________________________________
>> > Rancid-discuss mailing list
>> > Rancid-discuss at shrubbery.net
>> > http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>> >
>>
>> .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .  .
>> Jethro R Binks, Network Manager,
>> Information Services Directorate, University Of Strathclyde, Glasgow, UK
>>
>> The University of Strathclyde is a charitable body, registered in
>> Scotland, number SC015263.
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-discuss at shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>>
>
> E-Mail to and from me, in connection with the transaction
> of public business, is subject to the Wyoming Public Records
> Act and may be disclosed to third parties.
>
>
>


E-Mail to and from me, in connection with the transaction 
of public business, is subject to the Wyoming Public Records 
Act and may be disclosed to third parties.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140127/0111282b/attachment.html>

From scott_m_foster at yahoo.com  Wed Jan 29 00:55:46 2014
From: scott_m_foster at yahoo.com (Scott Foster)
Date: Tue, 28 Jan 2014 16:55:46 -0800 (PST)
Subject: [rancid] Gigamon scripts...
Message-ID: <1390956946.74987.YahooMailNeo@web141003.mail.bf1.yahoo.com>

Greetings!

Has anyone created a script for any of the Gigamon appliances?? I'm most interested in a script for the Gigamon 2404 appliance, but scripts for the HBx lines would be welcome as well.

Thanks,

Scott
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140128/b226c889/attachment.html>

From r.engehausen at gmail.com  Thu Jan 30 00:04:16 2014
From: r.engehausen at gmail.com (Roy)
Date: Wed, 29 Jan 2014 16:04:16 -0800
Subject: [rancid] Ubiquiti
In-Reply-To: <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
References: <4ED29AEC.9040003@gmail.com>
 <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
Message-ID: <52E99700.8080604@gmail.com>

An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140129/871f998a/attachment.html>

From mwlucas at blackhelicopters.org  Thu Jan 30 00:29:57 2014
From: mwlucas at blackhelicopters.org (Michael W. Lucas)
Date: Wed, 29 Jan 2014 19:29:57 -0500
Subject: [rancid] Ubiquiti
In-Reply-To: <52E99700.8080604@gmail.com>
References: <4ED29AEC.9040003@gmail.com>
 <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
 <52E99700.8080604@gmail.com>
Message-ID: <20140130002956.GA98154@bewilderbeast.blackhelicopters.org>

I would also be VERY interested in an Ubiquiti backup script!

Sorry I missed the original message.

On Wed, Jan 29, 2014 at 04:04:16PM -0800, Roy wrote:
>    On 1/29/2014 2:03 PM, Eric Johnson wrote:
> 
>    Hi, did you have any luck with this add-on?  I would be very interested
>    testing it out, and might be able to help with any development needed.
>    Thanks!
>    On Sunday, November 27, 2011 2:17:48 PM UTC-6, Roy wrote:
> 
>      I have been experimenting with an add-on for Ubiquiti radios.
>      Anyone
>      interested in trying it out and giving me any comments?
> 
>      Roy
>      _______________________________________________
>      Rancid-discuss mailing list
>      [1]Rancid-... at shrubbery.net
>      [2]http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> 
>    Yes.  It has been working for a number of us.
> 
> References
> 
>    1. javascript:/
>    2. http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss


-- 
Michael W. Lucas  -  mwlucas at michaelwlucas.com, Twitter @mwlauthor 
http://www.MichaelWLucas.com/, http://blather.MichaelWLucas.com/
Absolute OpenBSD 2/e - http://www.nostarch.com/openbsd2e
coupon code "ILUVMICHAEL" gets you 30% off & helps me.

From Douglas.Hughes at DEShawResearch.com  Thu Jan 30 01:08:16 2014
From: Douglas.Hughes at DEShawResearch.com (Hughes, Doug)
Date: Thu, 30 Jan 2014 01:08:16 +0000
Subject: [rancid] Ubiquiti
In-Reply-To: <52E99700.8080604@gmail.com>
References: <4ED29AEC.9040003@gmail.com>
 <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
 <52E99700.8080604@gmail.com>
Message-ID: <FE83190899DE5B41BD7B5C3FD84CDF8F36049259@mailnycmb5a.winmail.deshaw.com>

We have a pair of Ubiquity radios.

