From rofe at one.com Mon Oct 6 08:16:06 2008 From: rofe at one.com (Ronni Feldt) Date: Mon, 06 Oct 2008 10:16:06 +0200 Subject: [rancid] Errors ? Message-ID: <1223280966.6035.25.camel@rofe.one.com> Hi, I have installed Rancid and configured it to backup configurations from HP ProCurve 2900 and 3400 switches. The 3400 switches works okey, but none of the 2900 switches works. I get the following errors in the log: ------------------------------------------------------------------------- starting: Mon Oct 6 09:34:05 CEST 2008 cvs status: move away `192.168.15.11'; it is in the way cvs status: move away `192.168.15.12'; it is in the way cvs status: move away `192.168.15.13'; it is in the way cvs status: move away `192.168.15.21'; it is in the way cvs status: move away `192.168.15.22'; it is in the way cvs status: move away `192.168.15.23'; it is in the way Trying to get all of the configs. 192.168.15.15: missed cmd(s): show stack,show module,write term 192.168.15.15: End of run not found ; 192.168.15.16: missed cmd(s): show stack,show module,write term 192.168.15.16: End of run not found ; 192.168.15.17: missed cmd(s): show stack,show module,write term 192.168.15.17: End of run not found ; 192.168.15.25: missed cmd(s): show stack,show module,write term 192.168.15.25: End of run not found ; 192.168.15.24: missed cmd(s): show stack,show module,write term 192.168.15.24: End of run not found ; 192.168.15.26: missed cmd(s): show stack,show module,write term 192.168.15.26: End of run not found ; 192.168.15.27: missed cmd(s): show stack,show module,write term 192.168.15.27: End of run not found ; ===================================== Getting missed routers: round 1. 192.168.15.15: missed cmd(s): show stack,show module,write term 192.168.15.15: End of run not found ; 192.168.15.16: missed cmd(s): show stack,show module,write term 192.168.15.16: End of run not found ; 192.168.15.25: missed cmd(s): show stack,show module,write term 192.168.15.25: End of run not found ; 192.168.15.24: missed cmd(s): show stack,show module,write term 192.168.15.24: End of run not found ; 192.168.15.17: missed cmd(s): show stack,show module,write term 192.168.15.17: End of run not found ; 192.168.15.26: missed cmd(s): show stack,show module,write term 192.168.15.26: End of run not found ; 192.168.15.27: missed cmd(s): show stack,show module,write term 192.168.15.27: End of run not found ; ===================================== Getting missed routers: round 2. 192.168.15.25: missed cmd(s): show stack,show module,write term 192.168.15.25: End of run not found ; 192.168.15.15: missed cmd(s): show stack,show module,write term 192.168.15.15: End of run not found ; 192.168.15.16: missed cmd(s): show stack,show module,write term 192.168.15.16: End of run not found ; 192.168.15.24: missed cmd(s): show stack,show module,write term 192.168.15.24: End of run not found ; 192.168.15.17: missed cmd(s): show stack,show module,write term 192.168.15.17: End of run not found ; 192.168.15.26: missed cmd(s): show stack,show module,write term 192.168.15.26: End of run not found ; 192.168.15.27: missed cmd(s): show stack,show module,write term 192.168.15.27: End of run not found ; ===================================== Getting missed routers: round 3. 192.168.15.15: missed cmd(s): show stack,show module,write term 192.168.15.15: End of run not found ; 192.168.15.16: missed cmd(s): show stack,show module,write term 192.168.15.16: End of run not found ; 192.168.15.25: missed cmd(s): show stack,show module,write term 192.168.15.25: End of run not found ; 192.168.15.24: missed cmd(s): show stack,show module,write term 192.168.15.24: End of run not found ; 192.168.15.17: missed cmd(s): show stack,show module,write term 192.168.15.17: End of run not found ; 192.168.15.26: missed cmd(s): show stack,show module,write term 192.168.15.26: End of run not found ; 192.168.15.27: missed cmd(s): show stack,show module,write term 192.168.15.27: End of run not found ; ===================================== Getting missed routers: round 4. 192.168.15.25: missed cmd(s): show stack,show module,write term 192.168.15.25: End of run not found ; 192.168.15.15: missed cmd(s): show stack,show module,write term 192.168.15.15: End of run not found 192.168.15.16: missed cmd(s): show stack,show module,write term 192.168.15.16: End of run not found ; ; 192.168.15.24: missed cmd(s): show stack,show module,write term 192.168.15.24: End of run not found ; 192.168.15.17: missed cmd(s): show stack,show module,write term 192.168.15.17: End of run not found ; 192.168.15.26: missed cmd(s): show stack,show module,write term 192.168.15.26: End of run not found ; 192.168.15.27: missed cmd(s): show stack,show module,write term 192.168.15.27: End of run not found ; cvs diff: Diffing . cvs diff: Diffing configs cvs diff: cannot find configs/192.168.15.15 cvs diff: cannot find configs/192.168.15.16 cvs diff: cannot find configs/192.168.15.17 cvs diff: cannot find configs/192.168.15.24 cvs diff: cannot find configs/192.168.15.25 cvs diff: cannot find configs/192.168.15.26 cvs diff: cannot find configs/192.168.15.27 cvs commit: Examining . cvs commit: Examining configs cvs commit: Up-to-date check failed for `configs/192.168.15.15' cvs commit: Up-to-date check failed for `configs/192.168.15.16' cvs commit: Up-to-date check failed for `configs/192.168.15.17' cvs commit: Up-to-date check failed for `configs/192.168.15.24' cvs commit: Up-to-date check failed for `configs/192.168.15.25' cvs commit: Up-to-date check failed for `configs/192.168.15.26' cvs commit: Up-to-date check failed for `configs/192.168.15.27' cvs [commit aborted]: correct above errors first! ls: 192.168.15.15: No such file or directory ls: 192.168.15.16: No such file or directory ls: 192.168.15.17: No such file or directory ls: 192.168.15.24: No such file or directory ls: 192.168.15.25: No such file or directory ls: 192.168.15.26: No such file or directory ls: 192.168.15.27: No such file or directory ending: Mon Oct 6 09:34:32 CEST 2008 ------------------------------------------------------------------------- I