From ronald.seguin at bellnexxia.com Fri Mar 1 15:19:06 2002 From: ronald.seguin at bellnexxia.com (Seguin, Ron) Date: Fri, 01 Mar 2002 10:19:06 -0500 Subject: Multiple passwords.... Message-ID: <3C7F9BEA.30D89A08@bellnexxia.com> My $HOME/.cloginrc is the following... # customer x # these routers ask for a username and password. we automatically get # enable access after successful authentication. add user bx5-tor* xxx add user * yyy add password bx5-tor* {aaa} add password * {bbb} add autoenable * 1 When running jlogin manually on a device named bx5-toronto12, it uses user xxx, however chooses password bbb...have I misconfigured my .cloginrc??? --thanks From ronald.seguin at bellnexxia.com Fri Mar 1 16:43:44 2002 From: ronald.seguin at bellnexxia.com (Seguin, Ron) Date: Fri, 01 Mar 2002 11:43:44 -0500 Subject: Multiple passwords.... References: <3C7F9BEA.30D89A08@bellnexxia.com> Message-ID: <3C7FAFC0.ED1C0CEC@bellnexxia.com> Nevermind...Rancid 2.2 works like a charm...sorry for the SPAM. --regards "Seguin, Ron" wrote: > My $HOME/.cloginrc is the following... > > # customer x > # these routers ask for a username and password. we automatically get > # enable access after successful authentication. > add user bx5-tor* xxx > add user * yyy > > add password bx5-tor* {aaa} > add password * {bbb} > > add autoenable * 1 > > When running jlogin manually on a device named bx5-toronto12, it uses user xxx, > however chooses password bbb...have I misconfigured my .cloginrc??? > > --thanks From asp at partan.com Sun Mar 3 00:33:06 2002 From: asp at partan.com (Andrew Partan) Date: Sat, 2 Mar 2002 19:33:06 -0500 Subject: Minor fix for C5RSM reporting in RANCID In-Reply-To: <01KDRQY0BTIE0001U4@tmk.com>; from terry@tmk.com on Fri, Feb 01, 2002 at 06:47:27PM -0500 References: <01KDRM5R9KGK0001NB@tmk.com> <"from <20020201184147.B2167@partan.com> <01KDRQY0BTIE0001U4@tmk.com> Message-ID: <20020302193306.B24027@partan.com> On Fri, Feb 01, 2002 at 06:47:27PM -0500, Terry Kennedy wrote: > No bug ID (that I know of). A search of the bug toolkit for "controler" > only shows some of the same typo in bug notes for unrelated problems. But > since this would be a P5 (or lower) bug, it may not show up there. Similar- > ly, it would probably be pretty low on the list to get fixed, and many of > the releases it is present in are EOL anyway. > > I have verified it is present in: > > 11.2(18)P * > 11.3(11)T * > 12.0(9)W5-17 * > 12.1(9) > 12.2(6a) Silly cisco. I've just commited a change that should handle this. --asp --- rancid.in.old Sat Mar 2 18:58:14 2002 +++ rancid.in Sat Mar 2 19:28:37 2002 @@ -573,7 +573,7 @@ } elsif (/^\s*Slot (\d+) \(virtual\):/i) { $slot = $1; next; - } elsif (/^\s*(.*Processor.*|.*controller|.*Chassis Interface)(, FRU\s?:.*)?, HW rev (\S+), board revision (\S+)/i) { + } elsif (/^\s*(.*Processor.*|.*controller|.*controler|.*Chassis Interface)(, FRU\s?:.*)?, HW rev (\S+), board revision (\S+)/i) { $board = $1; $hwver = $3; $boardrev = $4; From saro at arizona.edu Mon Mar 4 21:14:17 2002 From: saro at arizona.edu (Saro Hayan) Date: Mon, 4 Mar 2002 14:14:17 -0700 Subject: CatOS & IOS w/out enable Message-ID: Hello, I'm trying to get clogin to work with Cisco IOS and CatOS. The user/pw I want to use does not have enable privileges, but all I want to do is some "show" commands. I have used the -noenable command line switch and the clogin config. I am not sure what I seem to be doing wrong, but I keep getting a "no enable password" error in (version 2.1b). The following is the command as I am using it: clogin -noenable -u myusername -p myuserpassword -c 'show int' myrouter.mydomain.com If I use a .cloginrc file, I use the following lines: # customer x # these routers ask for a username and password. we automatically get # enable access after successful authentication. add user *.myrouter.mydomain.com myusername add password *.myrouter.mydomain.com myuserpassword # add autoenable *.myrouter.mydomain.com 1 # the route-server's do not provide enable access. cmdline -noenable # equivalent. add noenable myrouter.mydomain.com 1 Saro Hayan Network Operation (520)626-4275 saro at arizona.edu From AZhang at reliant.com Tue Mar 5 15:14:12 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Tue, 5 Mar 2002 09:14:12 -0600 Subject: Prevent PAGP messages from showing up in diffs Message-ID: Greetings, I get mail almost every time Rancid runs due to PAGP messages. What would be the best way to prevent such messages from showing up in the diffs? Anchi -----Original Message----- From: Zhang, Anchi Sent: Tuesday, March 05, 2002 9:05 AM To: rancid-cisco at log2.reliant.com Subject: cisco router config diffs Index: configs/rep17_6509 =================================================================== retrieving revision 1.7 diff -u -4 -r1.7 rep17_6509 @@ -641,9 +641,8 @@ set trunk 3/18 off negotiate 1-1005,1025-4094 set trunk 3/19 off negotiate 1-1005,1025-4094 set trunk 3/20 off negotiate 1-1005,1025-4094 set trunk 3/21 off negotiate 1-1005,1025-4094 - 2002 Mar 05 08:03:09 CST -06:00 %PAGP-5-PORTFROMSTP:Port 2/23 left bridge port 2/23 set trunk 3/22 off negotiate 1-1005,1025-4094 set trunk 3/23 off negotiate 1-1005,1025-4094 set trunk 3/24 off negotiate 1-1005,1025-4094 set trunk 3/25 off negotiate 1-1005,1025-4094 @@ -744,9 +743,8 @@ set trunk 5/2 off negotiate 1-1005,1025-4094 set trunk 5/3 off negotiate 1-1005,1025-4094 set trunk 5/4 off negotiate 1-1005,1025-4094 set trunk 5/5 off negotiate 1-1005,1025-4094 - 2002 Mar 05 08:03:09 CST -06:00 %PAGP-5-PORTFROMSTP:Port 3/13 left bridge port 3/13 set trunk 5/6 off negotiate 1-1005,1025-4094 set trunk 5/7 off negotiate 1-1005,1025-4094 set trunk 5/8 off negotiate 1-1005,1025-4094 set trunk 5/9 off negotiate 1-1005,1025-4094 Index: configs/rep7_6509 =================================================================== retrieving revision 1.8 diff -u -4 -r1.8 rep7_6509 @@ -451,8 +451,9 @@ ! 9/46 347 ! 9/47 348 ! 9/48 349 ! + 2002 Mar 05 09:04:04 CST -06:00 %PAGP-5-PORTFROMSTP:Port 3/34 left bridge port 3/34 begin ! # ***** NON-DEFAULT CONFIGURATION ***** ! Index: configs/rep9_6509 =================================================================== retrieving revision 1.27 diff -u -4 -r1.27 rep9_6509 @@ -448,9 +448,8 @@ ! 9/46 398 ! 9/47 399 ! 