From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Roy
Sent: Wednesday, January 29, 2014 7:04 PM
To: rancid-discuss at googlegroups.com
Cc: rancid-discuss at shrubbery.net
Subject: Re: [rancid] Ubiquiti

On 1/29/2014 2:03 PM, Eric Johnson wrote:
Hi, did you have any luck with this add-on?  I would be very interested testing it out, and might be able to help with any development needed.
Thanks!

On Sunday, November 27, 2011 2:17:48 PM UTC-6, Roy wrote:
I have been experimenting with an add-on for Ubiquiti radios.  Anyone
interested in trying it out and giving me any comments?

Roy
_______________________________________________
Rancid-discuss mailing list
Rancid-... at shrubbery.net<javascript:>
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

Yes.  It has been working for a number of us.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140130/04d9c224/attachment.html>

From Michael.Josten at hs-niederrhein.de  Thu Jan 30 06:25:22 2014
From: Michael.Josten at hs-niederrhein.de (Josten, Michael)
Date: Thu, 30 Jan 2014 07:25:22 +0100
Subject: [rancid] Ubiquiti
In-Reply-To: <FE83190899DE5B41BD7B5C3FD84CDF8F36049259@mailnycmb5a.winmail.deshaw.com>
References: <4ED29AEC.9040003@gmail.com>
 <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
 <52E99700.8080604@gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F36049259@mailnycmb5a.winmail.deshaw.com>
Message-ID: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D1@prometheus>

Sounds very interesting. About which devices are you talking in particular ? I might test it on
ubnt nano stations and rockets.

Von: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] Im Auftrag von Hughes, Doug
Gesendet: Donnerstag, 30. Januar 2014 02:08
An: Roy; rancid-discuss at googlegroups.com
Cc: rancid-discuss at shrubbery.net
Betreff: Re: [rancid] Ubiquiti

We have a pair of Ubiquity radios.

From: rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net> [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Roy
Sent: Wednesday, January 29, 2014 7:04 PM
To: rancid-discuss at googlegroups.com<mailto:rancid-discuss at googlegroups.com>
Cc: rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>
Subject: Re: [rancid] Ubiquiti

On 1/29/2014 2:03 PM, Eric Johnson wrote:
Hi, did you have any luck with this add-on?  I would be very interested testing it out, and might be able to help with any development needed.
Thanks!

On Sunday, November 27, 2011 2:17:48 PM UTC-6, Roy wrote:
I have been experimenting with an add-on for Ubiquiti radios.  Anyone
interested in trying it out and giving me any comments?

Roy
_______________________________________________
Rancid-discuss mailing list
Rancid-... at shrubbery.net<javascript:>
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

Yes.  It has been working for a number of us.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140130/195a4b00/attachment.html>

From Richard.Savage at newnet.co.uk  Thu Jan 30 07:01:13 2014
From: Richard.Savage at newnet.co.uk (Richard Savage)
Date: Thu, 30 Jan 2014 07:01:13 +0000
Subject: [rancid] Ubiquiti
In-Reply-To: <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D1@prometheus>
References: <4ED29AEC.9040003@gmail.com>
 <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>
 <52E99700.8080604@gmail.com>
 <FE83190899DE5B41BD7B5C3FD84CDF8F36049259@mailnycmb5a.winmail.deshaw.com>,
 <9BDA0B754D62C64FBE6B0CFFA429C47A23BE1B55D1@prometheus>
Message-ID: <71797E9F-4B53-4C3E-840E-5A3CA1DE2793@timico.co.uk>

We have a pair of nan ridge m5's which would be interested in trying it on.

Where is the addon available?

Thanks

Rich



On 30 Jan 2014, at 06:27, "Josten, Michael" <Michael.Josten at hs-niederrhein.de<mailto:Michael.Josten at hs-niederrhein.de>> wrote:

Sounds very interesting. About which devices are you talking in particular ? I might test it on
ubnt nano stations and rockets.

Von: rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net> [mailto:rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net>] Im Auftrag von Hughes, Doug
Gesendet: Donnerstag, 30. Januar 2014 02:08
An: Roy; rancid-discuss at googlegroups.com<mailto:rancid-discuss at googlegroups.com>
Cc: rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>
Betreff: Re: [rancid] Ubiquiti

We have a pair of Ubiquity radios.

