From hakan.muhlenbock at gmail.com Tue Jan 5 10:06:15 2010 From: hakan.muhlenbock at gmail.com (=?ISO-8859-1?Q?H=E5kan_Lindholm_M=FChlenbock?=) Date: Tue, 5 Jan 2010 11:06:15 +0100 Subject: [rancid] cisco ACE / cssrancid flapping config Message-ID: <9b5ab4251001050206t23e03a74i25778eba56821c6f@mail.gmail.com> How can I avoid getting these changes in the diff mails? With A3(2.0) - ntp server 10.10.2.1 - ntp server 10.10.2.15 tacacs-server host 10.10.2.5 key 7 "changeme" aaa group server tacacs+ TACACS server 10.10.2.5 + ntp server 10.10.2.1 + ntp server 10.10.2.15 With A3(2.3) - tacacs-server host 172.16.2.5 key 7 "changeme" - aaa group server tacacs+ TACACS - server 10.10.2.5 ntp server 10.10.2.1 ntp server 10.10.2.15 + tacacs-server host 10.10.2.5 key 7 "changeme" + aaa group server tacacs+ TACACS + server 10.10.2.5 (IP addresses are fake, please ignore if they are not the same. There shouldn't be no change in the lines, only their order of appearance..) As these changes don't make sense, I would like to avoid getting email every time the lines are moved around. Maybe by sorting them, but I don't know how to do that in rancid. /Hakan -- From arussos at comune.modena.it Tue Jan 5 10:27:11 2010 From: arussos at comune.modena.it (Andrea) Date: Tue, 05 Jan 2010 11:27:11 +0100 Subject: [rancid] Howto use backup files ?? Message-ID: <4B4313FF.7040603@comune.modena.it> Hi all, i'm using rancid integrated with our network and system monitoring solution ( i.e. OpenNMS ) .... really awesome tool !!! Now i'm wondering which is the correct way to use the files in case of a recovery of some net-appliance after an important failure; say, as an example, you have to substitute a router with a new one ( same hardware and firmware, obviously ). I ask 'cause using viewvc, when i navigate through the cvsroot page to one of the configs directory, i see ( for each revision file ) only three links: -) view -) annotate -) select for diffs ..Is there the possibility to have a "download" link in order to see in the browser page the selected file only ??? ...I also know that after that i have to parse the file 'cause i need a file "purged" from the non-rilevant part ( such as hardware and firmware part ).. ..Any one have faced such a problem ?? Thanks in advance, --Andrea From rwest at zyedge.com Tue Jan 5 13:17:19 2010 From: rwest at zyedge.com (Ryan West) Date: Tue, 5 Jan 2010 13:17:19 +0000 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <4B4313FF.7040603@comune.modena.it> References: <4B4313FF.7040603@comune.modena.it> Message-ID: <5DC4853C6CC3EE4788779E0726E034DD081F1B@zy-ex1.zyedge.local> Andrea, > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss- > bounces at shrubbery.net] On Behalf Of Andrea > Sent: Tuesday, January 05, 2010 5:27 AM > > Hi all, i'm using rancid integrated with our network and system > monitoring solution ( i.e. OpenNMS ) .... really awesome tool !!! > > Now i'm wondering which is the correct way to use the files in case of > a > recovery of some net-appliance after an important failure; say, as an > example, you have to substitute a router with a new one ( same hardware > and firmware, obviously ). > > I ask 'cause using viewvc, when i navigate through the cvsroot page to > one of the configs directory, i see ( for each revision file ) only > three links: > -) view > -) annotate > -) select for diffs > > ..Is there the possibility to have a "download" link in order to see in > the browser page the selected file only ??? If you're talking about a Cisco router / switch / firewall, you can go directly to the file structure under {prefix}/var/{name}/configs and you should see the config there. You can paste the entire file into the device as the !'s are treated as comment lines. I haven't used viewvc before, but the view option would seem the correct choice. I've recompiled my RANCID using SVN and use the websvn frontend to view my diffs and download config's using it for customer requests and system failures. HTH, -ryan From steti at monmouth.com Tue Jan 5 13:27:03 2010 From: steti at monmouth.com (Steve Teti) Date: Tue, 05 Jan 2010 08:27:03 -0500 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <4B4313FF.7040603@comune.modena.it> References: <4B4313FF.7040603@comune.modena.it> Message-ID: <4B433E27.7010309@monmouth.com> Andrea wrote: > I ask 'cause using viewvc, when i navigate through the cvsroot page to > one of the configs directory, i see ( for each revision file ) only > three links: > -) view > -) annotate > -) select for diffs > > ..Is there the possibility to have a "download" link in order to see in > the browser page the selected file only ??? Take a look at the allowed_views option in viewvc.conf. Adding "co" to the list of views should add a "download" link to your viewvc pages. > ...I also know that after that i have to parse the file 'cause i need a > file "purged" from the non-rilevant part ( such as hardware and firmware > part ).. I believe the non-relevant parts are prepended with a "!", which should allow you to paste or TFTP the entire file into a Cisco router with no ill effects. Also, if you have FILTER_PWDS enabled in rancid.conf (I believe it's enabled by default), all your passwords will have been stripped out of the stored config files. Make sure you have the relevant passwords stored elsewhere to replace into the config file. Steve From heas at shrubbery.net Tue Jan 5 17:43:31 2010 From: heas at shrubbery.net (john heasley) Date: Tue, 5 Jan 2010 09:43:31 -0800 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <4B433E27.7010309@monmouth.com> References: <4B4313FF.7040603@comune.modena.it> <4B433E27.7010309@monmouth.com> Message-ID: <20100105174329.GF13136@shrubbery.net> Tue, Jan 05, 2010 at 08:27:03AM -0500, Steve Teti: > Andrea wrote: > > I ask 'cause using viewvc, when i navigate through the cvsroot page to > > one of the configs directory, i see ( for each revision file ) only > > three links: > > -) view > > -) annotate > > -) select for diffs > > > > ..Is there the possibility to have a "download" link in order to see in > > the browser page the selected file only ??? > > Take a look at the allowed_views option in viewvc.conf. Adding "co" to > the list of views should add a "download" link to your viewvc pages. > > > ...I also know that after that i have to parse the file 'cause i need a > > file "purged" from the non-rilevant part ( such as hardware and firmware > > part ).. > > I believe the non-relevant parts are prepended with a "!", which should > allow you to paste or TFTP the entire file into a Cisco router with no > ill effects. Also, if you have FILTER_PWDS enabled in rancid.conf (I > believe it's enabled by default), all your passwords will have been > stripped out of the stored config files. Make sure you have the > relevant passwords stored elsewhere to replace into the config file. FILTER_PWDS is off (commented) by default. caveat is that if you're using a linux pkg, they may have changed the default to "help" you. > Steve > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Tue Jan 5 18:50:08 2010 From: heas at shrubbery.net (john heasley) Date: Tue, 5 Jan 2010 10:50:08 -0800 Subject: [rancid] Re: cisco ACE / cssrancid flapping config In-Reply-To: <9b5ab4251001050206t23e03a74i25778eba56821c6f@mail.gmail.com> References: <9b5ab4251001050206t23e03a74i25778eba56821c6f@mail.gmail.com> Message-ID: <20100105185008.GO13136@shrubbery.net> Tue, Jan 05, 2010 at 11:06:15AM +0100, H?kan Lindholm M?hlenbock: > How can I avoid getting these changes in the diff mails? > > With A3(2.0) > > - ntp server 10.10.2.1 > - ntp server 10.10.2.15 > tacacs-server host 10.10.2.5 key 7 "changeme" > aaa group server tacacs+ TACACS > server 10.10.2.5 > + ntp server 10.10.2.1 > + ntp server 10.10.2.15 > > > > With A3(2.3) > > - tacacs-server host 172.16.2.5 key 7 "changeme" > - aaa group server tacacs+ TACACS > - server 10.10.2.5 > ntp server 10.10.2.1 > > ntp server 10.10.2.15 > > + tacacs-server host 10.10.2.5 key 7 "changeme" > + aaa group server tacacs+ TACACS > + server 10.10.2.5 > > > (IP addresses are fake, please ignore if they are not the same. There > shouldn't be no change in the lines, only their order of appearance..) > > As these changes don't make sense, I would like to avoid getting email > every time the lines are moved around. Maybe by sorting them, but I > don't know how to do that in rancid. complain to the TAC that your CSS is not nvgen'ing the configuration consistently. From cgauthier at mapscu.com Tue Jan 5 18:53:53 2010 From: cgauthier at mapscu.com (Chris Gauthier) Date: Tue, 5 Jan 2010 10:53:53 -0800 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <20100105174329.GF13136@shrubbery.net> References: <4B4313FF.7040603@comune.modena.it> <4B433E27.7010309@monmouth.com> <20100105174329.GF13136@shrubbery.net> Message-ID: The Ubuntu packages are configured to filter out the passwords by default. --Chris "For once you have tasted flight you will walk the earth with your eyes turned skywards, for there you have been and there you will long to return." -Leonardo da Vinci -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of john heasley Sent: Tuesday, January 05, 2010 9:44 AM To: Steve Teti Cc: andrea.russos at comune.modena.it; rancid-discuss at shrubbery.net Subject: [rancid] Re: Howto use backup files ?? Tue, Jan 05, 2010 at 08:27:03AM -0500, Steve Teti: > Andrea wrote: > > I ask 'cause using viewvc, when i navigate through the cvsroot page to > > one of the configs directory, i see ( for each revision file ) only > > three links: > > -) view > > -) annotate > > -) select for diffs > > > > ..Is there the possibility to have a "download" link in order to see in > > the browser page the selected file only ??? > > Take a look at the allowed_views option in viewvc.conf. Adding "co" to > the list of views should add a "download" link to your viewvc pages. > > > ...I also know that after that i have to parse the file 'cause i need a > > file "purged" from the non-rilevant part ( such as hardware and firmware > > part ).. > > I believe the non-relevant parts are prepended with a "!", which should > allow you to paste or TFTP the entire file into a Cisco router with no > ill effects. Also, if you have FILTER_PWDS enabled in rancid.conf (I > believe it's enabled by default), all your passwords will have been > stripped out of the stored config files. Make sure you have the > relevant passwords stored elsewhere to replace into the config file. FILTER_PWDS is off (commented) by default. caveat is that if you're using a linux pkg, they may have changed the default to "help" you. > Steve > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From hakan.muhlenbock at gmail.com Wed Jan 6 07:45:14 2010 From: hakan.muhlenbock at gmail.com (=?ISO-8859-1?Q?H=E5kan_Lindholm_M=FChlenbock?=) Date: Wed, 6 Jan 2010 08:45:14 +0100 Subject: [rancid] Re: cisco ACE / cssrancid flapping config In-Reply-To: <20100105185008.GO13136@shrubbery.net> References: <9b5ab4251001050206t23e03a74i25778eba56821c6f@mail.gmail.com> <20100105185008.GO13136@shrubbery.net> Message-ID: <9b5ab4251001052345i30667a76r5310ab060a9ebf73@mail.gmail.com> It's already known as bug CSCtb95964. It will be fixed in the next release. I rest my case. /Hakan From david.mantock at gmx.ch Wed Jan 6 08:55:38 2010 From: david.mantock at gmx.ch (David Mantock) Date: Wed, 06 Jan 2010 09:55:38 +0100 Subject: [rancid] Routers changed to down: email Message-ID: <20100106085538.64540@gmx.net> Hello to all, Is it possible to configure rancid so that I do not receive the emails with the message: Routers changed to down: When there are no changes i.e. there is only the line above in the email. Thanks in advance. -- Jetzt kostenlos herunterladen: Internet Explorer 8 und Mozilla Firefox 3.5 - sicherer, schneller und einfacher! http://portal.gmx.net/de/go/atbrowser From wcgallar at iupui.edu Wed Jan 6 15:50:34 2010 From: wcgallar at iupui.edu (Gallardo, Winfred C) Date: Wed, 6 Jan 2010 10:50:34 -0500 Subject: [rancid] Issues with rancid not collecting configs In-Reply-To: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> Message-ID: i'm having trouble diagnosing why rancid is having trouble collecting configs on HP procurve 5412. I get the expected out put when running hlogin -c 'show config' xx.xx.xx.xx i checked my rancid log files and i'm not sure what all the lines mean for the errors. here is a sample. Trying to get all of the configs. write(spawn_id=1): broken pipe while executing "send_user -- "$expect_out(buffer)"" invoked from within "expect -nobrace -re {^[^ *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" } -re {^[^ ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." invoked from within "expect { -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" } -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)" ..." invoked from within "if [ string match "*\;*" "$command" ] { set commands [split $command \;] set num_commands [llength $commands] # the pager can not be turned off on ..." (procedure "run_commands" line 17) invoked from within "run_commands $prompt $command" ("foreach" body line 136) Please let me know what other commands i can try to see where the errors are coming from. Thanks in advance, Chris Gallardo Network Services 278-9067 wcgallar at iupui.edu On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: > While I should be able to follow that path, the only result available is "8.2(1)" and it does not get more specific than that. Here is an excerpt from the site: > > asa821-k8.bin > Release Date: 06/May/2009 > Cisco Adaptive Security Appliance Software version 8.2(1) for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read the Release Note prior to downloading this release. > Size: 15894.00 KB (16275456 bytes) > > > However, Cisco also has, in a different spot (now that I notice it differently), an 8.2.1.ED and then 8.2.1.11. ugh.... Sometimes Cisco really frustrates me. > > I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. > > Chris > > > > From: P C [mailto:pc50000 at gmail.com] > Sent: Wednesday, December 23, 2009 8:50 AM > To: Chris Gauthier > Cc: rancid-discuss at shrubbery.net > Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? > > You should also be able to go to suppport > download software > security > firweall > firewall appliances > cisco asa 55x0 > cisco asa software > drill down to 8.2, and 8.2.1.11 is posted and downloadable as a more TAC-posted and more thoroughly tested interim build. It's been fixed since 8.2.1.2 > > > On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier wrote: > I went to Cisco.com and looked for the fixed versions and they were not > there. So, even after my attempts to just "fix it", I still had to > contact the TAC for the files. They set me up with version 8.2.1.4 > (Interim). > > Thanks for pointing out the Bug ID, that made the case SUPER easy for me > to describe to TAC and for TAC to just give me what I needed. > > Chris > > -----Original Message----- > From: Ron Whitney [mailto:ron.whitney at doitbest.com] > Sent: Monday, December 21, 2009 3:37 PM > To: Chris Gauthier; rancid-discuss at shrubbery.net > Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? > > >> Did anyone ever find a solution to the coredump bug on the >> Cisco ASA? Did TAC ever come back with anything? > > Here's the last status I received (about a week ago) on that bug: > > The following bug(s) you have subscribed to have been updated as > follows: > > ------------------------------------------------------------------------ > ---------- > > BugID: CSCsz85597 > What Changed: Fixed in version > Title: coredump.cfg file gets rewritten every time show run is executed > Technology: nav > Version: 8.2(1) > Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M > Severity: 2 > State: Verified > Bug Details: > http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method > =fetchBugDetails&bugId=CSCsz85597 > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Wed Jan 6 17:41:30 2010 From: heas at shrubbery.net (john heasley) Date: Wed, 6 Jan 2010 09:41:30 -0800 Subject: [rancid] Re: Issues with rancid not collecting configs In-Reply-To: References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> Message-ID: <20100106174130.GA24649@shrubbery.net> Wed, Jan 06, 2010 at 10:50:34AM -0500, Gallardo, Winfred C: > i'm having trouble diagnosing why rancid is having trouble collecting configs on HP procurve 5412. > > > I get the expected out put when running > > hlogin -c 'show config' xx.xx.xx.xx > > > i checked my rancid log files and i'm not sure > what all the lines mean for the errors. > > here is a sample. > > Trying to get all of the configs. > write(spawn_id=1): broken pipe > while executing > "send_user -- "$expect_out(buffer)"" its an expect/tcl trace. the relevant parts are 'broken pipe' and send_user, which seem indicate that hrancid or hpuifilter exited prematurely. are they getting killed? dumping core? tried runing hrancid manually? ktrace/truss/strace it? > invoked from within > "expect -nobrace -re {^[^ > *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" > } -re {^[^ > ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." > invoked from within > "expect { > -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)" > ..." > invoked from within > "if [ string match "*\;*" "$command" ] { > set commands [split $command \;] > set num_commands [llength $commands] > # the pager can not be