9/48 400 ! - ..........2002 Mar 05 08:03:53 CST -06:00 %PAGP-5-PORTTOSTP:Port 4/11 joined bridge port 4/11 begin ! # ***** NON-DEFAULT CONFIGURATION ***** ! From asp at partan.com Wed Mar 6 04:22:40 2002 From: asp at partan.com (Andrew Partan) Date: Tue, 5 Mar 2002 23:22:40 -0500 Subject: Prevent PAGP messages from showing up in diffs In-Reply-To: ; from AZhang@reliant.com on Tue, Mar 05, 2002 at 09:14:12AM -0600 References: Message-ID: <20020305232240.D16806@partan.com> On Tue, Mar 05, 2002 at 09:14:12AM -0600, Zhang, Anchi wrote: > I get mail almost every time Rancid runs due to PAGP messages. What > would be the best way to prevent such messages from showing up in the > diffs? What type of router (switch?) is that? It looks like said box is sending syslog messages to the login session that rancid is using. I seem to recall running into some box that had a bug where you could not turn this off (the stupid box insisted on sysloging its messages to *every* session on the box, even if you didn't do the equivalent of 'term mon'). Automatically getting rid of this junk is quite a pain since it can essentially show up anywhere in the output stream (including in the middle of a line). Query: Can you configure your router to not send these messages to the telnet/ssh// session that rancid uses? Or is there some sort of command rancid can issue (ala 'term len 0') when it logs in to not get these messages? Or is this one of those broken boxes I recall? [In which case the only real option is to beat on the vendor to get them to fix their stupid bug.] --asp From AZhang at reliant.com Wed Mar 6 15:18:15 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Wed, 6 Mar 2002 09:18:15 -0600 Subject: Prevent PAGP messages from showing up in diffs Message-ID: Thanks for your reply. They are Catalyst 6509 switches. "set logging session disable" will "disable the sending of system logging messages to the current login session." How best should I add this command to rancid? Anchi -----Original Message----- From: Andrew Partan [mailto:asp at partan.com] Sent: Tuesday, March 05, 2002 10:23 PM To: Zhang, Anchi Cc: rancid-discuss at shrubbery.net Subject: Re: Prevent PAGP messages from showing up in diffs On Tue, Mar 05, 2002 at 09:14:12AM -0600, Zhang, Anchi wrote: > I get mail almost every time Rancid runs due to PAGP messages. What > would be the best way to prevent such messages from showing up in the > diffs? What type of router (switch?) is that? It looks like said box is sending syslog messages to the login session that rancid is using. I seem to recall running into some box that had a bug where you could not turn this off (the stupid box insisted on sysloging its messages to *every* session on the box, even if you didn't do the equivalent of 'term mon'). Automatically getting rid of this junk is quite a pain since it can essentially show up anywhere in the output stream (including in the middle of a line). Query: Can you configure your router to not send these messages to the telnet/ssh// session that rancid uses? Or is there some sort of command rancid can issue (ala 'term len 0') when it logs in to not get these messages? Or is this one of those broken boxes I recall? [In which case the only real option is to beat on the vendor to get them to fix their stupid bug.] --asp From asp at partan.com Wed Mar 6 15:23:04 2002 From: asp at partan.com (Andrew Partan) Date: Wed, 6 Mar 2002 10:23:04 -0500 Subject: Prevent PAGP messages from showing up in diffs In-Reply-To: ; from AZhang@reliant.com on Wed, Mar 06, 2002 at 09:18:15AM -0600 References: Message-ID: <20020306102303.A20207@partan.com> On Wed, Mar 06, 2002 at 09:18:15AM -0600, Zhang, Anchi wrote: > "set logging session disable" will "disable the sending of system > logging messages to the current login session." How best should I add > this command to rancid? Are you using the latest bits? clogin already has: send "set logging session disable\r" --asp } elseif { $do_script } { # If the prompt is (enable), then we are on a switch and the # command is "set length 0"; otherwise its "term length 0". if [ regexp -- ".*> .*enable" "$prompt" ] { send "set length 0\r" send "set logging session disable\r" } else { send "term length 0\r" } From AZhang at reliant.com Wed Mar 6 15:26:08 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Wed, 6 Mar 2002 09:26:08 -0600 Subject: Prevent PAGP messages from showing up in diffs Message-ID: I think so: log2# grep "set logging session disable" clogin send "set logging session disable\r" log2# -----Original Message----- From: Andrew Partan [mailto:asp at partan.com] Sent: Wednesday, March 06, 2002 9:23 AM To: Zhang, Anchi Cc: rancid-discuss at shrubbery.net Subject: Re: Prevent PAGP messages from showing up in diffs On Wed, Mar 06, 2002 at 09:18:15AM -0600, Zhang, Anchi wrote: > "set logging session disable" will "disable the sending of system > logging messages to the current login session." How best should I add > this command to rancid? Are you using the latest bits? clogin already has: send "set logging session disable\r" --asp } elseif { $do_script } { # If the prompt is (enable), then we are on a switch and the # command is "set length 0"; otherwise its "term length 0". if [ regexp -- ".*> .*enable" "$prompt" ] { send "set length 0\r" send "set logging session disable\r" } else { send "term length 0\r" } From bladex at engin.umich.edu Tue Mar 12 19:00:51 2002 From: bladex at engin.umich.edu (Robert Klingsten) Date: Tue, 12 Mar 2002 14:00:51 -0500 (EST) Subject: Newbie: Problems with Catalyst Message-ID: <20020312190051.7017B16647@gigashadow.engin.umich.edu> Hello -- I have read through all the list archives, and also the faq. But I am still having trouble with a Catalyst switch. Following the diags mentioned in the FAQ, the command: cat5rancid -d ummu-cis6513-mr.ummu.umich.edu results in: HIT COMMAND:ummu-cis6513-mr> (enable) show port ifindex In ShowPortIfindex: ummu-cis6513-mr> (enable) show port ifindex HIT COMMAND:ummu-cis6513-mr> (enable) write term In WriteTerm: ummu-cis6513-mr> (enable) write term ummu-cis6513-mr.ummu.umich.edu: End of run not found ummu-cis6513-mr.ummu.umich.edu: End of run not found end Any more help from people on this would be greatly appreciated! I have Linux kernel 2.4.18, expect 5.32.2, tcl 8.3.3-65, Catalyst 6.3(5)... thanks for any help! Rob Klingsten CAEN Network Systems University of Michigan College of Engineering From heas