From: rancid-discuss-bounces at shrubbery.net<mailto:rancid-discuss-bounces at shrubbery.net> [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Roy
Sent: Wednesday, January 29, 2014 7:04 PM
To: rancid-discuss at googlegroups.com<mailto:rancid-discuss at googlegroups.com>
Cc: rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>
Subject: Re: [rancid] Ubiquiti

On 1/29/2014 2:03 PM, Eric Johnson wrote:
Hi, did you have any luck with this add-on?  I would be very interested testing it out, and might be able to help with any development needed.
Thanks!

On Sunday, November 27, 2011 2:17:48 PM UTC-6, Roy wrote:
I have been experimenting with an add-on for Ubiquiti radios.  Anyone
interested in trying it out and giving me any comments?

Roy
_______________________________________________
Rancid-discuss mailing list
Rancid-... at shrubbery.net
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

Yes.  It has been working for a number of us.
_______________________________________________
Rancid-discuss mailing list
Rancid-discuss at shrubbery.net<mailto:Rancid-discuss at shrubbery.net>
http://www.shrubbery.net/mailman/listinfo/rancid-discuss
This e-mail is sent on behalf of NewNet Limited, a company registered in England and Wales, registered number 03128506, registered office Carnac Lodge, Cams Estate, FAREHAM, Hampshire PO16 8UJ and regulated by Ofcom. The information in this e-mail is confidential and is intended solely for the use of that individual or entity to which it is addressed. Unauthorised use, dissemination, distribution, publication or copying of this communication is strictly prohibited. If you receive this in error, please notify us by email to privacy at newnet.co.uk<mailto:privacy at newnet.co.uk> and delete any copies. For information about how we process data and monitor communications please see our privacy statement<http://www.newnet.co.uk/Bottom-Bar/privacy-policy.php>.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140130/616bed9b/attachment.html>

From charlesvds at yahoo.com  Thu Jan 30 07:32:29 2014
From: charlesvds at yahoo.com (Charles van der Spuy)
Date: Thu, 30 Jan 2014 09:32:29 +0200
Subject: [rancid] Fwd: Re: Rancid-Ubiquity
In-Reply-To: <518566CD.2050703@gmail.com>
References: <518566CD.2050703@gmail.com>
Message-ID: <52EA000D.4010601@yahoo.com>

I use the script below very successfully with 5N's


-------- Original Message --------
Subject: 	Re: Rancid-Ubiquity
Date: 	Sat, 04 May 2013 12:51:41 -0700
From: 	Roy <r.engehausen at gmail.com>
To: 	Charles van der Spuy <charlesvds at yahoo.com>



On 5/4/2013 5:40 AM, Charles van der Spuy wrote:
> Hi Roy,
>
> I picked up a thread where you say you have some modules for Ubiquity
> devices on Rancid.
> Instead of starting from scratch and re-inventing the wheel, I'd like
> to take advantage of your knid offer to test what you have done.
>
> Please let me know if you still have the work you did on this.
>
> Thanks and regards,
> Charles.
>


Hi,

I have 50 or so radios being backed up every day and there are copies in
use all over the place.

The current version is attached

Roy



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140130/19f3aa83/attachment.html>
-------------- next part --------------
#! /usr/bin/perl
##
## $Id$
##
## Copyright (C) 1997-2004 by Terrapin Communications, Inc.
## All rights reserved.
##
## This software may be freely copied, modified and redistributed
## without fee for non-commerical purposes provided that this license
## remains intact and unmodified with any RANCID distribution.
##
## There is no warranty or other guarantee of fitness of this software.
## It is provided solely "as is".  The author(s) disclaim(s) all
## responsibility and liability with respect to this software's usage
## or its effect upon hardware, computer systems, other software, or
## anything else.
##
## Except where noted otherwise, rancid was written by and is maintained by
## Henry Kilmer, John Heasley, Andrew Partan, Pete Whiting, and Austin Schutz.
##
#
#  RANCID - Really Awesome New Cisco confIg Differ
#
# usage: rancid [-d] [-l] [-f filename | $host]
#
# Modified by Chris Boot for MikroTik.
use Getopt::Std;
getopts('dfl');
$log = $opt_l;
$debug = $opt_d;
$file = $opt_f;
$host = $ARGV[0];
$clean_run = 0;
$found_end = 0;
$timeo = 90;			# clogin timeout in seconds
$clogin_pgm= $ENV{'RANCID_CLOGIN'} || "clogin";
$clogin_pgm= "/usr/local/rancid/bin/clogin";