have tried to delete the following: cvs status: move away `192.168.15.11'; it is in the way cvs status: move away `192.168.15.12'; it is in the way cvs status: move away `192.168.15.13'; it is in the way cvs status: move away `192.168.15.21'; it is in the way cvs status: move away `192.168.15.22'; it is in the way cvs status: move away `192.168.15.23'; it is in the way Which worked for a while, then they came back? When I use: /var/lib/rancid/bin/hlogin -c 'sh run' 192.168.15.11 It works okey on all switches. The errors only appear when I use rancid-run. Any clue on how to solve this? -- Best Regards Ronni Feldt From mstefani at redhat.com Mon Oct 6 11:59:36 2008 From: mstefani at redhat.com (Michael Stefaniuc) Date: Mon, 06 Oct 2008 13:59:36 +0200 Subject: [rancid] [Patch] Preliminary support for the Cisco ACSW and SAN devices Message-ID: <48E9FDA8.8030809@redhat.com> Hello guys, this patch supersedes my previous patch http://www.shrubbery.net/pipermail/rancid-discuss/2008-April/002986.html License: Whatever it takes to get the patch accepted upstream. bye michael -- Michael Stefaniuc Tel.: +49-711-96437-199 Consulting Communications Engineer Fax.: +49-711-96437-111 -------------------------------------------------------------------- Reg. Adresse: Red Hat GmbH, Otto-Hahn-Strasse 20, 85609 Dornach bei Muenchen Handelsregister: Amtsgericht Muenchen HRB 153243 Gesch?ftsf?hrer: Brendan Lane, Charlie Peters, Michael Cunningham, Werner Knoblich -------------- next part -------------- A non-text attachment was scrubbed... Name: rancid-2.3.2a8-sanos.patch Type: text/x-patch Size: 1652 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081006/4b2154c2/attachment.bin From steve at host-it.co.uk Mon Oct 6 16:12:13 2008 From: steve at host-it.co.uk (Steve Ousley) Date: Mon, 6 Oct 2008 17:12:13 +0100 Subject: [rancid] New installation Message-ID: <036c01c927ce$4b5ea590$e21bf0b0$@co.uk> OK, my second installation of Rancid seemed to be all over the place, so having simply one firewall on there, I decided to start from scratch. I followed the instructions, and got rancid installed ok, down to point 7 (Run rancid-cvs) no errors. I then added a firewall to my "asa" group's router.db in the form: "hostname:cisco:up" and ran rancid-run. Now, the reason that this was restarted was due to it not putting the diffs into CVS properly, and it seems that is still the case. I have checked the "asa" log and have this: rancid:/usr/local/rancid# cat var/logs/asa.20081006.170446 starting: Mon Oct 6 17:04:46 BST 2008 cvs add: in directory `.': cvs [add aborted]: there is no version here; do `cvs checkout' first cvs commit: cannot open CVS/Entries for reading: No such file or directory cvs commit: nothing known about `hostname' cvs [commit aborted]: correct above errors first! Added hostname cvs status: cannot open CVS/Entries for reading: No such file or directory cvs status: use `cvs add' to create an entry for `hostname' cvs add: in directory `.': cvs [add aborted]: there is no version here; do `cvs checkout' first cvs added missing router hostname Trying to get all of the configs. All routers sucessfully completed. cvs diff: in directory .: cvs [diff aborted]: there is no version here; run 'cvs checkout' first cvs commit: in directory .: cvs [commit aborted]: there is no version here; run 'cvs checkout' first ending: Mon Oct 6 17:05:01 BST 2008 in the log file. I thought that the rancid-cvs command was supposed to create all of these automatically? I have my LIST_OF_GROUPS setup as: LIST_OF_GROUPS="switches routers asa pix" So this all looks ok to me. Anyone have any ideas on this one? Steve Ousley - SO620-RIPE Nuco Technologies Ltd steve at host-it.co.uk www.nucotechnologies.com Tel. 0870 165 1300 Nuco Technologies Ltd is a company registered in England and Wales with company number 04470751 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081006/6b6188e5/attachment.html From asmirnoff at office.beeline.ru Mon Oct 6 09:13:59 2008 From: asmirnoff at office.beeline.ru (Smirnoff Alexander) Date: Mon, 6 Oct 2008 13:13:59 +0400 Subject: [rancid] Nortel Passport 8600 Message-ID: <986544234AB0A44BADE40DF502E2012A014C4ED5@SPBMAIL.spb.sovintel.net> I make files for collect configs from Nortel Passport 8600, but RANCID disconnect from devices, while loading ?command. Passlogin and passrancid in attachment. RANCID collect only this lines: !RANCID-CONTENT-TYPE: bay ! And when I run command manually: bin/passlogin -t 90 -c "show config" 10.10.0.245 10.10.0.245 spawn telnet 10.10.0.245 Trying 10.10.0.245... Connected to p8606-test.spb.men (10.10.0.245). Escape character is '^]'. ************************************************** * Copyright (c) 2007 Nortel, Inc.??????????????? * All Rights Reserved??????????????????????????? * Metro Ethernet Routing Switch 8006???????????? * Software Release 4.2.1.0OE (Released - General Availability) ************************************************** Login: rancid Password: ********** p8606-test_R:5# config cli more false p8606-test_R:5# show config Preparing to Display Configuration... # # MON OCT 06 13:09:24 2008 UTC # box type???????????? : MERS-8006 # software version???? : 4.2.1.0OE # monitor version????? : 4.2.1.0OE/007 # # # Asic Info : # SlotNum|Name? |CardType?? |MdaType |Parts Description # # Slot? 1?? --???? 0x00000001 0x00000000? # Slot? 2?? --???? 