From william.rowe at xo.com Mon Jun 1 14:36:30 2009 From: william.rowe at xo.com (Rowe, William) Date: Mon, 1 Jun 2009 10:36:30 -0400 Subject: [rancid] Issues getting Rancid to Back up the Juniper MX960. In-Reply-To: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> Message-ID: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> Has anyone else encountered issues backing up the Juniper MX960 with Rancid. Any insight is appreciated. Bill -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090601/f6d5acbe/attachment.html From AElliott at xo.com Mon Jun 1 16:39:16 2009 From: AElliott at xo.com (Elliott, Andrew) Date: Mon, 1 Jun 2009 12:39:16 -0400 Subject: [rancid] Re: Issues getting Rancid to Back up the Juniper MX960. In-Reply-To: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> Message-ID: <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> I think we were able to find the problem. The routers have very large configurations and when I ran jlogin manually, I saw that it was timing out about 90% of the way through the configuration output. The point at which it timed out varied slightly every time I ran it. To correct the issue, I added compression to ssh to get the data-rate to slow down a bit: stlrvrpol0> grep "\-C" jlogin -C* { if [ catch {spawn $sshcmd -C -c $cyphertype -x -l $user -i $identfile $router} reason ] { if [ catch {spawn $sshcmd -C -c $cyphertype -x -l $user $router} reason ] { stlrvrpol0> -andrew From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, William Sent: Monday, June 01, 2009 10:37 AM To: rancid-discuss at shrubbery.net Subject: [rancid] Issues getting Rancid to Back up the Juniper MX960. Has anyone else encountered issues backing up the Juniper MX960 with Rancid. Any insight is appreciated. Bill -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090601/9e303c8f/attachment.html From heas at shrubbery.net Mon Jun 1 17:01:43 2009 From: heas at shrubbery.net (john heasley) Date: Mon, 1 Jun 2009 10:01:43 -0700 Subject: [rancid] Re: Issues getting Rancid to Back up the Juniper MX960. In-Reply-To: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> Message-ID: <20090601170143.GF21832@shrubbery.net> Mon, Jun 01, 2009 at 10:36:30AM -0400, Rowe, William: > > > > Has anyone else encountered issues backing up the Juniper MX960 with > Rancid. I haven't seen any complaints. i don't have an mx, but its junos so should it should just work. Please folks; when you solicit help with a problem, include information about the problem, not just "it doesn't work." You should indicate your host O/S and rancid revision and a description of the problem at a minimum. You should also have looked at the log file for the group that is failing and include any error messages. From heas at shrubbery.net Mon Jun 1 17:05:48 2009 From: heas at shrubbery.net (john heasley) Date: Mon, 1 Jun 2009 10:05:48 -0700 Subject: [rancid] Re: Issues getting Rancid to Back up the Juniper MX960. In-Reply-To: <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> Message-ID: <20090601170548.GG21832@shrubbery.net> Mon, Jun 01, 2009 at 12:39:16PM -0400, Elliott, Andrew: > I think we were able to find the problem. > > > > The routers have very large configurations and when I ran jlogin > manually, I saw that it was timing out about 90% of the way through the > configuration output. The point at which it timed out varied slightly > every time I ran it. > I think you have some other problem and this fix is going to fail in the future/randomly. What do you mean by 'timed out'? did it hang? did jlogin/expect exit with a timeout error? if you run the command manually, NOPIPE=YES; export NOPIPE jlogin -c 'show version;...' host what is at the end of the host.raw file? > > To correct the issue, I added compression to ssh to get the data-rate to > slow down a bit: > > > > stlrvrpol0> grep "\-C" jlogin > > -C* { > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l $user > -i $identfile $router} reason ] { > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l $user > $router} reason ] { > > stlrvrpol0> > > > > -andrew > > > > From: rancid-discuss-bounces at shrubbery.net > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, William > Sent: Monday, June 01, 2009 10:37 AM > To: rancid-discuss at shrubbery.net > Subject: [rancid] Issues getting Rancid to Back up the Juniper MX960. > > > > Has anyone else encountered issues backing up the Juniper MX960 with > Rancid. > > Any insight is appreciated. > > > > Bill > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From AElliott at xo.com Mon Jun 1 17:16:55 2009 From: AElliott at xo.com (Elliott, Andrew) Date: Mon, 1 Jun 2009 13:16:55 -0400 Subject: [rancid] Re: Issues getting Rancid to Back up the JuniperMX960. In-Reply-To: <20090601170548.GG21832@shrubbery.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> <20090601170548.GG21832@shrubbery.net> Message-ID: <3B715C4683E2F54DBC36ECDD2CA70F5303C43111@VARESTMAIL03.mail.inthosts.net> --- Andrew Elliott XO Communications desk: 989.758.6987 cell: 989.213.5794 > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Monday, June 01, 2009 1:06 PM > To: Elliott, Andrew > Cc: Rowe, William; rancid-discuss at shrubbery.net > Subject: Re: [rancid] Re: Issues getting Rancid to Back up the > JuniperMX960. > > Mon, Jun 01, 2009 at 12:39:16PM -0400, Elliott, Andrew: > > I think we were able to find the problem. > > > > > > > > The routers have very large configurations and when I ran jlogin > > manually, I saw that it was timing out about 90% of the way through > the > > configuration output. The point at which it timed out varied > slightly > > every time I ran it. > > > > I think you have some other problem and this fix is going to fail in > the > future/randomly. > > What do you mean by 'timed out'? did it hang? did jlogin/expect exit > with a > timeout error? if you run the command manually, > NOPIPE=YES; export NOPIPE > jlogin -c 'show version;...' host > what is at the end of the host.raw file? > Jlogin just hangs until it times out. The log shows the following for each of the routers that are failing(I changed the router name): cp: cannot access rtr1.city-st.raw rtr1.city-st jlogin error: Error: TIMEOUT reached rtr1.city-st: End of run not found > > > > To correct the issue, I added compression to ssh to get the data-rate > to > > slow down a bit: > > > > > > > > stlrvrpol0> grep "\-C" jlogin > > > > -C* { > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > $user > > -i $identfile $router} reason ] { > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > $user > > $router} reason ] { > > > > stlrvrpol0> > > > > > > > > -andrew > > > > > > > > From: rancid-discuss-bounces at shrubbery.net > > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, > William > > Sent: Monday, June 01, 2009 10:37 AM > > To: rancid-discuss at shrubbery.net > > Subject: [rancid] Issues getting Rancid to Back up the Juniper MX960. > > > > > > > > Has anyone else encountered issues backing up the Juniper MX960 with > > Rancid. > > > > Any insight is appreciated. > > > > > > > > Bill > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Mon Jun 1 17:43:55 2009 From: heas at shrubbery.net (john heasley) Date: Mon, 1 Jun 2009 10:43:55 -0700 Subject: [rancid] Re: Issues getting Rancid to Back up the JuniperMX960. In-Reply-To: <3B715C4683E2F54DBC36ECDD2CA70F5303C43111@VARESTMAIL03.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> <20090601170548.GG21832@shrubbery.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C43111@VARESTMAIL03.mail.inthosts.net> Message-ID: <20090601174355.GI21832@shrubbery.net> Mon, Jun 01, 2009 at 01:16:55PM -0400, Elliott, Andrew: > > > --- > Andrew Elliott > XO Communications > desk: 989.758.6987 > cell: 989.213.5794 > > > > -----Original Message----- > > From: john heasley [mailto:heas at shrubbery.net] > > Sent: Monday, June 01, 2009 1:06 PM > > To: Elliott, Andrew > > Cc: Rowe, William; rancid-discuss at shrubbery.net > > Subject: Re: [rancid] Re: Issues getting Rancid to Back up the > > JuniperMX960. > > > > Mon, Jun 01, 2009 at 12:39:16PM -0400, Elliott, Andrew: > > > I think we were able to find the problem. > > > > > > > > > > > > The routers have very large configurations and when I ran jlogin > > > manually, I saw that it was timing out about 90% of the way through > > the > > > configuration output. The point at which it timed out varied > > slightly > > > every time I ran it. > > > > > > > I think you have some other problem and this fix is going to fail in > > the > > future/randomly. > > > > What do you mean by 'timed out'? did it hang? did jlogin/expect exit > > with a > > timeout error? if you run the command manually, > > NOPIPE=YES; export NOPIPE > > jlogin -c 'show version;...' host > > what is at the end of the host.raw file? > > > > Jlogin just hangs until it times out. > > The log shows the following for each of the routers that are failing(I > changed the router name): Are you using Linux or Solaris and haven't applied the expect patch available on the rancid website? Have you tried the cmdline? NOPIPE=YES; export NOPIPE jlogin -c 'show chassis clocks;show chassis environment;show chassis firmware;show chassis fpc detail;show chassis hardware detail;show chassis routing-engine;show chassis scb;show chassis sfm detail;show chassis ssb;show chassis feb detail;show chassis feb;show chassis cfeb;show chassis alarms;show system license;show system boot-messages;show system core-dumps;show version detail;show configuration' host and if that fails jlogin -d -c .... > cp: cannot access rtr1.city-st.raw > rtr1.city-st jlogin error: Error: TIMEOUT reached > rtr1.city-st: End of run not found > > > > > > > > To correct the issue, I added compression to ssh to get the > data-rate > > to > > > slow down a bit: > > > > > > > > > > > > stlrvrpol0> grep "\-C" jlogin > > > > > > -C* { > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > > $user > > > -i $identfile $router} reason ] { > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > > $user > > > $router} reason ] { > > > > > > stlrvrpol0> > > > > > > > > > > > > -andrew > > > > > > > > > > > > From: rancid-discuss-bounces at shrubbery.net > > > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, > > William > > > Sent: Monday, June 01, 2009 10:37 AM > > > To: rancid-discuss at shrubbery.net > > > Subject: [rancid] Issues getting Rancid to Back up the Juniper > MX960. > > > > > > > > > > > > Has anyone else encountered issues backing up the Juniper MX960 with > > > Rancid. > > > > > > Any insight is appreciated. > > > > > > > > > > > > Bill > > > > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From AElliott at xo.com Mon Jun 1 18:39:24 2009 From: AElliott at xo.com (Elliott, Andrew) Date: Mon, 1 Jun 2009 14:39:24 -0400 Subject: [rancid] Re: Issues getting Rancid to Back up the JuniperMX960. In-Reply-To: <20090601174355.GI21832@shrubbery.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> <20090601170548.GG21832@shrubbery.