at shrubbery.net Tue Mar 12 20:15:44 2002 From: heas at shrubbery.net (john heasley) Date: Tue, 12 Mar 2002 20:15:44 +0000 Subject: Newbie: Problems with Catalyst In-Reply-To: <20020312190051.7017B16647@gigashadow.engin.umich.edu>; from bladex@engin.umich.edu on Tue, Mar 12, 2002 at 02:00:51PM -0500 References: <20020312190051.7017B16647@gigashadow.engin.umich.edu> Message-ID: <20020312201544.F18648@shrubbery.net> Tue, Mar 12, 2002 at 02:00:51PM -0500, Robert Klingsten: > Hello -- > > I have read through all the list archives, and also the faq. But > I am still having trouble with a Catalyst switch. Following the > diags mentioned in the FAQ, the command: > > cat5rancid -d ummu-cis6513-mr.ummu.umich.edu > > results in: > > HIT COMMAND:ummu-cis6513-mr> (enable) show port ifindex > In ShowPortIfindex: ummu-cis6513-mr> (enable) show port ifindex > HIT COMMAND:ummu-cis6513-mr> (enable) write term > In WriteTerm: ummu-cis6513-mr> (enable) write term > ummu-cis6513-mr.ummu.umich.edu: End of run not found > ummu-cis6513-mr.ummu.umich.edu: End of run not found > end could you try the following setenv NOPIPE YES cat5rancid -d ummu-cis6513-mr.ummu.umich.edu you will have a ummu-cis6513-mr.ummu.umich.edu.raw file. check this to make sure that the full config was actually collected. also check the ummu-cis6513-mr.ummu.umich.edu.new file to see how much of the .raw file was completed. i'd guess that either the expect process got stuck or something appeared in the config that confused clogin. > > Any more help from people on this would be greatly appreciated! I have > Linux kernel 2.4.18, expect 5.32.2, tcl 8.3.3-65, Catalyst 6.3(5)... > > thanks for any help! > > Rob Klingsten > CAEN Network Systems > University of Michigan College of Engineering From bladex at engin.umich.edu Tue Mar 12 20:32:27 2002 From: bladex at engin.umich.edu (Robert Klingsten) Date: Tue, 12 Mar 2002 15:32:27 -0500 Subject: Newbie: Problems with Catalyst Message-ID: <1BC88FD1968349449B02BF6018227F34E9FEA1@engin-mail1.engin.umich.edu> I tried what you suggested. the .new file has the complete config, and the .raw file has the complete config and ends with: . . . #module 15 : 1-port Multilayer Switch Feature Card ! #module 16 empty end ummu-cis6513-mr> (enable)Connection to ummu-cis6513-mr.ummu.umich.edu closed by remote host. Connection to ummu-cis6513-mr.ummu.umich.edu closed. It looks ok to me... is expect not matching the "Connection to closed" message(s)? Thanks -- Rob -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, March 12, 2002 3:16 PM To: Robert Klingsten Cc: rancid-discuss at shrubbery.net Subject: Re: Newbie: Problems with Catalyst Tue, Mar 12, 2002 at 02:00:51PM -0500, Robert Klingsten: > Hello -- > > I have read through all the list archives, and also the faq. But I am > still having trouble with a Catalyst switch. Following the diags > mentioned in the FAQ, the command: > > cat5rancid -d ummu-cis6513-mr.ummu.umich.edu > > results in: > > HIT COMMAND:ummu-cis6513-mr> (enable) show port ifindex > In ShowPortIfindex: ummu-cis6513-mr> (enable) show port ifindex > HIT COMMAND:ummu-cis6513-mr> (enable) write term > In WriteTerm: ummu-cis6513-mr> (enable) write term > ummu-cis6513-mr.ummu.umich.edu: End of run not found > ummu-cis6513-mr.ummu.umich.edu: End of run not found > end could you try the following setenv NOPIPE YES cat5rancid -d ummu-cis6513-mr.ummu.umich.edu you will have a ummu-cis6513-mr.ummu.umich.edu.raw file. check this to make sure that the full config was actually collected. also check the ummu-cis6513-mr.ummu.umich.edu.new file to see how much of the .raw file was completed. i'd guess that either the expect process got stuck or something appeared in the config that confused clogin. > > Any more help from people on this would be greatly appreciated! I > have Linux kernel 2.4.18, expect 5.32.2, tcl 8.3.3-65, Catalyst > 6.3(5)... > > thanks for any help! > > Rob Klingsten > CAEN Network Systems > University of Michigan College of Engineering From asp at partan.com Tue Mar 12 20:57:13 2002 From: asp at partan.com (Andrew Partan) Date: Tue, 12 Mar 2002 15:57:13 -0500 Subject: Newbie: Problems with Catalyst In-Reply-To: <1BC88FD1968349449B02BF6018227F34E9FEA1@engin-mail1.engin.umich.edu>; from bladex@engin.umich.edu on Tue, Mar 12, 2002 at 03:32:27PM -0500 References: <1BC88FD1968349449B02BF6018227F34E9FEA1@engin-mail1.engin.umich.edu> Message-ID: <20020312155713.A8594@partan.com> On Tue, Mar 12, 2002 at 03:32:27PM -0500, Robert Klingsten wrote: > ummu-cis6513-mr> (enable)Connection to ummu-cis6513-mr.ummu.umich.edu closed > by remote host. > Connection to ummu-cis6513-mr.ummu.umich.edu closed. Looks like it could be another case of a router being too eager to drop the tcp session and not echoing back the 'quit' rancid sends it first. Rancid sends a 'quit' and then the router should echo that back & then close the tcp session (it should wait for the output to drain before doing the final tcp close). Some routers have bugs and don't do this. I know we had to do a fair amount of expect goo to work around this for the extreme (in xrancid). --asp From AZhang at reliant.com Wed Mar 13 00:17:02 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Tue, 12 Mar 2002 18:17:02 -0600 Subject: rancid module for css Message-ID: Would anyboy have a Rancid module for Cisco Content Services Switch 11000? -anchi From heas at shrubbery.net Wed Mar 13 00:57:07 2002 From: heas at shrubbery.net (john heasley) Date: Wed, 13 Mar 2002 00:57:07 +0000 Subject: rancid module for css In-Reply-To: ; from AZhang@reliant.com on Tue, Mar 12, 2002 at 06:17:02PM -0600 References: Message-ID: <20020313005707.R18648@shrubbery.net> Tue, Mar 12, 2002 at 06:17:02PM -0600, Zhang, Anchi: > Would anyboy have a Rancid module for Cisco Content Services Switch > 11000? -anchi never seen one. you could contribute one or give one of access to one. From AZhang at reliant.com Wed Mar 13 14:18:20 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Wed, 13 Mar 2002 08:18:20 -0600 Subject: rancid module for css Message-ID: I will try to contribute one. -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, March 12, 2002 6:57 PM To: Zhang, Anchi Cc: rancid-discuss at shrubbery.net Subject: Re: rancid module for css Tue, Mar 12, 2002 at 06:17:02PM -0600, Zhang, Anchi: > Would anyboy have a Rancid module