[rancid] Re: cloginrc
Chris Moody
cmoody at qualcomm.com
Tue Jan 15 22:20:48 UTC 2008
You have to put your more-specific matches higher in the list...before
the wildcard "*" matches you have.
It should look like this:
------------------------
add user hostxxx {username}
add password hostxxx {password} {enable_password}
add method hostxxx {ssh}
add cyphertype hostxxx {3des} <--- only really necessary for DES
add user * {username}
add password * {password} {enable_password}
...
and so on
What's happening is that you're matching on the wildcard pattern before
ever getting to the more specific lines.
Cheers,
-Chris
Joshua Krause wrote:
> I have a question about the .cloginrc file. I have a number of switches
> that I am currently backing up the configs with and would like to add my
> pix firewalls. Currently I have this in my cloginrc file:
>
>
>
> ## Routers and Switches
>
> add user * user
>
> add password * {password}
>
> add autoenable * 1
>
>
>
> And I was going to add this for the pix firewalls that used ssh:
>
> ## Pix Firewalls
>
> add password gsonc-spg-pix* {radius pass} {enablepass}
>
> add method gsonc-spg-pix* ssh
>
>
>
> add password *501 {radius pass} {enablepass}
>
> add method *501 ssh
>
>
>
> So my config looks like this now:
>
> ## Routers and Switches
>
> add user * user
>
> add password * {password}
>
> add autoenable * 1
>
>
>
> ## Pix Firewalls
>
> add password gsonc-spg-pix* {radius pass} {enablepass}
>
> add method gsonc-spg-pix* ssh
>
>
>
> add password *501 {radius pass} {enablepass}
>
> add method *501 ssh
>
>
>
>
>
> But my logfile says that the pixes are timeing out at login. Can
> someone help me out with this?
>
>
>
> Thanks,
>
>
>
> Josh
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
More information about the Rancid-discuss
mailing list