<div dir="ltr">Rancid folks,<div><br></div><div>I've hit a wall and I was hoping you all might be able to provide some insight. </div><div><br></div><div style>In an attempt to get some palo alto firewalls added to rancid for config backup I'm having issues with rancid properly logging in.</div>
<div style><br></div><div style>From the logs I see this for all the firewalls:</div><div style><div>#</div><div>firewall1 panlogin error: Error: Check your passwd for firewall1</div><div>firewall1: missed cmd(s): show config running,set cli pager off,set cli configuration-output-format set,set cli scripting-mode on,show system info</div>
<div>firewall1: End of run not found</div><div>#</div><div><br></div><div style>If I run it via CLI (sudo su - ranciduser before running it..) it completes correctly. Both are using the exact same clogin file as this works for a lot of routers and other firewalls. It's just specifically the palo alto firewalls that are failing. Suggestions on what to check or how to debug this behavior? </div>
<div style><br></div><div style><br></div><div style>#</div><div style>
<p class="">[ranciduser@tools ~]$ /usr/local/rancid/bin/panrancid -d firewall1</p>
<p class="">executing panlogin -t 90 -c"set cli scripting-mode on;set cli pager off;set cli configuration-output-format set;show system info;show config running" firewall1</p>
<p class="">line: firewall1</p>
<p class="">line: spawn ssh -c 3des -x -l ranciduser firewall1</p>
<p class="">line: Password:</p>
<p class="">line: Last login: Wed May 1 12:12:57 2013 from <a href="http://tools.removed.com">tools.removed.com</a></p>
<p class="">line: ranciduser@fw1(passive)></p>
<p class="">line: ranciduser@fw1(passive)></p>
<p class="">line: ranciduser@fw1(passive)> set ranciduser@fw1(passive)> set cli ranciduser@fw1(passive)> set cli scripting-mode ranciduser@fw1(passive)> set cli scripting-mode on</p>
<p class="">PROMPT MATCH: ranciduser@fw1\(passive\)[#>]</p>
<p class="">HIT COMMAND:ranciduser@fw1(passive)> set ranciduser@fw1(passive)> set cli ranciduser@fw1(passive)> set cli scripting-mode ranciduser@fw1(passive)> set cli scripting-mode on</p>
<p class="">COMMAND is: set cli scripting-mode on|EatCommand</p>
<p class="">HIT COMMAND:ranciduser@fw1(passive)> set cli pager off</p>
<p class="">COMMAND is: set cli pager off|EatCommand</p>
<p class="">HIT COMMAND:ranciduser@fw1(passive)> set cli configuration-output-format set</p>
<p class="">COMMAND is: set cli configuration-output-format set|EatCommand</p>
<p class="">HIT COMMAND:ranciduser@fw1(passive)> show system info</p>
<p class="">COMMAND is: show system info|ShowInfo</p>
<p class=""> In ShowInfo:: ranciduser@fw1(passive)> show system info</p>
<p class="">HIT COMMAND:ranciduser@fw1(passive)> show config running</p>
<p class="">COMMAND is: show config running|ShowConfig</p>
<p class=""> In ShowConfig: ranciduser@fw1(passive)> show config running</p>
<p class="">line:</p>
<p class="">exiting</p><p class="">#</p><p class=""><br></p><p class=""><br></p><p class="" style>Thanks for your help!</p><p class="" style>-Tim</p></div></div></div>