[rancid] Re: cisco Last configuration change by

Shekhar Basnet shekhar at mos.com.np
Fri Sep 5 03:41:50 UTC 2008


This is a very nice tip. Thank you for sharing.

Best regards,
Shekhar.

-----Original Message-----
From: rancid-discuss-bounces at shrubbery.net
[mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Wardlaw, Jeff
Sent: Friday, September 05, 2008 2:37 AM
To: Chris Gauthier; Daniel Medina; Smirnoff Alexander
Cc: rancid-discuss at shrubbery.net
Subject: [rancid] Re: cisco Last configuration change by

Cisco can log who does what. Set up a syslog box. Configure your cisco
device like so:
!
archive
 log config
  logging enable
  logging size 500
  notify syslog
  hidekeys
!

This will log all command to your syslog box.

Alternatively you can 'show archive log config all' to see the 500 lines
it's seen and who's done it.

CH_NAME_RTR# show archive log config all
idx sess user at line Logged command
1 1 david at vty0 | logging enable
2 1 david at vty0 | logging size 200
3 2 david at vty0 |hostname CH_NAME_RTR
4 2 david at vty0 |enable secret ***** (this is hidden because of hidekeys
command)
5 2 david at vty0 |interface FastEthernet0/0
6 2 david at vty0 | bandwidth 100000

Link:
http://itknowledgeexchange.techtarget.com/cisco/tracking-configuration-c
hanges-with-the-cisco-ios-built-in-using-the-archive-command/

--
Jeff

> -----Original Message-----
> From: rancid-discuss-bounces at shrubbery.net 
> [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of 
> Chris Gauthier
> Sent: Thursday, September 04, 2008 12:40
> To: Daniel Medina; Smirnoff Alexander
> Cc: rancid-discuss at shrubbery.net
> Subject: [rancid] Re: cisco Last configuration change by
> 
> Not exactly the answer you want to hear, but "Go buy a 
> Juniper".  Their routers have the ability to log every 
> command and who performed it.
> 
> I don't know, other than using AAA Accounting, how you would 
> get that granular of change information, especially if you 
> are pulling info from the router and not pushing it to the server.
> 
> Chris
> 
> -----Original Message-----
> From: rancid-discuss-bounces at shrubbery.net
> [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of 
> Daniel Medina
> Sent: Thursday, September 04, 2008 7:43 AM
> To: Smirnoff Alexander
> Cc: rancid-discuss at shrubbery.net
> Subject: [rancid] Re: cisco Last configuration change by
> 
> On Thu, Sep 04, 2008 at 06:13:17PM +0400, Smirnoff Alexander wrote:
> > I track with AAA, but in case with rancid I will receive changes and
> who
> > made it in one place.
> 
>  This is the problem:
> 
>  1. Dan makes a change, X, wr mem
> 
>  2. Bogdan makes a change, Y, wr mem
> 
>  3. rancid runs, collects the configs, mails the diffs
> 
>     - you see changes X + Y
> 
>     - you see a line that says the config and NVRAM was last 
> changed by Bodgan
> 
> --
> Dan
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> 
_______________________________________________
Rancid-discuss mailing list
Rancid-discuss at shrubbery.net
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss

-- 
Experience Fully featured web mail through
http://fulbari.mos.com.np



__________ Information from ESET Smart Security, version of virus signature
database 3416 (20080904) __________

The message was checked by ESET Smart Security.

     - is OK

http://www.eset.com



-- 
Experience Fully featured web mail through
http://fulbari.mos.com.np




More information about the Rancid-discuss mailing list