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C43111@VARESTMAIL03.mail.inthosts.net> <20090601174355.GI21832@shrubbery.net> Message-ID: <3B715C4683E2F54DBC36ECDD2CA70F5303C43112@VARESTMAIL03.mail.inthosts.net> > > > -----Original Message----- > > > From: john heasley [mailto:heas at shrubbery.net] > > > Sent: Monday, June 01, 2009 1:06 PM > > > To: Elliott, Andrew > > > Cc: Rowe, William; rancid-discuss at shrubbery.net > > > Subject: Re: [rancid] Re: Issues getting Rancid to Back up the > > > JuniperMX960. > > > > > > Mon, Jun 01, 2009 at 12:39:16PM -0400, Elliott, Andrew: > > > > I think we were able to find the problem. > > > > > > > > > > > > > > > > The routers have very large configurations and when I ran jlogin > > > > manually, I saw that it was timing out about 90% of the way > through > > > the > > > > configuration output. The point at which it timed out varied > > > slightly > > > > every time I ran it. > > > > > > > > > > I think you have some other problem and this fix is going to fail > in > > > the > > > future/randomly. > > > > > > What do you mean by 'timed out'? did it hang? did jlogin/expect > exit > > > with a > > > timeout error? if you run the command manually, > > > NOPIPE=YES; export NOPIPE > > > jlogin -c 'show version;...' host > > > what is at the end of the host.raw file? > > > > > > > Jlogin just hangs until it times out. > > > > The log shows the following for each of the routers that are > failing(I > > changed the router name): > > Are you using Linux or Solaris and haven't applied the expect patch > available on the rancid website? > > Have you tried the cmdline? > NOPIPE=YES; export NOPIPE > jlogin -c 'show chassis clocks;show chassis environment;show chassis > firmware;show chassis fpc detail;show chassis hardware detail;show > chassis routing-engine;show chassis scb;show chassis sfm detail;show > chassis ssb;show chassis feb detail;show chassis feb;show chassis > cfeb;show chassis alarms;show system license;show system boot- > messages;show system core-dumps;show version detail;show configuration' > host > > and if that fails jlogin -d -c .... > Yes, I have been running it from the command line. The -d switch is failing for me: stlrvrpol0> ./jlogin -d -c 'show chassis clocks;show chassis environment;show chassis firmware;show chassis fpc detail;show chassis hardware detail;show chassis routing-engine;show chassis scb;show chassis sfm detail;show chassis ssb;show chassis feb;show chassis cfeb;show chassis alarms;show system boot-messages;show version detail;show configuration' rtr1.city-st Error: Unknown argument! -d Usage: ./jlogin [-c command] [-Evar=x] [-f cloginrc-file] [-p user-password] [-r passphrase] [-s script-file] [-u username] [-t timeout] [-x command-file] [-y ssh_cypher_type] router [router...] stlrvrpol0> stlrvrpol0> uname -a SunOS stlrvrpol0 5.8 Generic_117350-43 sun4u sparc SUNW,Ultra-Enterprise stlrvrpol0> expect -v expect version 5.31.5 stlrvrpol0> ssh -V OpenSSH_4.7p1, OpenSSL 0.9.8e 23 Feb 2007 stlrvrpol0> Due to specific restrictions within the organization, I will have an extremely difficult time getting approval for the patched version of expect to be compiled. Is the issue still present in 5.43? I would have a much easier time getting the expect upgraded to the latest official version than getting a patched one installed. > > cp: cannot access rtr1.city-st.raw > > rtr1.city-st jlogin error: Error: TIMEOUT reached > > rtr1.city-st: End of run not found > > > > > > > > > > > > To correct the issue, I added compression to ssh to get the > > data-rate > > > to > > > > slow down a bit: > > > > > > > > > > > > > > > > stlrvrpol0> grep "\-C" jlogin > > > > > > > > -C* { > > > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > > > $user > > > > -i $identfile $router} reason ] { > > > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x -l > > > $user > > > > $router} reason ] { > > > > > > > > stlrvrpol0> > > > > > > > > > > > > > > > > -andrew > > > > > > > > > > > > > > > > From: rancid-discuss-bounces at shrubbery.net > > > > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, > > > William > > > > Sent: Monday, June 01, 2009 10:37 AM > > > > To: rancid-discuss at shrubbery.net > > > > Subject: [rancid] Issues getting Rancid to Back up the Juniper > > MX960. > > > > > > > > > > > > > > > > Has anyone else encountered issues backing up the Juniper MX960 > with > > > > Rancid. > > > > > > > > Any insight is appreciated. > > > > > > > > > > > > > > > > Bill > > > > > > > > > > > _______________________________________________ > > > > Rancid-discuss mailing list > > > > Rancid-discuss at shrubbery.net > > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > From heas at shrubbery.net Mon Jun 1 20:16:59 2009 From: heas at shrubbery.net (john heasley) Date: Mon, 1 Jun 2009 13:16:59 -0700 Subject: [rancid] Re: Issues getting Rancid to Back up the JuniperMX960. In-Reply-To: <3B715C4683E2F54DBC36ECDD2CA70F5303C43112@VARESTMAIL03.mail.inthosts.net> References: <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF10@VARESTMAIL02.mail.inthosts.net> <00EE6B2DCAB9BA43A15C39D5F8A2D8EE0597CF11@VARESTMAIL02.mail.inthosts.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C4310E@VARESTMAIL03.mail.inthosts.net> <20090601170548.GG21832@shrubbery.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C43111@VARESTMAIL03.mail.inthosts.net> <20090601174355.GI21832@shrubbery.net> <3B715C4683E2F54DBC36ECDD2CA70F5303C43112@VARESTMAIL03.mail.inthosts.net> Message-ID: <20090601201659.GD14320@shrubbery.net> Mon, Jun 01, 2009 at 02:39:24PM -0400, Elliott, Andrew: > Yes, I have been running it from the command line. What is the ending contents of the host.raw file? > The -d switch is failing for me: > > stlrvrpol0> ./jlogin -d -c 'show chassis clocks;show chassis > environment;show chassis firmware;show chassis fpc detail;show chassis > hardware detail;show chassis routing-engine;show chassis scb;show > chassis sfm detail;show chassis ssb;show chassis feb;show chassis > cfeb;show chassis alarms;show system boot-messages;show version > detail;show configuration' rtr1.city-st > > > Error: Unknown argument! -d This option was added around rancid 2.3.2a7; you should upgrade to 2.3.2. in the meantime, expect -d jlogin ... will do the same thing. the output around the hang/timeout has to be examined. > Usage: ./jlogin [-c command] [-Evar=x] [-f cloginrc-file] [-p > user-password] [-r passphrase] [-s script-file] [-u username] [-t > timeout] [-x command-file] [-y ssh_cypher_type] router [router...] > stlrvrpol0> > > > stlrvrpol0> uname -a > SunOS stlrvrpol0 5.8 Generic_117350-43 sun4u sparc SUNW,Ultra-Enterprise > stlrvrpol0> expect -v > expect version 5.31.5 > stlrvrpol0> ssh -V > OpenSSH_4.7p1, OpenSSL 0.9.8e 23 Feb 2007 > stlrvrpol0> > > Due to specific restrictions within the organization, I will have an > extremely difficult time getting approval for the patched version of > expect to be compiled. Is the issue still present in 5.43? I would > have a much easier time getting the expect upgraded to the latest > official version than getting a patched one installed. afaik, the problem has never been fixed in expect (really tcl). you could install it in/under ~ranciduser's homedir and adjust PATH in rancid.conf to avoid dealing with your IT dept. > > > > cp: cannot access rtr1.city-st.raw > > > rtr1.city-st jlogin error: Error: TIMEOUT reached > > > rtr1.city-st: End of run not found > > > > > > > > > > > > > > > > To correct the issue, I added compression to ssh to get the > > > data-rate > > > > to > > > > > slow down a bit: > > > > > > > > > > > > > > > > > > > > stlrvrpol0> grep "\-C" jlogin > > > > > > > > > > -C* { > > > > > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x > -l > > > > $user > > > > > -i $identfile $router} reason ] { > > > > > > > > > > if [ catch {spawn $sshcmd -C -c $cyphertype -x > -l > > > > $user > > > > > $router} reason ] { > > > > > > > > > > stlrvrpol0> > > > > > > > > > > > > > > > > > > > > -andrew > > > > > > > > > > > > > > > > > > > > From: rancid-discuss-bounces at shrubbery.net > > > > > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rowe, > > > > William > > > > > Sent: Monday, June 01, 2009 10:37 AM > > > > > To: rancid-discuss at shrubbery.net > > > > > Subject: [rancid] Issues getting Rancid to Back up the Juniper > > > MX960. > > > > > > > > > > > > > > > > > > > > Has anyone else encountered issues backing up the Juniper MX960 > > with > > > > > Rancid. > > > > > > > > > > Any insight is appreciated. > > > > > > > > > > > > > > > > > > > > Bill > > > > > > > > > > > > > > _______________________________________________ > > > > > Rancid-discuss mailing list > > > > > Rancid-discuss at shrubbery.net > > > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > From diego.ercolani at ssis.sm Tue Jun 2 10:09:07 2009 From: diego.ercolani at ssis.sm (Diego Ercolani) Date: Tue, 2 Jun 2009 12:09:07 +0200 Subject: [rancid] A method to download 3com baseline switches configuration Message-ID: <200906021209.08126.diego.ercolani@ssis.sm> ...I read that someone asking for a method to download such a configuration was answered that many 3com switches uses a web driven configuration menu This is true, but I noticed that in my 3com entry level switches (bls2948) there is a "download configuration" button. The configuration is called always "3comranger48.cfg" and is a text file.... I wrote a perl script that is able to download the configuration miming an http session. It Is a real custom script but I think it can be a proof of concept one to raise kind of devices monitored by rancid (and other opensource monitor applications of course). Hope this help, Diego -------------- next part -------------- A non-text attachment was scrubbed... Name: get3comconf.pl Type: application/x-perl Size: 1578 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090602/6f451736/attachment.bin From satz.sm at gmail.com Tue Jun 2 22:14:58 2009 From: satz.sm at gmail.com (Satyam Mathura) Date: Tue, 2 Jun 2009 18:14:58 -0400 Subject: [rancid] Rancid and Syslog-ng Message-ID: <7ea146250906021514g74c10c8p79dc1307108adfa6@mail.gmail.com> Guys, Has anyone ever been successful with setting up rancid and syslog-ng so that whenever a config change is written to memory, syslog-ng calls the rancid executable for that host only? Basically we're looking to have rancid query a device only when that device's configuration has been modified. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090602/a7e9d4f4/attachment.html From smunzani at comcast.net Wed Jun 3 01:58:09 2009 From: smunzani at comcast.net (Sam Munzani) Date: Tue, 02 Jun 2009 18:58:09 -0700 Subject: [rancid] Re: Rancid and Syslog-ng In-Reply-To: <7ea146250906021514g74c10c8p79dc1307108adfa6@mail.gmail.com> References: <7ea146250906021514g74c10c8p79dc1307108adfa6@mail.gmail.com> Message-ID: <4A25D8B1.4050406@comcast.net> Google search revealed this. http://www.syslog.org/forum/syslog-ng/syslog-ng-to-trigger-rancid/ Thanks, Sam > Guys, > Has anyone ever been successful with setting up rancid and syslog-ng > so that whenever a config change is written to memory, syslog-ng calls > the rancid executable for that host only? > Basically we're looking to have rancid query a device only when that > device's configuration has been modified. > > ------------------------------------------------------------------------ > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090602/728c6a9b/attachment.html From babydr at baby-dragons.com Wed Jun 3 03:45:10 2009 From: babydr at baby-dragons.com (Mr. James W. Laferriere) Date: Tue, 2 Jun 2009 19:45:10 -0800 (AKDT) Subject: [rancid] Re: Rancid and Syslog-ng In-Reply-To: <4A25D8B1.4050406@comcast.net> References: <7ea146250906021514g74c10c8p79dc1307108adfa6@mail.gmail.com> <4A25D8B1.4050406@comcast.net> Message-ID: On Tue, 2 Jun 2009, Sam Munzani wrote: > Google search revealed this. > http://www.syslog.org/forum/syslog-ng/syslog-ng-to-trigger-rancid/ > Thanks, > Sam The link(*) there appears to continously fail in one way or another . Is it possibly a News server that requires credentials to view . Probably asking the wrong person that '?' . (*) http://thread.gmane.org/gmane.comp.syslog-ng/2151/focus=2154 >> Guys, >> Has anyone ever been successful with setting up rancid and syslog-ng so >> that whenever a config change is written to memory, syslog-ng calls the >> rancid executable for that host only? >> Basically we're looking to have rancid query a device only when that >> device's configuration has been modified. Twyl , JimL -- +------------------------------------------------------------------+ | James W. Laferriere | System Techniques | Give me VMS | | Network&System Engineer | 2133 McCullam Ave | Give me Linux | | babydr at baby-dragons.com | Fairbanks, AK. 99701 | only on AXP | +------------------------------------------------------------------+ From rancid at ale.cx Wed Jun 3 09:48:52 2009 From: rancid at ale.cx (alex) Date: Wed, 3 Jun 2009 10:48:52 +0100 Subject: [rancid] Re: Zyxel DSL CPE and RANCID? Message-ID: <200906031048.52760.rancid@ale.cx> On Thursday 17 April 2008 23:04:40 Ed Ravin wrote: > Has anyone gotten RANCID to work with Zyxel DSL modems? They start > out with a Playskool menu but you can drop into a command line with > the right incantation. Apologies for the delay, on some Zyxel models you can FTP to the device and get a file called rom-t which is a plain-text version of the config. This presumably would fit in with the whole RANCID way of doing things. alexd From Rene.Ferrer at mlb.com Wed Jun 3 16:01:45 2009 From: Rene.Ferrer at mlb.com (Ferrer, Rene) Date: Wed, 03 Jun 2009 12:01:45 -0400 Subject: [rancid] Re: Timeouts on Cisco ASA Message-ID: You don't need the enableprompt line. Setting autoenable to 0 is all you need. Also, you can remove the curly braces from everything except the passwords of course. The next step would be to figure out how to jump to a known context from the admin context. :) I'll have to figure that out and get back to you. The clogin snippet: rancid at mon:~/rancid/bin$ grep 10.1.2.1 /home/rancid/.cloginrc add user 10.1.2.1 {user} add password 10.1.2.1 {loginpass} {enablepass} add method 10.1.2.1 ssh add enableprompt 10.1.2.1 {"\[Pp]assword:"} add autoenable 10.1.2.1 {0} ********************************************************** MLB.com: Where Baseball is Always On From heas at shrubbery.net Wed Jun 3 17:37:07 2009 From: heas at shrubbery.net (john heasley) Date: Wed, 3 Jun 2009 10:37:07 -0700 Subject: [rancid] Re: Timeouts on Cisco ASA In-Reply-To: References: Message-ID: <20090603173707.GL19268@shrubbery.net> Wed, Jun 03, 2009 at 12:01:45PM -0400, Ferrer, Rene: > You don't need the enableprompt line. Setting autoenable to 0 is all you > need. Also, you can remove the curly braces from everything except the > passwords of course. leave the braces; its habit forming. > The next step would be to figure out how to jump to a known context from the > admin context. :) I'll have to figure that out and get back to you. > > > The clogin snippet: > > > rancid at mon:~/rancid/bin$ grep 10.1.2.1 /home/rancid/.cloginrc > add user 10.1.2.1 {user} > add password 10.1.2.1 {loginpass} {enablepass} > add method 10.1.2.1 ssh > add enableprompt 10.1.2.1 {"\[Pp]assword:"} > add autoenable 10.1.2.1 {0} > > > > > > > > > ********************************************************** > > MLB.com: Where Baseball is Always On > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From jbaird at follett.com Wed Jun 3 17:48:40 2009 From: jbaird at follett.com (Baird, Josh) Date: Wed, 3 Jun 2009 12:48:40 -0500 Subject: [rancid] Creating RANCID Subgroups Message-ID: Could someone give me some hints on how to create SUB-GROUPS within Rancid? I found some old clues on the list about using this syntax: LIST_OF_GROUPS="company/router company/switch, etc" This does work to some extent.. rancid-cvs creates the repositories, but it breaks several other scripts (rancid-run, etc). They take the "/" literally when writing to /tmp etc (it tries to write to /tmp/company/bleh, not /tmp/bleh). Does anyone know how to properly support sub-groups, or how to properly mod RANCID to be able to support this? I am using RANCID 2.3.2a9. Thanks, Jjosh -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090603/a2541e86/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3080 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090603/a2541e86/attachment.bin From heas at shrubbery.net Wed Jun 3 17:52:56 2009 From: heas at shrubbery.net (john heasley) Date: Wed, 3 Jun 2009 10:52:56 -0700 Subject: [rancid] Re: Creating RANCID Subgroups In-Reply-To: References: Message-ID: <20090603175256.GN19268@shrubbery.net> Wed, Jun 03, 2009 at 12:48:40PM -0500, Baird, Josh: > Could someone give me some hints on how to create SUB-GROUPS within Rancid? > I found some old clues on the list about using this syntax: there is no such feature. if it works at it is by pure luck. > > LIST_OF_GROUPS="company/router company/switch, etc" > > > > This does work to some extent.. rancid-cvs creates the repositories, but it > breaks several other scripts (rancid-run, etc). They take the "/" literally > when writing to /tmp etc (it tries to write to /tmp/company/bleh, not > /tmp/bleh). Does anyone know how to properly support sub-groups, or how to > properly mod RANCID to be able to support this? afaict, there is little value in such a feature. just use company_switches > > > I am using RANCID 2.3.2a9. > > > > Thanks, > > > > Jjosh > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From 2009 at tybox.net Wed Jun 3 19:01:13 2009 From: 2009 at tybox.net (Temporary Mailbox) Date: Wed, 3 Jun 2009 14:01:13 -0500 Subject: [rancid] Problems with Dell Extension Message-ID: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> I'm attempting to set up the dell extension found at http://www.rickyninja.net/rancid/ Everything seems to work fine when logging in with dlogin: $ sudo -u www /opt/local/libexec/rancid/dlogin -autoenable -u Engineer -p -c "show version" 10.13.8.1 10.13.8.1 spawn telnet 10.13.8.1 Trying 10.13.8.1... Connected to 10.13.8.1. Escape character is '^]'. 04-Jun-2009 02:12:41 %MSCM-I-NEWTERM: New TELNET connection from 10.75.224.12 User Name:Engineer Password:********** TW-G-6024-1# TW-G-6024-1# show version SW version 1.0.2.07 ( date 21-Nov-2003 time 09:58:38 ) Boot version 1.0.0.13 ( date 13-Aug-2003 time 15:28:31 ) HW version 00.01.64 TW-G-6024-1#eConnection closed by foreign host. However, when I set up cloginrc: #CTX add autoenable 10.13.* 1 add method 10.13.* telnet add password 10.13.* Engineer and router.db: 10.13.8.1:dell:up It doesn't seem to work when running rancid manually: $ sudo -u www /opt/local/bin/rancid-run GROUP -r 10.13.8.1 Trying to get all of the configs. opened network stream from 10.13.8.1 if () at /opt/local/libexec/rancid/drancid line 266. found_end = 0, clean_run = 0 10.13.8.1 dlogin error: Error: Connection closed (telnet): 10.13.8.1 10.13.8.1: missed cmd(s): show version,show running-config,show vlan 10.13.8.1: End of run not found ! The error in the log isn't really revealing. I installed rancid from macports, this is in the header of rancid-run: ## $Id: rancid-run.in,v 1.30 2004/03/12 23:17:28 heas Exp $ I really appreciate any support/ideas/help anyone can offer to help figure this out. -Josh -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090603/18d6d5ed/attachment.html From jeremys at rickyninja.net Wed Jun 3 20:14:18 2009 From: jeremys at rickyninja.net (Jeremy Singletary) Date: Wed, 3 Jun 2009 13:14:18 -0700 Subject: [rancid] Re: Problems with Dell Extension In-Reply-To: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> Message-ID: <20090603201418.GA16739@pegasus.billn.net> What happens if you run dlogin from the command line with a switch command that will produce more than a page of output? Try dlogin with the show running-config command (assuming there's more than one page of ocnfig), and let me know if it hangs. -jeremy On 06/03/09, Temporary Mailbox <2009 at tybox.net> said: > > I'm attempting to set up the dell extension found at > [1]http://www.rickyninja.net/rancid/ > Everything seems to work fine when logging in with dlogin: > $ sudo -u www /opt/local/libexec/rancid/dlogin -autoenable -u Engineer > -p -c "show version" 10.13.8.1 > 10.13.8.1 > spawn telnet 10.13.8.1 > Trying 10.13.8.1... > Connected to 10.13.8.1. > Escape character is '^]'. > 04-Jun-2009 02:12:41 %MSCM-I-NEWTERM: New TELNET connection from > 10.75.224.12 > User Name:Engineer > Password:********** > TW-G-6024-1# > TW-G-6024-1# show version > SW version 1.0.2.07 ( date 21-Nov-2003 time 09:58:38 ) > Boot version 1.0.0.13 ( date 13-Aug-2003 time 15:28:31 ) > HW version 00.01.64 > TW-G-6024-1#eConnection closed by foreign host. > However, when I set up cloginrc: > #CTX > add autoenable 10.13.* 1 > add method 10.13.* telnet > add password 10.13.* Engineer > and router.db: > 10.13.8.1:dell:up > It doesn't seem to work when running rancid manually: > $ sudo -u www /opt/local/bin/rancid-run GROUP -r 10.13.8.1 > Trying to get all of the configs. > opened network stream from 10.13.8.1 if () at > /opt/local/libexec/rancid/drancid line 266. > found_end = 0, clean_run = 0 > 10.13.8.1 dlogin error: Error: Connection closed (telnet): 10.13.8.1 > [2]10.13.8.1: missed cmd(s): show version,show running-config,show > vlan > [3]10.13.8.1: End of run not found > ! > The error in the log isn't really revealing. > I installed rancid from macports, this is in the header of rancid-run: > ## $Id: [4]rancid-run.in,v 1.30 2004/03/12 23:17:28 heas Exp $ > I really appreciate any support/ideas/help anyone can offer to help > figure this out. > -Josh > > References > > 1. http://www.rickyninja.net/rancid/ > 2. http://10.13.8.1/ > 3. http://10.13.8.1/ > 4. http://rancid-run.in/ > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From 2009 at tybox.net Wed Jun 3 20:30:51 2009 From: 2009 at tybox.net (Temporary Mailbox) Date: Wed, 3 Jun 2009 15:30:51 -0500 Subject: [rancid] Re: Problems with Dell Extension In-Reply-To: <20090603201418.GA16739@pegasus.billn.net> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> <20090603201418.GA16739@pegasus.billn.net> Message-ID: <773ce9810906031330q34bf89a3m484609729857caf8@mail.gmail.com> Good question. It pages through it w/out error or problem. Any other ideas? On Wed, Jun 3, 2009 at 3:14 PM, Jeremy Singletary wrote: > What happens if you run dlogin from the command line with a switch > command that will produce more than a page of output? Try dlogin with > the show running-config command (assuming there's more than one page of > ocnfig), and let me know if it hangs. > > -jeremy > > On 06/03/09, Temporary Mailbox <2009 at tybox.net> said: > > > > I'm attempting to set up the dell extension found at > > [1]http://www.rickyninja.net/rancid/ > > Everything seems to work fine when logging in with dlogin: > > $ sudo -u www /opt/local/libexec/rancid/dlogin -autoenable -u Engineer > > -p -c "show version" 10.13.8.1 > > 10.13.8.1 > > spawn telnet 10.13.8.1 > > Trying 10.13.8.1... > > Connected to 10.13.8.1. > > Escape character is '^]'. > > 04-Jun-2009 02:12:41 %MSCM-I-NEWTERM: New TELNET connection from > > 10.75.224.12 > > User Name:Engineer > > Password:********** > > TW-G-6024-1# > > TW-G-6024-1# show version > > SW version 1.0.2.07 ( date 21-Nov-2003 time 09:58:38 ) > > Boot version 1.0.0.13 ( date 13-Aug-2003 time 15:28:31 ) > > HW version 00.01.64 > > TW-G-6024-1#eConnection closed by foreign host. > > However, when I set up cloginrc: > > #CTX > > add autoenable 10.13.* 1 > > add method 10.13.* telnet > > add password 10.13.* Engineer > > and router.db: > > 10.13.8.1:dell:up > > It doesn't seem to work when running rancid manually: > > $ sudo -u www /opt/local/bin/rancid-run GROUP -r 10.13.8.1 > > Trying to get all of the configs. > > opened network stream from 10.13.8.1 if () at > > /opt/local/libexec/rancid/drancid line 266. > > found_end = 0, clean_run = 0 > > 10.13.8.1 dlogin error: Error: Connection closed (telnet): 10.13.8.1 > > [2]10.13.8.1: missed cmd(s): show version,show > running-config,show > > vlan > > [3]10.13.8.1: End of run not found > > ! > > The error in the log isn't really revealing. > > I installed rancid from macports, this is in the header of rancid-run: > > ## $Id: [4]rancid-run.in,v 1.30 2004/03/12 23:17:28 heas Exp $ > > I really appreciate any support/ideas/help anyone can offer to help > > figure this out. > > -Josh > > > > References > > > > 1. http://www.rickyninja.net/rancid/ > > 2. http://10.13.8.1/ > > 3. http://10.13.8.1/ > > 4. http://rancid-run.in/ > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090603/21ac2c36/attachment.html From tex at off.org Wed Jun 3 22:15:22 2009 From: tex at off.org (Austin Schutz) Date: Wed, 3 Jun 2009 15:15:22 -0700 Subject: [rancid] Re: Problems with Dell Extension In-Reply-To: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> Message-ID: <20090603151522.5f445c4a@toskin.off.org> On Wed, 3 Jun 2009 14:01:13 -0500 Temporary Mailbox <2009 at tybox.net> wrote: > I'm attempting to set up the dell extension found at > http://www.rickyninja.net/rancid/ > > Everything seems to work fine when logging in with dlogin: > > $ sudo -u www /opt/local/libexec/rancid/dlogin -autoenable -u > Engineer -p -c "show version" 10.13.8.1 I would try dlogin -c "show version,show running-config,show vlan" That way you are running the same commands as rancid would be running. Austin From dschuemann at gmail.com Thu Jun 4 01:54:46 2009 From: dschuemann at gmail.com (Dustin Schuemann) Date: Wed, 3 Jun 2009 21:54:46 -0400 Subject: [rancid] Timeout Message-ID: <85E4B4CD-92F0-42B6-88AF-CF7FA9A679CB@gmail.com> Is there a way to setup a timeout for configuration collection. I have a couple of devices that take awhile over a vpn. From heas at shrubbery.net Thu Jun 4 17:58:33 2009 From: heas at shrubbery.net (john heasley) Date: Thu, 4 Jun 2009 10:58:33 -0700 Subject: [rancid] Re: Timeout In-Reply-To: <85E4B4CD-92F0-42B6-88AF-CF7FA9A679CB@gmail.com> References: <85E4B4CD-92F0-42B6-88AF-CF7FA9A679CB@gmail.com> Message-ID: <20090604175833.GC20304@shrubbery.net> Wed, Jun 03, 2009 at 09:54:46PM -0400, Dustin Schuemann: > Is there a way to setup a timeout for configuration collection. I have > a couple of devices that take awhile over a vpn. no. i guess cloginrc needs a timeout knob. From heas at shrubbery.net Thu Jun 4 18:00:38 2009 From: heas at shrubbery.net (john heasley) Date: Thu, 4 Jun 2009 11:00:38 -0700 Subject: [rancid] Re: Problems with Dell Extension In-Reply-To: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> Message-ID: <20090604180038.GD20304@shrubbery.net> Wed, Jun 03, 2009 at 02:01:13PM -0500, Temporary Mailbox: > I'm attempting to set up the dell extension found at > http://www.rickyninja.net/rancid/ Do the SMC scripts work for these switches? some of the dell switches are SMC OEMs. From bmahaffey at pelco.com Fri Jun 5 16:54:40 2009 From: bmahaffey at pelco.com (Mahaffey, Brian) Date: Fri, 5 Jun 2009 09:54:40 -0700 Subject: [rancid] hpuifilter no such file or directory In-Reply-To: <20090604180038.GD20304@shrubbery.net> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> <20090604180038.GD20304@shrubbery.net> Message-ID: <4BBAF403456ED74981E7164ED3A4C224012FD98D@CA-EVS02.pelco.org> I tried to google this error but I am not seeing any results so I apologize if this is one of those regular questions. Has anyone ran into this? Running 2.3.2a9 figured I might try 2.3.2a10 to see if this would fix the issue. -bash-3.2$ ./hlogin hp5308-b6-1.pelco.org hp5308-b6-1.pelco.org spawn hpuifilter -- ssh -c 3des -x -l suser hp5308-b6-1.pelco.org Error: ssh failed: couldn't execute "hpuifilter": no such file or directory Hp5308-b6-1.pelco.org:hp:up correctly configured in router.db Clogin works without issue with cisco. I have my passwords in .cloginrc when I read the hlogin man page it sends me to clogin so I don't know if I did the hp setup properly for rancid. - ------------------------------------------------------------------------------ Confidentiality Notice: The information contained in this transmission is legally privileged and confidential, intended only for the use of the individual(s) or entities named above. This email and any files transmitted with it are the property of Pelco. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any review, disclosure, copying, distribution, retention, or any action taken or omitted to be taken in reliance on it is prohibited and may be unlawful. If you receive this communication in error, please notify us immediately by telephone call to +1-559-292-1981 or forward the e-mail to administrator at pelco.com and then permanently delete the e-mail and destroy all soft and hard copies of the message and any attachments. Thank you for your cooperation. - ------------------------------------------------------------------------------ From heas at shrubbery.net Fri Jun 5 17:03:30 2009 From: heas at shrubbery.net (john heasley) Date: Fri, 5 Jun 2009 10:03:30 -0700 Subject: [rancid] Re: hpuifilter no such file or directory In-Reply-To: <4BBAF403456ED74981E7164ED3A4C224012FD98D@CA-EVS02.pelco.org> References: <773ce9810906031201p310870fcp3218fd0b9daf12e3@mail.gmail.com> <20090604180038.GD20304@shrubbery.net> <4BBAF403456ED74981E7164ED3A4C224012FD98D@CA-EVS02.pelco.org> Message-ID: <20090605170330.GE1840@shrubbery.net> Fri, Jun 05, 2009 at 09:54:40AM -0700, Mahaffey, Brian: > I tried to google this error but I am not seeing any results so I > apologize if this is one of those regular questions. > > Has anyone ran into this? Running 2.3.2a9 figured I might try 2.3.2a10 > to see if this would fix the issue. > > -bash-3.2$ ./hlogin hp5308-b6-1.pelco.org > hp5308-b6-1.pelco.org > spawn hpuifilter -- ssh -c 3des -x -l suser hp5308-b6-1.pelco.org > > Error: ssh failed: couldn't execute "hpuifilter": no such file or > directory fix your PATH to include whatever dir has this program > Hp5308-b6-1.pelco.org:hp:up correctly configured in router.db > > Clogin works without issue with cisco. I have my passwords in .cloginrc > when I read the hlogin man page it sends me to clogin so I don't know if > I did the hp setup properly for rancid. > > - ------------------------------------------------------------------------------ > Confidentiality Notice: The information contained in this transmission is legally privileged and confidential, intended only for the use of the individual(s) or entities named above. This email and any files transmitted with it are the property of Pelco. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any review, disclosure, copying, distribution, retention, or any action taken or omitted to be taken in reliance on it is prohibited and may be unlawful. If you receive this communication in error, please notify us immediately by telephone call to +1-559-292-1981 or forward the e-mail to administrator at pelco.com and then permanently delete the e-mail and destroy all soft and hard copies of the message and any attachments. Thank you for your cooperation. > - ------------------------------------------------------------------------------ > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From halindholm at gmail.com Mon Jun 8 13:53:03 2009 From: halindholm at gmail.com (=?ISO-8859-1?Q?H=E5kan_Lindholm?=) Date: Mon, 8 Jun 2009 15:53:03 +0200 Subject: [rancid] Re: New devices... In-Reply-To: References: Message-ID: <9b5ab4250906080653q4496c17cq2c924b64135713b5@mail.gmail.com> 2008/8/26 Geoff Kuchera : > Anyone had any luck pulling configs off: Cisco ACE 4710 load balancers?, or > Cisco GSS?s? I?m willing to work up a script, just wondering if anyone else > has already done one? I started to look at this recently. Couldn't find any "prior art". This far, I managed to get the (cisco) rancid script collect the Admin context config, by slightly modifying when to set the $found_end. @@ -1691,7 +1710,7 @@ # catch anything that wasnt matched above. ProcessHistory("","","","$_"); # end of config. the ": " game is for the PIX - if (/^(: +)?end$/) { + if (/^(: +)?(ssh key rsa 1024 force|end)$/) { $found_end = 1; return(1); } Ugly, I know :) For collecting other contexts (via changeto Other_context), I tried using "clogin gateway.ip.addr.ess" as method but without no success. /Hakan From heas at shrubbery.net Mon Jun 8 16:32:31 2009 From: heas at shrubbery.net (john heasley) Date: Mon, 8 Jun 2009 09:32:31 -0700 Subject: [rancid] Re: New devices... In-Reply-To: <9b5ab4250906080653q4496c17cq2c924b64135713b5@mail.gmail.com> References: <9b5ab4250906080653q4496c17cq2c924b64135713b5@mail.gmail.com> Message-ID: <20090608163231.GA14100@shrubbery.net> Mon, Jun 08, 2009 at 03:53:03PM +0200, H?kan Lindholm: > 2008/8/26 Geoff Kuchera : > > > Anyone had any luck pulling configs off: Cisco ACE 4710 load balancers?, or > > Cisco GSS?s? I?m willing to work up a script, just wondering if anyone else > > has already done one? > > > I started to look at this recently. Couldn't find any "prior art". > > This far, I managed to get the (cisco) rancid script collect the Admin > context config, by slightly modifying when to set the $found_end. > > @@ -1691,7 +1710,7 @@ > # catch anything that wasnt matched above. > ProcessHistory("","","","$_"); > # end of config. the ": " game is for the PIX > - if (/^(: +)?end$/) { > + if (/^(: +)?(ssh key rsa 1024 force|end)$/) { > $found_end = 1; > return(1); > } > > > Ugly, I know :) and probably error prone. you can not assume that ssh will be enable nor that cisco will not change the order nor that something else, if enabled, would appear after the ssh key. this should likely be a separate script. > > > For collecting other contexts (via changeto Other_context), I tried > using "clogin gateway.ip.addr.ess" as method but without no success. > > /Hakan > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From gadoucet at nbnet.nb.ca Wed Jun 10 15:56:38 2009 From: gadoucet at nbnet.nb.ca (Gino Doucet) Date: Wed, 10 Jun 2009 12:56:38 -0300 Subject: [rancid] Re: jerancid show version parsing In-Reply-To: <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C94@FHDP1LUMXCV11.us.one.verizon.com> References: <20090515201603.CE9C511CE9F@ni.shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C82@FHDP1LUMXCV11.us.one.verizon.com> <20090515202949.GF24192@shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C94@FHDP1LUMXCV11.us.one.verizon.com> Message-ID: <000001c9e9e4$0a627610$1f276230$@nb.ca> Dave/John, Not sure if you ever got this resolved but I just noticed it recently and realized that it affects us as well. I made some further modifications to the same line of code that John had initially attempted. However, here is what I ended up successfully testing with: - if (/^(\d+ +\S+ +(\S+).*) \S+$/ && $slots) { + if (/^(\d+ +\w+ +(\S+).*) (\S+| -+ +)$/ && $slots) { As for the slot uptime column I would suggest against including it in your rancid reports as it continuously changes. However, if you really want to have it included and cause a version update every time you run rancid against your ERX's, modify the line following the above If statement as follows: >- my($line) = $1; >+ my($line) = $_; Cheers, Gino. -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Mack, David A (Dave) Sent: May 15, 2009 6:46 PM To: john heasley Cc: rancid-discuss at shrubbery.net Subject: [rancid] Re: jerancid show version parsing John, Hello! I applied the patch and did a manual run, but no joy! Here is cli output: Juniper Edge Routing Switch E320 Copyright (c) 1999-2008 Juniper Networks, Inc. All rights reserved. System Release: e320_9-0-1p0-7-3.rel Version: 9.0.1 patch-0.7.3 [BuildId 10622] (March 8, 2009 21:10) System running for: 353 days, 2 hours, 34 minutes, 40 seconds (since TUE MAY 27 2008 18:15:29 UTC) slot state type admin spare running release slot uptime ---- -------- ------- ------- ----- -------------------- -------------- 0 standby LM-10 enabled spare e320_9-0-1p0-7-3.rel --- 1 online LM-4 enabled --- e320_9-0-1p0-7-3.rel 16d15h:35m:50s 2 --- --- --- --- --- --- 3 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:21m:33s 4 --- --- --- --- --- --- 5 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:21m:09s 6 standby SRP-320 enabled --- e320_9-0-1p0-7-3.rel --- 6 online SFM-320 enabled --- --- 16d15h:52m:43s 7 online SRP-320 enabled --- e320_9-0-1p0-7-3.rel 16d15h:52m:51s 7 online SFM-320 enabled --- --- 16d15h:52m:31s 8 online SFM-320 enabled --- --- 16d15h:52m:36s 9 online SFM-320 enabled --- --- 16d15h:52m:24s 10 online SFM-320 enabled --- --- 16d15h:52m:27s 11 online LM-10 enabled spare e320_9-0-1p0-7-3.rel 10d11h:57m:24s 12 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:14m:22s 13 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:13m:30s 14 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:30m:01s 15 online LM-10 enabled --- e320_9-0-1p0-7-3.rel 16d15h:18m:24s 16 inactive LM-10 enabled --- e320_9-0-1p0-7-3.rel --- and here is the jerancid output: !RANCID-CONTENT-TYPE: Juniper_ERX ! !Chassis type: E320 - a Juniper Edge Routing Switch E320 ! !System Release: e320_9-0-1p0-7-3.rel !System Version: 9.0.1 patch-0.7.3 [BuildId 10622] (March 8, 2009 21:10) ! ! slot state type admin spare running release ! ---- -------- ------- ------- ----- -------------------- ! 1 online LM-4 enabled --- e320_9-0-1p0-7-3.rel ! 3 online LM-10 enabled --- e320_9-0-1p0-7-3.rel ! 5 online LM-10 enabled --- e320_9-0-1p0-7-3.rel ! 6 online SFM-320 enabled --- --- ! 7 online SRP-320 enabled --- e320_9-0-1p0-7-3.rel ! 7 online SFM-320 enabled --- --- ! 8 online SFM-320 enabled --- --- ! 9 online SFM-320 enabled --- --- ! 10 online SFM-320 enabled --- --- ! 12 online LM-10 enabled --- e320_9-0-1p0-7-3.rel ! 13 online LM-10 enabled --- e320_9-0-1p0-7-3.rel ! 14 online LM-10 enabled --- e320_9-0-1p0-7-3.rel ! 15 online LM-10 enabled --- e320_9-0-1p0-7-3.rel Thanks! Dave ______________________________________________________________ David A. Mack (703) 391-7787 (W) CCIE #6963 (SP and R&S) JNCIE-M #399 CISSP (703) 431-7617 (C) email: dmack at verizon.com ______________________________________________________________ "We are now the knights who say... Ping!" > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Friday, May 15, 2009 4:30 PM > To: Mack, David A (Dave) > Cc: rancid-discuss at shrubbery.net > Subject: Re: [rancid] jerancid show version parsing > > Fri, May 15, 2009 at 10:32:06AM -0400, Mack, David A (Dave): > > From the output above you can see that the parsed output is missing > > slots 0, 11 and 16. We need to capture those slots as well. > As a side > > note, the slot uptime is actually useful to us as well. I am not > > really very good with PERL, can someone help with this > missing output? > > > > I think that this patch will fix the missing slots. Please confirm. > > > Index: jerancid.in > =================================================================== > RCS file: /home/rancid/.CVS/rancid/bin/jerancid.in,v > retrieving revision 1.47 > diff -d -u -r1.47 jerancid.in > --- jerancid.in 4 Mar 2009 19:11:55 -0000 1.47 > +++ jerancid.in 15 May 2009 20:15:53 -0000 > @@ -193,7 +193,7 @@ > } > /^(--.*) --+$/ && $slots && > ProcessHistory("COMMENTS","keysort","B2", "! > $1\n") && next; > - if (/^(\d+ +\S+ +(\S+).*) \S+$/ && $slots) { > + if (/^(\d+\s+\S+\s+(\S+).