my(%filter_pwds);		# password filtering mode

# This routine is used to print out the router configuration
sub ProcessHistory {
    my($new_hist_tag,$new_command,$command_string, at string)=(@_);
    if((($new_hist_tag ne $hist_tag) || ($new_command ne $command))
       && defined %history) {
	print eval "$command \%history";
	undef %history;
    }
    if (($new_hist_tag) && ($new_command) && ($command_string)) {
	if ($history{$command_string}) {
	    $history{$command_string} = "$history{$command_string}@string";
	} else {
	    $history{$command_string} = "@string";
	}
    } elsif (($new_hist_tag) && ($new_command)) {
	$history{++$#history} = "@string";
    } else {
	print "@string";
    }
    $hist_tag = $new_hist_tag;
    $command = $new_command;
    1;
}

sub numerically { $a <=> $b; }

# This is a sort routing that will sort numerically on the
# keys of a hash as if it were a normal array.
sub keynsort {
    local(%lines)=@_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort numerically keys(%lines)) {
	$sorted_lines[$i] = $lines{$key};
	$i++;
    }
    @sorted_lines;
}

# This is a sort routing that will sort on the
# keys of a hash as if it were a normal array.
sub keysort {
    local(%lines)=@_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort keys(%lines)) {
	$sorted_lines[$i] = $lines{$key};
	$i++;
    }
    @sorted_lines;
}

# This is a sort routing that will sort on the
# values of a hash as if it were a normal array.
sub valsort{
    local(%lines)=@_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $key (sort values %lines) {
	$sorted_lines[$i] = $key;
	$i++;
    }
    @sorted_lines;
}

# This is a numerical sort routing (ascending).
sub numsort {
    local(%lines)=@_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $num (sort {$a <=> $b} keys %lines) {
	$sorted_lines[$i] = $lines{$num};
	$i++;
    }
    @sorted_lines;
}

# This is a sort routine that will sort on the
# ip address when the ip address is anywhere in
# the strings.
sub ipsort {
    local(%lines)=@_;
    local($i) = 0;
    local(@sorted_lines);
    foreach $addr (sort sortbyipaddr keys %lines) {
	$sorted_lines[$i] = $lines{$addr};
	$i++;
    }
    @sorted_lines;
}

# These two routines will sort based upon IP addresses
sub ipaddrval {
    my(@a) = ($_[0] =~ m#^(\d+)\.(\d+)\.(\d+)\.(\d+)$#);
    $a[3]+256*($a[2]+256*($a[1]+256*$a[0]));
}
sub sortbyipaddr {
    &ipaddrval($a) <=> &ipaddrval($b);
}

# This routine parses "show version"
sub SystemPackagePrintDetail {
	print STDERR "    In SystemPackagePrintDetail: $_" if ($debug);
	my $buffer = "";
	my %packages = ();

	while (<INPUT>) {
		tr/\015//d;
		last if (/$prompt/);
		next if(/^Flags:/);
		return(1) if /(bad command name )/;

		s/^\s+//g;
		s/^\d+\s+//g;
		s/\s+$//g;

		if (/^$/) {
			if ($buffer =~ /name="(.+)"/) {
				$packages{$1} = $buffer;
			}
			$buffer = "";
		}
		else {
			$buffer .= "$_ ";
		}
	}

	if ($buffer =~ /name="(.+)"/) {
		$packages{$1} = $buffer;
	}

	for my $name (sort keys %packages) {
		ProcessHistory("COMMENTS","keysort","A1","# " . $packages{$name} . "\n");
	}

	return(0);
}

sub SystemRouterboardPrint {
	print STDERR "    In SystemRouterboardPrint: $_" if ($debug);

	while (<INPUT>) {
		tr/\015//d;
		last if (/$prompt/);
		next if(/^(\s*|\s*$cmd\s*)$/);
		return(1) if /(bad command name )/;
		s/^\s+//g;

		ProcessHistory("COMMENTS","keysort","C1","# $_");
	}

	return(0);
}

sub SystemLicensePrint {
	print STDERR "    In SystemLicensePrint: $_" if ($debug);

	while (<INPUT>) {
		tr/\015//d;
		last if (/$prompt/);
		next if(/^(\s*|\s*$cmd\s*)$/);
		return(1) if /(bad command name )/;
		s/^\s+//g;