0x00000001 0x00000000? # Slot? 3 8630GBR? 0x2432511e 0x00000000? RSP=25 CLUE=0 F2I=4 F2E=3 FTMUX=17 CC=3 FOQ=267 DPC=184 BMC=776 MAC=4 # Slot? 4 8630GBR? 0x2432511e 0x00000000? RSP=25 CLUE=0 F2I=4 F2E=3 FTMUX=17 CC=3 FOQ=267 DPC=184 BMC=776 MAC=4 # Slot? 5 8692SF?? 0x200e0100 0x00000000? CPU: CPLD=19 MEZZ=2? SFM: OP=3 TMUX=2 SWIP=23 FAD=16 CF=56 # Slot? 6 8692SF?? 0x200e0100 0x00000000? CPU: CPLD=19 MEZZ=2? SFM: OP=3 TMUX=2 SWIP=23 FAD=16 CF=2 # [ ...skip... ] tdi 15500550 create tdi 15500550 name "Test" tdi 15500550 mapped-vlan 555 tdi 15500550 state enable tdi 15500550 end-point 2.1.245.12 create tdi 15500550 end-point 2.1.245.12 connection p2p tdi 15500550 end-point 2.1.245.12 remote-uni? 0.0.240.32 tdi 15500550 end-point 2.1.245.12 ingress-policer disable Connection closed by foreign host. e.g. RANCID connect, and type correct command, but disconnect before end of config. I try this with many P8600 devices, and all of them have same behavior. Anybody have ideas for solve this problem ? ? -- Regards, Alexandr Smirnov -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081006/1e0f4367/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: passlogin Type: application/octet-stream Size: 17296 bytes Desc: passlogin Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081006/1e0f4367/attachment.obj -------------- next part -------------- A non-text attachment was scrubbed... Name: passrancid Type: application/octet-stream Size: 8990 bytes Desc: passrancid Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081006/1e0f4367/attachment-0001.obj From asmirnoff at office.beeline.ru Tue Oct 7 06:11:43 2008 From: asmirnoff at office.beeline.ru (Smirnoff Alexander) Date: Tue, 7 Oct 2008 10:11:43 +0400 Subject: [rancid] Re: Nortel Passport 8600 In-Reply-To: <986544234AB0A44BADE40DF502E2012A014C4ED5@SPBMAIL.spb.sovintel.net> References: <986544234AB0A44BADE40DF502E2012A014C4ED5@SPBMAIL.spb.sovintel.net> Message-ID: <986544234AB0A44BADE40DF502E2012A014C4EDC@SPBMAIL.spb.sovintel.net> I also try to snoop packet exchanges between RANCID and Passport device, and see what : 10.630176? 10.10.1.17 -> 10.10.0.245 TCP 59486 > telnet [ACK] Seq=104 Ack=533061 Win=64128 Len=0 TSV=692340499 TSER=8110395 ?10.642310 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.654464 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.654480? 10.10.1.17 -> 10.10.0.245 TCP 59486 > telnet [ACK] Seq=104 Ack=535957 Win=64128 Len=0 TSV=692340505 TSER=8110396 ?10.666766 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.680580 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.680598? 10.10.1.17 -> 10.10.0.245 TCP 59486 > telnet [ACK] Seq=104 Ack=538853 Win=64128 Len=0 TSV=692340512 TSER=8110396 ?10.692713 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.704419 10.10.0.245 -> 10.10.1.17? TELNET Telnet Data ... ?10.704440? 10.10.1.17 -> 10.10.0.245 TCP 59486 > telnet [ACK] Seq=104 Ack=540749 Win=64128 Len=0 TSV=692340518 TSER=8110396 ?10.704569? 10.10.1.17 -> 10.10.0.245 TCP 59486 > telnet [FIN, ACK] Seq=104 Ack=540749 Win=64128 Len=0 TSV=692340518 TSER=8110396 ?10.708251 10.10.0.245 -> 10.10.1.17? Syslog LOCAL2.DEBUG: CPU5 [10/07/08 10:09:43] SW INFO Closed telnet connection from 10.10.1.17, user rancid rcmd -2 \n\000 ?10.728473 10.10.0.245 -> 10.10.1.17? TCP telnet > 59486 [ACK] Seq=540749 Ack=105 Win=16384 Len=0 TSV=8110396 TSER=692340518 e.g. RANCID send FIN, ACK signal, and after Passport close telnet session. ________________________________ From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Smirnoff Alexander Sent: Monday, October 06, 2008 1:14 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Nortel Passport 8600 I make files for collect configs from Nortel Passport 8600, but RANCID disconnect from devices, while loading command. Passlogin and passrancid in attachment. RANCID collect only this lines: !RANCID-CONTENT-TYPE: bay ! And when I run command manually: bin/passlogin -t 90 -c "show config" 10.10.0.245 10.10.0.245 spawn telnet 10.10.0.245 Trying 10.10.0.245... Connected to p8606-test.spb.men (10.10.0.245). Escape character is '^]'. ************************************************** * Copyright (c) 2007 Nortel, Inc. * All Rights Reserved * Metro Ethernet Routing Switch 8006 * Software Release 4.2.1.0OE (Released - General Availability) ************************************************** Login: rancid Password: ********** p8606-test_R:5# config cli more false p8606-test_R:5# show config Preparing to Display Configuration... # # MON OCT 06 13:09:24 2008 UTC # box type : MERS-8006 # software version : 4.2.1.0OE # monitor version : 4.2.1.0OE/007 # # # Asic Info : # SlotNum|Name |CardType |MdaType |Parts Description # # Slot 1 -- 0x00000001 0x00000000 # Slot 2 -- 0x00000001 0x00000000 # Slot 3 8630GBR 0x2432511e 0x00000000 RSP=25 CLUE=0 F2I=4 F2E=3 FTMUX=17 CC=3 FOQ=267 DPC=184 BMC=776 MAC=4 # Slot 4 8630GBR 0x2432511e 0x00000000 RSP=25 CLUE=0 F2I=4 F2E=3 FTMUX=17 CC=3 FOQ=267 DPC=184 BMC=776 MAC=4 # Slot 5 8692SF 0x200e0100 0x00000000 CPU: CPLD=19 MEZZ=2 SFM: OP=3 TMUX=2 SWIP=23 FAD=16 CF=56 # Slot 6 8692SF 0x200e0100 0x00000000 CPU: CPLD=19 MEZZ=2 SFM: OP=3 TMUX=2 SWIP=23 FAD=16 CF=2 # [ ...skip... ] tdi 15500550 create tdi 15500550 name "Test" tdi 15500550 mapped-vlan 555 tdi 15500550 state enable tdi 15500550 end-point 2.1.245.12 create tdi 15500550 end-point 2.1.245.12 connection p2p tdi 15500550 end-point 2.1.245.12 remote-uni 0.0.240.32 tdi 15500550 end-point 2.1.245.12 ingress-policer disable Connection closed by foreign host. e.g. RANCID connect, and type correct command, but disconnect before end of config. I try this with many P8600 devices, and all of them have same behavior. Anybody have ideas for solve this problem ? -- Regards, Alexandr Smirnov -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081007/be92f0b7/attachment.html From steve at host-it.co.uk Tue Oct 7 08:15:35 2008 From: steve at host-it.co.uk (Steve Ousley) Date: Tue, 7 Oct 2008 09:15:35 +0100 Subject: [rancid] Re: New installation In-Reply-To: <20081006165818.GB3228@shrubbery.net> References: <036c01c927ce$4b5ea590$e21bf0b0$@co.uk> <20081006165818.GB3228@shrubbery.net> Message-ID: <00b201c92854$dfdd5c80$9f981580$@co.uk> -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: 06 October 2008 17:58 To: Steve Ousley Subject: Re: [rancid] New installation >that should have done it. check for group/CVS and CVS/group, if they do >not exist rancid-cvs has a bug because it obviously encountered a problem >and did not display the error. These do not exist at all: rancid:/usr/local/rancid/var# ls CVS/ CVSROOT rancid:/usr/local/rancid/var# ls asa/ configs router.db routers.all routers.down routers.up >mv group group.old >rancid-cvs group Where am I doing these? In the var/ directory? >if group does not exist, then >cvs -d CVS co group Then I assume this is if the group doesn't exist in CVS? Steve From steve at host-it.co.uk Wed Oct 8 16:52:00 2008 From: steve at host-it.co.uk (Steve Ousley) Date: Wed, 8 Oct 2008 17:52:00 +0100 Subject: [rancid] Re: New installation In-Reply-To: <00b201c92854$dfdd5c80$9f981580$@co.uk> References: <036c01c927ce$4b5ea590$e21bf0b0$@co.uk> <20081006165818.GB3228@shrubbery.net> <00b201c92854$dfdd5c80$9f981580$@co.uk> Message-ID: <014101c92966$2efebfe0$8cfc3fa0$@co.uk> I now have a working Rancid installation. I think it is a bug in the rancid-cvs that caused this as I simply copied the slightly older version from our previously running rancid box, and everything went through ok first time :) Thanks for the help. Steve Ousley - SO620-RIPE Nuco Technologies Ltd steve at host-it.co.uk www.nucotechnologies.com Tel. 0870 165 1300 Nuco Technologies Ltd is a company registered in England and Wales with company number 04470751 -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Steve Ousley Sent: 07 October 2008 09:16 To: 'john heasley'; rancid-discuss at shrubbery.net Subject: [rancid] Re: New installation -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: 06 October 2008 17:58 To: Steve Ousley Subject: Re: [rancid] New installation >that should have done it. check for group/CVS and CVS/group, if they do >not exist rancid-cvs has a bug because it obviously encountered a problem >and did not display the error. These do not exist at all: rancid:/usr/local/rancid/var# ls CVS/ CVSROOT rancid:/usr/local/rancid/var# ls asa/ configs router.db routers.all routers.down routers.up >mv group group.old >rancid-cvs group Where am I doing these? In the var/ directory? >if group does not exist, then >cvs -d CVS co group Then I assume this is if the group doesn't exist in CVS? Steve _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From kristian at spritelink.net Wed Oct 8 19:35:42 2008 From: kristian at spritelink.net (Kristian Larsson) Date: Wed, 8 Oct 2008 21:35:42 +0200 Subject: [rancid] clogin CSS patch Message-ID: <20081008193541.GD49596@spritelink.se> Hello! We've been keeping a copy of RANCID with a few local modifications done here at Tele2 for a while now and I thought it'd be time to commit them back upstream. First off and very simple is a change to clogin which takes care of another annoying question on the Cisco CSS. --- clogin 2008-10-08 20:46:31.121000000 +0200 +++ /home/staff/kll/p/nils/tools/clogin 2008-10-08 21:27:30.996000000 +0200 @@ -687,7 +629,8 @@ send "n\r" exp_continue } - "Configuration changes have occurred.*" { # Cisco CSS + -re "(Profile|Configuration) changes have occurred\." { + # Cisco CSS send "n\r" exp_continue } Also available at http://people.tele2.net/~kll/clogin-css.patch I'll be going through the rest of the differences and will probably post a few patches within the coming days. Kind regards, Kristian. -- Kristian Larsson KLL-RIPE Network Engineer / Internet Core Tele2 / SWIPnet [AS1257] +46 704 910401 kll at spritelink.net From Bruce.Jelley at telecom.co.nz Wed Oct 8 21:26:01 2008 From: Bruce.Jelley at telecom.co.nz (Bruce Jelley) Date: Thu, 9 Oct 2008 10:26:01 +1300 Subject: [rancid] Rancid upgrade 2.2.2 to 2.3.2 Message-ID: <23D44BA19118AE4FA83DEE506D01A61D04C5CF5D@AKEXBE02.telecom.tcnz.net> Hi I am new to Rancid and need to upgrade 2.2.2 to 2.3.2 on Red Hat 9. Please can someone help on how to upgrade and what command will show the version I am running? Thanks Bruce -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081009/c0ac2e71/attachment.html From Atif.SIDDIQUI at HydroOne.com Thu Oct 9 16:18:59 2008 From: Atif.SIDDIQUI at HydroOne.com (Atif.SIDDIQUI at HydroOne.com) Date: Thu, 9 Oct 2008 12:18:59 -0400 Subject: [rancid] Re: cisco Last configuration change by In-Reply-To: <23D44BA19118AE4FA83DEE506D01A61D04C5CF5D@AKEXBE02.telecom.tcnz.net> References: <23D44BA19118AE4FA83DEE506D01A61D04C5CF5D@AKEXBE02.telecom.tcnz.net> Message-ID: <41BBAE5132ABA54BB2BA8716254F03D601026E28@1104MILPEV.corp.hydroone.com> Hi Dan, I have commented it out, but still my backed up configs do not show this info. Anything else needs to be modified here. Thanks From: Daniel Medina [mailto:daniel.medina at gmail.com ] Sent: Thursday, September 04, 2008 5:09 PM To: Smirnoff Alexander Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Re: cisco Last configuration change by On Thu, Sep 04, 2008 at 11:16:57AM +0400, Smirnoff Alexander wrote: > Ok, I found another variant - can rancid add this line, when another > configuration changes coming - to identity who made it? You could just comment out the line from rancid that skips over this information: # /^! (Last configuration|NVRAM config last)/ && next; But a better way to track who makes changes is to use some kind of AAA like Tacacs so you can identify what commands are being issued. -- Dan -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081009/bb9058ea/attachment.html From djyoud at library.uwa.edu.au Mon Oct 13 09:18:21 2008 From: djyoud at library.uwa.edu.au (Doug Youd) Date: Mon, 13 Oct 2008 17:18:21 +0800 Subject: [rancid] Cluster support? Message-ID: <5FE06D2D8951884B94EADE1742A48AAF0BE4F5@LIB-VSRV-S02.lib-staff.library.uwa.edu.au> Hi, I've just stumbled upon RANCID and installed / configured it. Our network uses several switch clusters which I'd like to receive and audit configs of. I did a bit of searching and came across this: http://www.shrubbery.net/pipermail/rancid-discuss/2005-May/000998.html That does seem a bit rough... has anyone come up with a more elegant solution? Thanks, Doug Youd Network / Systems Officer UWA Library IT -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081013/a464d9f5/attachment.html From rancid at gheek.net Mon Oct 13 14:58:23 2008 From: rancid at gheek.net (Lance Vermilion) Date: Mon, 13 Oct 2008 07:58:23 -0700 Subject: [rancid] Re: Cluster support? In-Reply-To: <5FE06D2D8951884B94EADE1742A48AAF0BE4F5@LIB-VSRV-S02.lib-staff.library.uwa.edu.au> References: <5FE06D2D8951884B94EADE1742A48AAF0BE4F5@LIB-VSRV-S02.lib-staff.library.uwa.edu.au> Message-ID: <8423e7bb0810130758g11d56aecu98d33e008d240318@mail.gmail.com> I am not sure but you might be able to use an extension by (I think) Ed Ravin that allows you to jump through one device to get to another one. I have never personally used it but you might have a look at it. On Mon, Oct 13, 2008 at 2:18 AM, Doug Youd wrote: > Hi, > > > > I've just stumbled upon RANCID and installed / configured it. Our network > uses several switch clusters which I'd like to receive and audit configs of. > > > > I did a bit of searching and came across this: > http://www.shrubbery.net/pipermail/rancid-discuss/2005-May/000998.html > > > > That does seem a bit rough... has anyone come up with a more elegant > solution? > > > > Thanks, > > Doug Youd > > Network / Systems Officer > > UWA Library IT > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081013/59129cfb/attachment.html From cstave at gmail.com Mon Oct 13 17:26:39 2008 From: cstave at gmail.com (Chris Stave) Date: Mon, 13 Oct 2008 13:26:39 -0400 Subject: [rancid] Re: Cluster support? In-Reply-To: <5FE06D2D8951884B94EADE1742A48AAF0BE4F5@LIB-VSRV-S02.lib-staff.library.uwa.edu.au> References: <5FE06D2D8951884B94EADE1742A48AAF0BE4F5@LIB-VSRV-S02.lib-staff.library.uwa.edu.au> Message-ID: <5471c93d0810131026l14550406r47403159b91c41b7@mail.gmail.com> After attempting to cram cluster support into RANCID and running into it being quite rough, I just added ip addresses to the cluster members and collect them normally. Switch numbering-wise, it ends up being a rather clever solution, as our switches were numbered 10.0.0.[switch number] with a netmask of 255.255.255.0. To ensure that up to three cluster members can be nicely numbered, we've gone to using 10.0.[cluster member number].[switch number] with a netmask of 255.255.252.0. This still makes it very easy to tell which switches are related to each other and removes any odd things you'd have to do to RANCID. So, while certainly possible to add cluster support to RANCID as I did in the past, the benefits are few compared to just adding ip addresses to the cluster members. Chris On Mon, Oct 13, 2008 at 5:18 AM, Doug Youd wrote: > Hi, > > > > I've just stumbled upon RANCID and installed / configured it. Our network > uses several switch clusters which I'd like to receive and audit configs of. > > > > I did a bit of searching and came across this: > http://www.shrubbery.net/pipermail/rancid-discuss/2005-May/000998.html > > > > That does seem a bit rough... has anyone come up with a more elegant > solution? > > > > Thanks, > > Doug Youd > > Network / Systems Officer > > UWA Library IT > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081013/8f1b9908/attachment.html From zod at reachlocal.com Tue Oct 14 22:40:00 2008 From: zod at reachlocal.com (Zod Mansour) Date: Tue, 14 Oct 2008 15:40:00 -0700 (PDT) Subject: [rancid] nslogin netscaler V8 Message-ID: <647698398.4562331224024000032.JavaMail.root@prmx055.reachlocal.com> Does anyone have a working nslogin for netscaler Version 8? thx, Zod From jonathan at 23andme.com Tue Oct 14 23:00:41 2008 From: jonathan at 23andme.com (Jonathan Hansen) Date: Tue, 14 Oct 2008 16:00:41 -0700 Subject: [rancid] contributions Message-ID: <7ACDBC02-16FE-4FBF-9D49-B3B30F4A8E32@23andme.com> I have just added Dell Power Connect switches plus an ftp based script for APC PDU units to our in house rancid, is there any interest in adding these to the tree? If so I have permission from my company to do so. -Jonathan PS: A warning... the ftp one is done in python since I only know enough perl to hack other people's stuff not create my own. The Dell one is in perl. From rancid at ale.cx Wed Oct 15 08:53:58 2008 From: rancid at ale.cx (Alex Dekker) Date: Wed, 15 Oct 2008 09:53:58 +0100 Subject: [rancid] Re: contributions In-Reply-To: <7ACDBC02-16FE-4FBF-9D49-B3B30F4A8E32@23andme.com> References: <7ACDBC02-16FE-4FBF-9D49-B3B30F4A8E32@23andme.com> Message-ID: <200810150953.58779.rancid@ale.cx> On Wednesday 15 October 2008 00:00:41 Jonathan Hansen wrote: > I have just added Dell Power Connect switches plus an ftp based script > for APC PDU units to our in house rancid, is there any interest in > adding these to the tree? If so I have permission from my company to > do so. Yes, I'm interested. I have a number of Linksys SFE2000P switches [same as Dells] that I'd like to back up with Rancid. alexd From mario.carassale at sohonet.co.uk Thu Oct 16 16:19:33 2008 From: mario.carassale at sohonet.co.uk (Mario Carassale) Date: Thu, 16 Oct 2008 17:19:33 +0100 Subject: [rancid] RANCID support for MRV - TASMAN Message-ID: <48F76995.6000006@sohonet.co.uk> Hi All, does anybody know if there is support for TASMAN or MRV hardware? Thanks -- Mario Carassale From mario.carassale at sohonet.co.uk Fri Oct 17 12:48:09 2008 From: mario.carassale at sohonet.co.uk (Mario Carassale) Date: Fri, 17 Oct 2008 13:48:09 +0100 Subject: [rancid] RANCID comment out password Message-ID: <48F88989.8030801@sohonet.co.uk> Hi Guys, do you know if there is a way of not comment out password in the config files pulled by RANCID? Cheers -- Mario From mario.carassale at sohonet.co.uk Fri Oct 17 12:50:39 2008 From: mario.carassale at sohonet.co.uk (Mario Carassale) Date: Fri, 17 Oct 2008 13:50:39 +0100 Subject: [rancid] Re: RANCID comment out password In-Reply-To: <48F88989.8030801@sohonet.co.uk> References: <48F88989.8030801@sohonet.co.uk> Message-ID: <48F88A1F.5060906@sohonet.co.uk> Sorry guys, found it. ;-) Mario Carassale wrote: > Hi Guys, > > do you know if there is a way of not comment out password in the config > files pulled by RANCID? > > Cheers > > -- Mario Carassale Engineer Sohonet Limited 60 Poland Street London W1F 7NT t +44 (0) 20-7292-6900 m +44 (0) 79-5854-2157 f +44 (0) 20-7292-6901 e mario.carassale at sohonet.co.uk Registered no. 3132110 England/Wales From gregoryzill at solutionary.com Mon Oct 20 15:07:36 2008 From: gregoryzill at solutionary.com (Gregory W Zill) Date: Mon, 20 Oct 2008 10:07:36 -0500 Subject: [rancid] Juniper SSG-1000 Help Message-ID: <48FC9EB8.6080401@solutionary.com> I need some