turned off on ..." > (procedure "run_commands" line 17) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 136) > > > > Please let me know what other commands i can try to see where the errors are coming from. > > Thanks in advance, > > > Chris Gallardo > Network Services > 278-9067 > wcgallar at iupui.edu > > > > On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: > > > While I should be able to follow that path, the only result available is "8.2(1)" and it does not get more specific than that. Here is an excerpt from the site: > > > > asa821-k8.bin > > Release Date: 06/May/2009 > > Cisco Adaptive Security Appliance Software version 8.2(1) for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read the Release Note prior to downloading this release. > > Size: 15894.00 KB (16275456 bytes) > > > > > > However, Cisco also has, in a different spot (now that I notice it differently), an 8.2.1.ED and then 8.2.1.11. ugh.... Sometimes Cisco really frustrates me. > > > > I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. > > > > Chris > > > > > > > > From: P C [mailto:pc50000 at gmail.com] > > Sent: Wednesday, December 23, 2009 8:50 AM > > To: Chris Gauthier > > Cc: rancid-discuss at shrubbery.net > > Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? > > > > You should also be able to go to suppport > download software > security > firweall > firewall appliances > cisco asa 55x0 > cisco asa software > drill down to 8.2, and 8.2.1.11 is posted and downloadable as a more TAC-posted and more thoroughly tested interim build. It's been fixed since 8.2.1.2 > > > > > > On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier wrote: > > I went to Cisco.com and looked for the fixed versions and they were not > > there. So, even after my attempts to just "fix it", I still had to > > contact the TAC for the files. They set me up with version 8.2.1.4 > > (Interim). > > > > Thanks for pointing out the Bug ID, that made the case SUPER easy for me > > to describe to TAC and for TAC to just give me what I needed. > > > > Chris > > > > -----Original Message----- > > From: Ron Whitney [mailto:ron.whitney at doitbest.com] > > Sent: Monday, December 21, 2009 3:37 PM > > To: Chris Gauthier; rancid-discuss at shrubbery.net > > Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? > > > > > >> Did anyone ever find a solution to the coredump bug on the > >> Cisco ASA? Did TAC ever come back with anything? > > > > Here's the last status I received (about a week ago) on that bug: > > > > The following bug(s) you have subscribed to have been updated as > > follows: > > > > ------------------------------------------------------------------------ > > ---------- > > > > BugID: CSCsz85597 > > What Changed: Fixed in version > > Title: coredump.cfg file gets rewritten every time show run is executed > > Technology: nav > > Version: 8.2(1) > > Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M > > Severity: 2 > > State: Verified > > Bug Details: > > http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method > > =fetchBugDetails&bugId=CSCsz85597 > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Wed Jan 6 18:05:47 2010 From: heas at shrubbery.net (john heasley) Date: Wed, 6 Jan 2010 10:05:47 -0800 Subject: [rancid] Re: Routers changed to down: email In-Reply-To: <20100106085538.64540@gmx.net> References: <20100106085538.64540@gmx.net> Message-ID: <20100106180547.GB24649@shrubbery.net> Wed, Jan 06, 2010 at 09:55:38AM +0100, David Mantock: > Hello to all, > > Is it possible to configure rancid so that I do not receive the emails with the message: > > Routers changed to down: > > When there are no changes i.e. there is only the line above in the email. you shouldnt receive these. it is most likely that configure didnt choose the options for diff appropriately for your system. look for the diff cmd in control_rancid. > Thanks in advance. > -- > Jetzt kostenlos herunterladen: Internet Explorer 8 und Mozilla Firefox 3.5 - > sicherer, schneller und einfacher! http://portal.gmx.net/de/go/atbrowser > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From James_Zuelow at ci.juneau.ak.us Wed Jan 6 18:06:26 2010 From: James_Zuelow at ci.juneau.ak.us (James Zuelow) Date: Wed, 6 Jan 2010 09:06:26 -0900 Subject: [rancid] Re: Issues with rancid not collecting configs In-Reply-To: References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> Message-ID: <4A09477D575C2C4B86497161427DD94C137B6AC7A5@city-exchange07> Might be this: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518901 James Zuelow Network Specialist City and Borough of Juneau MIS (907)586-0236 > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of > Gallardo, Winfred C > Sent: Wednesday, 06 January, 2010 06:51 > To: rancid-discuss at shrubbery.net > Subject: [rancid] Issues with rancid not collecting configs > > i'm having trouble diagnosing why rancid is having trouble > collecting configs on HP procurve 5412. > > > I get the expected out put when running > > hlogin -c 'show config' xx.xx.xx.xx > > > i checked my rancid log files and i'm not sure > what all the lines mean for the errors. > > here is a sample. > > Trying to get all of the configs. > write(spawn_id=1): broken pipe > while executing > "send_user -- "$expect_out(buffer)"" > invoked from within > "expect -nobrace -re {^[^ > *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" > } -re {^[^ > ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." > invoked from within > "expect { > -re "^\[^\n\r *]*$reprompt" { send_user -- > "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprompt." { send_user -- > "$expect_out(buffer)" > ..." > invoked from within > "if [ string match "*\;*" "$command" ] { > set commands [split $command \;] > set num_commands [llength $commands] > # the pager can not be turned off on ..." > (procedure "run_commands" line 17) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 136) > > > > Please let me know what other commands i can try to see where > the errors are coming from. > > Thanks in advance, > > > Chris Gallardo > Network Services > 278-9067 > wcgallar at iupui.edu > > > > On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: > > > While I should be able to follow that path, the only result > available is "8.2(1)" and it does not get more specific than > that. Here is an excerpt from the site: > > > > asa821-k8.bin > > Release Date: 06/May/2009 > > Cisco Adaptive Security Appliance Software version 8.2(1) > for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read > the Release Note prior to downloading this release. > > Size: 15894.00 KB (16275456 bytes) > > > > > > However, Cisco also has, in a different spot (now that I > notice it differently), an 8.2.1.ED and then 8.2.1.11. > ugh.... Sometimes Cisco really frustrates me. > > > > I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. > > > > Chris > > > > > > > > From: P C [mailto:pc50000 at gmail.com] > > Sent: Wednesday, December 23, 2009 8:50 AM > > To: Chris Gauthier > > Cc: rancid-discuss at shrubbery.net > > Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? > > > > You should also be able to go to suppport > download > software > security > firweall > firewall appliances > cisco > asa 55x0 > cisco asa software > drill down to 8.2, and > 8.2.1.11 is posted and downloadable as a more TAC-posted and > more thoroughly tested interim build. It's been fixed since 8.2.1.2 > > > > > > On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier > wrote: > > I went to Cisco.com and looked for the fixed versions and > they were not > > there. So, even after my attempts to just "fix it", I still had to > > contact the TAC for the files. They set me up with version 8.2.1.4 > > (Interim). > > > > Thanks for pointing out the Bug ID, that made the case > SUPER easy for me > > to describe to TAC and for TAC to just give me what I needed. > > > > Chris > > > > -----Original Message----- > > From: Ron Whitney [mailto:ron.whitney at doitbest.com] > > Sent: Monday, December 21, 2009 3:37 PM > > To: Chris Gauthier; rancid-discuss at shrubbery.net > > Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? > > > > > >> Did anyone ever find a solution to the coredump bug on the > >> Cisco ASA? Did TAC ever come back with anything? > > > > Here's the last status I received (about a week ago) on that bug: > > > > The following bug(s) you have subscribed to have been updated as > > follows: > > > > > -------------------------------------------------------------- > ---------- > > ---------- > > > > BugID: CSCsz85597 > > What Changed: Fixed in version > > Title: coredump.cfg file gets rewritten every time show run > is executed > > Technology: nav > > Version: 8.2(1) > > Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M > > Severity: 2 > > State: Verified > > Bug Details: > > > http://tools.cisco.com/Support/BugToolKit/search/getBugDetails > .do?method > > =fetchBugDetails&bugId=CSCsz85597 > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From kyudayev at verizon.com Wed Jan 6 18:20:35 2010 From: kyudayev at verizon.com (Konstantin Yudayev) Date: Wed, 06 Jan 2010 13:20:35 -0500 Subject: [rancid] debug and empty config issue Message-ID: <1262802035.2668.18.camel@Boolean-L.restoncampus.com> Hello, I've recently enabled bug in all bin/*rancid* ($debug = 1) and looks like there is an issue with unaccessible devices. If a device is not currently available the rancid produces following output in the config file (that is a whole file for every "offline" router): !RANCID-CONTENT-TYPE: erx (or whatever vendor is) ! ! ! ! This is obviously a problem because it replaces the existing config with this output and once router is back online the actual config will replace this file. I need an advice on how this can be fixed and offline devices will be skipped the same way as when debug is disabled. thank you - Konstantin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100106/538116b0/attachment.html From ecables at gmail.com Wed Jan 6 18:58:47 2010 From: ecables at gmail.com (Eric Cables) Date: Wed, 6 Jan 2010 10:58:47 -0800 Subject: [rancid] Device removal not showing up in the Attic Message-ID: This is in regards to device removal while retaining the device's configuration, and revision history, for historical purposes in the CVS Attic. In the past I've simply removed retired devices from their respective router.db, and they automatically migrated to the Attic. Unfortunately I've noticed that recent removals from router.db are not showing up in the Attic, and the configurations are nowhere to be found. I am using CVS and RANCID 2.3.2a8. Any help or guidance would be appreciated. -- Eric Cables -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100106/1923bc25/attachment.html From heas at shrubbery.net Wed Jan 6 19:08:59 2010 From: heas at shrubbery.net (john heasley) Date: Wed, 6 Jan 2010 11:08:59 -0800 Subject: [rancid] Re: Issues with rancid not collecting configs In-Reply-To: <4A09477D575C2C4B86497161427DD94C137B6AC7A5@city-exchange07> References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> <4A09477D575C2C4B86497161427DD94C137B6AC7A5@city-exchange07> Message-ID: <20100106190859.GH24649@shrubbery.net> Wed, Jan 06, 2010 at 09:06:26AM -0900, James Zuelow: > Might be this: > > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=518901 not likely. and, i don't believe the fix in that report is correct for all the variations. rancid 2.3.2 runs both variations of that command. > James Zuelow > Network Specialist > City and Borough of Juneau MIS (907)586-0236 > > > -----Original Message----- > > From: rancid-discuss-bounces at shrubbery.net > > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of > > Gallardo, Winfred C > > Sent: Wednesday, 06 January, 2010 06:51 > > To: rancid-discuss at shrubbery.net > > Subject: [rancid] Issues with rancid not collecting configs > > > > i'm having trouble diagnosing why rancid is having trouble > > collecting configs on HP procurve 5412. > > > > > > I get the expected out put when running > > > > hlogin -c 'show config' xx.xx.xx.xx > > > > > > i checked my rancid log files and i'm not sure > > what all the lines mean for the errors. > > > > here is a sample. > > > > Trying to get all of the configs. > > write(spawn_id=1): broken pipe > > while executing > > "send_user -- "$expect_out(buffer)"" > > invoked from within > > "expect -nobrace -re {^[^ > > *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" > > } -re {^[^ > > ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." > > invoked from within > > "expect { > > -re "^\[^\n\r *]*$reprompt" { send_user -- > > "$expect_out(buffer)" > > } > > -re "^\[^\n\r]*$reprompt." { send_user -- > > "$expect_out(buffer)" > > ..." > > invoked from within > > "if [ string match "*\;*" "$command" ] { > > set commands [split $command \;] > > set num_commands [llength $commands] > > # the pager can not be turned off on ..." > > (procedure "run_commands" line 17) > > invoked from within > > "run_commands $prompt $command" > > ("foreach" body line 136) > > > > > > > > Please let me know what other commands i can try to see where > > the errors are coming from. > > > > Thanks in advance, > > > > > > Chris Gallardo > > Network Services > > 278-9067 > > wcgallar at iupui.edu > > > > > > > > On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: > > > > > While I should be able to follow that path, the only result > > available is "8.2(1)" and it does not get more specific than > > that. Here is an excerpt from the site: > > > > > > asa821-k8.bin > > > Release Date: 06/May/2009 > > > Cisco Adaptive Security Appliance Software version 8.2(1) > > for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read > > the Release Note prior to downloading this release. > > > Size: 15894.00 KB (16275456 bytes) > > > > > > > > > However, Cisco also has, in a different spot (now that I > > notice it differently), an 8.2.1.ED and then 8.2.1.11. > > ugh.... Sometimes Cisco really frustrates me. > > > > > > I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. > > > > > > Chris > > > > > > > > > > > > From: P C [mailto:pc50000 at gmail.com] > > > Sent: Wednesday, December 23, 2009 8:50 AM > > > To: Chris Gauthier > > > Cc: rancid-discuss at shrubbery.net > > > Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? > > > > > > You should also be able to go to suppport > download > > software > security > firweall > firewall appliances > cisco > > asa 55x0 > cisco asa software > drill down to 8.2, and > > 8.2.1.11 is posted and downloadable as a more TAC-posted and > > more thoroughly tested interim build. It's been fixed since 8.2.1.2 > > > > > > > > > On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier > > wrote: > > > I went to Cisco.com and looked for the fixed versions and > > they were not > > > there. So, even after my attempts to just "fix it", I still had to > > > contact the TAC for the files. They set me up with version 8.2.1.4 > > > (Interim). > > > > > > Thanks for pointing out the Bug ID, that made the case > > SUPER easy for me > > > to describe to TAC and for TAC to just give me what I needed. > > > > > > Chris > > > > > > -----Original Message----- > > > From: Ron Whitney [mailto:ron.whitney at doitbest.com] > > > Sent: Monday, December 21, 2009 3:37 PM > > > To: Chris Gauthier; rancid-discuss at shrubbery.net > > > Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? > > > > > > > > >> Did anyone ever find a solution to the coredump bug on the > > >> Cisco ASA? Did TAC ever come back with anything? > > > > > > Here's the last status I received (about a week ago) on that bug: > > > > > > The following bug(s) you have subscribed to have been updated as > > > follows: > > > > > > > > -------------------------------------------------------------- > > ---------- > > > ---------- > > > > > > BugID: CSCsz85597 > > > What Changed: Fixed in version > > > Title: coredump.cfg file gets rewritten every time show run > > is executed > > > Technology: nav > > > Version: 8.2(1) > > > Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M > > > Severity: 2 > > > State: Verified > > > Bug Details: > > > > > http://tools.cisco.com/Support/BugToolKit/search/getBugDetails > > .do?method > > > =fetchBugDetails&bugId=CSCsz85597 > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Wed Jan 6 19:27:33 2010 From: heas at shrubbery.net (john heasley) Date: Wed, 6 Jan 2010 11:27:33 -0800 Subject: [rancid] Re: debug and empty config issue In-Reply-To: <1262802035.2668.18.camel@Boolean-L.restoncampus.com> References: <1262802035.2668.18.camel@Boolean-L.restoncampus.com> Message-ID: <20100106192733.GI24649@shrubbery.net> Wed, Jan 06, 2010 at 01:20:35PM -0500, Konstantin Yudayev: > Hello, > > I've recently enabled bug in all bin/*rancid* ($debug = 1) and looks > like there is an issue with unaccessible devices. If a device is not > currently available the rancid produces following output in the config > file (that is a whole file for every "offline" router): > > !RANCID-CONTENT-TYPE: erx (or whatever vendor is) > ! > ! > ! > ! > > This is obviously a problem because it replaces the existing config with > this output and once router is back online the actual config will > replace this file. > > I need an advice on how this can be fixed and offline devices will be > skipped the same way as when debug is disabled. remove the lines unlink "$host.new" if (! $debug); > thank you > > - Konstantin > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Wed Jan 6 19:39:47 2010 From: heas at shrubbery.net (john heasley) Date: Wed, 6 Jan 2010 11:39:47 -0800 Subject: [rancid] Re: Device removal not showing up in the Attic In-Reply-To: References: Message-ID: <20100106193947.GK24649@shrubbery.net> Wed, Jan 06, 2010 at 10:58:47AM -0800, Eric Cables: > This is in regards to device removal while retaining the device's > configuration, and revision history, for historical purposes in the CVS > Attic. In the past I've simply removed retired devices from their > respective router.db, and they automatically migrated to the Attic. > Unfortunately I've noticed that recent removals from router.db are not > showing up in the Attic, and the configurations are nowhere to be found. > > I am using CVS and RANCID 2.3.2a8. > > Any help or guidance would be appreciated. if its removed from router.db, it should be cvs deleted and the file will be removed from the local "checkout" and moved in the repository from ~ /var/rancid/CVS/group/configs/hostname,v to /var/rancid/CVS/group/configs/Attic/hostname,v i suspect you're confusing the repository and the local "checkout" or youre using some web interface that isnt showing the attic. From arussos at comune.modena.it Thu Jan 7 11:02:52 2010 From: arussos at comune.modena.it (Andrea) Date: Thu, 07 Jan 2010 12:02:52 +0100 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <20100105174329.GF13136@shrubbery.net> References: <4B4313FF.7040603@comune.modena.it> <4B433E27.7010309@monmouth.com> <20100105174329.GF13136@shrubbery.net> Message-ID: <4B45BF5C.4050002@comune.modena.it> john heasley ha scritto: > Tue, Jan 05, 2010 at 08:27:03AM -0500, Steve Teti: > >> Andrea wrote: >> >>> I ask 'cause using viewvc, when i navigate through the cvsroot page to >>> one of the configs directory, i see ( for each revision file ) only >>> three links: >>> -) view >>> -) annotate >>> -) select for diffs >>> >>> ..Is there the possibility to have a "download" link in order to see in >>> the browser page the selected file only ??? >>> >> Take a look at the allowed_views option in viewvc.conf. Adding "co" to >> the list of views should add a "download" link to your viewvc pages. >> >> >>> ...I also know that after that i have to parse the file 'cause i need a >>> file "purged" from the non-rilevant part ( such as hardware and firmware >>> part ).. >>> >> I believe the non-relevant parts are prepended with a "!", which should >> allow you to paste or TFTP the entire file into a Cisco router with no >> ill effects. Also, if you have FILTER_PWDS enabled in rancid.conf (I >> believe it's enabled by default), all your passwords will have been >> stripped out of the stored config files. Make sure you have the >> relevant passwords stored elsewhere to replace into the config file. >> > > FILTER_PWDS is off (commented) by default. caveat is that if you're > using a linux pkg, they may have changed the default to "help" you. > > >> Steve >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> > > Hi all !! First of all, thanks a lot for your quick answers !! In effect, i modified the "viewvc.conf" file adding "co" to the "allowed_views" section. Magically now i notice the "download" link on the GUI ..... But now i'm facing a strange ( almost to me :-( ) thing: I make this test: i compare the file rancid backed-up with the one generated by the download link ( i.e. a page in my browser showing the config file as it should be seen ...); RESULT: the two files differs but apparently the contents are the same ( i mean looking with VI both of them ). So i suppose that some strange characters ( not visible as ASCII ??? ) are added by the browser, if only i noticed that saving the same file by right -click on the download link and selecting "save as " gives no problem on the generated file.... Some hints on solving this ??? It's not a big problem, i'm just curios of understanding it better ... --Andrea From arussos at comune.modena.it Thu Jan 7 12:48:18 2010 From: arussos at comune.modena.it (Andrea) Date: Thu, 07 Jan 2010 13:48:18 +0100 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <4B45C86F.9070307@monmouth.com> References: <4B4313FF.7040603@comune.modena.it> <4B433E27.7010309@monmouth.com> <20100105174329.GF13136@shrubbery.net> <4B45BF5C.4050002@comune.modena.it> <4B45C86F.9070307@monmouth.com> Message-ID: <4B45D812.9050000@comune.modena.it> Steve Teti ha scritto: > Andrea wrote: >> I make this test: i compare the file rancid backed-up with the one >> generated by the download link ( i.e. a page in my browser showing >> the config file as it should be seen ...); >> RESULT: the two files differs but apparently the contents are the >> same ( i mean looking with VI both of them ). >> >> So i suppose that some strange characters ( not visible as ASCII ??? >> ) are added by the browser, if only i noticed that saving the same >> file by right -click on the download link and selecting "save as >> " gives no problem on the generated file.... > > Hi Andrea, > > If the two files "look" the same, how do you know that they are > different? File size, md5sum, diff? There's many reasons the binary > contents could be different - extra non-printing characters, different > line endings, extra line breaks at the end of the file. As long as > the text contents are the same, I wouldn't worry about it. > > At this point, this is more of a a "viewvc" question than a "rancid" > question, so you may want to ask your question on a viewvc forum. > > Steve > Hi Steve, the two files have different size; i also think that it's a "viewvc" question rather than a rancid one, but i was wondering if any-one of you have encountered such a problem. Thanks again, --Andrea From isabelle at ctbc.com.br Thu Jan 7 16:14:52 2010 From: isabelle at ctbc.com.br (isabelle at ctbc.com.br) Date: Thu, 7 Jan 2010 13:14:52 -0300 Subject: [rancid] Rancid file substitution logic Message-ID: An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100107/bd0d1fe5/attachment.html From valvai81 at mail.comune.modena.it Thu Jan 7 14:43:07 2010 From: valvai81 at mail.comune.modena.it (Valentino Vaia) Date: Thu, 07 Jan 2010 15:43:07 +0100 Subject: [rancid] Switch Allied Telesyn and Enterasys B2 Message-ID: <201001071443.o07Eh7HH021759@mail.comune.modena.it> Hello, I'm currently using rancid 2.3.2 to backup the configuration of different vendor's switches. I have developed some script to backup the configuration of the Allied Telesis AT-8000S and Enterasys B2/B3. For the Enterasys 's switch I modified the rivstone scripts. I'm not so good as a code writer I created some scripts for the Allied Telesis similar to the rest of the project. I successfully tested them, and now I'm using them in production in my enviroment. If someone is interested please tell me, and I'll post them to the list. Regards --Valentino From isabelle at ctbc.com.br Fri Jan 8 17:28:14 2010 From: isabelle at ctbc.com.br (isabelle at ctbc.com.br) Date: Fri, 8 Jan 2010 14:28:14 -0300 Subject: [rancid] Rancid second run Message-ID: Hello! Sorry for "flooding" the disccusion, but I would just like to know if its possible to set a different "set" of CLI credentials (user/password) for rancid to use on its second run (for every equipment that has failed the first time). Thank you very much for your time. Best regards. Isabelle. From diego.ercolani at ssis.sm Fri Jan 8 16:47:55 2010 From: diego.ercolani at ssis.sm (Diego Ercolani) Date: Fri, 8 Jan 2010 17:47:55 +0100 Subject: [rancid] Re: Rancid second run In-Reply-To: References: Message-ID: <201001081747.55833.diego.ercolani@ssis.sm> No without changing the parameters parsing and the authentication procedure In data venerd? 8 gennaio 2010 18:28:14, isabelle at ctbc.com.br ha scritto: : > Hello! > > Sorry for "flooding" the disccusion, but I would just like to know if its > possible to set a different "set" of CLI credentials (user/password) for > rancid to use on its second run (for every equipment that has failed the > first time). > > Thank you very much for your time. > > Best regards. > > Isabelle. > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From david.mantock at gmx.ch Fri Jan 8 18:00:13 2010 From: david.mantock at gmx.ch (David Mantock) Date: Fri, 8 Jan 2010 19:00:13 +0100 Subject: [rancid] Re: Routers changed to down: email In-Reply-To: <20100106180547.GB24649@shrubbery.net> References: <20100106085538.64540@gmx.net> <20100106180547.GB24649@shrubbery.net> Message-ID: I updated the path in rancid.conf so that the correct diff is used and now everything is fine! Thanks a lot. -------------------------------------------------- From: "john heasley" Sent: Wednesday, January 06, 2010 7:05 PM To: "David Mantock" Cc: Subject: Re: [rancid] Routers changed to down: email > Wed, Jan 06, 2010 at 09:55:38AM +0100, David Mantock: >> Hello to all, >> >> Is it possible to configure rancid so that I do not receive the emails >> with the message: >> >> Routers changed to down: >> >> When there are no changes i.e. there is only the line above in the email. > > you shouldnt receive these. it is most likely that configure didnt choose > the options for diff appropriately for your system. look for the diff cmd > in control_rancid. > >> Thanks in advance. >> -- >> Jetzt kostenlos herunterladen: Internet Explorer 8 und Mozilla Firefox >> 3.5 - >> sicherer, schneller und einfacher! http://portal.gmx.net/de/go/atbrowser >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From ahenry41 at maine.edu Fri Jan 8 19:28:48 2010 From: ahenry41 at maine.edu (Andrew W. Henry) Date: Fri, 8 Jan 2010 14:28:48 -0500 Subject: [rancid] Re: Rancid second run In-Reply-To: <201001081747.55833.diego.ercolani@ssis.sm> References: <201001081747.55833.diego.ercolani@ssis.sm> Message-ID: <003a01ca9098$cd7fbd50$687f37f0$@edu> We had a need for something similar, so we hacked our clogin to add it. Basically, our changes allow you to enter multiple usernames and passwords in the .cloginrc file which will be tried in order when logging in. For instance, your .cloginrc now probably has lines like this: add user * user add password * {vtypass} {enapass} With our changes, you could have lines like this: add user * { {user1} {user2} {user3} } add password * { {vtypass1} {vtypass2} {vtypass3} } { {enapass1} {enapass2} {enapass3} } and clogin would try each username with each password until it got in or failed them all. A related change we added was pinging the device before attempting login and aborting if the ping fails. That is necessary if you have several logins entered since it will have to timeout on each one before aborting the device; that might take a significant amount of time. Our changes were made against 2.3.2a6, which is not the latest version, and I don't know what fixes have been made since then by the core developers. I do not have diffs unfortunately either. We only use rancid for Cisco equipment so we didn't port any of the changes to the other "xlogin" files. Also I can't promise that my changes didn't break some aspect of rancid, but I can say that we have been using it for quite some time successfully and happily. If none of the above scared you off, let me know and I'll forward anyone interested a copy of our clogin file. -- **************************************** Andrew W. Henry ---------------------------------------- University of Maine System ITS, Communications and Network Services ---------------------------------------- Maine School and Library Network **************************************** > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss- > bounces at shrubbery.net] On Behalf Of Diego Ercolani > Sent: Friday, January 08, 2010 11:48 AM > To: rancid-discuss at shrubbery.net > Subject: [rancid] Re: Rancid second run > > No without changing the parameters parsing and the authentication > procedure > In data venerd? 8 gennaio 2010 18:28:14, isabelle at ctbc.com.br ha > scritto: > : > Hello! > > > > Sorry for "flooding" the disccusion, but I would just like to know if > its > > possible to set a different "set" of CLI credentials (user/password) > for > > rancid to use on its second run (for every equipment that has failed > the > > first time). > > > > Thank you very much for your time. > > > > Best regards. > > > > Isabelle. > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From meskander at perimeterwatch.com Mon Jan 11 21:22:09 2010 From: meskander at perimeterwatch.com (Mina Eskander) Date: Mon, 11 Jan 2010 16:22:09 -0500 Subject: [rancid] Re: Rancid and Fortinet Message-ID: <7F3F784A5FBB07429A564445F94F9D6E2180D537DD@pwcoloex01.perimeterwatch.com> Hi, I also have been having a tough time getting rancid to work with my fortigates, the prompt the fortigate has a pound sign now (FGT100CS/N~ # get system status) I'm also pretty new to linux, so I'm unsure of how to apply this patch. Can somebody help me out? Thanks, Mina ________________________________ --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- The information contained in this email is confidential and may also contain privileged information. Sender does not waive confidentiality or legal privilege. If you are not one of the intended recipients, please notify the sender immediately and destroy this e-mail; you must not copy, distribute or take any action in reliance on the information contained within. Internet communications are not secure or error free and the sender does not accept any liability for the content of the email. Although emails are routinely screened for viruses, the sender does not accept responsibility for any damage caused. Replies to this email may be monitored. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100111/7fb7161c/attachment.html From diego.ercolani at ssis.sm Tue Jan 12 08:37:41 2010 From: diego.ercolani at ssis.sm (Diego Ercolani) Date: Tue, 12 Jan 2010 09:37:41 +0100 Subject: [rancid] Re: Rancid and Fortinet In-Reply-To: <7F3F784A5FBB07429A564445F94F9D6E2180D537DD@pwcoloex01.perimeterwatch.com> References: <7F3F784A5FBB07429A564445F94F9D6E2180D537DD@pwcoloex01.perimeterwatch.com> Message-ID: <201001120937.41831.diego.ercolani@ssis.sm> Are you referring to my patches? "this" is a real indeterminative! If yes you have to download the patch (fortigate2x_3x.patch) and the source of rancid (rancid-2.3.2.tar.gz) tar xzf rancid-2.3.2.tar.gz cp download/fortigate2x_3x.patch rancid-2.3.2 cd rancid-2.3.2 patch -p1 Hi, > > I also have been having a tough time getting rancid to work with my > fortigates, the prompt the fortigate has a pound sign now (FGT100CS/N~ # > get system status) I'm also pretty new to linux, so I'm unsure of how to > apply this patch. Can somebody help me out? > > Thanks, > Mina From wcgallar at iupui.edu Tue Jan 12 12:53:56 2010 From: wcgallar at iupui.edu (Gallardo, Winfred C) Date: Tue, 12 Jan 2010 07:53:56 -0500 Subject: [rancid] Re: Issues with rancid not collecting configs In-Reply-To: <20100106174130.GA24649@shrubbery.net> References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> <20100106174130.GA24649@shrubbery.net> Message-ID: this is what i get from an out put of strace execve("/usr/bin/hrancid", ["hrancid", "10.240.0.31"], [/* 22 vars */]) = 0 brk(0) = 0x125fe000 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c07000 uname({sys="Linux", node="caesar.noc.iu.edu", ...}) = 0 access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory) open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/tls/x86_64/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/tls/x86_64", 0x7fff068e3da0) = -1 ENOENT (No such file or directory) open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/tls/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/tls", 0x7fff068e3da0) = -1 ENOENT (No such file or directory) open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/x86_64/libperl.so", O_RDONLY) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/x86_64", 0x7fff068e3da0) = -1 ENOENT (No such file or directory) open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libperl.so", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\340\34\303\v3\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=1262288, ...}) = 0 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c08000 mmap(0x330bc00000, 3363552, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330bc00000 mprotect(0x330bd2b000, 2097152, PROT_NONE) = 0 mmap(0x330bf2b000, 36864, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x12b000) = 0x330bf2b000 mmap(0x330bf34000, 4832, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x330bf34000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libresolv.so.2", O_RDONLY) = -1 ENOENT (No such file or directory) open("/etc/ld.so.cache", O_RDONLY) = 3 fstat(3, {st_mode=S_IFREG|0644, st_size=112418, ...}) = 0 mmap(NULL, 112418, PROT_READ, MAP_PRIVATE, 3, 0) = 0x2b1086c09000 close(3) = 0 open("/lib64/libresolv.so.2", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\2402\300\0213\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=92736, ...}) = 0 mmap(0x3311c00000, 2181864, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x3311c00000 mprotect(0x3311c11000, 2097152, PROT_NONE) = 0 mmap(0x3311e11000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x11000) = 0x3311e11000 mmap(0x3311e13000, 6888, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3311e13000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libnsl.so.1", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libnsl.so.1", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\240@\300\0163\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=114352, ...