		ProcessHistory("COMMENTS","keysort","E1","# $_");
	}

	return(0);
}

sub Export {
	print STDERR "    In Export: $_" if ($debug);
	my $buffer = "";

	while (<INPUT>) {
		tr/\015//d;
		if (/$prompt/) { $found_end=1; $clean_run=1; return 0};
		next if(/^(\s*|\s*$cmd\s*)$/);
		next if(/^#/);
		return(1) if /(bad command name )/;
		s/^\s+//g;

# RouterOS splits long lines with backslashes - this joins them back up
		if (/\\\n$/) {
			s/\s*\\\n$//;
			$buffer .= $_;
			if (!/=$/ && !/="[^"]+$/ ) {
				$buffer .= " ";
			}
		}
		else {
			$buffer .= $_;

			# Fix quoted strings
			$buffer =~ s/(\S+)="(\S+)"/$1=$2/g;

			ProcessHistory("","","","$buffer");
			$buffer = "";
		}
	}
}

# Main
@commandtable=(
	{'sort /tmp/system.cfg'	=> "Export"},
);

# Use array to preserve order of commands, and hash for mapping to subroutine
my (%commands, @commands);
foreach (@commandtable) {
	push @commands, (keys(%{$_}))[0];
	$commands{$commands[$#commands]}= (values(%{$_}))[0];
};

$cisco_cmds=join(";", at commands);
$cmds_regexp=join("|", at commands);

open(OUTPUT,">$host.new") || die "Can't open $host.new for writing: $!\n";
select(OUTPUT);
# make OUTPUT unbuffered if debugging
if ($debug) { $| = 1; }

if ($file) {
    print STDERR "opening file $host\n" if ($debug);
    print STDOUT "opening file $host\n" if ($log);
    open(INPUT,"<$host") || die "open failed for $host: $!\n";
} else {
    print STDERR "executing $clogin_pgm -t $timeo -c\"$cisco_cmds\" $host\n" if ($debug);
    print STDOUT "executing $clogin_pgm -t $timeo -c\"$cisco_cmds\" $host\n" if ($log);
    if (defined($ENV{NOPIPE})) {
	system "$clogin_pgm -t $timeo -c \"$cisco_cmds\" $host </dev/null > $host.raw 2>&1" || die "$clogin_pgm failed for $host: $!\n";
	open(INPUT, "< $host.raw") || die "$clogin_pgm failed for $host: $!\n";
    } else {
	open(INPUT,"$clogin_pgm -t $timeo -c \"$cisco_cmds\" $host </dev/null |") || die "$clogin_pgm failed for $host: $!\n";
    }
}

# determine password filtering mode
if ($ENV{"FILTER_PWDS"} =~ /no/i) {
    $filter_pwds = 0;
} elsif ($ENV{"FILTER_PWDS"} =~ /all/i) {
    $filter_pwds = 2;
} else {
    $filter_pwds = 1;
}

ProcessHistory("","","","#RANCID-CONTENT-TYPE: ubiquiti#\n");
ProcessHistory("","","","# $host #\n");
ProcessHistory("COMMENTS","keysort","B0","#\n");
ProcessHistory("COMMENTS","keysort","D0","#\n");
ProcessHistory("COMMENTS","keysort","F0","#\n");
ProcessHistory("COMMENTS","keysort","G0","#\n");
TOP: while(<INPUT>) {
    tr/\015//d;
    if (/[>#]\s*quit$/) {
	$clean_run=1;
	last;
    }
    if (/^Error:/) {
	print STDOUT ("$host $clogin_pgm error: $_");
	print STDERR ("$host $clogin_pgm error: $_") if ($debug);
	$clean_run=0;
	last;
    }
    while (/\s*($cmds_regexp)\s*$/) {
	$cmd = $1;
	if (!defined($prompt)) {
	    $prompt = "\] > ";  # crude but effective
	    $prompt = "X.*\#";  # crude but effective
	    print STDERR ("PROMPT MATCH: $prompt\n") if ($debug);
	}
	print STDERR ("HIT COMMAND:$_") if ($debug);
	if (! defined($commands{$cmd})) {
	    print STDERR "$host: found unexpected command - \"$cmd\"\n";
	    $clean_run = 0;
	    last TOP;
	}
	$rval = &{$commands{$cmd}};
	delete($commands{$cmd});
	if ($rval == -1) {
	    $clean_run = 0;
	    last TOP;
	}
    }
}
print STDOUT "Done $logincmd: $_\n" if ($log);
# Flush History
ProcessHistory("","","","");
# Cleanup
close(INPUT);
close(OUTPUT);