*) \S+$/ && $slots) { > my($line) = $1; > if ($2 != /--+/) { > ProcessHistory("COMMENTS","keysort","B3", "! $line\n"); > > _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From electro93 at gmail.com Wed Jun 10 16:06:29 2009 From: electro93 at gmail.com (Jeff) Date: Wed, 10 Jun 2009 11:06:29 -0500 Subject: [rancid] autoenable 1 Message-ID: Hello all, I am testing out the new Cisco ACS server I installed, and I am having an issue where rancid is unable to pull a configuration. I have autoenable set to 1 in cloginrc for this device, but when rancid's cron job runs, it experiences a timeout. I am able to clogin into the device and run commands so I am just wondering why the cron doesnt work. Thanks, JB -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090610/5f8b2dfd/attachment.html From heas at shrubbery.net Wed Jun 10 21:10:36 2009 From: heas at shrubbery.net ('john heasley') Date: Wed, 10 Jun 2009 14:10:36 -0700 Subject: [rancid] Re: jerancid show version parsing In-Reply-To: <000001c9e9e4$0a627610$1f276230$@nb.ca> References: <20090515201603.CE9C511CE9F@ni.shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C82@FHDP1LUMXCV11.us.one.verizon.com> <20090515202949.GF24192@shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C94@FHDP1LUMXCV11.us.one.verizon.com> <000001c9e9e4$0a627610$1f276230$@nb.ca> Message-ID: <20090610211036.GB1732@shrubbery.net> Wed, Jun 10, 2009 at 12:56:38PM -0300, Gino Doucet: > Dave/John, > Not sure if you ever got this resolved but I just noticed it recently and > realized that it affects us as well. I made some further modifications to > the same line of code that John had initially attempted. However, here is > what I ended up successfully testing with: > > - if (/^(\d+ +\S+ +(\S+).*) \S+$/ && $slots) { > + if (/^(\d+ +\w+ +(\S+).*) (\S+| -+ +)$/ && $slots) { > > As for the slot uptime column I would suggest against including it in your > rancid reports as it continuously changes. However, if you really want to > have it included and cause a version update every time you run rancid > against your ERX's, modify the line following the above If statement as > follows: > > >- my($line) = $1; > >+ my($line) = $_; I believe that I've already fixed this in 2.3.2. From gadoucet at nbnet.nb.ca Thu Jun 11 11:13:37 2009 From: gadoucet at nbnet.nb.ca (Gino Doucet) Date: Thu, 11 Jun 2009 08:13:37 -0300 Subject: [rancid] Re: jerancid show version parsing In-Reply-To: <20090610211036.GB1732@shrubbery.net> References: <20090515201603.CE9C511CE9F@ni.shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C82@FHDP1LUMXCV11.us.one.verizon.com> <20090515202949.GF24192@shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C94@FHDP1LUMXCV11.us.one.verizon.com> <000001c9e9e4$0a627610$1f276230$@nb.ca> <20090610211036.GB1732@shrubbery.net> Message-ID: <000001c9ea85$aba5ce90$02f16bb0$@nb.ca> Hi John, Actually, I'm using 2.3.2a7 version of rancid but verified jerancid in the final 2.3.2 release to be the same for this segment of code as far as I can tell. Cheers, Gino. -----Original Message----- From: 'john heasley' [mailto:heas at shrubbery.net] Sent: June 10, 2009 6:11 PM To: Gino Doucet Cc: 'Mack, David A (Dave)'; rancid-discuss at shrubbery.net; 'john heasley' Subject: Re: [rancid] Re: jerancid show version parsing Wed, Jun 10, 2009 at 12:56:38PM -0300, Gino Doucet: > Dave/John, > Not sure if you ever got this resolved but I just noticed it recently and > realized that it affects us as well. I made some further modifications to > the same line of code that John had initially attempted. However, here is > what I ended up successfully testing with: > > - if (/^(\d+ +\S+ +(\S+).*) \S+$/ && $slots) { > + if (/^(\d+ +\w+ +(\S+).*) (\S+| -+ +)$/ && $slots) { > > As for the slot uptime column I would suggest against including it in your > rancid reports as it continuously changes. However, if you really want to > have it included and cause a version update every time you run rancid > against your ERX's, modify the line following the above If statement as > follows: > > >- my($line) = $1; > >+ my($line) = $_; I believe that I've already fixed this in 2.3.2. From heas at shrubbery.net Thu Jun 11 19:46:58 2009 From: heas at shrubbery.net (john heasley) Date: Thu, 11 Jun 2009 12:46:58 -0700 Subject: [rancid] Re: jerancid show version parsing In-Reply-To: <000001c9ea85$aba5ce90$02f16bb0$@nb.ca> References: <20090611194516.3335911CEA8@ni.shrubbery.net> <20090515201603.CE9C511CE9F@ni.shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C82@FHDP1LUMXCV11.us.one.verizon.com> <20090515202949.GF24192@shrubbery.net> <0DAA5BAA8EAFC64F83CE84A8A26848BB018C1C94@FHDP1LUMXCV11.us.one.verizon.com> <000001c9e9e4$0a627610$1f276230$@nb.ca> <20090610211036.GB1732@shrubbery.net> <000001c9ea85$aba5ce90$02f16bb0$@nb.ca> Message-ID: <20090611194658.GC3070@shrubbery.net> Thu, Jun 11, 2009 at 08:13:37AM -0300, Gino Doucet: > Hi John, > Actually, I'm using 2.3.2a7 version of rancid but verified jerancid in the > final 2.3.2 release to be the same for this segment of code as far as I can > tell. Sorry, it didnt make it into 2.3.2. here it is: Index: bin/jerancid.in =================================================================== RCS file: /home/rancid/.CVS/rancid/bin/jerancid.in,v retrieving revision 1.47 retrieving revision 1.48 diff -d -u -r1.47 -r1.48 --- bin/jerancid.in 4 Mar 2009 19:11:55 -0000 1.47 +++ bin/jerancid.in 15 May 2009 23:12:12 -0000 1.48 @@ -1,6 +1,6 @@ #! @PERLV_PATH@ ## -## $Id: jerancid.in,v 1.47 2009/03/04 19:11:55 heas Exp $ +## $Id: jerancid.in,v 1.48 2009/05/15 23:12:12 heas Exp $ ## ## @PACKAGE@ @VERSION@ ## Copyright (c) 1997-2008 by Terrapin Communications, Inc. @@ -193,9 +193,9 @@ } /^(--.*) --+$/ && $slots && ProcessHistory("COMMENTS","keysort","B2", "! $1\n") && next; - if (/^(\d+ +\S+ +(\S+).*) \S+$/ && $slots) { + if (/^(\d+\s+(\S+)\s+\S+\s+.*) \S+/ && $slots) { my($line) = $1; - if ($2 != /--+/) { + if (! ($2 =~ /--+/)) { ProcessHistory("COMMENTS","keysort","B3", "! $line\n"); } next; From diego.ercolani at ssis.sm Fri Jun 12 13:28:26 2009 From: diego.ercolani at ssis.sm (Diego Ercolani) Date: Fri, 12 Jun 2009 15:28:26 +0200 Subject: [rancid] Added 3com BLS switches (2948) and corrected script for fortigate 80, and OpenSuSE spec file Message-ID: <200906121528.26776.diego.ercolani@ssis.sm> I did some work on the 2.3.2 version adding: 1. patch for svn update but it does not seem to work correctly infact the rancid 2.3.2 out of the box used with subversion, the first commit complaints with: "my working copy is out of date" (http://subversion.tigris.org/faq.html#wc-out-of-date) 2. patched the fnlogin an fnrancid script to use our fortigate 80 gateway 3. created 3cblslogin an 3cblsrancid to permit the use of rancid with 3com baseline switches Last but not least I created a spec file to make RPMs for the OpenSuSe distribution Please add and these patches to the main trunk of rancid. Patches must be applied in the correct order: 1. svn-out-of-date.patch 2. fortigate2x_3x.patch 3 3combls_addon.patch Hope this help Diego -------------- next part -------------- A non-text attachment was scrubbed... Name: rancid.spec Type: text/x-rpm-spec Size: 2069 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090612/5a2dcc57/attachment.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: 3combls_addon.patch Type: text/x-patch Size: 31040 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090612/5a2dcc57/attachment-0001.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: fortigate2x_3x.patch Type: text/x-patch Size: 27004 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090612/5a2dcc57/attachment-0002.bin -------------- next part -------------- A non-text attachment was scrubbed... Name: svn-out-of-date.patch Type: text/x-patch Size: 927 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090612/5a2dcc57/attachment-0003.bin From diego.ercolani at ssis.sm Fri Jun 12 13:49:46 2009 From: diego.ercolani at ssis.sm (Diego Ercolani) Date: Fri, 12 Jun 2009 15:49:46 +0200 Subject: [rancid] Re: Added 3com BLS switches (2948) and corrected script for fortigate 80, and OpenSuSE spec file In-Reply-To: <200906121528.26776.diego.ercolani@ssis.sm> References: <200906121528.26776.diego.ercolani@ssis.sm> Message-ID: <200906121549.46137.diego.ercolani@ssis.sm> a little note on my patches... they are not intended for production environment and are a little bit tied on my infrastructure. It appears that rancid suite is far from be an out of the box product, I think you have to personalize scripts you are using on your infrastructure. And of course, to understand what is going on, you have to know a little bit of: subversion (or cvs) expect and tcl perl ...not so easy for today sysadm that are used to click only on Next in PC installation wizards... From jethro.binks at strath.ac.uk Fri Jun 12 20:50:03 2009 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Fri, 12 Jun 2009 21:50:03 +0100 (BST) Subject: [rancid] Re: Added 3com BLS switches (2948) and corrected script for fortigate 80, and OpenSuSE spec file In-Reply-To: <200906121549.46137.diego.ercolani@ssis.sm> References: <200906121528.26776.diego.ercolani@ssis.sm> <200906121549.46137.diego.ercolani@ssis.sm> Message-ID: On Fri, 12 Jun 2009, Diego Ercolani wrote: > It appears that rancid suite is far from be an out of the box product, I > think you have to personalize scripts you are using on your > infrastructure. And of course, to understand what is going on, you have > to know a little bit of: subversion (or cvs) expect and tcl perl Not typically. For the supported devices, and by following the installation instructions, and by suitable configuration, there shouldn't be any need to 'personalize scripts'. If, for a supported device, you need to do that, then the required changes with explanation should be fed back to the project for consideration for inclusion for the benefit of everyone. > ...not so easy for today sysadm that are used to click only on Next in > PC installation wizards... That's hardly a problem exclusive to rancid, however. Given the variety of platforms it is intended to be used on, it is somewhat difficult to make it clicky-clicky or seamless install. Sysadmins desiring that sort of functionality should stick to the platforms that provide it. Otherwise, they are going to have to learn to do a thing or two -- and be better sysadmins in the long run for doing so. Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks Computing Officer, IT Services, University Of Strathclyde, Glasgow, UK From Ian.Mackinnon at lumison.net Mon Jun 15 14:11:03 2009 From: Ian.Mackinnon at lumison.net (Ian MacKinnon) Date: Mon, 15 Jun 2009 15:11:03 +0100 Subject: [rancid] Allied Telesis switches Message-ID: Hi All, I have tried searching the archives, but can't find an answer. Does anybody have rancid grabbing configs from Allied Telesis switches? Can you share the scripts? Thanks Ian ________________________________ -- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender. Any offers or quotation of service are subject to formal specification. Errors and omissions excepted. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Lumison. Finally, the recipient should check this email and any attachments for the presence of viruses. Lumison accept no liability for any damage caused by any virus transmitted by this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090615/0eb29d06/attachment.html From ejmerkel.lists at gmail.com Mon Jun 15 21:08:17 2009 From: ejmerkel.lists at gmail.com (Eric Merkel (Mail Lists)) Date: Mon, 15 Jun 2009 17:08:17 -0400 Subject: [rancid] Mikrotik Router Backups Message-ID: <4775677C9FF4459A8314F8008C93B9CC@staff.metalink.net> I've patched rancid 2.3.2 to handle mikrotik router backups per the following thread http://www.gossamer-threads.com/lists/rancid/users/3826 The new program mtlogin seems to work ok. However when I run /usr/local/rancid/bin/mtlogin -c" system package print detail;system routerboard print;system license print;export" 10.11.9.1 it pauses after login waiting for the command prompt and spits out some special characters ^[[?6c^[[36;3R. Once it detects the login prompt it runs the previous commands showing the configs etc as it should then at the very end says "interrupted" and quits. When the rancid-run process runs I get the following errors. Trying to get all of the configs. 10.11.9.1: missed cmd(s): system routerboard print ===================================== Getting missed routers: round 1. 10.11.9.1: missed cmd(s): system routerboard print ===================================== Getting missed routers: round 2. 10.11.9.1: missed cmd(s): system routerboard print ===================================== Getting missed routers: round 3. 10.11.9.1: missed cmd(s): system routerboard print ===================================== Getting missed routers: round 4. 