}) = 0 mmap(0x330ec00000, 2194096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330ec00000 mprotect(0x330ec15000, 2093056, PROT_NONE) = 0 mmap(0x330ee14000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x14000) = 0x330ee14000 mmap(0x330ee16000, 6832, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x330ee16000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libdl.so.2", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libdl.so.2", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\20\16\0\v3\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=23360, ...}) = 0 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c25000 mmap(0x330b000000, 2109696, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330b000000 mprotect(0x330b002000, 2097152, PROT_NONE) = 0 mmap(0x330b202000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2000) = 0x330b202000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libm.so.6", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libm.so.6", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0`>\300\n3\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=615136, ...}) = 0 mmap(0x330ac00000, 2629848, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330ac00000 mprotect(0x330ac82000, 2093056, PROT_NONE) = 0 mmap(0x330ae81000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x81000) = 0x330ae81000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libcrypt.so.1", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libcrypt.so.1", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\360\t@\0203\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=48600, ...}) = 0 mmap(0x3310400000, 2322880, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x3310400000 mprotect(0x3310409000, 2093056, PROT_NONE) = 0 mmap(0x3310608000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x8000) = 0x3310608000 mmap(0x331060a000, 184768, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x331060a000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libutil.so.1", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libutil.so.1", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\200\16\200\0333\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=18152, ...}) = 0 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c26000 mmap(0x331b800000, 2105616, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x331b800000 mprotect(0x331b802000, 2093056, PROT_NONE) = 0 mmap(0x331ba01000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1000) = 0x331ba01000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libpthread.so.0", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libpthread.so.0", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\220W@\v3\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=145824, ...}) = 0 mmap(0x330b400000, 2204528, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330b400000 mprotect(0x330b416000, 2093056, PROT_NONE) = 0 mmap(0x330b615000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x15000) = 0x330b615000 mmap(0x330b617000, 13168, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x330b617000 close(3) = 0 open("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/CORE/libc.so.6", O_RDONLY) = -1 ENOENT (No such file or directory) open("/lib64/libc.so.6", O_RDONLY) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\220\332\201\n3\0\0\0"..., 832) = 832 fstat(3, {st_mode=S_IFREG|0755, st_size=1717800, ...}) = 0 mmap(0x330a800000, 3498328, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x330a800000 mprotect(0x330a94d000, 2097152, PROT_NONE) = 0 mmap(0x330ab4d000, 20480, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x14d000) = 0x330ab4d000 mmap(0x330ab52000, 16728, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x330ab52000 close(3) = 0 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c27000 mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b1086c28000 arch_prctl(ARCH_SET_FS, 0x2b1086c28250) = 0 mprotect(0x3311e11000, 4096, PROT_READ) = 0 mprotect(0x330ee14000, 4096, PROT_READ) = 0 mprotect(0x330b202000, 4096, PROT_READ) = 0 mprotect(0x330ae81000, 4096, PROT_READ) = 0 mprotect(0x3310608000, 4096, PROT_READ) = 0 mprotect(0x331ba01000, 4096, PROT_READ) = 0 mprotect(0x330b615000, 4096, PROT_READ) = 0 mprotect(0x330ab4d000, 16384, PROT_READ) = 0 mprotect(0x330a61b000, 4096, PROT_READ) = 0 munmap(0x2b1086c09000, 112418) = 0 set_tid_address(0x2b1086c282e0) = 24118 set_robust_list(0x2b1086c282f0, 0x18) = 0 futex(0x7fff068e48cc, FUTEX_WAKE_PRIVATE, 1) = 0 rt_sigaction(SIGRTMIN, {0x330b405370, [], SA_RESTORER|SA_SIGINFO, 0x330b40e7c0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {0x330b4052b0, [], SA_RESTORER|SA_RESTART|SA_SIGINFO, 0x330b40e7c0}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 getrlimit(RLIMIT_STACK, {rlim_cur=10240*1024, rlim_max=RLIM_INFINITY}) = 0 rt_sigaction(SIGFPE, {0x1, [FPE], SA_RESTORER|SA_RESTART, 0x330a8302d0}, {SIG_DFL, [], 0}, 8) = 0 brk(0) = 0x125fe000 brk(0x12620000) = 0x12620000 getuid() = 504 geteuid() = 504 getgid() = 504 getegid() = 504 open("/usr/lib/locale/locale-archive", O_RDONLY) = 3 fstat(3, {st_mode=S_IFREG|0644, st_size=56462800, ...}) = 0 mmap(NULL, 56462800, PROT_READ, MAP_PRIVATE, 3, 0) = 0x2b1086c29000 close(3) = 0 mmap(NULL, 135168, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x2b108a202000 open("/dev/urandom", O_RDONLY) = 3 read(3, "^iF\371", 4) = 4 close(3) = 0 stat("/usr/lib64/perl5/site_perl/5.8.7/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.7", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/site_perl/5.8.6/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.6", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/site_perl/5.8.5/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.5", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.7/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.7", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.6/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.6", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.5/x86_64-linux-thread-multi", 0x7fff068e4580) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.5", 0x7fff068e4580) = -1 ENOENT (No such file or directory) ioctl(0, SNDCTL_TMR_TIMEBASE or TCGETS, {B9600 opost isig icanon echo ...}) = 0 lseek(0, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek) ioctl(1, SNDCTL_TMR_TIMEBASE or TCGETS, {B9600 opost isig icanon echo ...}) = 0 lseek(1, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek) ioctl(2, SNDCTL_TMR_TIMEBASE or TCGETS, {B9600 opost isig icanon echo ...}) = 0 lseek(2, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek) open("/usr/bin/hrancid", O_RDONLY) = 3 ioctl(3, SNDCTL_TMR_TIMEBASE or TCGETS, 0x7fff068e4450) = -1 ENOTTY (Inappropriate ioctl for device) lseek(3, 0, SEEK_CUR) = 0 fcntl(3, F_SETFD, FD_CLOEXEC) = 0 fstat(3, {st_mode=S_IFREG|0755, st_size=15972, ...}) = 0 rt_sigaction(SIGCHLD, NULL, {SIG_DFL, [], 0}, 8) = 0 readlink("/proc/self/exe", "/usr/bin/perl"..., 4095) = 13 brk(0x12641000) = 0x12641000 read(3, "#! /usr/bin/perl\n##\n## $Id: hran"..., 4096) = 4096 stat("/usr/lib64/perl5/site_perl/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/site_perl/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.8/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.8/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.8/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.8/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/Getopt/Std.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/5.8.8/Getopt/Std.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/5.8.8/Getopt/Std.pm", {st_mode=S_IFREG|0644, st_size=8298, ...}) = 0 open("/usr/lib/perl5/5.8.8/Getopt/Std.pm", O_RDONLY) = 4 ioctl(4, SNDCTL_TMR_TIMEBASE or TCGETS, 0x7fff068e3cd0) = -1 ENOTTY (Inappropriate ioctl for device) lseek(4, 0, SEEK_CUR) = 0 read(4, "package Getopt::Std;\nrequire 5.0"..., 4096) = 4096 read(4, "\tshift(@ARGV);\n\t }\n\t else "..., 4096) = 4096 brk(0x12662000) = 0x12662000 read(4, "unless (ref $hash) { \n\tlocal $Ex"..., 4096) = 106 read(4, "", 4096) = 0 close(4) = 0 stat("/usr/lib64/perl5/site_perl/5.8.8/x86_64-linux-thread-multi/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/site_perl/5.8.8/x86_64-linux-thread-multi/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.8/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/5.8.8/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/site_perl/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.8/x86_64-linux-thread-multi/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/vendor_perl/5.8.8/x86_64-linux-thread-multi/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.8/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/5.8.8/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/vendor_perl/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib64/perl5/5.8.8/x86_64-linux-thread-multi/Exporter.pm", 0x7fff068e3f40) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/5.8.8/Exporter.pmc", 0x7fff068e4080) = -1 ENOENT (No such file or directory) stat("/usr/lib/perl5/5.8.8/Exporter.pm", {st_mode=S_IFREG|0644, st_size=14419, ...}) = 0 open("/usr/lib/perl5/5.8.8/Exporter.pm", O_RDONLY) = 4 ioctl(4, SNDCTL_TMR_TIMEBASE or TCGETS, 0x7fff068e3cd0) = -1 ENOTTY (Inappropriate ioctl for device) lseek(4, 0, SEEK_CUR) = 0 read(4, "package Exporter;\n\nrequire 5.006"..., 4096) = 4096 lseek(4, 2217, SEEK_SET) = 2217 lseek(4, 0, SEEK_CUR) = 2217 close(4) = 0 brk(0x12683000) = 0x12683000 read(3, "i;\n\ts/^\\s*//g;\n\n\tProcessHistory("..., 4096) = 4096 brk(0x126a4000) = 0x126a4000 read(3, "s?|traps?|(no)?auth)$/) {\n\t\t\t$li"..., 4096) = 4096 read(3, "\n at commandtable = (\n\t{'show versi"..., 4096) = 3684 brk(0x126c5000) = 0x126c5000 read(3, "", 4096) = 0 close(3) = 0 open("10.240.0.31.new", O_WRONLY|O_CREAT|O_TRUNC, 0666) = 3 ioctl(3, SNDCTL_TMR_TIMEBASE or TCGETS, 0x7fff068e4320) = -1 ENOTTY (Inappropriate ioctl for device) lseek(3, 0, SEEK_CUR) = 0 fstat(3, {st_mode=S_IFREG|0644, st_size=0, ...}) = 0 fcntl(3, F_SETFD, FD_CLOEXEC) = 0 pipe([4, 5]) = 0 pipe([6, 7]) = 0 clone(child_stack=0, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x2b1086c282e0) = 24119 close(7) = 0 close(5) = 0 read(6, "", 4) = 0 close(6) = 0 ioctl(4, SNDCTL_TMR_TIMEBASE or TCGETS, 0x7fff068e4280) = -1 EINVAL (Invalid argument) lseek(4, 0, SEEK_CUR) = -1 ESPIPE (Illegal seek) fcntl(4, F_SETFD, FD_CLOEXEC) = 0 read(4, "10.240.0.31\n", 4096) = 12 read(4, "spawn hpuifilter -- ", 4096) = 20 read(4, "ssh -c 3des -x -l netpsrancid 10"..., 4096) = 43 read(4, "Only Authorized Users Allowed", 4096) = 29 read(4, "netpsrancid at 10.240.0.31's passwo"..., 4096) = 36 read(4, "\r\r\n", 4096) = 3 read(4, "BL579-DC-Ent-R1-AQ10-1# ", 4096) = 24 read(4, "\r\r\nBL579-DC-Ent-R1-AQ10-1# ", 4096) = 27 read(4, "no page\r\r\nBL579-DC-Ent-R1-AQ10-1"..., 4096) = 34 read(4, " show version\r\r\n", 4096) = 16 read(4, "Image stamp: /sw/code/build/b"..., 4096) = 155 read(4, "BL579-DC-Ent-R1-AQ10-1#", 4096) = 23 read(4, " show flash\r\r\n", 4096) = 14 read(4, "Image Size(Bytes) Da"..., 4096) = 190 read(4, "Boot Rom Version: K.12.20\r\r\nDefa"..., 4096) = 82 read(4, " show system-information\r\r\n", 4096) = 27 read(4, "Invalid input: system-informatio"..., 4096) = 59 lseek(4, 771, SEEK_SET) = -1 ESPIPE (Illegal seek) close(4) = 0 rt_sigaction(SIGHUP, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 rt_sigaction(SIGINT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 rt_sigaction(SIGQUIT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 wait4(24119, [{WIFEXITED(s) && WEXITSTATUS(s) == 1}], 0, NULL) = 24119 --- SIGCHLD (Child exited) @ 0 (0) --- rt_sigaction(SIGHUP, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, NULL, 8) = 0 rt_sigaction(SIGINT, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, NULL, 8) = 0 rt_sigaction(SIGQUIT, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, NULL, 8) = 0 write(3, ";RANCID-CONTENT-TYPE: hp-procurv"..., 461) = 461 close(3) = 0 write(1, "10.240.0.31: missed cmd(s): show"..., 62) = 62 write(1, "10.240.0.31: End of run not foun"..., 34) = 34 pipe([3, 4]) = 0 clone(child_stack=0, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x2b1086c282e0) = 24128 close(4) = 0 rt_sigaction(SIGINT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, 8) = 0 rt_sigaction(SIGQUIT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, 8) = 0 wait4(24128, [{WIFEXITED(s) && WEXITSTATUS(s) == 0}], 0, NULL) = 24128 --- SIGCHLD (Child exited) @ 0 (0) --- rt_sigaction(SIGINT, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, NULL, 8) = 0 rt_sigaction(SIGQUIT, {SIG_DFL, [], SA_RESTORER, 0x330b40e7c0}, NULL, 8) = 0 read(3, "", 4) = 0 close(3) = 0 unlink("10.240.0.31.new") = 0 exit_group(0) = ? Chris Gallardo Network Services 278-9067 wcgallar at iupui.edu On Jan 6, 2010, at 12:41 PM, john heasley wrote: > Wed, Jan 06, 2010 at 10:50:34AM -0500, Gallardo, Winfred C: >> i'm having trouble diagnosing why rancid is having trouble collecting configs on HP procurve 5412. >> >> >> I get the expected out put when running >> >> hlogin -c 'show config' xx.xx.xx.xx >> >> >> i checked my rancid log files and i'm not sure >> what all the lines mean for the errors. >> >> here is a sample. >> >> Trying to get all of the configs. >> write(spawn_id=1): broken pipe >> while executing >> "send_user -- "$expect_out(buffer)"" > > its an expect/tcl trace. the relevant parts are 'broken pipe' and > send_user, which seem indicate that hrancid or hpuifilter exited > prematurely. are they getting killed? dumping core? tried runing > hrancid manually? ktrace/truss/strace it? > >> invoked from within >> "expect -nobrace -re {^[^ >> *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" >> } -re {^[^ >> ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." >> invoked from within >> "expect { >> -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" >> } >> -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)" >> ..." >> invoked from within >> "if [ string match "*\;*" "$command" ] { >> set commands [split $command \;] >> set num_commands [llength $commands] >> # the pager can not be turned off on ..." >> (procedure "run_commands" line 17) >> invoked from within >> "run_commands $prompt $command" >> ("foreach" body line 136) >> >> >> >> Please let me know what other commands i can try to see where the errors are coming from. >> >> Thanks in advance, >> >> >> Chris Gallardo >> Network Services >> 278-9067 >> wcgallar at iupui.edu >> >> >> >> On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: >> >>> While I should be able to follow that path, the only result available is "8.2(1)" and it does not get more specific than that. Here is an excerpt from the site: >>> >>> asa821-k8.bin >>> Release Date: 06/May/2009 >>> Cisco Adaptive Security Appliance Software version 8.2(1) for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read the Release Note prior to downloading this release. >>> Size: 15894.00 KB (16275456 bytes) >>> >>> >>> However, Cisco also has, in a different spot (now that I notice it differently), an 8.2.1.ED and then 8.2.1.11. ugh.... Sometimes Cisco really frustrates me. >>> >>> I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. >>> >>> Chris >>> >>> >>> >>> From: P C [mailto:pc50000 at gmail.com] >>> Sent: Wednesday, December 23, 2009 8:50 AM >>> To: Chris Gauthier >>> Cc: rancid-discuss at shrubbery.net >>> Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? >>> >>> You should also be able to go to suppport > download software > security > firweall > firewall appliances > cisco asa 55x0 > cisco asa software > drill down to 8.2, and 8.2.1.11 is posted and downloadable as a more TAC-posted and more thoroughly tested interim build. It's been fixed since 8.2.1.2 >>> >>> >>> On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier wrote: >>> I went to Cisco.com and looked for the fixed versions and they were not >>> there. So, even after my attempts to just "fix it", I still had to >>> contact the TAC for the files. They set me up with version 8.2.1.4 >>> (Interim). >>> >>> Thanks for pointing out the Bug ID, that made the case SUPER easy for me >>> to describe to TAC and for TAC to just give me what I needed. >>> >>> Chris >>> >>> -----Original Message----- >>> From: Ron Whitney [mailto:ron.whitney at doitbest.com] >>> Sent: Monday, December 21, 2009 3:37 PM >>> To: Chris Gauthier; rancid-discuss at shrubbery.net >>> Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? >>> >>> >>>> Did anyone ever find a solution to the coredump bug on the >>>> Cisco ASA? Did TAC ever come back with anything? >>> >>> Here's the last status I received (about a week ago) on that bug: >>> >>> The following bug(s) you have subscribed to have been updated as >>> follows: >>> >>> ------------------------------------------------------------------------ >>> ---------- >>> >>> BugID: CSCsz85597 >>> What Changed: Fixed in version >>> Title: coredump.cfg file gets rewritten every time show run is executed >>> Technology: nav >>> Version: 8.2(1) >>> Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M >>> Severity: 2 >>> State: Verified >>> Bug Details: >>> http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method >>> =fetchBugDetails&bugId=CSCsz85597 >>> _______________________________________________ >>> Rancid-discuss mailing list >>> Rancid-discuss at shrubbery.net >>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >>> >>> _______________________________________________ >>> Rancid-discuss mailing list >>> Rancid-discuss at shrubbery.net >>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From Steve at host-it.co.uk Tue Jan 12 16:11:46 2010 From: Steve at host-it.co.uk (Steve Ousley) Date: Tue, 12 Jan 2010 16:11:46 +0000 Subject: [rancid] Renaming a device - keeping the changelog Message-ID: OK, I'm sure i've seen this somewhere, either on the mailing list, or on the site, but am unable to find it anywhere. What I have: a device has now moved from one location to another, and it's A record (which Rancid uses) has changed. I want to rename the device in Rancid, but keep the changelogs. Can anyone point me in the direction of how to do this please. Cheers. Steve Ousley - SO620-RIPE Nuco Technologies Ltd steve at host-it.co.uk www.nucotechnologies.com Tel. 0844 745 1300 Skype: nucotech-support Nuco Technologies Ltd is a company registered in England and Wales with company number 04470751 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100112/5745c5da/attachment.html From jethro.binks at strath.ac.uk Tue Jan 12 16:31:28 2010 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Tue, 12 Jan 2010 16:31:28 +0000 (GMT) Subject: [rancid] Re: Renaming a device - keeping the changelog In-Reply-To: References: Message-ID: On Tue, 12 Jan 2010, Steve Ousley wrote: > OK, I'm sure i've seen this somewhere, either on the mailing list, or on > the site, but am unable to find it anywhere. > > What I have: a device has now moved from one location to another, and > it's A record (which Rancid uses) has changed. I want to rename the > device in Rancid, but keep the changelogs. Can anyone point me in the > direction of how to do this please. I have this note preserved, but I can't remember if I have actually used this procedure or whether I kept it "just in case": cd /usr/local/var/rancid echo "new_device_name:device_type:up" >> GROUP/router.db cp -p CVS/GROUP/configs/old_device_name,v \ CVS/GROUP/configs/new_device_name,v cd GROUP rm configs/old_device_name cvs -d /usr/local/var/rancid/CVS update . (The above instructions need some further testing; you may also be able to do (cd group; cvs update) too rather than the longer version) Then let rancid run and learn the new device (don't forget to modify .clogin too). Once it is complete, remove the old name from router.db and rancid will clean up the data for the earlier name. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks Computing Officer, IT Services, University Of Strathclyde, Glasgow, UK From kyudayev at verizon.com Tue Jan 12 17:07:23 2010 From: kyudayev at verizon.com (Konstantin Yudayev) Date: Tue, 12 Jan 2010 12:07:23 -0500 Subject: [rancid] Re: debug and empty config issue In-Reply-To: <20100106192733.GI24649@shrubbery.net> References: <1262802035.2668.18.camel@Boolean-L.restoncampus.com> <20100106192733.GI24649@shrubbery.net> Message-ID: <1263316043.3573.4.camel@Boolean-L.restoncampus.com> Now it creates those semi-empty files even if debug is off. I think we need to remove "$host.new" if run has failed regardless of $debug but I am not sure what would happened if I leave unconditional `unlink "$host.new"`. Please advise. - Konstantin On Wed, 2010-01-06 at 11:27 -0800, john heasley wrote: > Wed, Jan 06, 2010 at 01:20:35PM -0500, Konstantin Yudayev: > > Hello, > > > > I've recently enabled bug in all bin/*rancid* ($debug = 1) and looks > > like there is an issue with unaccessible devices. If a device is not > > currently available the rancid produces following output in the config > > file (that is a whole file for every "offline" router): > > > > !RANCID-CONTENT-TYPE: erx (or whatever vendor is) > > ! > > ! > > ! > > ! > > > > This is obviously a problem because it replaces the existing config with > > this output and once router is back online the actual config will > > replace this file. > > > > I need an advice on how this can be fixed and offline devices will be > > skipped the same way as when debug is disabled. > > remove the lines > unlink "$host.new" if (! $debug); > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100112/94a22e64/attachment.html From istong at costar.com Tue Jan 12 17:36:01 2010 From: istong at costar.com (Ian Stong) Date: Tue, 12 Jan 2010 12:36:01 -0500 Subject: [rancid] router config diffs - emailing stale info Message-ID: <682C11B77EEF294C964DFAC0FB7CD8A4013622F8@dcmailprd100.us.costar.local> Hi, I have a rancid install that was working fine for quite awhile as it would email any configuration differences it found. However, recently it's been emailing config changes made weeks ago and keeps mailing old config change differences. For example, I added a line to an existing ACL and it acts as if that change is being made every time rancid runs and does a diff (running on unix). Any ideas what to check or what might have changed to cause this? retrieving revision 1.103 diff -U 4 -r1.103 10.20.30.5 @@ -6,9 +6,9 @@ Ian Stong -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100112/a6d8db3f/attachment.html From heas at shrubbery.net Tue Jan 12 19:01:30 2010 From: heas at shrubbery.net (john heasley) Date: Tue, 12 Jan 2010 11:01:30 -0800 Subject: [rancid] Re: Renaming a device - keeping the changelog In-Reply-To: References: Message-ID: <20100112190130.GE11804@shrubbery.net> Tue, Jan 12, 2010 at 04:31:28PM +0000, Jethro R Binks: > On Tue, 12 Jan 2010, Steve Ousley wrote: > > > OK, I'm sure i've seen this somewhere, either on the mailing list, or on > > the site, but am unable to find it anywhere. > > > > What I have: a device has now moved from one location to another, and > > it's A record (which Rancid uses) has changed. I want to rename the > > device in Rancid, but keep the changelogs. Can anyone point me in the > > direction of how to do this please. > > I have this note preserved, but I can't remember if I have actually used > this procedure or whether I kept it "just in case": > > cd /usr/local/var/rancid > echo "new_device_name:device_type:up" >> GROUP/router.db > cp -p CVS/GROUP/configs/old_device_name,v \ > CVS/GROUP/configs/new_device_name,v > cd GROUP > rm configs/old_device_name > cvs -d /usr/local/var/rancid/CVS update . should: > cp -p CVS/GROUP/configs/old_device_name,v \ > CVS/GROUP/configs/new_device_name,v cd group cvs update then update the router.db and let rancid do the delete. > (The above instructions need some further testing; you may also be able to > do (cd group; cvs update) too rather than the longer version) > > Then let rancid run and learn the new device (don't forget to modify > .clogin too). Once it is complete, remove the old name from router.db and > rancid will clean up the data for the earlier name. > > > > > . . . . . . . . . . . . . . . . . . . . . . . . . > Jethro R Binks > Computing Officer, IT Services, University Of Strathclyde, Glasgow, UK > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From meskander at perimeterwatch.com Tue Jan 12 19:43:01 2010 From: meskander at perimeterwatch.com (Mina Eskander) Date: Tue, 12 Jan 2010 14:43:01 -0500 Subject: [rancid] Re: Rancid and Fortinet In-Reply-To: <201001120937.41831.diego.ercolani@ssis.sm> References: <7F3F784A5FBB07429A564445F94F9D6E2180D537DD@pwcoloex01.perimeterwatch.com> <201001120937.41831.diego.ercolani@ssis.sm> Message-ID: <7F3F784A5FBB07429A564445F94F9D6E2180D537E1@pwcoloex01.perimeterwatch.com> Yes I was referring to your patch. Thank you very much, that did the trick, I am now able to backup my Fortigates. -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Diego Ercolani Sent: Tuesday, January 12, 2010 3:38 AM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: Rancid and Fortinet Are you referring to my patches? "this" is a real indeterminative! If yes you have to download the patch (fortigate2x_3x.patch) and the source of rancid (rancid-2.3.2.tar.gz) tar xzf rancid-2.3.2.tar.gz cp download/fortigate2x_3x.patch rancid-2.3.2 cd rancid-2.3.2 patch -p1 Hi, > > I also have been having a tough time getting rancid to work with my > fortigates, the prompt the fortigate has a pound sign now (FGT100CS/N~ # > get system status) I'm also pretty new to linux, so I'm unsure of how to > apply this patch. Can somebody help me out? > > Thanks, > Mina _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- The information contained in this email is confidential and may also contain privileged information. Sender does not waive confidentiality or legal privilege. If you are not one of the intended recipients, please notify the sender immediately and destroy this e-mail; you must not copy, distribute or take any action in reliance on the information contained within. Internet communications are not secure or error free and the sender does not accept any liability for the content of the email. Although emails are routinely screened for viruses, the sender does not accept responsibility for any damage caused. Replies to this email may be monitored. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- From istong at costar.com Tue Jan 12 20:05:46 2010 From: istong at costar.com (Ian Stong) Date: Tue, 12 Jan 2010 15:05:46 -0500 Subject: [rancid] Re: router config diffs - emailing stale info In-Reply-To: <20100112185239.GB11804@shrubbery.net> References: <682C11B77EEF294C964DFAC0FB7CD8A4013622F8@dcmailprd100.us.costar.local> <20100112185239.GB11804@shrubbery.net> Message-ID: <682C11B77EEF294C964DFAC0FB7CD8A4013623CA@dcmailprd100.us.costar.local> Well I see the following in the FAQ - Q. I keep receiving the same diff for a (or set of) devices, but I know the data is not changing repeatedly. Why? A. This is probably a CVS or filesystem permissions problem. Check the log file from the last run for that group for clues first; it may provide the exact cause. Note: It is very important the following be done as the user who normally runs the rancid collection from cron. Check the cvs status of the device's file. example: guelah [2704] cvs status rtr.shrubbery.net 1) I checked to ensure all the rancid and CVS files are owned by rancid (chown -R rancid:rancid *) 2) I set the CVSROOT variable (/var/CVS) and then went into /var/CVS/site-a/configs and type cvs status 10.20.30.4,v and it says cannot open CVS/Entries for reading: no such file cvs status: use cvs add to create an entry File: 10.20.30.4,v Status: unknown and no entry or revision control file. 3) In the rancid log files I see some messages as follows: cvs commit: Up-to-date check failed for `configs/10.20.30.4' cvs commit: Up-to-date check failed for `configs/10.20.30.3' cvs [commit aborted]: correct above errors first! 4) Looks like a CVS issue but unclear how to resolve. Thanks, Ian -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, January 12, 2010 1:53 PM To: Ian Stong Subject: Re: [rancid] router config diffs - emailing stale info Tue, Jan 12, 2010 at 12:36:01PM -0500, Ian Stong: > Hi, > > > > I have a rancid install that was working fine for quite awhile as it > would email any configuration differences it found. However, recently > it's been emailing config changes made weeks ago and keeps mailing old > config change differences. For example, I added a line to an existing > ACL and it acts as if that change is being made every time rancid runs > and does a diff (running on unix). > > > > Any ideas what to check or what might have changed to cause this? see the cvs section of the faq. > > > retrieving revision 1.103 > > diff -U 4 -r1.103 10.20.30.5 > > @@ -6,9 +6,9 @@ > > > > > > Ian Stong > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From istong at costar.com Tue Jan 12 20:12:00 2010 From: istong at costar.com (Ian Stong) Date: Tue, 12 Jan 2010 15:12:00 -0500 Subject: [rancid] Re: router config diffs - emailing stale info In-Reply-To: <682C11B77EEF294C964DFAC0FB7CD8A4013623CA@dcmailprd100.us.costar.local> References: <682C11B77EEF294C964DFAC0FB7CD8A4013622F8@dcmailprd100.us.costar.local><20100112185239.GB11804@shrubbery.net> <682C11B77EEF294C964DFAC0FB7CD8A4013623CA@dcmailprd100.us.costar.local> Message-ID: <682C11B77EEF294C964DFAC0FB7CD8A4013623D2@dcmailprd100.us.costar.local> Correction to #2 below - once in the proper directory I am able to verify Working and Repository revisions are the same: ~/var/site-a/configs $ cvs status 10.20.30.4 =================================================================== File: 10.20.30.4 Status: Locally Modified Working revision: 1.744 2009-12-28 12:01:20 -0500 Repository revision: 1.744 /home/rancid/var/CVS/site-a/configs/10.20.30.4,v Thanks, Ian -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ian Stong Sent: Tuesday, January 12, 2010 3:06 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: router config diffs - emailing stale info Well I see the following in the FAQ - Q. I keep receiving the same diff for a (or set of) devices, but I know the data is not changing repeatedly. Why? A. This is probably a CVS or filesystem permissions problem. Check the log file from the last run for that group for clues first; it may provide the exact cause. Note: It is very important the following be done as the user who normally runs the rancid collection from cron. Check the cvs status of the device's file. example: guelah [2704] cvs status rtr.shrubbery.net 1) I checked to ensure all the rancid and CVS files are owned by rancid (chown -R rancid:rancid *) 2) I set the CVSROOT variable (/var/CVS) and then went into /var/CVS/site-a/configs and type cvs status 10.20.30.4,v and it says cannot open CVS/Entries for reading: no such file cvs status: use cvs add to create an entry File: 10.20.30.4,v Status: unknown and no entry or revision control file. 3) In the rancid log files I see some messages as follows: cvs commit: Up-to-date check failed for `configs/10.20.30.4' cvs commit: Up-to-date check failed for `configs/10.20.30.3' cvs [commit aborted]: correct above errors first! 4) Looks like a CVS issue but unclear how to resolve. Thanks, Ian -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, January 12, 2010 1:53 PM To: Ian Stong Subject: Re: [rancid] router config diffs - emailing stale info Tue, Jan 12, 2010 at 12:36:01PM -0500, Ian Stong: > Hi, > > > > I have a rancid install that was working fine for quite awhile as it > would email any configuration differences it found. However, recently > it's been emailing config changes made weeks ago and keeps mailing old > config change differences. For example, I added a line to an existing > ACL and it acts as if that change is being made every time rancid runs > and does a diff (running on unix). > > > > Any ideas what to check or what might have changed to cause this? see the cvs section of the faq. > > > retrieving revision 1.103 > > diff -U 4 -r1.103 10.20.30.5 > > @@ -6,9 +6,9 @@ > > > > > > Ian Stong > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From istong at costar.com Tue Jan 12 20:26:54 2010 From: istong at costar.com (Ian Stong) Date: Tue, 12 Jan 2010 15:26:54 -0500 Subject: [rancid] Re: router config diffs - emailing stale info In-Reply-To: <682C11B77EEF294C964DFAC0FB7CD8A4013623D2@dcmailprd100.us.costar.local> References: <682C11B77EEF294C964DFAC0FB7CD8A4013622F8@dcmailprd100.us.costar.local><20100112185239.GB11804@shrubbery.net><682C11B77EEF294C964DFAC0FB7CD8A4013623CA@dcmailprd100.us.costar.local> <682C11B77EEF294C964DFAC0FB7CD8A4013623D2@dcmailprd100.us.costar.local> Message-ID: <682C11B77EEF294C964DFAC0FB7CD8A4013623F5@dcmailprd100.us.costar.local> Updates to below - I did find some entries that have a Status: Needs Checkout when running cvs status. So I ran cvs update and now says Up-to-date. I'll keep poking around unless someone has some advice as an experienced rancid user :) Ian -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ian Stong Sent: Tuesday, January 12, 2010 3:12 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: router config diffs - emailing stale info Correction to #2 below - once in the proper directory I am able to verify Working and Repository revisions are the same: ~/var/site-a/configs $ cvs status 10.20.30.4 =================================================================== File: 10.20.30.4 Status: Locally Modified Working revision: 1.744 2009-12-28 12:01:20 -0500 Repository revision: 1.744 /home/rancid/var/CVS/site-a/configs/10.20.30.4,v Thanks, Ian -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ian Stong Sent: Tuesday, January 12, 2010 3:06 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Re: router config diffs - emailing stale info Well I see the following in the FAQ - Q. I keep receiving the same diff for a (or set of) devices, but I know the data is not changing repeatedly. Why? A. This is probably a CVS or filesystem permissions problem. Check the log file from the last run for that group for clues first; it may provide the exact cause. Note: It is very important the following be done as the user who normally runs the rancid collection from cron. Check the cvs status of the device's file. example: guelah [2704] cvs status rtr.shrubbery.net 1) I checked to ensure all the rancid and CVS files are owned by rancid (chown -R rancid:rancid *) 2) I set the CVSROOT variable (/var/CVS) and then went into /var/CVS/site-a/configs and type cvs status 10.20.30.4,v and it says cannot open CVS/Entries for reading: no such file cvs status: use cvs add to create an entry File: 10.20.30.4,v Status: unknown and no entry or revision control file. 3) In the rancid log files I see some messages as follows: cvs commit: Up-to-date check failed for `configs/10.20.30.4' cvs commit: Up-to-date check failed for `configs/10.20.30.3' cvs [commit aborted]: correct above errors first! 