for Cisco Content Services Switch > 11000? -anchi never seen one. you could contribute one or give one of access to one. From asp at partan.com Thu Mar 14 03:16:50 2002 From: asp at partan.com (Andrew Partan) Date: Wed, 13 Mar 2002 22:16:50 -0500 Subject: Prevent PAGP messages from showing up in diffs In-Reply-To: ; from AZhang@reliant.com on Wed, Mar 06, 2002 at 09:26:08AM -0600 References: Message-ID: <20020313221650.A25921@partan.com> On Wed, Mar 06, 2002 at 09:26:08AM -0600, Zhang, Anchi wrote: > log2# grep "set logging session disable" clogin > send "set logging session disable\r" Hmm; so what is that not working? Does this command actually work on the switch & code you are running? Is rancid sending this command to your switch? --asp From AZhang at reliant.com Thu Mar 14 17:17:43 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Thu, 14 Mar 2002 11:17:43 -0600 Subject: Prevent PAGP messages from showing up in diffs Message-ID: The command acctually works if I login and issue the command manually. What would be a good way to tell whether rancid actually sends this command? Anchi -----Original Message----- From: Andrew Partan [mailto:asp at partan.com] Sent: Wednesday, March 13, 2002 9:17 PM To: Zhang, Anchi Cc: rancid-discuss at shrubbery.net Subject: Re: Prevent PAGP messages from showing up in diffs On Wed, Mar 06, 2002 at 09:26:08AM -0600, Zhang, Anchi wrote: > log2# grep "set logging session disable" clogin > send "set logging session disable\r" Hmm; so what is that not working? Does this command actually work on the switch & code you are running? Is rancid sending this command to your switch? --asp From terry at tmk.com Fri Mar 15 07:03:29 2002 From: terry at tmk.com (Terry Kennedy) Date: Fri, 15 Mar 2002 02:03:29 -0500 (EST) Subject: Newbie: Problems with Catalyst In-Reply-To: "Your message dated Tue, 12 Mar 2002 15:32:27 -0500" <1BC88FD1968349449B02BF6018227F34E9FEA1@engin-mail1.engin.umich.edu> Message-ID: <01KFDFQQXZ6W0004G3@tmk.com> > I tried what you suggested. the .new file has the complete config, and the > .raw file has the complete config and ends with: > ummu-cis6513-mr> (enable)Connection to ummu-cis6513-mr.ummu.umich.edu closed > by remote host. > Connection to ummu-cis6513-mr.ummu.umich.edu closed. > > It looks ok to me... is expect not matching the "Connection to > closed" message(s)? Are you using SSH to talk to the switch? I sent in a patch for this problem a month or two ago. Take a peek in the mailing list archives. After thinking about it, and the various other platforms where it happens, I think a better solution would be to invoke a harmless com- mand (for CatOS, something like "cd end-of-run:") and pick up on the "end-of-run" token instead of hoping some combination of Cisco OS, client SSH, and host TCP/IP stack will bother echoing the "exit" com- mand back to us before the connection gets torn down. Of course, on devices that have an "echo"-like command, this is even more elegant as we don't generate an (ignored) syntax error. Terry Kennedy http://www.tmk.com terry at tmk.com New York, NY USA From Joshua.Wright at jwu.edu Fri Mar 15 15:16:21 2002 From: Joshua.Wright at jwu.edu (Joshua Wright) Date: Fri, 15 Mar 2002 10:16:21 -0500 Subject: clogin not logging into Cisco router Message-ID: <415D42EC88D4D411A128009027AF978C03A5F1A2@gaspee.jwu.edu> First, thanks for such a terrific tool. I have used RANCID 2.2 on a few FreeBSD boxes and have always been very happy with its results. I am trying to get RANCID 2.2 working on a Solaris machine, and am running into some troubles. Here are my vitals: $ uname -a SunOS george.services.brown.edu 5.8 Generic sun4u sparc SUNW,Ultra-5_10 $ ls -l `which tclsh` lrwxrwxrwx 1 root other 8 Oct 5 1999 /usr/local/bin/tclsh -> tclsh8.0* $ expect -v expect version 5.28.1 $ perl -v This is perl, version 5.005_03 built for sun4-solaris $ Running "rancid -d router.mydomain.com" results in: $ rancid -d router.mydomain.com executing clogin -t 90 -c"show version;show install active;show env all;show gsr chassis;show boot;show bootvar;show variables boot;show flash;dir /all nvram:;dir /all bootflash:;dir /all slot0:;dir /all disk0:;dir /all slot1:;dir /all disk1:;dir /all sup-bootflash:;dir /all sup-microcode:;show controllers;show controllers cbus;show diagbus;show diag;show module;show c7200;show vtp status;show vlan;write term" router.mydomain.com router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: End of run not found router.mydomain.com: End of run not found ! $ Running "clogin -c "sh bootvar" router.mydomain.com" $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Checking into the README, I am running >Solaris 2.6 so the patches don't apply. I don't think the problems with Linux+expect/tcl apply to me either. Contents of my .cloginrc file are as follows: add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password I have verified the username and password are correct. The output from clogin appears that expect isn't passing the login information, any thoughts as to why? Thanks very much. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 From AZhang at reliant.com Fri Mar 15 18:08:58 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Fri, 15 Mar 2002 12:08:58 -0600 Subject: clogin not logging into Cisco router Message-ID: Maybe the space between Username and : is giving problems: log2# grep Username clogin # Username # Enable Username if { "$u_prompt" == "" } { set u_prompt "(Username|Login|login|user name):" } log2# telnet 10.51.5.254 Trying 10.51.5.254... Connected to 10.51.5.254. Escape character is '^]'. User Access Verification Username: -----Original Message----- From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] Sent: Friday, March 15, 2002 9:16 AM To: 'rancid-discuss at shrubbery.net' Subject: clogin not logging into Cisco router First, thanks for such a terrific tool. I have used RANCID 2.2 on a few FreeBSD boxes and have always been very happy with its results. I am trying to get RANCID 2.2 working on a Solaris machine, and am running into some troubles. Here are my vitals: $ uname -a SunOS george.services.brown.edu 5.8 Generic sun4u sparc SUNW,Ultra-5_10 $ ls -l `which tclsh` lrwxrwxrwx 1 root other 8 Oct 5 1999 /usr/local/bin/tclsh -> tclsh8.0* $ expect -v expect version 5.28.1 $ perl -v This is perl, version 5.005_03 built for sun4-solaris $ Running "rancid -d router.mydomain.com" results in: $ rancid -d router.mydomain.com executing clogin -t 90 -c"show version;show install active;show env all;show gsr chassis;show boot;show bootvar;show variables boot;show flash;dir /all nvram:;dir /all bootflash:;dir /all slot0:;dir /all disk0:;dir /all slot1:;dir /all disk1:;dir /all sup-bootflash:;dir /all sup-microcode:;show controllers;show controllers cbus;show diagbus;show diag;show module;show c7200;show vtp status;show vlan;write term" router.mydomain.com router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: End of run not found router.mydomain.com: End of run not found ! $ Running "clogin -c "sh bootvar" router.mydomain.com" $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Checking into the README, I am running >Solaris 2.6 so the patches don't apply. I don't think the problems with Linux+expect/tcl apply to me either. Contents of my .cloginrc file are as follows: add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password I have verified the username and password are correct. The output from clogin appears that expect isn't passing the login information, any thoughts as to why? Thanks very much. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 From Joshua.Wright at jwu.edu Fri Mar 15 18:47:24 2002 From: Joshua.Wright at jwu.edu (Joshua Wright) Date: Fri, 15 Mar 2002 13:47:24 -0500 Subject: clogin not logging into Cisco router Message-ID: <415D42EC88D4D411A128009027AF978C03A5F1A9@gaspee.jwu.edu> I tried adding a prompt to my .cloginrc file as follows: $ more .cloginrc add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password add prompt *.mydomain.com {"Username :"} $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Still no go. Do I have the syntax incorrect for "add prompt"? Thanks. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 -----Original Message----- From: Zhang, Anchi [mailto:AZhang at reliant.com] Sent: Friday, March 15, 2002 1:09 PM To: Joshua Wright; rancid-discuss at shrubbery.net Subject: RE: clogin not logging into Cisco router Maybe the space between Username and : is giving problems: log2# grep Username clogin # Username # Enable Username if { "$u_prompt" == "" } { set u_prompt "(Username|Login|login|user name):" } log2# telnet 10.51.5.254 Trying 10.51.5.254... Connected to 10.51.5.254. Escape character is '^]'. User Access Verification Username: -----Original Message----- From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] Sent: Friday, March 15, 2002 9:16 AM To: 'rancid-discuss at shrubbery.net' Subject: clogin not logging into Cisco router First, thanks for such a terrific tool. I have used RANCID 2.2 on a few FreeBSD boxes and have always been very happy with its results. I am trying to get RANCID 2.2 working on a Solaris machine, and am running into some troubles. Here are my vitals: $ uname -a SunOS george.services.brown.edu 5.8 Generic sun4u sparc SUNW,Ultra-5_10 $ ls -l `which tclsh` lrwxrwxrwx 1 root other 8 Oct 5 1999 /usr/local/bin/tclsh -> tclsh8.0* $ expect -v expect version 5.28.1 $ perl -v This is perl, version 5.005_03 built for sun4-solaris $ Running "rancid -d router.mydomain.com" results in: $ rancid -d router.mydomain.com executing clogin -t 90 -c"show version;show install active;show env all;show gsr chassis;show boot;show bootvar;show variables boot;show flash;dir /all nvram:;dir /all bootflash:;dir /all slot0:;dir /all disk0:;dir /all slot1:;dir /all disk1:;dir /all sup-bootflash:;dir /all sup-microcode:;show controllers;show controllers cbus;show diagbus;show diag;show module;show c7200;show vtp status;show vlan;write term" router.mydomain.com router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: End of run not found router.mydomain.com: End of run not found ! $ Running "clogin -c "sh bootvar" router.mydomain.com" $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Checking into the README, I am running >Solaris 2.6 so the patches don't apply. I don't think the problems with Linux+expect/tcl apply to me either. Contents of my .cloginrc file are as follows: add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password I have verified the username and password are correct. The output from clogin appears that expect isn't passing the login information, any thoughts as to why? Thanks very much. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 From AZhang at reliant.com Fri Mar 15 19:00:51 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Fri, 15 Mar 2002 13:00:51 -0600 Subject: clogin not logging into Cisco router Message-ID: I have no experience in add prompt. How did you get to have the "Username :" prompt? Did you change it through your AAA server? Anchi -----Original Message----- From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] Sent: Friday, March 15, 2002 12:47 PM To: Zhang, Anchi; Joshua Wright; rancid-discuss at shrubbery.net Subject: RE: clogin not logging into Cisco router I tried adding a prompt to my .cloginrc file as follows: $ more .cloginrc add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password add prompt *.mydomain.com {"Username :"} $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Still no go. Do I have the syntax incorrect for "add prompt"? Thanks. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 -----Original Message----- From: Zhang, Anchi [mailto:AZhang at reliant.com] Sent: Friday, March 15, 2002 1:09 PM To: Joshua Wright; rancid-discuss at shrubbery.net Subject: RE: clogin not logging into Cisco router Maybe the space between Username and : is giving problems: log2# grep Username clogin # Username # Enable Username if { "$u_prompt" == "" } { set u_prompt "(Username|Login|login|user name):" } log2# telnet 10.51.5.254 Trying 10.51.5.254... Connected to 10.51.5.254. Escape character is '^]'. User Access Verification Username: -----Original Message----- From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] Sent: Friday, March 15, 2002 9:16 AM To: 'rancid-discuss at shrubbery.net' Subject: clogin not logging into Cisco router First, thanks for such a terrific tool. I have used RANCID 2.2 on a few FreeBSD boxes and have always been very happy with its results. I am trying to get RANCID 2.2 working on a Solaris machine, and am running into some troubles. Here are my vitals: $ uname -a SunOS george.services.brown.edu 5.8 Generic sun4u sparc