[rancid] Re: Problem getting config from Cisco ASA firewalls
William
willay at gmail.com
Thu Dec 17 08:10:49 UTC 2009
Ronni,
According to your email when accessing the firewall manually there is
no autoenable, so I would try the following config for your device:
add userprompt 10.10.1.2 pix
add method 10.10.1.2 telnet
add password 10.10.1.2 {exec_pass} {enable_pass}
hope this helps.
Cheers,
Will
2009/12/17 Ronni Jensen <ronnij at gmail.com>:
> Hi,
>
> My rancid installation works perfectly for Cisco Catalyst switches and other
> stuff too.. but for the Cisco ASA firewalls it fails.. In the logs, I get
> the "clogin error: Error: TIMEOUT reached" error.
>
> .cloginrc for a particular FW looks like:
>
> add password 10.10.1.2 {exec_pass} {enable_pass}
> add method 10.10.1.2 telnet
> add autoenable 10.10.1.2 {1}
>
> I've also tried replacing IP-address with DNS hostname or just using a
> wildcard star... no difference. When I telnet directly from the server to
> the firewall, the sequence looks like:
>
>
> [me at LinuxSrv ~]$ telnet 192.168.1.2
> Trying 10.10.1.2...
> Connected to 10.10.1.2.
> Escape character is '^]'.
> User Access Verification
> Password: <TYPING PASSWD>
> Type help or '?' for a list of available commands.
> UMUSASA01> <TYPING "ENABLE">
> Password: *******
> UMUSASA01#
>
> Any ideas?
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
>
More information about the Rancid-discuss
mailing list