juniper assistance for this relatively new SSG1000. I have tried both the *juniper* and *netscreen* options in the .cloginrc file but I am not getting the automated configs. The juniper option is quiet and successful with jlogin and the hourly runs but no config gets added to the CVS. Then, I also tried netscreen setting in .cloginrc and I get an error back to the screen with nlogin and no login and nothing in the CVS, of course. ERROR MESG: NSRPCLUSTER:-> can't read "enable": no such variable while executing "if { $enable } { if {[do_enable $enauser $enapasswd]} { if { $do_command || $do_script } { close; wait continue } } }" ("foreach" body line 66) invoked from within "foreach firewall [lrange $argv $i end] { set firewall [string tolower $firewall] send_user "$firewall\n" set prompt ">" -- gregory w zill, mba, cissp Information Security Engineer Managed Services Team ----------------------------- Solutionary, Inc. Making Security Manageable v: 402-361-3066 From s.warner-jones at lancs.ac.uk Wed Oct 22 16:03:36 2008 From: s.warner-jones at lancs.ac.uk (Stephen Warner-Jones) Date: Wed, 22 Oct 2008 17:03:36 +0100 Subject: [rancid] Rancid only seems to want to use clogin and not jlogin Message-ID: <48FF4ED8.1090800@lancs.ac.uk> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi All, I've setting up RANCID for our network with 2500+ devices and I'm having a few issues, I've been trawling the archives of the list but I can't find a few answers. I'm using rancid 2.3.2a7 on debian. I'm trying to get config from a few Juniper M7i's and I'm meeting an odd problem. I've set the equipment type as juniper in /home/.cloginrc and if I login with jlogin from command line it works fine. However when I use rancid as the same user I get an timeout error back from clogin: rancid hostname hostname clogin error: Error: TIMEOUT reached Is there a trick I'm missing to get rancid to use jlogin not clogin, I'm assuming the paths are set right as i can use jlogin from the cmd line. Any help greatly appreciated Steve -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFI/07YszlDOxp8fpERAu35AJ9x1T3Fk2dpYEmDIcufxfcq4T5pqgCeOIky gZzVBZLk+Q3d7GD6T47r8iw= =U2be -----END PGP SIGNATURE----- From rancid at gheek.net Wed Oct 22 16:13:20 2008 From: rancid at gheek.net (Lance Vermilion) Date: Wed, 22 Oct 2008 09:13:20 -0700 Subject: [rancid] Re: Rancid only seems to want to use clogin and not jlogin In-Reply-To: <48FF4ED8.1090800@lancs.ac.uk> References: <48FF4ED8.1090800@lancs.ac.uk> Message-ID: <8423e7bb0810220913l78984189t346b9cba2427b112@mail.gmail.com> Steve, rancid links to clogin. When you run rancid-run it will then look at rancid-fe and figure out that it needs to use jrancid (I think that is what it is called). On Wed, Oct 22, 2008 at 9:03 AM, Stephen Warner-Jones < s.warner-jones at lancs.ac.uk> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi All, > > I've setting up RANCID for our network with 2500+ devices and I'm > having a few issues, I've been trawling the archives of the list but I > can't find a few answers. > > I'm using rancid 2.3.2a7 on debian. > > I'm trying to get config from a few Juniper M7i's and I'm meeting an > odd problem. I've set the equipment type as juniper in /home/.cloginrc > and if I login with jlogin from command line it works fine. > > However when I use rancid as the same user I get an timeout error > back from clogin: > > > rancid hostname > hostname clogin error: Error: TIMEOUT reached > > Is there a trick I'm missing to get rancid to use jlogin not clogin, > I'm assuming the paths are set right as i can use jlogin from the cmd line. > > Any help greatly appreciated > > > Steve > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFI/07YszlDOxp8fpERAu35AJ9x1T3Fk2dpYEmDIcufxfcq4T5pqgCeOIky > gZzVBZLk+Q3d7GD6T47r8iw= > =U2be > -----END PGP SIGNATURE----- > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081022/7322af64/attachment.html From hina at hina.fr Wed Oct 22 20:09:50 2008 From: hina at hina.fr (hina) Date: Wed, 22 Oct 2008 22:09:50 +0200 Subject: [rancid] Re: Rancid only seems to want to use clogin and not jlogin In-Reply-To: <48FF4ED8.1090800@lancs.ac.uk> References: <48FF4ED8.1090800@lancs.ac.uk> Message-ID: <20081022200950.GA1449@hina.fr> Hi Look on your ~rancid/bin/rancid-fe Inside you can find with login is used with juniper. and modify as necessary hina On Wed, Oct 22, 2008 at 05:03:36PM +0100, Stephen Warner-Jones wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Hi All, > > I've setting up RANCID for our network with 2500+ devices and I'm > having a few issues, I've been trawling the archives of the list but I > can't find a few answers. > > I'm using rancid 2.3.2a7 on debian. > > I'm trying to get config from a few Juniper M7i's and I'm meeting an > odd problem. I've set the equipment type as juniper in /home/.cloginrc > and if I login with jlogin from command line it works fine. > > However when I use rancid as the same user I get an timeout error > back from clogin: > > > rancid hostname > hostname clogin error: Error: TIMEOUT reached > > Is there a trick I'm missing to get rancid to use jlogin not clogin, > I'm assuming the paths are set right as i can use jlogin from the cmd line. > > Any help greatly appreciated > > > Steve > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFI/07YszlDOxp8fpERAu35AJ9x1T3Fk2dpYEmDIcufxfcq4T5pqgCeOIky > gZzVBZLk+Q3d7GD6T47r8iw= > =U2be > -----END PGP SIGNATURE----- > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From tom.duijf at gmail.com Wed Oct 22 14:49:30 2008 From: tom.duijf at gmail.com (Tom Duijf) Date: Wed, 22 Oct 2008 16:49:30 +0200 Subject: [rancid] nsrancid / nslogin - netscalar (citrix access gateway) In-Reply-To: <7ACDBC02-16FE-4FBF-9D49-B3B30F4A8E32@23andme.com> References: <7ACDBC02-16FE-4FBF-9D49-B3B30F4A8E32@23andme.com> Message-ID: <48FF3D7A.3060203@gmail.com> Hi all, We recently purchased a couple of citrix access gateways (which are basically netscalars v8). I have read on the mailing lists that the current nslogin / nsrancid were built for the netscalar v6 (and