if (defined($ENV{NOPIPE})) {
    unlink("$host.raw") if (! $debug);
}

# check for completeness
if (scalar(%commands) || !$clean_run || !$found_end) {
    if (scalar(%commands)) {
	printf(STDOUT "$host: missed cmd(s): %s\n", join(',', keys(%commands)));
	printf(STDERR "$host: missed cmd(s): %s\n", join(',', keys(%commands))) if ($debug);
    }
    if (!$clean_run || !$found_end) {
	print STDOUT "$host: End of run not found\n";
	print STDERR "$host: End of run not found\n" if ($debug);
	system("/usr/bin/tail -1 $host.new");
    }
    unlink "$host.new" if (! $debug);
}


-------------- next part --------------


Setup instructions for urancid

First put the urancid file in the proper place for your rancid (usually /usr/local/rancid/bin).  Verify it calls the right version of perl and is executable.  Then add the new device class by editing rancid-fe also usually found in /usr/local/rancid/bin.  I added the ubnt device type.

		   	'smc'               => 'srancid',
    			'tnt'               => 'tntrancid',
    			'ubnt'              => 'urancid' ,                 <-- Added this line
    			'zebra'             => 'zrancid'

Now the usual steps for adding a device

1) Add the device to /etc/hosts if necessary like so

	172.19.19.10    mw-dhmw

2) Add the device to .cloginrc  Example:

	add user        mw-dhmw         ubnt
	add password    mw-dhmw         87567
	add autoenable  mw-dhmw         1
	add method      mw-dhmw         ssh

3) Confirm you can login to the device using clogin.  Example

	/usr/local/rancid/bin/clogin mw-dhmw

4) Add the device to the appropriate router.db file.  Example

	mw-dhmw:ubnt:up

You should be set.
 




From audioguy at gmail.com  Wed Jan 29 22:03:51 2014
From: audioguy at gmail.com (Eric Johnson)
Date: Wed, 29 Jan 2014 14:03:51 -0800 (PST)
Subject: [rancid] Ubiquiti
In-Reply-To: <4ED29AEC.9040003@gmail.com>
References: <4ED29AEC.9040003@gmail.com>
Message-ID: <aed61c96-4207-4310-a9f4-d728793151dc@googlegroups.com>

Hi, did you have any luck with this add-on?  I would be very interested 
testing it out, and might be able to help with any development needed.
Thanks!

On Sunday, November 27, 2011 2:17:48 PM UTC-6, Roy wrote:
>
> I have been experimenting with an add-on for Ubiquiti radios.  Anyone 
> interested in trying it out and giving me any comments?
>
> Roy
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-... at shrubbery.net <javascript:>
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140129/f47c7315/attachment.html>

From AJ.Schroeder at directsupply.com  Thu Jan 30 16:38:28 2014
From: AJ.Schroeder at directsupply.com (AJ Schroeder)
Date: Thu, 30 Jan 2014 16:38:28 +0000
Subject: [rancid] Nortel Support
Message-ID: <1F169C33264F9A43928391FE5D100EA6B47D87@MSG-P-VIR-M-62.mtolympus.partners.directs.com>

Hello list,

I finally got the Nortel switches in my environment backing up properly with RANCID. I made separate scripts for the baystack and ERS switches in our environment. As I was googling around I know that adding support for these switches has been discussed in the past but I never saw an answer. Would the devs of RANCID be interested in adding support for these Nortel devices?

In either case, I am having some difficulties processing the end of the baystack output. The config just simply ends. There is no 'back' or 'end' that I can key in on to tell RANCID that the config is done and it can logout. I have it working, but it leaves this at the end of the captured config file:

qos queue-set-assignment queue-set 3 1p 7 queue 1
ES-470#logout

I tried to get RANCID to watch for the $prompt variable, but it just sits there and eventually times out. The best I have been able to do is leave the logging in and out to my custom 'nortellogin' script, then everything works, except it leave this in the config file.

Any help on this would be much appreciated.

Thanks,

AJ Schroeder

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20140130/22389daa/attachment.html>