SUNW,Ultra-5_10 $ ls -l `which tclsh` lrwxrwxrwx 1 root other 8 Oct 5 1999 /usr/local/bin/tclsh -> tclsh8.0* $ expect -v expect version 5.28.1 $ perl -v This is perl, version 5.005_03 built for sun4-solaris $ Running "rancid -d router.mydomain.com" results in: $ rancid -d router.mydomain.com executing clogin -t 90 -c"show version;show install active;show env all;show gsr chassis;show boot;show bootvar;show variables boot;show flash;dir /all nvram:;dir /all bootflash:;dir /all slot0:;dir /all disk0:;dir /all slot1:;dir /all disk1:;dir /all sup-bootflash:;dir /all sup-microcode:;show controllers;show controllers cbus;show diagbus;show diag;show module;show c7200;show vtp status;show vlan;write term" router.mydomain.com router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com clogin error: Error: TIMEOUT reached router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all bootflash:,show env all,show controllers cbus,dir /all nvram:,show module,show version,dir /all sup-bootflash:,show c7200,show variables boot,show flash,show vlan,dir /all slot0:,show install active,dir /all slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp status router.mydomain.com: End of run not found router.mydomain.com: End of run not found ! $ Running "clogin -c "sh bootvar" router.mydomain.com" $ clogin -c "sh bootvar" router.mydomain.com router.mydomain.com spawn telnet router.mydomain.com Trying 1.1.1.1... Connected to router. Escape character is '^]'. Username : % Username : timeout expired! Username : Error: TIMEOUT reached $ Checking into the README, I am running >Solaris 2.6 so the patches don't apply. I don't think the problems with Linux+expect/tcl apply to me either. Contents of my .cloginrc file are as follows: add autoenable *.mydomain.com 1 add user *.mydomain.com username add password *.mydomain.com password I have verified the username and password are correct. The output from clogin appears that expect isn't passing the login information, any thoughts as to why? Thanks very much. -Joshua Wright Team Leader, Networks and Systems Johnson & Wales University Joshua.Wright at jwu.edu pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 From heas at shrubbery.net Fri Mar 15 21:44:45 2002 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Mar 2002 13:44:45 -0800 Subject: Prevent PAGP messages from showing up in diffs In-Reply-To: ; from AZhang@reliant.com on Thu, Mar 14, 2002 at 11:17:43AM -0600 References: Message-ID: <20020315134444.A23373@shrubbery.net> Thu, Mar 14, 2002 at 11:17:43AM -0600, Zhang, Anchi: > The command acctually works if I login and issue the command manually. > > What would be a good way to tell whether rancid actually sends this > command? > > Anchi it is only sent when using a script (clogin -s). iirc, this is a system-wide ocmmand, not a per-login/terminal setting. best is to make this a permanent part of your configuration. > -----Original Message----- > From: Andrew Partan [mailto:asp at partan.com] > Sent: Wednesday, March 13, 2002 9:17 PM > To: Zhang, Anchi > Cc: rancid-discuss at shrubbery.net > Subject: Re: Prevent PAGP messages from showing up in diffs > > > On Wed, Mar 06, 2002 at 09:26:08AM -0600, Zhang, Anchi wrote: > > log2# grep "set logging session disable" clogin > > send "set logging session disable\r" > > Hmm; so what is that not working? Does this command actually work > on the switch & code you are running? Is rancid sending this > command to your switch? > --asp From asp at partan.com Fri Mar 15 21:54:46 2002 From: asp at partan.com (Andrew Partan) Date: Fri, 15 Mar 2002 16:54:46 -0500 Subject: clogin not logging into Cisco router In-Reply-To: <415D42EC88D4D411A128009027AF978C03A5F1A9@gaspee.jwu.edu>; from Joshua.Wright@jwu.edu on Fri, Mar 15, 2002 at 01:47:24PM -0500 References: <415D42EC88D4D411A128009027AF978C03A5F1A9@gaspee.jwu.edu> Message-ID: <20020315165446.B18718@partan.com> On Fri, Mar 15, 2002 at 01:47:24PM -0500, Joshua Wright wrote: > add prompt *.mydomain.com {"Username :"} You want userprompt. Bits of clogin: # Figure out prompts set u_prompt [find userprompt $router] if { "$u_prompt" == "" } { set u_prompt "(Username|Login|login|user name):"} set p_prompt [find passprompt $router] if { "$p_prompt" == "" } { set p_prompt "(\[Pp]assword|passwd):" } set e_prompt [find enableprompt $router] if { "$e_prompt" == "" } { set e_prompt "\[Pp]assword:" } --asp From AZhang at reliant.com Fri Mar 15 23:00:10 2002 From: AZhang at reliant.com (Zhang, Anchi) Date: Fri, 15 Mar 2002 17:00:10 -0600 Subject: Prevent PAGP messages from showing up in diffs Message-ID: Thanks for your pointer. Adding -s to clogin made it work: log2# diff cat5rancid cat5rancid.orig 1031c1031 < system "clogin -s -t $timeo -c \"$cisco_cmds\" $host $host.raw 2>&1" || die "clogin failed for $host: $!\n"; --- > system "clogin -t $timeo -c \"$cisco_cmds\" $host $host.raw 2>&1" || die "clogin failed for $host: $!\n"; -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Friday, March 15, 2002 3:45 PM To: Zhang, Anchi Cc: Andrew Partan; rancid-discuss at shrubbery.net Subject: Re: Prevent PAGP messages from showing up in diffs Thu, Mar 14, 2002 at 11:17:43AM -0600, Zhang, Anchi: > The command acctually works if I login and issue the command manually. > > What would be a good way to tell whether rancid actually sends this > command? > > Anchi it is only sent when using a script (clogin -s). iirc, this is a system-wide ocmmand, not a per-login/terminal setting. best is to make this a permanent part of your configuration. > -----Original Message----- > From: Andrew Partan [mailto:asp at partan.com] > Sent: Wednesday, March 13, 2002 9:17 PM > To: Zhang, Anchi > Cc: rancid-discuss at shrubbery.net > Subject: Re: Prevent PAGP messages from showing up in diffs > > > On Wed, Mar 06, 2002 at 09:26:08AM -0600, Zhang, Anchi wrote: > > log2# grep "set logging session disable" clogin > > send "set logging session disable\r" > > Hmm; so what is that not working? Does this command actually work > on the switch & code you are running? Is rancid sending this > command to your switch? > --asp From heas at shrubbery.net Fri Mar 15 23:35:06 2002 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Mar 2002 23:35:06 +0000 Subject: clogin not logging into Cisco router In-Reply-To: ; from AZhang@reliant.com on Fri, Mar 15, 2002 at 01:00:51PM -0600 References: Message-ID: <20020315233506.F1223@shrubbery.net> Fri, Mar 15, 2002 at 01:00:51PM -0600, Zhang, Anchi: > I have no experience in add prompt. How did you get to have the > "Username :" prompt? Did you change it through your AAA server? i believe, for most cisco products, AAA is the only method to alter the prompt. my advice, wrt rancid and automation, is to leave it alone. altering it adds zero value. > Anchi > > -----Original Message----- > From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] > Sent: Friday, March 15, 2002 12:47 PM > To: Zhang, Anchi; Joshua Wright; rancid-discuss at shrubbery.net > Subject: RE: clogin not logging into Cisco router > > > I tried adding a prompt to my .cloginrc file as follows: > > $ more .cloginrc > add autoenable *.mydomain.com 1 > add user *.mydomain.com username > add password *.mydomain.com password > add prompt *.mydomain.com {"Username :"} > $ clogin -c "sh bootvar" router.mydomain.com > router.mydomain.com > spawn telnet router.mydomain.com > Trying 1.1.1.1... > Connected to router. > Escape character is '^]'. > > Username : > % Username : timeout expired! > Username : > Error: TIMEOUT reached > $ > > > Still no go. Do I have the syntax incorrect for "add prompt"? > > Thanks. > > -Joshua Wright > Team Leader, Networks and Systems > Johnson & Wales University > Joshua.Wright at jwu.edu > > pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 > fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 > > > -----Original Message----- > From: Zhang, Anchi [mailto:AZhang at reliant.com] > Sent: Friday, March 15, 2002 1:09 PM > To: Joshua Wright; rancid-discuss at shrubbery.net > Subject: RE: clogin not logging into Cisco router > > > Maybe the space between Username and : is giving problems: > > log2# grep Username clogin > # Username > # Enable Username > if { "$u_prompt" == "" } { set u_prompt "(Username|Login|login|user > name):" } > log2# telnet 10.51.5.254 > Trying 10.51.5.254... > Connected to 10.51.5.254. > Escape character is '^]'. > > > User Access Verification > > Username: > > -----Original Message----- > From: Joshua Wright [mailto:Joshua.Wright at jwu.edu] > Sent: Friday, March 15, 2002 9:16 AM > To: 'rancid-discuss at shrubbery.net' > Subject: clogin not logging into Cisco router > > > First, thanks for such a terrific tool. I have used RANCID 2.2 on a few > FreeBSD boxes and have always been very happy with its results. > > I am trying to get RANCID 2.2 working on a Solaris machine, and am > running > into some troubles. Here are my vitals: > > $ uname -a > SunOS george.services.brown.edu 5.8 Generic sun4u sparc SUNW,Ultra-5_10 > $ ls -l `which tclsh` > lrwxrwxrwx 1 root other 8 Oct 5 1999 > /usr/local/bin/tclsh > -> tclsh8.0* > $ expect -v > expect version 5.28.1 > $ perl -v > > This is perl, version 5.005_03 built for sun4-solaris > > $ > > Running "rancid -d router.mydomain.com" results in: > > $ rancid -d router.mydomain.com > executing clogin -t 90 -c"show version;show install active;show env > all;show > gsr chassis;show boot;show bootvar;show variables boot;show flash;dir > /all > nvram:;dir /all bootflash:;dir /all slot0:;dir /all disk0:;dir /all > slot1:;dir /all disk1:;dir /all sup-bootflash:;dir /all > sup-microcode:;show > controllers;show controllers cbus;show diagbus;show diag;show > module;show > c7200;show vtp status;show vlan;write term" router.mydomain.com > router.mydomain.com clogin error: Error: TIMEOUT reached > router.mydomain.com clogin error: Error: TIMEOUT reached > router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all > bootflash:,show env all,show controllers cbus,dir /all nvram:,show > module,show version,dir /all sup-bootflash:,show c7200,show variables > boot,show flash,show vlan,dir /all slot0:,show install active,dir /all > slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all > sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp > status > router.mydomain.com: missed cmd(s): show diagbus,write term,dir /all > bootflash:,show env all,show controllers cbus,dir /all nvram:,show > module,show version,dir /all sup-bootflash:,show c7200,show variables > boot,show flash,show vlan,dir /all slot0:,show install active,dir /all > slot1:,show boot,show diag,show controllers,show gsr chassis,dir /all > sup-microcode:,dir /all disk0:,dir /all disk1:,show bootvar,show vtp > status > router.mydomain.com: End of run not found > router.mydomain.com: End of run not found > ! > $ > > Running "clogin -c "sh bootvar" router.mydomain.com" > > $ clogin -c "sh bootvar" router.mydomain.com > router.mydomain.com > spawn telnet router.mydomain.com > Trying 1.1.1.1... > Connected to router. > Escape character is '^]'. > > Username : > % Username : timeout expired! > Username : > Error: TIMEOUT reached > $ > > Checking into the README, I am running >Solaris 2.6 so the patches don't > apply. I don't think the problems with Linux+expect/tcl apply to me > either. > Contents of my .cloginrc file are as follows: > > add autoenable *.mydomain.com 1 > add user *.mydomain.com username > add password *.mydomain.com password > > I have verified the username and password are correct. The output from > clogin appears that expect isn't passing the login information, any > thoughts > as to why? > > Thanks very much. > > > -Joshua Wright > Team Leader, Networks and Systems > Johnson & Wales University > Joshua.Wright at jwu.edu > > pgpkey: http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xD44B4A73 > fingerprint: FDA5 12FC F391 3740 E0AE BDB6 8FE2 FC0A D44B 4A73 From bill at limelightnetworks.com Wed Mar 27 18:50:31 2002 From: bill at limelightnetworks.com (Bill Petrisko) Date: Wed, 27 Mar 2002 11:50:31 -0700 Subject: Alteon scpadm password Message-ID: <01d101c1d5c0$452ed9e0$b18c30d0@phx.axient.com> Looks like the following password is not removed from an Alteon config (pieces removed): - /cfg/sys/sshd/scpadm ".....................7b2e99a09d8a8baa3...................086442f" + /cfg/sys/sshd/scpadm ".....................3e6c7788b5ac4d70877ecd..............fd16547" /c/sys/sshd/on I've got my "FILTER_PWDS=ALL; export FILTER_PWDS" in env. This is in rancid-2.2. Can someone provide a patch to fix this, and include in the next update? :) Obviously, if i've missed something, feel free to tell me that. bill From neale at lowendale.com.au Thu Mar 28 02:17:15 2002 From: neale at