lower?), but that it doesnt work for the v8. Does anyone have a working solution for this (and willing to share it ? :) ). Kind regards, Tom From gregoryzill at solutionary.com Thu Oct 23 14:30:23 2008 From: gregoryzill at solutionary.com (Gregory W Zill) Date: Thu, 23 Oct 2008 09:30:23 -0500 Subject: [rancid] Netscreen/Juniper ISG1000 FW Not Working Message-ID: <49008A7F.6090404@solutionary.com> The commands on this firewall start with "GET" but no matter how I try to setup the router.db it wants to send all kinds of "SHOW" commands. Is there some fix for netscreen/juniper? Any help would be appreciated. -- gregory w zill, mba, cissp Information Security Engineer Managed Services Team ----------------------------- Solutionary, Inc. Making Security Manageable v: 402-361-3066 From john at sackheads.org Fri Oct 24 14:20:08 2008 From: john at sackheads.org (John Payne) Date: Fri, 24 Oct 2008 10:20:08 -0400 Subject: [rancid] Re: Netscreen/Juniper ISG1000 FW Not Working In-Reply-To: <49008A7F.6090404@solutionary.com> References: <49008A7F.6090404@solutionary.com> Message-ID: On Oct 23, 2008, at 10:30 AM, Gregory W Zill wrote: > The commands on this firewall start with "GET" but no matter how I try > to setup the router.db it wants to send all kinds of "SHOW" > commands. Is > there some fix for netscreen/juniper? Any help would be appreciated. What are you putting in the router.db file? ISG2000s and all kinds of netscreen and SSGs are working happily with "netscreen". From john at sackheads.org Fri Oct 24 14:21:21 2008 From: john at sackheads.org (John Payne) Date: Fri, 24 Oct 2008 10:21:21 -0400 Subject: [rancid] Re: Juniper SSG-1000 Help In-Reply-To: <48FC9EB8.6080401@solutionary.com> References: <48FC9EB8.6080401@solutionary.com> Message-ID: <94F66801-24D8-404A-AAED-85C2782E9A40@sackheads.org> On Oct 20, 2008, at 11:07 AM, Gregory W Zill wrote: > I need some juniper assistance for this relatively new SSG1000. Is this the same problem as the one I just replied to? :) From Atif.SIDDIQUI at HydroOne.com Fri Oct 24 14:31:04 2008 From: Atif.SIDDIQUI at HydroOne.com (Atif.SIDDIQUI at HydroOne.com) Date: Fri, 24 Oct 2008 10:31:04 -0400 Subject: [rancid] Re: Netscreen/Juniper ISG1000 FW Not Working In-Reply-To: <49008A7F.6090404@solutionary.com> References: <49008A7F.6090404@solutionary.com> Message-ID: <41BBAE5132ABA54BB2BA8716254F03D6010BE731@1104MILPEV.corp.hydroone.com> I know that there is patch required for Netscreen; we have to modify it to get it working for SSG's and ISG's. It is nlogin, nracnid require some changes to be made. Check this link: http://natesteffen.com/article_rancid_dell_ns.html -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Gregory W Zill Sent: Thursday, October 23, 2008 10:30 AM To: 'rancid-discuss at shrubbery.net' Subject: [rancid] Netscreen/Juniper ISG1000 FW Not Working The commands on this firewall start with "GET" but no matter how I try to setup the router.db it wants to send all kinds of "SHOW" commands. Is there some fix for netscreen/juniper? Any help would be appreciated. -- gregory w zill, mba, cissp Information Security Engineer Managed Services Team ----------------------------- Solutionary, Inc. Making Security Manageable v: 402-361-3066 _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From gregoryzill at solutionary.com Fri Oct 24 14:29:59 2008 From: gregoryzill at solutionary.com (Gregory W Zill) Date: Fri, 24 Oct 2008 09:29:59 -0500 Subject: [rancid] Re: Netscreen/Juniper ISG1000 FW Not Working In-Reply-To: References: <49008A7F.6090404@solutionary.com> Message-ID: <4901DBE7.6020001@solutionary.com> Yeah, I think I am working now, finally I changed type to netscreen and added the missing curly brace in ~bin/nrancid plus added some commenting around an enable chunk in ~bin/nlogin because it was trying to enable and failing after the curly brace fix. I read about both of these fixes on google. Our rancid version is one or two clicks behind so the manual fix is just until our systems groups can update it. Next I want to add some additional commands to pull down 'get chassis' and some other info -- have you done this? Evidently on 10/24/2008 09:20 AM, John Payne was quoted as saying:: > > On Oct 23, 2008, at 10:30 AM, Gregory W Zill wrote: > >> The commands on this firewall start with "GET" but no matter how I try >> to setup the router.db it wants to send all kinds of "SHOW" commands. Is >> there some fix for netscreen/juniper? Any help would be appreciated. > > What are you putting in the router.db file? ISG2000s and all kinds of > netscreen and SSGs are working happily with "netscreen". > -- gregory w zill, mba, cissp Information Security Engineer Managed Services Team ----------------------------- Solutionary, Inc. Making Security Manageable v: 402-361-3066 From samael00 at gmail.com Tue Oct 28 17:47:39 2008 From: samael00 at gmail.com (Peter) Date: Tue, 28 Oct 2008 13:47:39 -0400 Subject: [rancid] rancid running from cron fails for some devices that can be manually run Message-ID: <904A1B95-E9D4-4874-9C66-A09C848D9922@gmail.com> HI All, I was wondering if anyone has seen an issue like this before. I have rancid setup at my work to nightly backup a bunch of cisco routers , switches and 2 F5 load balancers. I have it set so it's a cron job that runs at midnight. Every night when Rancid runs it fails for the F5's and succeeds for everything else. What is weird is that if I manually run rancid against these devices individually or as the full group they succeed. I have tried moving the cron job to a different time and also verified that connectivity has not been lost during the time it runs. The only constant I have found it that if rancid runs from cron it fails for these 2 devices and it succeeds if I run it manually. Has anyone ever seen similar behavior or have any thoughts ? thanks, Peter From mashcraft at omniture.com Tue Oct 28 19:09:58 2008 From: mashcraft at omniture.com (Mike Ashcraft) Date: Tue, 28 Oct 2008 13:09:58 -0600 Subject: [rancid] Re: rancid running from cron fails for some devices that canbe manually run In-Reply-To: <904A1B95-E9D4-4874-9C66-A09C848D9922@gmail.com> References: <904A1B95-E9D4-4874-9C66-A09C848D9922@gmail.com> Message-ID: <45EB285310B55542A513F93230F0A53308079CAC@EXCHANGE0.orm.omniture.com> I had this problem when developing the rancid scripts for F5 that have been posted to this list previously. The problem was related to the environment differences between running from the command line and from cron and effects any device that uses a BSD or Linux based OS. Look for the differences in the environment between your command line and cron. TERM is the most likely as this is passed when negotiating the ssh connection to the device. In more recent versions of my F5rancid script, I forced the term to 'vt100' before running any commands to resolve this without having to tweak the environment cron uses. Good luck, Mike -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Peter Sent: Tuesday, October 28, 2008 11:48 AM To: rancid-discuss at shrubbery.net Subject: [rancid] rancid running from cron fails for some devices that canbe manually run HI All, I was wondering if anyone has seen an issue like this before. I have rancid setup at my work to nightly backup a bunch of cisco routers , switches and 2 F5 load balancers. I have it set so it's a cron job that runs at midnight. Every night when Rancid runs it fails for the F5's and succeeds for everything else. What is weird is that if I manually run rancid against these devices individually or as the full group they succeed. I have tried moving the cron job to a different time and also verified that connectivity has not been lost during the time it runs. The only constant I have found it that if rancid runs from cron it fails for these 2 devices and it succeeds if I run it manually. Has anyone ever seen similar behavior or have any thoughts ? thanks, Peter _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From marco at schirrmeister.net Thu Oct 30 03:14:44 2008 From: marco at schirrmeister.net (Marco Schirrmeister) Date: Thu, 30 Oct 2008 04:14:44 +0100 Subject: [rancid] Re: nslogin netscaler V8 Message-ID: <0E1ADE61-4645-4EE4-AFC0-7B5844DDCC94@schirrmeister.net> On Tuesday 14 October 2008 22:40:00 Zod Mansour wrote: > Does anyone have a working nslogin for netscaler Version 8? I noticed the same issue with a NetScaler V8 firmware. It just didn't logged in and stopped at the password prompt. I guess the NetScaler files that included in upstream at the moment are very old. I think below version 5, but I don't know. I modified the nslogin and nsrancid scripts that they match with the prompt and the commands on a NetScaler with version 8.x firmware. Maybe we can include more commands. Right now it only runs "show ns ns.conf". You can find my patches and a new RPM package here. http://people.ogilvy.de/~mschirrmeister/linux/rancid/ Marco -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 2330 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081030/1cb32123/attachment.bin From networking at hostalia.com Thu Oct 30 10:23:11 2008 From: networking at hostalia.com (=?UTF-8?B?ScOxYWtpIE1hcnRpbmV6IERpZXo=?=) Date: Thu, 30 Oct 2008 11:23:11 +0100 Subject: [rancid] Extreme XOS 12. Message-ID: <49098B0F.4030705@hostalia.com> An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081030/fb1db520/attachment.html From zod at reachlocal.com Thu Oct 30 21:24:41 2008 From: zod at reachlocal.com (Zod Mansour) Date: Thu, 30 Oct 2008 14:24:41 -0700 (PDT) Subject: [rancid] Re: nslogin netscaler V8 In-Reply-To: <0E1ADE61-4645-4EE4-AFC0-7B5844DDCC94@schirrmeister.net> Message-ID: <797620985.547041225401881485.JavaMail.root@prmx055.lax.reachlocal.com> I tested your script and it works well. Thanks. I needed it as well. ----- Original Message ----- From: "Marco Schirrmeister" To: zod at reachlocal.com, rancid-discuss at shrubbery.net Sent: Wednesday, October 29, 2008 8:14:44 PM GMT -08:00 US/Canada Pacific Subject: [rancid] Re: nslogin netscaler V8 On Tuesday 14 October 2008 22:40:00 Zod Mansour wrote: > Does anyone have a working nslogin for netscaler Version 8? I noticed the same issue with a NetScaler V8 firmware. It just didn't logged in and stopped at the password prompt. I guess the NetScaler files that included in upstream at the moment are very old. I think below version 5, but I don't know. I modified the nslogin and nsrancid scripts that they match with the prompt and the commands on a NetScaler with version 8.x firmware. Maybe we can include more commands. Right now it only runs "show ns ns.conf". You can find my patches and a new RPM package here. http://people.ogilvy.de/~mschirrmeister/linux/rancid/ Marco From lucas.tobey at 1and1.com Fri Oct 31 14:50:20 2008 From: lucas.tobey at 1and1.com (Lucas Tobey) Date: Fri, 31 Oct 2008 10:50:20 -0400 Subject: [rancid] Re: Foundry RANCID issues. Disappearing ACLs and route-maps?! In-Reply-To: <0MKpCa-1KkQqK3T9o-0005Vs@mrelay.perfora.net> References: <0MKpCa-1KkQqK3T9o-0005Vs@mrelay.perfora.net> Message-ID: <0MKpCa-1KvvKO3iqq-00089W@mrelay.perfora.net> Hi, Just wanted to update my own thread. This issue was related to the version of Foundry code we were running. 3.7h and bove of ironware fixes it. Bug #84391 Lucas Tobey wrote: > Hello All, > > We are having some problems with our Foundry routers and RANCID. I'm > wondering if anyone else is having these same issues or similar issues. > > We are noticing that RANCID is sending us a lot of garbage diffs from > our configs. It states that ACL, route-maps, and even BGP configuration > keeps disappearing and reappearing. Anyone have similar issues or know > of a way we can fix this?? > > Thanks! > -Lucas > > > > ------------------------------------------------------------------------ > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -- Lucas Tobey 1&1 Internet, WAN Team Office Phone: (610) 560-1639 || Fax: (610) 560-1656 10950 Strang Line Rd, Lenexa, KS 66215, USA -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 252 bytes Desc: OpenPGP digital signature Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20081031/c95b5e3b/attachment.bin