Those are actually directories. The name of the certs are always different. <br><br>Both cat and more are available (BigIPs are linux/bsd based). I believe all the files below ssl directory are required, excluding ca-bundle.crt. The amount of files depends on how many certs are installed on the device. <br>
<br>There are four directories: ssl.crl ssl.crt ssl.csr ssl.key<br><br><br><div class="gmail_quote">On Mon, Apr 20, 2009 at 2:37 PM, john heasley <span dir="ltr"><<a href="mailto:heas@shrubbery.net">heas@shrubbery.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">Mon, Apr 20, 2009 at 02:08:25PM -0400, marcus gaysek:<br>
<div class="im">> The certs are located in in the config/ssl/ sub-directories, which would<br>
> need to be download'd. I would think that functionality would be outside of<br>
> Rancid, but if you lost your LTM you would need them to rebuild a new one.<br>
> You capture their names as part of the config. They are listed in the last<br>
> few lines.<br>
<br>
</div>if they're always these files<br>
{'ls --full-time --color=never /config/ssl/ssl.crt' => 'ShowSslCrt'},<br>
{'ls --full-time --color=never /config/ssl/ssl.key' => 'ShowSslKey'},<br>
is there a "cat" or "more" command? Their contents should be ascii.<br>
<div><div></div><div class="h5"><br>
> There is a command in the BigIP devices (GTMs and LTMs) that captures all<br>
> the files and compresses them in a .ucs file. Once they are created they<br>
> can be downloaded and used to restore a BigIP.<br>
><br>
> On Mon, Apr 20, 2009 at 1:37 PM, Mike Ashcraft <<a href="mailto:mashcraft@omniture.com">mashcraft@omniture.com</a>>wrote:<br>
><br>
> > LTM = Local Traffic Manager = F5 Big-IP<br>
> ><br>
> > Thanks<br>
> ><br>
> > -----Original Message-----<br>
> > From: <a href="mailto:rancid-discuss-bounces@shrubbery.net">rancid-discuss-bounces@shrubbery.net</a> [mailto:<br>
> > <a href="mailto:rancid-discuss-bounces@shrubbery.net">rancid-discuss-bounces@shrubbery.net</a>] On Behalf Of john heasley<br>
> > Sent: Monday, April 20, 2009 11:29 AM<br>
> > To: marcus gaysek<br>
> > Cc: <a href="mailto:rancid-discuss@shrubbery.net">rancid-discuss@shrubbery.net</a><br>
> > Subject: [rancid] Re: F5 ("bigip") script<br>
> ><br>
> > Mon, Apr 20, 2009 at 12:34:18PM -0400, marcus gaysek:<br>
> > > I have tested with a couple of Cisco devices, including an ASA and I am<br>
> > not<br>
> > > seeing the formatting issues I have seen in the past.<br>
> ><br>
> > thats probably luck.<br>
> ><br>
> > > The LTM config looks great. The only thing that I can see that needs to<br>
> > be<br>
> ><br>
> > what is 'LTM'?<br>
> ><br>
> > > manually downloaded are the certs. All in all this seems to be a great<br>
> > > improvemant. Thanks for making it work.<br>
> ><br>
> > The certs are in the configuration? is there a command or option to get<br>
> > them?<br>
> ><br>
> > > On Mon, Apr 20, 2009 at 9:27 AM, Teun Vink <<a href="mailto:teun@moonblade.net">teun@moonblade.net</a>> wrote:<br>
> > ><br>
> > > > On Thu, 2009-04-16 at 22:29 +0000, john heasley wrote:<br>
> > > > > I don't have a F5 box, but had put together a script while someone<br>
> > had<br>
> > > > > provided remote access, but hadn't finished testing it. Would<br>
> > someone<br>
> > > > > with one an F5 download<br>
> > > > > <a href="ftp://ftp.shrubbery.net/pub/rancid/rancid-2.3.2a10.tar.gz" target="_blank">ftp://ftp.shrubbery.net/pub/rancid/rancid-2.3.2a10.tar.gz</a><br>
> > > > > and test it, please.<br>
> > > ><br>
> > > > Just did a quick test, it works fine for me. I had some issues with the<br>
> > > > previous version which seemed to have some ordering issues in the<br>
> > > > output, which resulted in false diffs every single run. I don't see<br>
> > them<br>
> > > > in this version, so I'm happy :)<br>
> > > ><br>
> > > > regards,<br>
> > > > Teun<br>
> > > ><br>
> > > > _______________________________________________<br>
> > > > Rancid-discuss mailing list<br>
> > > > <a href="mailto:Rancid-discuss@shrubbery.net">Rancid-discuss@shrubbery.net</a><br>
> > > > <a href="http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss" target="_blank">http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</a><br>
> > > ><br>
> > _______________________________________________<br>
> > Rancid-discuss mailing list<br>
> > <a href="mailto:Rancid-discuss@shrubbery.net">Rancid-discuss@shrubbery.net</a><br>
> > <a href="http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss" target="_blank">http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</a><br>
> > _______________________________________________<br>
> > Rancid-discuss mailing list<br>
> > <a href="mailto:Rancid-discuss@shrubbery.net">Rancid-discuss@shrubbery.net</a><br>
> > <a href="http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss" target="_blank">http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</a><br>
> ><br>
</div></div></blockquote></div><br>