lowendale.com.au (Neale Banks) Date: Thu, 28 Mar 2002 13:17:15 +1100 (EST) Subject: foundry intermittently missing config fragments Message-ID: Greetings, Anyone else having problems with Foundry intermittently missing fragments of the config? As in, one run will show a diff with a hunk of lines removed w.r.t the previous run and typically the following run will show the hunk being replaced. This has so far only been observed with one build of Foundry s/w: rev 07.5.02aT53 (labelled "B2P07502a" and compiled on "Mar 01 2002"). Other observations: * timing appears random * the missing hunk is exactly a contiguous set of whole lines * not always the same hunk missing, but "familiar patterns" recur * rancid 2.1 Yeah, I know this smells horribly like a foundry bug - but if that's the case I need to "prove" it {:-( Any ideas? Thanks, Neale. From neale at lowendale.com.au Thu Mar 28 07:56:16 2002 From: neale at lowendale.com.au (Neale Banks) Date: Thu, 28 Mar 2002 18:56:16 +1100 (EST) Subject: foundry intermittently missing config fragments In-Reply-To: Message-ID: On Thu, 28 Mar 2002, Neale Banks wrote: > Greetings, > > Anyone else having problems with Foundry intermittently missing fragments > of the config? [...] > This has so far only been observed with one build of Foundry s/w: rev > 07.5.02aT53 (labelled "B2P07502a" and compiled on "Mar 01 2002"). [...] > Yeah, I know this smells horribly like a foundry bug - but if that's the > case I need to "prove" it {:-( Cancel this, my friend tcpdump says it *is* a Foundry bug (i.e. rancid is telling the truth ;-). Regards, Neale. From heas at shrubbery.net Thu Mar 28 07:23:24 2002 From: heas at shrubbery.net (john heasley) Date: Wed, 27 Mar 2002 23:23:24 -0800 Subject: Alteon scpadm password In-Reply-To: <01d101c1d5c0$452ed9e0$b18c30d0@phx.axient.com>; from bill@limelightnetworks.com on Wed, Mar 27, 2002 at 11:50:31AM -0700 References: <01d101c1d5c0$452ed9e0$b18c30d0@phx.axient.com> Message-ID: <20020327232323.L28380@shrubbery.net> Wed, Mar 27, 2002 at 11:50:31AM -0700, Bill Petrisko: > Looks like the following password is not removed from an Alteon config > (pieces removed): > > - /cfg/sys/sshd/scpadm > ".....................7b2e99a09d8a8baa3...................086442f" > + /cfg/sys/sshd/scpadm > ".....................3e6c7788b5ac4d70877ecd..............fd16547" > /c/sys/sshd/on > > I've got my "FILTER_PWDS=ALL; export FILTER_PWDS" in env. > > This is in rancid-2.2. > > Can someone provide a patch to fix this, and include in the next update? :) > > Obviously, if i've missed something, feel free to tell me that. > > bill these knobs were added after andrew fort contributed the filter for the alteon. since we do not have alteons, i dont know what to filter. if you (or someone) can help us determine what should be filtered or share some complete configs, then i can provide a patch. sorry. -heas From heas at shrubbery.net Thu Mar 28 17:55:03 2002 From: heas at shrubbery.net (john heasley) Date: Thu, 28 Mar 2002 09:55:03 -0800 Subject: Up-to-date failed?? In-Reply-To: ; from dpackham@netcom.utah.edu on Thu, Mar 28, 2002 at 08:42:45AM -0700 References: Message-ID: <20020328095503.M28380@shrubbery.net> Thu, Mar 28, 2002 at 08:42:45AM -0700, Dave Packham: > Has anyone seen this one? And how do I get rid of this error? this would seem to indicate that those files are in fact non-existent in the directory configs (not the repository). if you run 'cvs update' in that dir, it will extract the most recent version. i dont know why this would have occured. in the past, folks have had this occur for one of the following reasons: 1) someone was messing around with rancid's directory 2) the machine crashed or processes were violently killed we patched 2 by adding a cvs update before collection to control_rancid. so that should not occur. > > > Dave > > > > > > > > Trying to get all of the configs. > > All routers sucessfully completed. > > > > cvs diff: Diffing . > > cvs diff: Diffing configs > > cvs diff: cannot find configs/ds2-001park-150.net.utah.edu > > cvs diff: cannot find configs/ds2-064eng-3555.net.utah.edu > > cvs diff: cannot find configs/ds2-086lib-202.net.utah.edu > > cvs diff: cannot find configs/ds2-179ebc-070.net.utah.edu > > cvs diff: cannot find configs/dx1-064eng-3555.net.utah.edu > > cvs diff: cannot find configs/dx1-179ebc-media.net.utah.edu > > cvs diff: cannot find configs/dx1-179ebc-node.net.utah.edu > > cvs diff: cannot find configs/dx1-822bnch-83267c.net.utah.edu > > cvs diff: configs/r1-893bhawk-016.net.utah.edu is a new entry, no > comparison available > > cvs commit: Examining . > > cvs commit: Examining configs > > cvs commit: Up-to-date check failed for > `configs/as-001park-150.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/as-064eng-3555.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/as-086lib-202.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/as-822fort-001.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/as-893bhawk-016.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds1-001park-150.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds1-064eng-3555.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds1-086lib-202.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds1-822fort-001.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds1-893bhawk-016.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-001park-150.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-064eng-3555.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-086lib-202.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-179ebc-070.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-822fort-001.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/ds2-893bhawk-016.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/dx1-064eng-3555.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/dx1-179ebc-media.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/dx1-179ebc-node.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/dx1-822bnch-83267c.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/gw-001park-150.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/gw-179ebc-070.net.utah.edu' > > cvs commit: Up-to-date check failed for > `configs/r1-001park-150.net.utah.edu' > > cvs [commit aborted]: correct above errors first! > > > > ending: Thu Mar 28 08:41:50 MST 2002 > > >