10.11.9.1: missed cmd(s): system routerboard print If you are not familiar with Mikrotik, it has a command line interface although some of the text is color coded. I am wondering if these special characted codes could be causing the issue. If not where do I start looking? Thanks! === Eric Merkel ejmerkel.lists at gmail.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090615/936ee593/attachment.html From bootc at bootc.net Tue Jun 16 18:04:42 2009 From: bootc at bootc.net (Chris Boot) Date: Tue, 16 Jun 2009 19:04:42 +0100 Subject: [rancid] Re: Mikrotik Router Backups In-Reply-To: <4775677C9FF4459A8314F8008C93B9CC@staff.metalink.net> References: <4775677C9FF4459A8314F8008C93B9CC@staff.metalink.net> Message-ID: <547CF917-6654-4B0E-B1CA-B5B47E9FAF3E@bootc.net> Eric, You need to make sure '+ct' is on the end of your username. This disables colour (+c) and autodetection (+t). See http://www.mikrotik.com/download/CHANGELOG_3 for more details, under "What's new in 3.0rc14". HTH, Chris On 15 Jun 2009, at 22:08, Eric Merkel (Mail Lists) wrote: > I've patched rancid 2.3.2 to handle mikrotik router backups per the > following thread http://www.gossamer-threads.com/lists/rancid/users/3826 > > The new program mtlogin seems to work ok. However when I run /usr/ > local/rancid/bin/mtlogin -c" system package print detail;system > routerboard print;system license print;export" 10.11.9.1 it pauses > after login waiting for the command prompt and spits out some > special characters ^[[?6c^[[36;3R. Once it detects the login prompt > it runs the previous commands showing the configs etc as it should > then at the very end says "interrupted" and quits. > > When the rancid-run process runs I get the following errors. > > Trying to get all of the configs. > 10.11.9.1: missed cmd(s): system routerboard print > ===================================== > Getting missed routers: round 1. > 10.11.9.1: missed cmd(s): system routerboard print > ===================================== > Getting missed routers: round 2. > 10.11.9.1: missed cmd(s): system routerboard print > ===================================== > Getting missed routers: round 3. > 10.11.9.1: missed cmd(s): system routerboard print > ===================================== > Getting missed routers: round 4. > 10.11.9.1: missed cmd(s): system routerboard print > If you are not familiar with Mikrotik, it has a command line > interface although some of the text is color coded. I am wondering > if these special characted codes could be causing the issue. If not > where do I start looking? Thanks! > > === > Eric Merkel > ejmerkel.lists at gmail.com > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -- Chris Boot bootc at bootc.net From alan.cooper at lumison.net Wed Jun 17 10:36:25 2009 From: alan.cooper at lumison.net (Alan Cooper) Date: Wed, 17 Jun 2009 11:36:25 +0100 Subject: [rancid] Allied Telesyn scripts Message-ID: Hi folks, Does anyone having working login scripts for Allied Telesyn AlliedWare devices? Just making sure I'm not re-inventing the wheel :) Regards, Alan ________________________________ -- This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender. Any offers or quotation of service are subject to formal specification. Errors and omissions excepted. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of Lumison. Finally, the recipient should check this email and any attachments for the presence of viruses. Lumison accept no liability for any damage caused by any virus transmitted by this email. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090617/038b5d84/attachment.html From randy at psg.com Wed Jun 17 13:41:37 2009 From: randy at psg.com (Randy Bush) Date: Wed, 17 Jun 2009 09:41:37 -0400 Subject: [rancid] Re: Allied Telesyn scripts In-Reply-To: References: Message-ID: you have sent a message to me which seems to contain a legal warning on who can read it, or how it may be distributed, or whether it may be archived, etc. i do not accept such email. my mail user agent detected a legal notice when i was opening your mail, and automatically deleted it. so do not expect further response. yes, i know your mail environment automatically added the legal notice. well, my mail environment automatically detected it, deleted it, and sent this message to you. so don't expect a lot of sympathy. and if you choose to work for some enterprise clueless enough to think that they can force this silliness on the world, use gmail, hotmail, ... randy Alan Cooper wrote: > > Hi folks, > > Does anyone having working login scripts for Allied Telesyn AlliedWare devices? > > Just making sure I?m not re-inventing the wheel J > > Regards, > > Alan > > ?????????????????????????????????????????????????????????????????????????????????????????????????????? > -- > > This email and any files transmitted with it are confidential and intended > solely for the use of the individual or entity to whom they are addressed. > If you have received this email in error please notify the sender. Any > offers or quotation of service are subject to formal specification. > Errors and omissions excepted. Please note that any views or opinions > presented in this email are solely those of the author and do not > necessarily represent those of Lumison. > Finally, the recipient should check this email and any attachments for the > presence of viruses. Lumison accept no liability for any > damage caused by any virus transmitted by this email. From kubatrak at gmail.com Thu Jun 18 16:14:30 2009 From: kubatrak at gmail.com (=?ISO-8859-1?Q?Alberto_Bern=E1rdez?=) Date: Thu, 18 Jun 2009 18:14:30 +0200 Subject: [rancid] Diffs config and save if it's changed Message-ID: Hi, I have installed rancid and it works perfectly. I?m trying to copy config to other dir if it?s changed. I?m trying to use logrotate because rancid overwrite config with the newest (I think) but results aren?t good. My goal: backup rancid configs because if i have a trouble after make a change, i have the possibility to return original. Any ideas? Thanks, Berto -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090618/8d0ed447/attachment.html From rancid at ale.cx Thu Jun 18 20:25:29 2009 From: rancid at ale.cx (alex) Date: Thu, 18 Jun 2009 21:25:29 +0100 Subject: [rancid] Re: Diffs config and save if it's changed In-Reply-To: References: Message-ID: <200906182125.29786.rancid@ale.cx> On Thursday 18 June 2009 17:14:30 Alberto Bern?rdez wrote: > Hi, I have installed rancid and it works perfectly. I?m trying to copy > config to other dir if it?s changed. I?m trying to use logrotate because > rancid overwrite config with the newest (I think) but results aren?t good. > My goal: backup rancid configs because if i have a trouble after make a > change, i have the possibility to return original. If I were you, I'd back up the CVS directory, as you'll then a history of the config, rather than just the latest configs. My personal choice of backup tool is rsync, as it is network transparent and intelligent about when or when not to copy something, ie it'll handle the logic of when a file has changed rather than you having to work it out. alexd From NMaio at guesswho.com Thu Jun 18 20:36:09 2009 From: NMaio at guesswho.com (NMaio at guesswho.com) Date: Thu, 18 Jun 2009 16:36:09 -0400 Subject: [rancid] Re: Diffs config and save if it's changed In-Reply-To: <200906182125.29786.rancid@ale.cx> References: <200906182125.29786.rancid@ale.cx> Message-ID: Alex, If I understand what you really want you shouldn't have to backup any "old" configs. The whole point of Rancid is to backup up configs when they change and also keep the old versions in CVS so you can go back to your previous config or for that matter go back to the config that was X number of changes ago. Have a look at cvsweb if you like web interfaces. It will display your configs and also allow you to diff the current config to any previous config. Keep in mind this is only an interface to view what Rancid already handles under the hood. Nick -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of alex Sent: Thursday, June 18, 2009 4:25 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: Diffs config and save if it's changed On Thursday 18 June 2009 17:14:30 Alberto Bern?rdez wrote: > Hi, I have installed rancid and it works perfectly. I?m trying to copy > config to other dir if it?s changed. I?m trying to use logrotate because > rancid overwrite config with the newest (I think) but results aren?t good. > My goal: backup rancid configs because if i have a trouble after make a > change, i have the possibility to return original. If I were you, I'd back up the CVS directory, as you'll then a history of the config, rather than just the latest configs. My personal choice of backup tool is rsync, as it is network transparent and intelligent about when or when not to copy something, ie it'll handle the logic of when a file has changed rather than you having to work it out. alexd _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From rancid at ale.cx Fri Jun 19 18:11:36 2009 From: rancid at ale.cx (alex) Date: Fri, 19 Jun 2009 19:11:36 +0100 Subject: [rancid] Re: Diffs config and save if it's changed In-Reply-To: References: <200906182125.29786.rancid@ale.cx> Message-ID: <200906191911.36927.rancid@ale.cx> On Thursday 18 June 2009 21:36:09 you wrote: > Alex, > If I understand what you really want you shouldn't have to backup any "old" > configs. The whole point of Rancid is to backup up configs when they > change and also keep the old versions in CVS so you can go back to your > previous config or for that matter go back to the config that was X number > of changes ago. Sorry, I didn't quite make myself clear. I meant to suggest to the OP that if he wants a backup, he should back up the whole lot rather than just the latest router configs. Re-reading his question, it may be that he wants to back up RANCID's config, not that of the routers it has polled. > Have a look at cvsweb if you like web interfaces. It will display your > configs and also allow you to diff the current config to any previous > config. Keep in mind this is only an interface to view what Rancid already > handles under the hood. Yes, using CVSweb just fine here. If I could get lg.cgi working, it would be perfect! alexd From derek.andree at nuance.com Tue Jun 23 18:01:44 2009 From: derek.andree at nuance.com (Derek Andree) Date: Tue, 23 Jun 2009 11:01:44 -0700 Subject: [rancid] Issues with f5rancid Message-ID: Has anyone noticed issues getting the configuration for the standby F5 in an HA pair? What is strange is that I can do rancid-run from the command line and it will actually get the configuration fine. When run from cron, it does not. I created a "rancid-daemon" which does rancid-run every hour and just kicked that off in the background, but interestingly it succeeds the first run, then every run thereafter fails for only the standby F5s. My initial thoughts were that there was some problem with the prompt for the standby, as it's prompt contains "Standby" instead of "Active", but when I realized I could successfully get the configuration by running rancid-run from the command line I abandoned this theory. The only thing I can think of now is that it has to do with some environment variable getting monkeyed up after the first run. I've noticed in f5rancid it sets env{TERM} = 'vt100'. If I comment out that line f5rancid fails for both active and standby F5 load balancers. I've even tried exporting TERM=vt100 in the crontab such as this: 1 * * * * export TERM=vt100 ; /home/rancid/bin/rancid-run This doesn't help. If anyone has any ideas I'm all ears at this point, I'm about to re-write f5rancid if I can't figure this out. Here's the logfile when it fails (not very helpful), if there is any other info that would be helpful please let me know and I will post it. Trying to get all of the configs. lb02: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,ls --full-time --color=never /config/ssl/ssl.key ===================================== Getting missed routers: round 1. lb02: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,ls --full-time --color=never /config/ssl/ssl.key ===================================== Getting missed routers: round 2. lb02: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,ls --full-time --color=never /config/ssl/ssl.key ===================================== Getting missed routers: round 3. lb02: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,ls --full-time --color=never /config/ssl/ssl.key ===================================== Getting missed routers: round 4. lb02: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,ls --full-time --color=never /config/ssl/ssl.key Thanks, -Derek From atonns at promotions.com Wed Jun 24 15:19:09 2009 From: atonns at promotions.com (Anthony Tonns) Date: Wed, 24 Jun 2009 11:19:09 -0400 Subject: [rancid] Re: Issues with f5rancid In-Reply-To: References: Message-ID: <2627F8DAA3B0C8438E8FC1BAAFBC068109B8F724@CORSIS-EXCH.corsisny.com> > If anyone has any ideas I'm all ears at this point, I'm about to re-write > f5rancid if I can't figure this out. I noticed the same problem. I just "tweaked" the f5rancid script to get around it. Tony ---8<--- $ diff -u f5rancid.orig f5rancid --- f5rancid.orig 2008-12-12 12:30:01.000000000 -0500 +++ f5rancid 2008-12-12 12:59:49.000000000 -0500 @@ -545,8 +545,8 @@ {'bigpipe base list' => 'ShowBaseRun'}, {'bigpipe db show' => 'ShowDb'}, {'bigpipe route static show' => 'ShowRouteStatic'}, - {'ls --full-time --color=never /config/ssl/ssl.crt' => 'ShowSslCrt'}, - {'ls --full-time --color=never /config/ssl/ssl.key' => 'ShowSslKey'}, +# {'/bin/ls --full-time --color=never /config/ssl/ssl.crt' => 'ShowSslCrt'}, +# {'/bin/ls --full-time --color=never /config/ssl/ssl.key' => 'ShowSslKey'}, {'bigpipe list' => 'WriteTerm'} ); # Use an array to preserve the order of the commands and a hash for mapping From derek.andree at nuance.com Wed Jun 24 18:48:38 2009 From: derek.andree at nuance.com (Derek Andree) Date: Wed, 24 Jun 2009 11:48:38 -0700 Subject: [rancid] Re: Issues with f5rancid In-Reply-To: <2627F8DAA3B0C8438E8FC1BAAFBC068109B8F724@CORSIS-EXCH.corsisny.com> Message-ID: This has fixed the issue, although I'm not sure I understand why these commands only appear to affect the Standby F5 devices we have. Thanks for the help! On 6/24/09 8:19 AM, "Anthony Tonns" wrote: > I noticed the same problem. I just "tweaked" the f5rancid script to get > around it. > > Tony > > ---8<--- > $ diff -u f5rancid.orig f5rancid > --- f5rancid.orig 2008-12-12 12:30:01.000000000 -0500 > +++ f5rancid 2008-12-12 12:59:49.000000000 -0500 > @@ -545,8 +545,8 @@ > {'bigpipe base list' => 'ShowBaseRun'}, > {'bigpipe db show' => 'ShowDb'}, > {'bigpipe route static show' => 'ShowRouteStatic'}, > - {'ls --full-time --color=never /config/ssl/ssl.crt' => > 'ShowSslCrt'}, > - {'ls --full-time --color=never /config/ssl/ssl.key' => > 'ShowSslKey'}, > +# {'/bin/ls --full-time --color=never /config/ssl/ssl.crt' > => 'ShowSslCrt'}, > +# {'/bin/ls --full-time --color=never /config/ssl/ssl.key' > => 'ShowSslKey'}, > {'bigpipe list' => 'WriteTerm'} > ); > # Use an array to preserve the order of the commands and a hash for > mapping From justin at justinshore.com Fri Jun 26 14:25:04 2009 From: justin at justinshore.com (Justin Shore) Date: Fri, 26 Jun 2009 09:25:04 -0500 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com><20090625163851.GB25366@lboro.ac.uk><6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local><4A4459F4.4030908@justinshore.com> <20090626082736.GC26638@lboro.ac.uk> <62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk> <6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> Message-ID: <4A44DA40.1010809@justinshore.com> Ryan West wrote: > I'm curious to see what others are using for a frontend to RANCID. Besides the emailing of the diff's that take place, what are others using to browse the repository? I'm not a CVS buff so I'm sure someone that falls into that category would have a better solution. I currently just use the standard cvsweb CGI. It works well enough. I keep it in a password protected directory on my servers. Not overly elegant but it works well enough. Does anyone else have any other suggestions for a web GUI front-end to CVS for RANCID use? Justin From ron.whitney at doitbest.com Fri Jun 26 14:59:26 2009 From: ron.whitney at doitbest.com (Ron Whitney) Date: Fri, 26 Jun 2009 10:59:26 -0400 Subject: [rancid] RANCID to monitor files on Linux? Message-ID: <1FD6BFAE6EA54341821D01FB8E617B6501E4AB2C@EXCHANGE1.ntserv.doitbestcorp.com> Please forgive if I'm missing something obvious. I did a little research on this but didn't come up with much so I thought I'd ask the group. Has anyone used RANCID to monitor config files on a Linux host? To my way of thinking, it should be fairly easy to do. Telnet/SSH in, 'cat' the file(s), log out. I was thinking that it would be great to use RANCID to monitor DNS zones, sendmail.cf, httpd.conf and similar files to track changes others might be making. Perhaps coding for the various prompts returned by the different flavors of Linux would be a bit of a challenge. Thoughts? Ron From electro93 at gmail.com Fri Jun 26 15:25:12 2009 From: electro93 at gmail.com (Jeff) Date: Fri, 26 Jun 2009 10:25:12 -0500 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: <4A44DA40.1010809@justinshore.com> References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com> <20090625163851.GB25366@lboro.ac.uk> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local> <4A4459F4.4030908@justinshore.com> <20090626082736.GC26638@lboro.ac.uk> <62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk> <6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> <4A44DA40.1010809@justinshore.com> Message-ID: CVSWEB. Works great for even seeing old configs off devices that have been removed. Here's a nice all encompassing link. http://www.debian-administration.org/article/Network_Administration__Installation_of_Tacacs_Rancid_Cvsweb -JB On Fri, Jun 26, 2009 at 9:25 AM, Justin Shore wrote: > Ryan West wrote: > > I'm curious to see what others are using for a frontend to RANCID. > Besides the emailing of the diff's that take place, what are others using > to browse the repository? > > I'm not a CVS buff so I'm sure someone that falls into that category > would have a better solution. I currently just use the standard cvsweb > CGI. It works well enough. I keep it in a password protected directory > on my servers. Not overly elegant but it works well enough. > > Does anyone else have any other suggestions for a web GUI front-end to > CVS for RANCID use? > > Justin > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090626/91606446/attachment.html From mashcraft at omniture.com Fri Jun 26 16:45:59 2009 From: mashcraft at omniture.com (Mike Ashcraft) Date: Fri, 26 Jun 2009 10:45:59 -0600 Subject: [rancid] Re: RANCID to monitor files on Linux? In-Reply-To: <1FD6BFAE6EA54341821D01FB8E617B6501E4AB2C@EXCHANGE1.ntserv.doitbestcorp.com> References: <1FD6BFAE6EA54341821D01FB8E617B6501E4AB2C@EXCHANGE1.ntserv.doitbestcorp.com> Message-ID: <370BD08812250148A3EC9CFC41A6D60103FF74B1F1@EXCHANGE1.orm.omniture.com> Ron, A number of the devices rancid supports are Linux based. The f5rancid script for supporting the F5 BigIP is an example. You could modify it to cat configuration files or run any other command on a Linux host. Before you spend too much time on this, consider your needs and rancid's capabilities. There are a number of open source tools out there specifically designed to address server configuration management. Rancid is targeted at devices [initially Cisco routers] that do not have the ability to do more than output their current state. Mike -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ron Whitney Sent: Friday, June 26, 2009 8:59 AM To: rancid-discuss at shrubbery.net Subject: [rancid] RANCID to monitor files on Linux? Please forgive if I'm missing something obvious. I did a little research on this but didn't come up with much so I thought I'd ask the group. Has anyone used RANCID to monitor config files on a Linux host? To my way of thinking, it should be fairly easy to do. Telnet/SSH in, 'cat' the file(s), log out. I was thinking that it would be great to use RANCID to monitor DNS zones, sendmail.cf, httpd.conf and similar files to track changes others might be making. Perhaps coding for the various prompts returned by the different flavors of Linux would be a bit of a challenge. Thoughts? Ron _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From BBlackford at nwresd.k12.or.us Fri Jun 26 14:53:47 2009 From: BBlackford at nwresd.k12.or.us (Bill Blackford) Date: Fri, 26 Jun 2009 07:53:47 -0700 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: <4A44DA40.1010809@justinshore.com> References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com><20090625163851.GB25366@lboro.ac.uk><6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local><4A4459F4.4030908@justinshore.com> <20090626082736.GC26638@lboro.ac.uk> <62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk> <6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> <4A44DA40.1010809@justinshore.com> Message-ID: <6069A203FD01884885C037F81DD7508016CF591C8F@wsc-mail-01.intra.nwresd.k12.or.us> Webmin, but that's probably overkill -b -----Original Message----- From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Justin Shore Sent: Friday, June 26, 2009 7:25 AM To: Ryan West Cc: Cisco-nsp; rancid-discuss at shrubbery.net Subject: Re: [c-nsp] PIX/ASA Change Control Ryan West wrote: > I'm curious to see what others are using for a frontend to RANCID. Besides the emailing of the diff's that take place, what are others using to browse the repository? I'm not a CVS buff so I'm sure someone that falls into that category would have a better solution. I currently just use the standard cvsweb CGI. It works well enough. I keep it in a password protected directory on my servers. Not overly elegant but it works well enough. Does anyone else have any other suggestions for a web GUI front-end to CVS for RANCID use? Justin _______________________________________________ cisco-nsp mailing list cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ From ptimmins at clearrate.com Fri Jun 26 16:57:14 2009 From: ptimmins at clearrate.com (Paul G. Timmins) Date: Fri, 26 Jun 2009 12:57:14 -0400 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: <4A44DA40.1010809@justinshore.com> References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com><20090625163851.GB25366@lboro.ac.uk><6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local><4A4459F4.4030908@justinshore.com> <20090626082736.GC26638@lboro.ac.uk> <62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk> <6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> <4A44DA40.1010809@justinshore.com> Message-ID: We use subversion, and giving web access to the repository through the normal subversion frontend, no special additions, works for us, but our needs have been basically just to get a last known good configuration to blow onto a customer's replacement unit prior to dispatching a technician. Works pretty well, as you can just download the file from the repository, put it on the unit with xmodem over the serial port as the startup-config, reboot, and you've got an identical copy of what was there. We do this with Adtran Total Access 900 and Netvanta gear and our Cisco CPE using the same config in Rancid (using "cisco" as the type works just fine for Adtran AOS based gear) and it's a lifesaver. -Paul > -----Original Message----- > From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp- > bounces at puck.nether.net] On Behalf Of Justin Shore > Sent: Friday, June 26, 2009 10:25 AM > To: Ryan West > Cc: Cisco-nsp; rancid-discuss at shrubbery.net > Subject: Re: [c-nsp] PIX/ASA Change Control > > Ryan West wrote: > > I'm curious to see what others are using for a frontend to RANCID. > Besides the emailing of the diff's that take place, what are others > using to browse the repository? > > I'm not a CVS buff so I'm sure someone that falls into that category > would have a better solution. I currently just use the standard cvsweb > CGI. It works well enough. I keep it in a password protected > directory > on my servers. Not overly elegant but it works well enough. > > Does anyone else have any other suggestions for a web GUI front-end to > CVS for RANCID use? > > Justin > _______________________________________________ > cisco-nsp mailing list cisco-nsp at puck.nether.net > https://puck.nether.net/mailman/listinfo/cisco-nsp > archive at http://puck.nether.net/pipermail/cisco-nsp/ From brett.dellegrazie at intact-is.com Sat Jun 27 01:25:19 2009 From: brett.dellegrazie at intact-is.com (Brett Delle Grazie) Date: Sat, 27 Jun 2009 02:25:19 +0100 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com> <20090625163851.GB25366@lboro.ac.uk> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local> <4A4459F4.4030908@justinshore.com> <20090626082736.GC26638@lboro.ac.uk> <62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk> <6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com> <6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local> <4A44DA40.1010809@justinshore.com> Message-ID: <1246065919.3878.2.camel@bdellegrazie-laptop> Hi, I use Trac http://trac.edgewall.org/ - it integrates with CVS, Subversion (by default) or Git and also has an excellent diff view, ticket tracking, timeline capability, searching, as well as built in wiki. Subversion is the simplest to set up as that is what Trac was originally designed for. Since RANCID can use either it didn't matter in my case. Best Regards, Brett On Fri, 2009-06-26 at 10:25 -0500, Jeff wrote: > CVSWEB. Works great for even seeing old configs off devices that have > been removed. > > Here's a nice all encompassing link. > > http://www.debian-administration.org/article/Network_Administration__Installation_of_Tacacs_Rancid_Cvsweb > > -JB > > On Fri, Jun 26, 2009 at 9:25 AM, Justin Shore > wrote: > Ryan West wrote: > > I'm curious to see what others are using for a frontend to > RANCID. Besides the emailing of the diff's that take place, > what are others using to browse the repository? > > I'm not a CVS buff so I'm sure someone that falls into that > category > would have a better solution. I currently just use the > standard cvsweb > CGI. It works well enough. I keep it in a password protected > directory > on my servers. Not overly elegant but it works well enough. > > Does anyone else have any other suggestions for a web GUI > front-end to > CVS for RANCID use? > > Justin > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > ______________________________________________________________________ > This email has been scanned by the MessageLabs Email Security System. > For more information please visit http://www.messagelabs.com/email > ______________________________________________________________________ > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss ______________________________________________________________________ This email has been scanned by the MessageLabs Email Security System. For more information please visit http://www.messagelabs.com/email ______________________________________________________________________ From quinn at activehost.com Fri Jun 26 17:37:11 2009 From: quinn at activehost.com (Quinn Mahoney) Date: Fri, 26 Jun 2009 13:37:11 -0400 Subject: [rancid] Re: [c-nsp] PIX/ASA Change Control In-Reply-To: <6069A203FD01884885C037F81DD7508016CF591C8F@wsc-mail-01.intra.nwresd.k12.or.us> References: <76D38BC6-4D21-4143-BF75-1C22C3A7BA88@zyedge.com><20090625163851.GB25366@lboro.ac.uk><6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5905@zy-ex1.zyedge.local><4A4459F4.4030908@justinshore.com><20090626082736.GC26638@lboro.ac.uk><62D8ECFDF835A648AD4FB4328B15F36404E8B3F5@mud.admiral.uk><6B8401A83219DF499C34DEAEE9A599921015AEDBBB@XBOX.midlandpaper.com><6E21B2BDEF6E714EA0B5BA8D5D0E140124835C5952@zy-ex1.zyedge.local><4A44DA40.1010809@justinshore.com> <6069A203FD01884885C037F81DD7508016CF591C8F@wsc-mail-01.intra.nwresd.k12.or.us> Message-ID: <8685783A8C22C640AD1361E78659B7D76976EA@ahex02.activehost.local> FreeBSD-CVSweb can be a front-end for rancid since it uses CVS, you can also use grep. If you are grepping it is probably a good idea to do so as the user rancid runs as. You can use the .deb's to install these for debian/ubuntu, or installing from source works well and is straightforward. -----Original Message----- From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Bill Blackford Sent: Friday, June 26, 2009 10:54 AM To: Justin Shore; Ryan West Cc: Cisco-nsp; rancid-discuss at shrubbery.net Subject: Re: [c-nsp] PIX/ASA Change Control Webmin, but that's probably overkill -b -----Original Message----- From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Justin Shore Sent: Friday, June 26, 2009 7:25 AM To: Ryan West Cc: Cisco-nsp; rancid-discuss at shrubbery.net Subject: Re: [c-nsp] PIX/ASA Change Control Ryan West wrote: > I'm curious to see what others are using for a frontend to RANCID. Besides the emailing of the diff's that take place, what are others using to browse the repository? I'm not a CVS buff so I'm sure someone that falls into that category would have a better solution. I currently just use the standard cvsweb CGI. It works well enough. I keep it in a password protected directory on my servers. Not overly elegant but it works well enough. Does anyone else have any other suggestions for a web GUI front-end to CVS for RANCID use? Justin _______________________________________________ cisco-nsp mailing list cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ _______________________________________________ cisco-nsp mailing list cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ From asmirnoff at office.beeline.ru Mon Jun 29 14:01:40 2009 From: asmirnoff at office.beeline.ru (Smirnoff Alexander) Date: Mon, 29 Jun 2009 18:01:40 +0400 Subject: [rancid] Planet wsd800 switch Message-ID: <986544234AB0A44BADE40DF502E2012A022538A0@SPBMAIL.spb.sovintel.net> Hello rancid people! I am try to change rancid scripts for WSD800 Planet switches with syntax like this: -bash-3.1$ telnet 172.17.15.163 Trying 172.17.15.163... Connected to 172.17.15.163. Escape character is '^]'. login:root password: Welcome root Switch>en Please input password: Switch\enable>show version The system fireware version is : L2M-OP81(8)-V1.30BT-U1EN-PLANET(WSD-800), 2005.11.09.10:15. Switch\enable>logoutConnection closed by foreign host. Wsd800login script what I write, based clogin in attachment. All work fine ;) but I'am can't see what commands send to device. For example command send "enable\r" in login script not show , and also I am not show what commands switch receive as Unknown: -bash-3.1$ wsd800login -c "show version;show system" 172.17.15.163 172.17.15.163 spawn telnet 172.17.15.163 Trying 172.17.15.163... Connected to 172.17.15.163. Escape character is '^]'. login: password: Welcome root Switch> Please input password: Switch\enable> Unknown command. Switch\enable> Error: TIMEOUT reached It is switch behaviour what i am not see echo's of sending command, or may be some environment variable? -- Regards, Alexandr Smirnov +7(812)3468600 # 54682 Head of Data Transmission Networks Monitoring Service -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/340d4495/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: wsd800login Type: application/octet-stream Size: 25376 bytes Desc: wsd800login Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/340d4495/attachment.obj From imd at hostalia.com Mon Jun 29 13:15:00 2009 From: imd at hostalia.com (=?UTF-8?B?ScOxYWtpIE1hcnTDrW5leiBEw61leg==?=) Date: Mon, 29 Jun 2009 15:15:00 +0200 Subject: [rancid] Cisco 2600 and menu command Message-ID: <4A48BE54.3020500@hostalia.com> An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/5066843d/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/x-pkcs7-signature Size: 3303 bytes Desc: S/MIME Cryptographic Signature Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/5066843d/attachment.bin From asmirnoff at office.beeline.ru Mon Jun 29 13:47:54 2009 From: asmirnoff at office.beeline.ru (Smirnoff Alexander) Date: Mon, 29 Jun 2009 17:47:54 +0400 Subject: [rancid] Planet wsd800 switch Message-ID: <986544234AB0A44BADE40DF502E2012A0225389F@SPBMAIL.spb.sovintel.net> Hello rancid people! I am try to change rancid scripts for WSD800 Planet switches with syntax like this: -bash-3.1$ telnet 172.17.15.163 Trying 172.17.15.163... Connected to 172.17.15.163. Escape character is '^]'. login:root password: Welcome root Switch>en Please input password: Switch\enable>show version The system fireware version is : L2M-OP81(8)-V1.30BT-U1EN-PLANET(WSD-800), 2005.11.09.10:15. Switch\enable>logoutConnection closed by foreign host. Wsd800login script what I write, based clogin in attachment. All work fine ;) but I'am can't see what commands send to device. For example command send "enable\r" in login script not show , and also I am not show what commands switch receive as Unknown: -bash-3.1$ wsd800login -c "show version;show system" 172.17.15.163 172.17.15.163 spawn telnet 172.17.15.163 Trying 172.17.15.163... Connected to 172.17.15.163. Escape character is '^]'. login: password: Welcome root Switch> Please input password: Switch\enable> Unknown command. Switch\enable> Error: TIMEOUT reached It is switch behaviour what i am not see echo's of sending command, or may be some environment variable? -- Regards, Alexandr Smirnov +7(812)3468600 # 54682 Head of Data Transmission Networks Monitoring Service mailto:asmirnoff at gldn.net -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/75cab7ee/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: wsd800login Type: application/octet-stream Size: 25376 bytes Desc: wsd800login Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20090629/75cab7ee/attachment.obj From networking at hostalia.com Tue Jun 30 07:49:11 2009 From: networking at hostalia.com (=?UTF-8?B?ScOxYWtpIE1hcnRpbmV6IERpZXo=?=) Date: Tue, 30 Jun 2009 09:49:11 +0200 Subject: [rancid] Cisco 2600 and menu command Message-ID: <4A49C377.40906@hostalia.com> Hi, I have several router Cisco 2600 in which the behaviour is the following: Telnet IP I got this promtpt: Password: I enter the telnet_password I got a menu with the lines and option "0" (zero) to get the user prompt and then i am able to enter "enable" command: router> enable Password: router# I have the following config in .cloginrc: add method r2600* {telnet} add user r2600* {user} add userpassword r2600* {user} add password r2600* {telnet_pass} {enable_pass} add autoenable r2600* {0} But the problem is that i need to enter option "0" to be able to enter enable password. How can i config rancid to get the config of this router ? Thanks in advance. From ejmerkel.lists at gmail.com Tue Jun 30 23:57:32 2009 From: ejmerkel.lists at gmail.com (Eric Merkel (Mail Lists)) Date: Tue, 30 Jun 2009 19:57:32 -0400 Subject: [rancid] Re: Mikrotik Router Backups References: <4775677C9FF4459A8314F8008C93B9CC@staff.metalink.net> <547CF917-6654-4B0E-B1CA-B5B47E9FAF3E@bootc.net> Message-ID: Chris, I've finally gotten back to looking at this and the +ct seems to have helped expect to properly parse the login info. However, I am still having the issue of rancid geting the error "missed cmd(s): system routerboard print", etc when rancid runs from cron. However if I run rancid-run from the command line it seems to work fine. Any clue what might cause that? Am I missing an environment variable or something? I appreciate all your help this far! === Eric Merkel ejmerkel.lists at gmail.com ----- Original Message ----- From: "Chris Boot" To: "Eric Merkel (Mail Lists)" Cc: Sent: 2009-06-16 14:04 Subject: Re: [rancid] Mikrotik Router Backups > Eric, > > You need to make sure '+ct' is on the end of your username. This disables > colour (+c) and autodetection (+t). See > http://www.mikrotik.com/download/CHANGELOG_3 for more details, under > "What's new in 3.0rc14". > > HTH, > Chris > > On 15 Jun 2009, at 22:08, Eric Merkel (Mail Lists) wrote: > >> I've patched rancid 2.3.2 to handle mikrotik router backups per the >> following thread http://www.gossamer-threads.com/lists/rancid/users/3826 >> >> The new program mtlogin seems to work ok. However when I run /usr/ >> local/rancid/bin/mtlogin -c" system package print detail;system >> routerboard print;system license print;export" 10.11.9.1 it pauses after >> login waiting for the command prompt and spits out some special >> characters ^[[?6c^[[36;3R. Once it detects the login prompt it runs the >> previous commands showing the configs etc as it should then at the very >> end says "interrupted" and quits. >> >> When the rancid-run process runs I get the following errors. >> >> Trying to get all of the configs. >> 10.11.9.1: missed cmd(s): system routerboard print >> ===================================== >> Getting missed routers: round 1. >> 10.11.9.1: missed cmd(s): system routerboard print >> ===================================== >> Getting missed routers: round 2. >> 10.11.9.1: missed cmd(s): system routerboard print >> ===================================== >> Getting missed routers: round 3. >> 10.11.9.1: missed cmd(s): system routerboard print >> ===================================== >> Getting missed routers: round 4. >> 10.11.9.1: missed cmd(s): system routerboard print >> If you are not familiar with Mikrotik, it has a command line interface >> although some of the text is color coded. I am wondering if these >> special characted codes could be causing the issue. If not where do I >> start looking? Thanks! >> >> === >> Eric Merkel >> ejmerkel.lists at gmail.com >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > -- > Chris Boot > bootc at bootc.net >