4) Looks like a CVS issue but unclear how to resolve. Thanks, Ian -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Tuesday, January 12, 2010 1:53 PM To: Ian Stong Subject: Re: [rancid] router config diffs - emailing stale info Tue, Jan 12, 2010 at 12:36:01PM -0500, Ian Stong: > Hi, > > > > I have a rancid install that was working fine for quite awhile as it > would email any configuration differences it found. However, recently > it's been emailing config changes made weeks ago and keeps mailing old > config change differences. For example, I added a line to an existing > ACL and it acts as if that change is being made every time rancid runs > and does a diff (running on unix). > > > > Any ideas what to check or what might have changed to cause this? see the cvs section of the faq. > > > retrieving revision 1.103 > > diff -U 4 -r1.103 10.20.30.5 > > @@ -6,9 +6,9 @@ > > > > > > Ian Stong > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From meskander at perimeterwatch.com Tue Jan 12 20:49:32 2010 From: meskander at perimeterwatch.com (Mina Eskander) Date: Tue, 12 Jan 2010 15:49:32 -0500 Subject: [rancid] Rancid with Fortigate VDOM Message-ID: <7F3F784A5FBB07429A564445F94F9D6E2180D537E2@pwcoloex01.perimeterwatch.com> I finally got rancid working with some of my fortigates courtesy of Diego Ercolani patch http://www.shrubbery.net/pipermail/rancid-discuss/2009-June/004005.html now one of my firewalls uses VDOM so for me to get the full configuration I need to type in the command config global before the show full-configuration command I tried to edit the fnrancid script that Diego wrote by creating a dummy function (maybe it shouldn't be a dummy function, but I'm not sure what to put in it sub GetGlobal { print STDERR " In GetGlobal: $_" if ($debug); return(0); } And then I modified the command table as follows using the function from above @commandtable = ( {'get system status' => 'GetSystem'}, {'config global' => 'GetGlobal'}, {'show full-configuration' => 'GetConf'} ); When I run fnlogin on this firewall here is my output [rancid at pwcolorancid bin]$ /usr/local/rancid/bin/fnrancid -d pwcolofgt100c executing fnlogin -t 90 -c"get system status;config global;show full-configuration" pwcolofgt100c HIT COMMAND:FGT100C3G0860259~ # get system status In GetSystem: FGT100C3G0860259~ # get system status HIT COMMAND:FGT100C3G0860259~ # config global Vendor: FGT100C3G0860259~ # config global HIT COMMAND:FGT100C3G0860259~ # config global pwcolofgt100c: found unexpected command - "config global" pwcolofgt100c: missed cmd(s): show full-configuration pwcolofgt100c: missed cmd(s): show full-configuration 0: found end pwcolofgt100c: End of run not found pwcolofgt100c: End of run not found any advice how to edit this to make it work? ________________________________ --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- The information contained in this email is confidential and may also contain privileged information. Sender does not waive confidentiality or legal privilege. If you are not one of the intended recipients, please notify the sender immediately and destroy this e-mail; you must not copy, distribute or take any action in reliance on the information contained within. Internet communications are not secure or error free and the sender does not accept any liability for the content of the email. Although emails are routinely screened for viruses, the sender does not accept responsibility for any damage caused. Replies to this email may be monitored. --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100112/457b5d65/attachment.html From heas at shrubbery.net Tue Jan 12 21:07:08 2010 From: heas at shrubbery.net (john heasley) Date: Tue, 12 Jan 2010 13:07:08 -0800 Subject: [rancid] Re: Issues with rancid not collecting configs In-Reply-To: References: <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F659@mshin01.mapscu.com> <1FD6BFAE6EA54341821D01FB8E617B6501E4B181@EXCHANGE1.ntserv.doitbestcorp.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F66F@mshin01.mapscu.com> <47b527130912230850y1a8218aeg35979eba2cdd85b9@mail.gmail.com> <0A9A5A2BC1C0A94C981AF5FCF2D2F3381473F6AF@mshin01.mapscu.com> <20100106174130.GA24649@shrubbery.net> Message-ID: <20100112210708.GB25364@shrubbery.net> Tue, Jan 12, 2010 at 07:53:56AM -0500, Gallardo, Winfred C: > read(4, "Image Size(Bytes) Da"..., 4096) = 190 > read(4, "Boot Rom Version: K.12.20\r\r\nDefa"..., 4096) = 82 > read(4, " show system-information\r\r\n", 4096) = 27 > read(4, "Invalid input: system-informatio"..., 4096) = 59 > lseek(4, 771, SEEK_SET) = -1 ESPIPE (Illegal seek) > close(4) = 0 > rt_sigaction(SIGHUP, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 > rt_sigaction(SIGINT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 > rt_sigaction(SIGQUIT, {0x1, [], SA_RESTORER, 0x330b40e7c0}, {SIG_DFL, [], 0}, 8) = 0 > wait4(24119, [{WIFEXITED(s) && WEXITSTATUS(s) == 1}], 0, NULL) = 24119 > --- SIGCHLD (Child exited) @ 0 (0) --- the clues are there. if you had used the option to follow children, you'd get more clues. > On Jan 6, 2010, at 12:41 PM, john heasley wrote: > > > Wed, Jan 06, 2010 at 10:50:34AM -0500, Gallardo, Winfred C: > >> i'm having trouble diagnosing why rancid is having trouble collecting configs on HP procurve 5412. > >> > >> > >> I get the expected out put when running > >> > >> hlogin -c 'show config' xx.xx.xx.xx > >> > >> > >> i checked my rancid log files and i'm not sure > >> what all the lines mean for the errors. > >> > >> here is a sample. > >> > >> Trying to get all of the configs. > >> write(spawn_id=1): broken pipe > >> while executing > >> "send_user -- "$expect_out(buffer)"" > > > > its an expect/tcl trace. the relevant parts are 'broken pipe' and > > send_user, which seem indicate that hrancid or hpuifilter exited > > prematurely. are they getting killed? dumping core? tried runing > > hrancid manually? ktrace/truss/strace it? > > > >> invoked from within > >> "expect -nobrace -re {^[^ > >> *]*BL579-DC-Ent-R6-AJ32-1#} { send_user -- "$expect_out(buffer)" > >> } -re {^[^ > >> ]*BL579-DC-Ent-R6-AJ32-1#.} { send_user ..." > >> invoked from within > >> "expect { > >> -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > >> } > >> -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)" > >> ..." > >> invoked from within > >> "if [ string match "*\;*" "$command" ] { > >> set commands [split $command \;] > >> set num_commands [llength $commands] > >> # the pager can not be turned off on ..." > >> (procedure "run_commands" line 17) > >> invoked from within > >> "run_commands $prompt $command" > >> ("foreach" body line 136) > >> > >> > >> > >> Please let me know what other commands i can try to see where the errors are coming from. > >> > >> Thanks in advance, > >> > >> > >> Chris Gallardo > >> Network Services > >> 278-9067 > >> wcgallar at iupui.edu > >> > >> > >> > >> On Dec 23, 2009, at 12:04 PM, Chris Gauthier wrote: > >> > >>> While I should be able to follow that path, the only result available is "8.2(1)" and it does not get more specific than that. Here is an excerpt from the site: > >>> > >>> asa821-k8.bin > >>> Release Date: 06/May/2009 > >>> Cisco Adaptive Security Appliance Software version 8.2(1) for the ASA 5505, 5510, 5520, 5540, and ASA5550. Please read the Release Note prior to downloading this release. > >>> Size: 15894.00 KB (16275456 bytes) > >>> > >>> > >>> However, Cisco also has, in a different spot (now that I notice it differently), an 8.2.1.ED and then 8.2.1.11. ugh.... Sometimes Cisco really frustrates me. > >>> > >>> I'll be changing to 8.2.1.11 vs the 8.2.1.4 given me by the TAC. > >>> > >>> Chris > >>> > >>> > >>> > >>> From: P C [mailto:pc50000 at gmail.com] > >>> Sent: Wednesday, December 23, 2009 8:50 AM > >>> To: Chris Gauthier > >>> Cc: rancid-discuss at shrubbery.net > >>> Subject: Re: [rancid] Re: Cisco ASA Coredump bug--fixed yet? > >>> > >>> You should also be able to go to suppport > download software > security > firweall > firewall appliances > cisco asa 55x0 > cisco asa software > drill down to 8.2, and 8.2.1.11 is posted and downloadable as a more TAC-posted and more thoroughly tested interim build. It's been fixed since 8.2.1.2 > >>> > >>> > >>> On Tue, Dec 22, 2009 at 1:34 PM, Chris Gauthier wrote: > >>> I went to Cisco.com and looked for the fixed versions and they were not > >>> there. So, even after my attempts to just "fix it", I still had to > >>> contact the TAC for the files. They set me up with version 8.2.1.4 > >>> (Interim). > >>> > >>> Thanks for pointing out the Bug ID, that made the case SUPER easy for me > >>> to describe to TAC and for TAC to just give me what I needed. > >>> > >>> Chris > >>> > >>> -----Original Message----- > >>> From: Ron Whitney [mailto:ron.whitney at doitbest.com] > >>> Sent: Monday, December 21, 2009 3:37 PM > >>> To: Chris Gauthier; rancid-discuss at shrubbery.net > >>> Subject: RE: [rancid] Cisco ASA Coredump bug--fixed yet? > >>> > >>> > >>>> Did anyone ever find a solution to the coredump bug on the > >>>> Cisco ASA? Did TAC ever come back with anything? > >>> > >>> Here's the last status I received (about a week ago) on that bug: > >>> > >>> The following bug(s) you have subscribed to have been updated as > >>> follows: > >>> > >>> ------------------------------------------------------------------------ > >>> ---------- > >>> > >>> BugID: CSCsz85597 > >>> What Changed: Fixed in version > >>> Title: coredump.cfg file gets rewritten every time show run is executed > >>> Technology: nav > >>> Version: 8.2(1) > >>> Fixed-in: 8.2(1.2), 8.3(0.0), 100.3(0.3)M > >>> Severity: 2 > >>> State: Verified > >>> Bug Details: > >>> http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method > >>> =fetchBugDetails&bugId=CSCsz85597 > >>> _______________________________________________ > >>> Rancid-discuss mailing list > >>> Rancid-discuss at shrubbery.net > >>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > >>> > >>> _______________________________________________ > >>> Rancid-discuss mailing list > >>> Rancid-discuss at shrubbery.net > >>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > >> > >> _______________________________________________ > >> Rancid-discuss mailing list > >> Rancid-discuss at shrubbery.net > >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Wed Jan 13 00:03:36 2010 From: heas at shrubbery.net (john heasley) Date: Tue, 12 Jan 2010 16:03:36 -0800 Subject: [rancid] Re: router config diffs - emailing stale info In-Reply-To: <682C11B77EEF294C964DFAC0FB7CD8A4013623F5@dcmailprd100.us.costar.local> References: <682C11B77EEF294C964DFAC0FB7CD8A4013622F8@dcmailprd100.us.costar.local> <20100112185239.GB11804@shrubbery.net> <682C11B77EEF294C964DFAC0FB7CD8A4013623CA@dcmailprd100.us.costar.local> <682C11B77EEF294C964DFAC0FB7CD8A4013623D2@dcmailprd100.us.costar.local> <682C11B77EEF294C964DFAC0FB7CD8A4013623F5@dcmailprd100.us.costar.local> Message-ID: <20100113000336.GM25364@shrubbery.net> Tue, Jan 12, 2010 at 03:26:54PM -0500, Ian Stong: > Updates to below - I did find some entries that have a Status: Needs > Checkout when running cvs status. So I ran cvs update and now says > Up-to-date. I'll keep poking around unless someone has some advice as > an experienced rancid user :) > > Ian > > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ian Stong > Sent: Tuesday, January 12, 2010 3:12 PM > To: rancid-discuss at shrubbery.net > Subject: [rancid] Re: router config diffs - emailing stale info > > Correction to #2 below - once in the proper directory I am able to > verify Working and Repository revisions are the same: > > ~/var/site-a/configs $ cvs status 10.20.30.4 > =================================================================== > File: 10.20.30.4 Status: Locally Modified it shouldn't be. remove the file and cvs udpate. > Working revision: 1.744 2009-12-28 12:01:20 -0500 > Repository revision: 1.744 > /home/rancid/var/CVS/site-a/configs/10.20.30.4,v > > > Thanks, > > Ian > > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net > [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Ian Stong > Sent: Tuesday, January 12, 2010 3:06 PM > To: rancid-discuss at shrubbery.net > Subject: [rancid] Re: router config diffs - emailing stale info > > Well I see the following in the FAQ - Q. I keep receiving the same diff > for a (or set of) devices, but I know the data is not changing > repeatedly. Why? A. This is probably a CVS or filesystem permissions > problem. Check the log file from the last run for that group for clues > first; it may provide the exact cause. Note: It is very important the > following be done as the user who normally runs the rancid collection > from cron. Check the cvs status of the device's file. example: guelah > [2704] cvs status rtr.shrubbery.net > > 1) I checked to ensure all the rancid and CVS files are owned by rancid > (chown -R rancid:rancid *) > > 2) I set the CVSROOT variable (/var/CVS) and then went into > /var/CVS/site-a/configs and type cvs status 10.20.30.4,v and it says > cannot open CVS/Entries for reading: no such file cvs status: use > cvs add to create an entry File: 10.20.30.4,v Status: unknown and no > entry or revision control file. > > 3) In the rancid log files I see some messages as follows: > cvs commit: Up-to-date check failed for `configs/10.20.30.4' > cvs commit: Up-to-date check failed for `configs/10.20.30.3' > cvs [commit aborted]: correct above errors first! > > 4) Looks like a CVS issue but unclear how to resolve. > > > Thanks, > > Ian > > > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Tuesday, January 12, 2010 1:53 PM > To: Ian Stong > Subject: Re: [rancid] router config diffs - emailing stale info > > Tue, Jan 12, 2010 at 12:36:01PM -0500, Ian Stong: > > Hi, > > > > > > > > I have a rancid install that was working fine for quite awhile as it > > would email any configuration differences it found. However, recently > > it's been emailing config changes made weeks ago and keeps mailing old > > config change differences. For example, I added a line to an existing > > ACL and it acts as if that change is being made every time rancid runs > > and does a diff (running on unix). > > > > > > > > Any ideas what to check or what might have changed to cause this? > > see the cvs section of the faq. > > > > > > > retrieving revision 1.103 > > > > diff -U 4 -r1.103 10.20.30.5 > > > > @@ -6,9 +6,9 @@ > > > > > > > > > > > > Ian Stong > > > > > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From cderemer at phoebe.org Wed Jan 13 18:06:29 2010 From: cderemer at phoebe.org (Christopher DeRemer) Date: Wed, 13 Jan 2010 13:06:29 -0500 Subject: [rancid] Re: show cdp neighbor Message-ID: <671DC9312DF0CC4D8A7F3ABE978DD5ADD0610B0F6B@MAIL.phoebe.local> I am looking to do a similar setup as an old thread here: http://www.shrubbery.net/pipermail/rancid-discuss/2006-November/001861.html I'm looking to add in "show cdp neighbors" as a part of our routine. Background on my reasoning: I have a bunch of Cisco AP's that are all joined to a controller, but the issue is that the Event Logging from the controller is a bit no descript and way to verbose. Instead I'd like to be notified if an AP "dies" by knowing that it's no longer seen in the particular switch's cdp neighbor list. Anyway an Andrew suggested that I need to add a 'ShowCdpDetail' subroutine that will parse the output. Unlike the original thread I don't want show cdp neighbor detail, just show cdp neighbor, which ends up looking like a simple table. Can someone help me make a parsing sub-routine? I have very very little experience in PHP/Shell scripting. This would be greatly appreciated, as well as might be a great addition to RANCID for others! Cheers, Christopher DeRemer, CCENT Network Administrator Phoebe Services 484.619.2168 (Single # Reach) ________________________________ NOTICE: This confidential message/attachment contains information intended for a specific individual(s). Any inappropriate use, distribution or duplication is strictly prohibited. If received in error, notify the sender and immediately delete this transmission. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100113/1356d92d/attachment.html From cderemer at phoebe.org Wed Jan 13 18:57:57 2010 From: cderemer at phoebe.org (Christopher DeRemer) Date: Wed, 13 Jan 2010 13:57:57 -0500 Subject: [rancid] Re: show cdp neighbor In-Reply-To: References: <671DC9312DF0CC4D8A7F3ABE978DD5ADD0610B0F6B@MAIL.phoebe.local> Message-ID: <671DC9312DF0CC4D8A7F3ABE978DD5ADD0610B0F6D@MAIL.phoebe.local> That would be great. I think the problem is going to be selecting the appropriate output. Here is an example: Original Output: Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone Device ID Local Intrfce Holdtme Capability Platform Port ID 2950_trexler1 Gig 0/48 129 S I WS-C2950G Gig 0/1 3550_switchroom.phoebe.local Gig 0/52 156 R S I WS-C3550- Gig 0/1 TrexlerSquare05.cisco.com Gig 0/3 150 AIR-LAP11 Fas 0 TrexlerSquare06.cisco.com Gig 0/7 122 AIR-LAP11 Fas 0 TrexlerSquare01.cisco.com Gig 0/10 162 AIR-LAP11 Fas 0 TrexlerSquare03.cisco.com Gig 0/1 145 AIR-LAP11 Fas 0 TrexlerSquare02.cisco.com Gig 0/11 157 AIR-LAP11 Fas 0 AllenSquare03.cisco.com Gig 0/6 149 AIR-LAP11 Fas 0 AllenSquare01.cisco.com Gig 0/4 135 AIR-LAP11 Fas 0 GroundReceiving.cisco.com Gig 0/8 176 AIR-LAP11 Fas 0 ============ Desired output: Device ID Local Intrfce Capability Platform Port ID 2950_trexler1 Gig 0/48 S I WS-C2950G Gig 0/1 3550_switchroom.phoebe.local Gig 0/52 R S I WS-C3550- Gig 0/1 TrexlerSquare05.cisco.com Gig 0/3 AIR-LAP11 Fas 0 TrexlerSquare06.cisco.com Gig 0/7 AIR-LAP11 Fas 0 TrexlerSquare01.cisco.com Gig 0/10 AIR-LAP11 Fas 0 TrexlerSquare03.cisco.com Gig 0/1 AIR-LAP11 Fas 0 TrexlerSquare02.cisco.com Gig 0/11 AIR-LAP11 Fas 0 AllenSquare03.cisco.com Gig 0/6 AIR-LAP11 Fas 0 AllenSquare01.cisco.com Gig 0/4 AIR-LAP11 Fas 0 GroundReceiving.cisco.com Gig 0/8 AIR-LAP11 Fas 0 ==================== Obviously a couple things have taken place: *got rid of the header info *got rid of the holdown-time column *respace the columns and place info on one line for names that casue to to run over to the next line *this causes a lot of column shifting that I once was able to fix by changing the size of the terminal size option in the switch/router, but I'm not sure if that's possible inside rancid... So far I have this as my subroutine: # This is a TEST routine to parse "show cdp neighbors" sub ShowCDPNeighbors { print STDERR " In ShowCDPNeighbors: $_" if ($debug); while () { tr/\015//d; last if (/^$prompt/); next if (/^(\s*|\s*$cmd\s*)$/); return(1) if /^\s*\^\s*$/; return(1) if /Line has invalid autocommand /; return(1) if /(Invalid input detected|Type help or )/; #return(1) if ($type =~ /^(3550|4500)$/); #return(1) if ($type !~ /^(2900XL|3500XL|6000)$/); return(-1) if (/command authorization failed/i); # the pager can not be disabled per-session on the PIX if (/^(<-+ More -+>)/) { my($len) = length($1); s/^$1\s{$len}//; } ProcessHistory("COMMENTS","keysort","IO","!CDP: $_"); } ProcessHistory("COMMENTS","keysort","IO","!\n"); return(0); } Thanks for your help! The hard part is yet to come! I'm willing to test a script that you make, I can just create a small test group in my rancid config :) Cheers, Christopher DeRemer, CCENT Network Administrator Phoebe Services 484.619.2168 (Single # Reach) -----Original Message----- From: Deny IP Any Any [mailto:denyipanyany at gmail.com] Sent: Wednesday, January 13, 2010 1:43 PM To: Christopher DeRemer Subject: Re: [rancid] Re: show cdp neighbor I wouldn't mind having this as well; I'll try to hack in support to my copy of rancid, and send a patch to you as well if you'd like. 2010/1/13 Christopher DeRemer : > I am looking to do a similar setup as an old thread here: > http://www.shrubbery.net/pipermail/rancid-discuss/2006-November/001861.html > > > > I'm looking to add in "show cdp neighbors" as a part of our routine. > Background on my reasoning: I have a bunch of Cisco AP's that are all joined > to a controller, but the issue is that the Event Logging from the controller > is a bit no descript and way to verbose. Instead I'd like to be notified if > an AP "dies" by knowing that it's no longer seen in the particular switch's > cdp neighbor list. > > > > Anyway an Andrew suggested that I need to add a 'ShowCdpDetail' subroutine > that will parse the output. Unlike the original thread I don't want show > cdp neighbor detail, just show cdp neighbor, which ends up looking like a > simple table. > > > > Can someone help me make a parsing sub-routine? I have very very little > experience in PHP/Shell scripting. > > > > This would be greatly appreciated, as well as might be a great addition to > RANCID for others! > > > > Cheers, > > > > Christopher DeRemer, CCENT > Network Administrator > Phoebe Services > 484.619.2168 (Single # Reach) > > > > ________________________________ > NOTICE: This confidential message/attachment contains information intended > for a specific individual(s). Any inappropriate use, distribution or > duplication is strictly prohibited. If received in error, notify the sender > and immediately delete this transmission. > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -- deny ip any any (4393649193 matches) NOTICE: This confidential message/attachment contains information intended for a specific individual(s). Any inappropriate use, distribution or duplication is strictly prohibited. If received in error, notify the sender and immediately delete this transmission. From James.Munroe at gnb.ca Thu Jan 14 13:11:05 2010 From: James.Munroe at gnb.ca (Munroe, James (DSS/MAS)) Date: Thu, 14 Jan 2010 09:11:05 -0400 Subject: [rancid] A simple hack to ignore the dhcp_db.txt on the flash of an IOS device? Message-ID: Hello, Does anyone have a quick hack to ignore changes to the dhcp_db.txt file? It's created and modified by the Cisco IOS DHCP server that can be enabled on a router/switch. Running Rancid 2.3.2a10 Many Thanks! Jim -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100114/48e8c8ff/attachment.html From kyudayev at verizon.com Thu Jan 14 15:54:35 2010 From: kyudayev at verizon.com (Konstantin Yudayev) Date: Thu, 14 Jan 2010 10:54:35 -0500 Subject: [rancid] bgp neighbor diff noise on ERX Message-ID: <1263484475.2656.6.camel@Boolean-L.restoncampus.com> Hello, I was looking through archives but could not find a proper solution for diff noise problem in ERX configs. Because ERX internally stores configuration in binary format every time I look at text the ERX actually compiles the text code from binary. As a result password hashes for 'router bgp neighbor' is different every time so I have a diff during every config download for every ERX. Is it possible to store 'router bgp neighbor password .....' lines but sort of exclude them from being diffed at cvs commit? thank you - Konstantin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100114/c04bba61/attachment.html From kyudayev at verizon.com Thu Jan 14 19:07:31 2010 From: kyudayev at verizon.com (Konstantin Yudayev) Date: Thu, 14 Jan 2010 14:07:31 -0500 Subject: [rancid] Re: bgp neighbor diff noise on ERX In-Reply-To: <20100114180955.GD26659@shrubbery.net> References: <1263484475.2656.6.camel@Boolean-L.restoncampus.com> <20100114180955.GD26659@shrubbery.net> Message-ID: <1263496051.2656.26.camel@Boolean-L.restoncampus.com> Lines like this have different every time 'show conf' is performed. Even though the password itself does not change the ERX generates different every time. neighbor "TEST-BGP-ONE" password 8 Trying to find a work-around for this issue cause I get diffs for every rancid-run. On Thu, 2010-01-14 at 10:09 -0800, john heasley wrote: > Thu, Jan 14, 2010 at 10:54:35AM -0500, Konstantin Yudayev: > > Hello, > > > > I was looking through archives but could not find a proper solution for > > diff noise problem in ERX configs. Because ERX internally stores > > configuration in binary format every time I look at text the ERX > > actually compiles the text code from binary. As a result password hashes > > for 'router bgp neighbor' is different every time so I have a diff > > during every config download for every ERX. > > Is it possible to store 'router bgp neighbor password .....' > > lines but sort of exclude them from being diffed at cvs commit? > > please provide an example. > > > thank you > > > > - Konstantin > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100114/1152dd66/attachment.html From smunzani at comcast.net Fri Jan 15 01:06:28 2010 From: smunzani at comcast.net (Sam Munzani) Date: Thu, 14 Jan 2010 19:06:28 -0600 Subject: [rancid] Rancid on F5 Message-ID: <4B4FBF94.10103@comcast.net> Team, Latest version of rancid works excellent with F5. However I just noticed something. It uses clogin instead of its own f5login script. clogin script expects # prompt. If you created an operator account that has "bigpipe shell" only instead of full shell, it doesn't give you #. If we had spin off f5login script separately, we could have accommodated bigpipe shell instead of full shell. My 2 cents. Sam From simon.leinen at switch.ch Sun Jan 17 22:09:31 2010 From: simon.leinen at switch.ch (Simon Leinen) Date: Sun, 17 Jan 2010 23:09:31 +0100 Subject: [rancid] Re: Howto use backup files ?? In-Reply-To: <4B45BF5C.4050002@comune.modena.it> (Andrea's message of "Thu, 07 Jan 2010 12:02:52 +0100") References: <4B4313FF.7040603@comune.modena.it> <4B433E27.7010309@monmouth.com> <20100105174329.GF13136@shrubbery.net> <4B45BF5C.4050002@comune.modena.it> Message-ID: Andrea writes: > I make this test: i compare the file rancid backed-up with the one > generated by the download link ( i.e. a page in my browser showing the > config file as it should be seen ...); > RESULT: the two files differs but apparently the contents are the same ( > i mean looking with VI both of them ). > So i suppose that some strange characters ( not visible as ASCII ??? ) > are added by the browser, if only i noticed that saving the same file > by right -click on the download link and selecting "save as " gives > no problem on the generated file.... Possibly different end-of-line conventions. Some systems use LF (ASCII 10) to terminate lines, others CR+LF (ASCII 13 + ASCII 10), others CR. > Some hints on solving this ??? Dump the first parts of the files in hex using e.g. "od -x" and check whether this can explain the differences. Note that in hex, CR is 0d and LF is 0a. Good luck, -- Simon. From marcosmiachiro at gmail.com Thu Jan 21 20:06:18 2010 From: marcosmiachiro at gmail.com (Marcos A. Miachiro) Date: Thu, 21 Jan 2010 18:06:18 -0200 Subject: [rancid] Enterasys B3 Switch In-Reply-To: <2ec55ac61001211204t75a6f578y69725e83c3b086@mail.gmail.com> References: <2ec55ac61001211204t75a6f578y69725e83c3b086@mail.gmail.com> Message-ID: <2ec55ac61001211206o250bf7c0q88747183ec491eb8@mail.gmail.com> Hi, Does anyone have a script for Enterasys B3 Switches ? Thanks. Marcos -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100121/79d3ff31/attachment.html From marcosmiachiro at gmail.com Thu Jan 21 20:04:46 2010 From: marcosmiachiro at gmail.com (Marcos A. Miachiro) Date: Thu, 21 Jan 2010 18:04:46 -0200 Subject: [rancid] Enterasys B3 Switch Message-ID: <2ec55ac61001211204t75a6f578y69725e83c3b086@mail.gmail.com> Hi, Does anyone have a script for Enterasys B3 Switches ? Thanks. Marcos -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100121/ba63a875/attachment.html From david.mantock at gmx.ch Mon Jan 25 14:33:07 2010 From: david.mantock at gmx.ch (David Mantock) Date: Mon, 25 Jan 2010 15:33:07 +0100 Subject: [rancid] Cisco WLC Message-ID: <20100125143307.142220@gmx.net> Hello There, I need to backup a ciscowlc device and this is not the same as IOS or Cat5. I have seen on previous threads that there may exist some scripts for this type of device. Does anyone know where I can access them? ciscwlc I already have but it requires:wlogin. Thanks in advance. Best regards, David -- Nur noch bis 31.01.2010: DSL-Komplettpaket f?r 16,99 Euro/mtl.!* http://portal.gmx.net/de/go/dsl02 From rwest at zyedge.com Mon Jan 25 15:03:22 2010 From: rwest at zyedge.com (Ryan West) Date: Mon, 25 Jan 2010 15:03:22 +0000 Subject: [rancid] Re: Cisco WLC In-Reply-To: <20100125143307.142220@gmx.net> References: <20100125143307.142220@gmx.net> Message-ID: <5DC4853C6CC3EE4788779E0726E034DD0BCD30@zy-ex1.zyedge.local> David, > -----Original Message----- > Sent: Monday, January 25, 2010 9:33 AM > To: Rancid-discuss at shrubbery.net > Subject: [rancid] Cisco WLC > > Hello There, > > I need to backup a ciscowlc device and this is not the same as IOS or > Cat5. I have seen on previous threads that there may exist some scripts > for this type of device. Does anyone know where I can access them? > ciscwlc I already have but it requires:wlogin. > > > Thanks in advance. > > Best regards, > David > -- I got this off the archive a while back and made some small changes for version 5.x and above. HTH, -ryan -------------- next part -------------- A non-text attachment was scrubbed... Name: wlogin Type: application/octet-stream Size: 33467 bytes Desc: wlogin Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100125/be3832cc/attachment.obj From valvai81 at mail.comune.modena.it Mon Jan 25 08:19:28 2010 From: valvai81 at mail.comune.modena.it (Valentino Vaia) Date: Mon, 25 Jan 2010 09:19:28 +0100 Subject: [rancid] Re: Enterasys B3 Switch In-Reply-To: <2ec55ac61001240412jf88f5afn8875ae46bc78adf9@mail.gmail.com> References: <4B5C16B0.30103@gmail.com> <2ec55ac61001240412uf8c5ebvf99ae9ace95c3ab5@mail.gmail.com> <2ec55ac61001240412jf88f5afn8875ae46bc78adf9@mail.gmail.com> Message-ID: <201001250819.o0P8JbOl004079@mail.comune.modena.it> I use these scripts for the Enterasys B2 and B3. Valentino -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: B2login Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100125/82c02731/attachment.ksh -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: B2rancid Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100125/82c02731/attachment-0001.ksh From smunzani at comcast.net Tue Jan 26 20:09:11 2010 From: smunzani at comcast.net (Sam Munzani) Date: Tue, 26 Jan 2010 14:09:11 -0600 Subject: [rancid] Rancid support for Brocade switches Message-ID: <4B5F4BE7.2020201@comcast.net> Did anybody managed to run rancid successfully to backup Brocade switches? Thanks, sam From jethro.binks at strath.ac.uk Tue Jan 26 20:19:12 2010 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Tue, 26 Jan 2010 20:19:12 +0000 (GMT) Subject: [rancid] Re: Rancid support for Brocade switches In-Reply-To: <4B5F4BE7.2020201@comcast.net> References: <4B5F4BE7.2020201@comcast.net> Message-ID: On Tue, 26 Jan 2010, Sam Munzani wrote: > Did anybody managed to run rancid successfully to backup Brocade switches? If you mean former Foundry network products, yes for Bigiron and Super-X and Fast Iron (I think). See flogin/francid. If you mean SAN-type devices, while there are some around on my network, I've never ventured near them so I do not know :) Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks Computing Officer, IT Services, University Of Strathclyde, Glasgow, UK From smunzani at comcast.net Tue Jan 26 20:25:53 2010 From: smunzani at comcast.net (Sam Munzani) Date: Tue, 26 Jan 2010 14:25:53 -0600 Subject: [rancid] Re: Rancid support for Brocade switches In-Reply-To: References: <4B5F4BE7.2020201@comcast.net> Message-ID: <4B5F4FD1.90000@comcast.net> Jethro, I meant Brocade SAN switches. Thanks, Sam > On Tue, 26 Jan 2010, Sam Munzani wrote: > > >> Did anybody managed to run rancid successfully to backup Brocade switches? >> > > If you mean former Foundry network products, yes for Bigiron and Super-X > and Fast Iron (I think). See flogin/francid. > > If you mean SAN-type devices, while there are some around on my network, > I've never ventured near them so I do not know :) > > Jethro. > > . . . . . . . . . . . . . . . . . . . . . . . . . > Jethro R Binks > Computing Officer, IT Services, University Of Strathclyde, Glasgow, UK > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100126/70627d77/attachment.html From cderemer at phoebe.org Tue Jan 26 21:06:40 2010 From: cderemer at phoebe.org (Christopher DeRemer) Date: Tue, 26 Jan 2010 16:06:40 -0500 Subject: [rancid] SVN Setup Message-ID: <671DC9312DF0CC4D8A7F3ABE978DD5ADD06124EAE0@MAIL.phoebe.local> Can someone point me in the right direction to setting up an SVN repository for RANCID. I have everything set for RANCID to work, and was using CVS to version, however I would like to move to SVN. I am not interested in converting my existing CVS versions. I would just like to archive that, and start from scratch for SVN (to make things easy). Links, Tips, HOW-TO's ? Help appreciated! Chris ________________________________ NOTICE: This confidential message/attachment contains information intended for a specific individual(s). Any inappropriate use, distribution or duplication is strictly prohibited. If received in error, notify the sender and immediately delete this transmission. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100126/acfb1199/attachment.html From NMaio at guesswho.com Tue Jan 26 22:12:55 2010 From: NMaio at guesswho.com (NMaio at guesswho.com) Date: Tue, 26 Jan 2010 17:12:55 -0500 Subject: [rancid] Re: Rancid support for Brocade switches In-Reply-To: <4B5F4BE7.2020201@comcast.net> References: <4B5F4BE7.2020201@comcast.net> Message-ID: <2AA600764E54964491083B1E0EC81A3033D799C3D5@EXCLUS.nationala-1advertising.com> Yes I did but I modified a script do just do a cfgshow and configshow. Would you like a copy? It only works with OS versions that don't paginate the output. -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Sam Munzani Sent: Tuesday, January 26, 2010 3:09 PM To: rancid-discuss at shrubbery.net Subject: [rancid] Rancid support for Brocade switches Did anybody managed to run rancid successfully to backup Brocade switches? Thanks, sam _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From smunzani at comcast.net Tue Jan 26 22:23:15 2010 From: smunzani at comcast.net (Sam Munzani) Date: Tue, 26 Jan 2010 16:23:15 -0600 Subject: [rancid] Re: Rancid support for Brocade switches In-Reply-To: <2AA600764E54964491083B1E0EC81A3033D799C3D5@EXCLUS.nationala-1advertising.com> References: <4B5F4BE7.2020201@comcast.net> <2AA600764E54964491083B1E0EC81A3033D799C3D5@EXCLUS.nationala-1advertising.com> Message-ID: <4B5F6B53.7000901@comcast.net> Sure thing. Thanks in advance, Sam > Yes I did but I modified a script do just do a cfgshow and configshow. Would you like a copy? It only works with OS versions that don't paginate the output. > > -----Original Message----- > From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Sam Munzani > Sent: Tuesday, January 26, 2010 3:09 PM > To: rancid-discuss at shrubbery.net > Subject: [rancid] Rancid support for Brocade switches > > Did anybody managed to run rancid successfully to backup Brocade switches? > > Thanks, > sam > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > From relychaure at free.fr Wed Jan 27 16:49:29 2010 From: relychaure at free.fr (relychaure at free.fr) Date: Wed, 27 Jan 2010 17:49:29 +0100 Subject: [rancid] Rancid & Enterasys B2/B3/N3/N7 switch Message-ID: <1264610969.4b606e99aa780@imp.free.fr> Hi, I tried to contact valvai81 at mail.comune.modena.it to discuss about his Enterasys B2 scripts but the answer was an undelivery mail !! I tested the scripts but it doesn't function : rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 sh: B2login: command not found 192.168.1.1: missed cmd(s): show version,show config 192.168.1.1: End of run not found ! I had the same error when I modified my own scripts before to see valvai81's one. I try the scripts with B2 and N7 switchs with the same result. However, the next command function very well, better than rivlogin. rancid at nsradminfedlog:~/bin$ ./B2login 192.168.1.1 Do you have any idea ?? Best regards, Aurelie From valvai81 at gmail.com Wed Jan 27 19:54:42 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Wed, 27 Jan 2010 20:54:42 +0100 Subject: [rancid] Rancid & Enterasys B2/B3/N3/N7 switch Message-ID: <4B609A02.508@gmail.com> My mail address is valvai81 at gmail.com . To correct the error sh: B2login: command not found 192.168.1.1: missed cmd(s): show version,show config 192.168.1.1: End of run not found you must add to the $PATH variable the path of yours scripts for example: PATH=$PATH:/usr/local/rancid/bin From relychaure at free.fr Thu Jan 28 10:08:45 2010 From: relychaure at free.fr (relychaure at free.fr) Date: Thu, 28 Jan 2010 11:08:45 +0100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <4B609A02.508@gmail.com> References: <4B609A02.508@gmail.com> Message-ID: <1264673325.4b61622d167f7@imp.free.fr> Selon Valentino Vaia : > My mail address is valvai81 at gmail.com . > > To correct the error > > sh: B2login: command not found > 192.168.1.1: missed cmd(s): show version,show config > 192.168.1.1: End of run not found > > > you must add to the $PATH variable the path of yours scripts for example: > PATH=$PATH:/usr/local/rancid/bin > > > > > Hi, When I add PATH=$PATH:/home/rancid/bin in B2rancid script, I have an error : rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 Can't modify constant item in scalar assignment at ./B2rancid line 48, near "$PATH:" syntax error at ./B2rancid line 48, near "$PATH:" "use" not allowed in expression at ./B2rancid line 49, at end of line Execution of ./B2rancid aborted due to compilation errors. I try with the user root but with the same result. So I add the PATH on rancid-run script. rancid at nsradminfedlog:~/bin$ ./rancid-run 192.168.1.1 I have no error but when I verify the result on /home/rancid/var/logs/SW_SC_R.20100128.102727, I have nothing !! starting: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) ending: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) So I put the PATH on B2login : rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 sh: B2login: command not found 192.168.1.1: missed cmd(s): show config 192.168.1.1: End of run not found ! rancid at nsradminfedlog:~/bin$ ./B2login 192.168.1.1 can't read "PATH": no such variable while executing "PATH=$PATH:/home/rancid/bin" (file "./B2login" line 53) .... An idea ?? From George.Nussbaum at l-3com.com Thu Jan 28 14:41:46 2010 From: George.Nussbaum at l-3com.com (George.Nussbaum at l-3com.com) Date: Thu, 28 Jan 2010 09:41:46 -0500 Subject: [rancid] having config just post 'sho run' info Message-ID: Hello, I was wondering if there is a way to have rancid just post the 'show running-config' info in my Cisco backups instead of all of the other stuff that comes before it? Thanks, George -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100128/29c42f7f/attachment.html From valvai81 at gmail.com Thu Jan 28 17:36:34 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Thu, 28 Jan 2010 18:36:34 +0100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <1264673325.4b61622d167f7@imp.free.fr> References: <4B609A02.508@gmail.com> <1264673325.4b61622d167f7@imp.free.fr> Message-ID: <4B61CB22.1040907@gmail.com> relychaure at free.fr ha scritto: > Selon Valentino Vaia : > > >> My mail address is valvai81 at gmail.com . >> >> To correct the error >> >> sh: B2login: command not found >> 192.168.1.1: missed cmd(s): show version,show config >> 192.168.1.1: End of run not found >> >> >> you must add to the $PATH variable the path of yours scripts for example: >> PATH=$PATH:/usr/local/rancid/bin >> >> >> >> >> >> > Hi, > When I add PATH=$PATH:/home/rancid/bin in B2rancid script, I have an error : > rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 > Can't modify constant item in scalar assignment at ./B2rancid line 48, near > "$PATH:" > syntax error at ./B2rancid line 48, near "$PATH:" > "use" not allowed in expression at ./B2rancid line 49, at end of line > Execution of ./B2rancid aborted due to compilation errors. > > I try with the user root but with the same result. > > So I add the PATH on rancid-run script. > rancid at nsradminfedlog:~/bin$ ./rancid-run 192.168.1.1 > > I have no error but when I verify the result on > /home/rancid/var/logs/SW_SC_R.20100128.102727, I have nothing !! > > starting: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) > > ending: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) > > So I put the PATH on B2login : > rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 > sh: B2login: command not found > 192.168.1.1: missed cmd(s): show config > 192.168.1.1: End of run not found > ! > rancid at nsradminfedlog:~/bin$ ./B2login 192.168.1.1 > can't read "PATH": no such variable > while executing > "PATH=$PATH:/home/rancid/bin" > (file "./B2login" line 53) > > > > > > .... > An idea ?? > > > You haven't to modify the script. At the shell prompt you must modify the $PATH for example rancid at nsradminfedlog:~/bin$ PATH=$PATH:/home/rancid/bin When you execute the rancid-run the $PATH variable is correct, but when you want try the script (perl B2rancid) you must specificate the correct PATH. This is true not only for my scripts (B2rancid and B2login) but also to all the Rancid scripts. You can also modify the B2rancid in the line where is called the B2login from: system "B2login -t $timeo -c \"$cisco_cmds\" $host $host.raw 2>&1" || die "B2login failed for $host: $!\n"; to: system "/home/rancid/bin/B2login -t $timeo -c \"$cisco_cmds\" $host $host.raw 2>&1" || die "B2login failed for $host: $!\n"; From blam at rockyou.com Thu Jan 28 21:05:00 2010 From: blam at rockyou.com (Brian Lam) Date: Thu, 28 Jan 2010 13:05:00 -0800 Subject: [rancid] expect script help Message-ID: <11abb0e31001281305r52381fe6s874b16f5bbb553fa@mail.gmail.com> This is a very simple question. Sorry if it was asked somewhere else. I ran '/usr/local/rancid/bin/rancid-run' and noticed that it hung. I debugged and found the issue: The expect / python script /usr/local/rancid/bin/clogin was looping because my router doesn't like 'exit' and prefer 'quit'. It's an old force10 router. Our new forc10 router works fine. I am afraid to touch clogin or f10rancid w/o some guidance. Any help would be appreciated. -- Brian Lam | IT/Operations | Rockyou, Inc. | Phone: 408-425-9801 | AIM: brianclam2 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100128/09307203/attachment.html From radwep at gmail.com Fri Jan 29 09:18:42 2010 From: radwep at gmail.com (Rad Wep) Date: Fri, 29 Jan 2010 10:18:42 +0100 Subject: [rancid] How can we modify results of configurations in the cvsweb Message-ID: <7efdf8de1001290118mb9204bfie92614ed06d8f514@mail.gmail.com> Hi, I would like to have a new result of Rancid process with few words between each shown command. I mean in the cvsweb, we want to see something like that : <=== Show Version ===> result of sh version <=== Show Vlan ===> result of sh vlan <=== Show Run ===> result of sh run Is it possible? If yes, which files do we have to modify? Thanks in Advance, Bastien -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100129/d101f75f/attachment.html From George.Nussbaum at l-3com.com Fri Jan 29 13:08:26 2010 From: George.Nussbaum at l-3com.com (George.Nussbaum at l-3com.com) Date: Fri, 29 Jan 2010 08:08:26 -0500 Subject: [rancid] Re: How can we modify results of configurations in the cvsweb In-Reply-To: <7efdf8de1001290118mb9204bfie92614ed06d8f514@mail.gmail.com> References: <7efdf8de1001290118mb9204bfie92614ed06d8f514@mail.gmail.com> Message-ID: I believe you can edit the rancid commandtable to do this. On my system the file is /usr/local/rancid/bin/rancid From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Rad Wep Sent: Friday, January 29, 2010 4:19 AM To: rancid-discuss at shrubbery.net Subject: [rancid] How can we modify results of configurations in the cvsweb Hi, I would like to have a new result of Rancid process with few words between each shown command. I mean in the cvsweb, we want to see something like that : <=== Show Version ===> result of sh version <=== Show Vlan ===> result of sh vlan <=== Show Run ===> result of sh run Is it possible? If yes, which files do we have to modify? Thanks in Advance, Bastien -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100129/ef8be83c/attachment.html From valvai81 at gmail.com Fri Jan 29 13:29:45 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Fri, 29 Jan 2010 14:29:45 +0100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <1264767550.4b62d23e307b4@imp.free.fr> References: <4B609A02.508@gmail.com> <1264673325.4b61622d167f7@imp.free.fr> <4B61CB22.1040907@gmail.com> <1264767550.4b62d23e307b4@imp.free.fr> Message-ID: <4B62E2C9.4040305@gmail.com> relychaure at free.fr ha scritto: > Selon Valentino Vaia : > > >> relychaure at free.fr ha scritto: >> >>> Selon Valentino Vaia : >>> >>> >>> >>>> My mail address is valvai81 at gmail.com . >>>> >>>> To correct the error >>>> >>>> sh: B2login: command not found >>>> 192.168.1.1: missed cmd(s): show version,show config >>>> 192.168.1.1: End of run not found >>>> >>>> >>>> you must add to the $PATH variable the path of yours scripts for example: >>>> PATH=$PATH:/usr/local/rancid/bin >>>> >>>> >>>> >>>> >>>> >>>> >>>> >>> Hi, >>> When I add PATH=$PATH:/home/rancid/bin in B2rancid script, I have an error >>> >> : >> >>> rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 >>> Can't modify constant item in scalar assignment at ./B2rancid line 48, near >>> "$PATH:" >>> syntax error at ./B2rancid line 48, near "$PATH:" >>> "use" not allowed in expression at ./B2rancid line 49, at end of line >>> Execution of ./B2rancid aborted due to compilation errors. >>> >>> I try with the user root but with the same result. >>> >>> So I add the PATH on rancid-run script. >>> rancid at nsradminfedlog:~/bin$ ./rancid-run 192.168.1.1 >>> >>> I have no error but when I verify the result on >>> /home/rancid/var/logs/SW_SC_R.20100128.102727, I have nothing !! >>> >>> starting: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) >>> >>> ending: jeudi 28 janvier 2010, 10:27:27 (UTC+0100) >>> >>> So I put the PATH on B2login : >>> rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 >>> sh: B2login: command not found >>> 192.168.1.1: missed cmd(s): show config >>> 192.168.1.1: End of run not found >>> ! >>> rancid at nsradminfedlog:~/bin$ ./B2login 192.168.1.1 >>> can't read "PATH": no such variable >>> while executing >>> "PATH=$PATH:/home/rancid/bin" >>> (file "./B2login" line 53) >>> >>> >>> >>> >>> >>> .... >>> An idea ?? >>> >>> >>> >>> >> You haven't to modify the script. >> At the shell prompt you must modify the $PATH for example >> >> rancid at nsradminfedlog:~/bin$ PATH=$PATH:/home/rancid/bin >> >> >> When you execute the rancid-run the $PATH variable is correct, but when >> you want try the script (perl B2rancid) you must specificate the correct >> PATH. This is true not only for my scripts (B2rancid and B2login) but >> also to all the Rancid scripts. >> You can also modify the B2rancid in the line where is called the B2login >> from: >> >> system "B2login -t $timeo -c "$cisco_cmds" $host $host.raw >> 2>&1" || die "B2login failed for $host: $!n"; >> >> >> to: >> >> system "/home/rancid/bin/B2login -t $timeo -c "$cisco_cmds" $host >> $host.raw 2>&1" || die "B2login failed for $host: $!n"; >> >> >> >> >> >> >> > > rien, nada, nothing ... I have the same results, with or without the PATH > modification. > > rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 > 192.168.1.1: End of run not found > Error: TIMEOUT reached > > Just to check, B2login is correct : > rancid at nsradminfedlog:~/bin$ ./B2login 192.168.1.1 > 192.168.1.1 > spawn ssh -c 3des -x -l ro 192.168.1.1 > ro at 192.168.1.1's password: > > > Enterasys SecureStack B2 > Command Line Interface > > Enterasys Networks, Inc. > 50 Minuteman Rd. > Andover, MA 01810-1008 U.S.A. > > Phone: +1 978 684 1000 > E-mail: support at enterasys.com > WWW: http://www.enterasys.com > > (c) Copyright Enterasys Networks, Inc. 2007 > > Chassis Serial Number: > Chassis Firmware Revision: 04.02.01.0006 > > > FED-SW-GSI-003-E1(ro)->exit > Connection to 192.168.1.1 closed by remote host. > Connection to 192.168.1.1 closed. > > Is their any debug mode I can activate ? > > For me the output is different after the modification of the $PATH variable. To debug you can try the -d option for example rancid at nsradminfedlog:~/bin$ ./B2rancid -d 192.168.1.1 in this way in the bin directory you will find a file named 192.168.1.1.new with the output of the B2login script. You receive a login timeout from the B2rancid, have you added in the .clogin.rc file the username and the password of the switch? for example: add user 192.168.1.1 your-username add userpassword 192.168.1.1 your-password From valvai81 at gmail.com Fri Jan 29 13:37:33 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Fri, 29 Jan 2010 14:37:33 +0100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <2ec55ac61001290456t3f086705vf0b06ad8c55a69f3@mail.gmail.com> References: <4B609A02.508@gmail.com> <2ec55ac61001280523t35b4b8c7ta51ed0f878f2c55b@mail.gmail.com> <4B61CDEA.1050805@gmail.com> <2ec55ac61001290456t3f086705vf0b06ad8c55a69f3@mail.gmail.com> Message-ID: <4B62E49D.7030301@gmail.com> Can you send to me please the output of the different command: 1) ./B2login -u your-admin-username -p your-switch-password -c "show version" sw-pmc-1-1 2) ./B2rancid -d sw-pmc-1-1 Have you added at the file .clogin.rc add user sw-pmc-1-1 your-username add userpassword sw-pmc-1-1 your-password Marcos A. Miachiro ha scritto: > Hi, > > I can execute *B2Login* and enter in *telnet* mode of *enterasys*. > > But when i try run "*show config*": > > sw-pmc-1-1(su)->show config > > Error: TIMEOUT reached > rancid-vm:/usr/lib/rancid/bin# show config > bash: show: command not found > rancid-vm:/usr/lib/rancid/bin# > > > Thanks. > > > Marcos > > 2010/1/28 Valentino Vaia > > > Have you tried simply the B2login? What is the output? > You can use to test : > ./B2login -u your-admin-username -p you-switch-password -c "show > version" sw-pmc-1-1 > Have you just tried this? > > Have you added the username and password of the switch in .clogin.rc ? > Have you tried: ./B2rancid -d sw-pmc-1-1 ? > > Valentino > > Marcos A. Miachiro ha scritto: > > Hi man, > > > I'm trying to get Enterasys *B3* config's, but rancid don't work. > > > The log show me this: > > sw-pmc-1-1 B2login error: Error: TIMEOUT reached > sw-pmc-1-1: missed cmd(s): show version,show config > sw-pmc-1-1: End of run not found > > Do u know something about ? > > Thanks ! > > > Marcos > > 2010/1/27 Valentino Vaia >> > > My mail address is valvai81 at gmail.com > . > > > To correct the error > > sh: B2login: command not found > 192.168.1.1 : missed cmd(s): show > version,show > config > 192.168.1.1 : End of run not found > > > > you must add to the $PATH variable the path of yours > scripts for > example: > PATH=$PATH:/usr/local/rancid/bin > > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > > > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > From marty at supine.com Fri Jan 29 13:53:52 2010 From: marty at supine.com (Martin Barry) Date: Sat, 30 Jan 2010 00:53:52 +1100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <1264610969.4b606e99aa780@imp.free.fr> References: <1264610969.4b606e99aa780@imp.free.fr> Message-ID: <20100129135352.GA12053@tigger.mamista.net> $quoted_author = "relychaure at free.fr" ; > > I tested the scripts but it doesn't function : > > rancid at nsradminfedlog:~/bin$ ./B2rancid 192.168.1.1 > sh: B2login: command not found > 192.168.1.1: missed cmd(s): show version,show config > 192.168.1.1: End of run not found > ! It can't find the command in your path. The output of echo $PATH for the user rancid runs as needs to contain the bin directory cheers Marty From marty at supine.com Fri Jan 29 14:00:44 2010 From: marty at supine.com (Martin Barry) Date: Sat, 30 Jan 2010 01:00:44 +1100 Subject: [rancid] Re: expect script help In-Reply-To: <11abb0e31001281305r52381fe6s874b16f5bbb553fa@mail.gmail.com> References: <11abb0e31001281305r52381fe6s874b16f5bbb553fa@mail.gmail.com> Message-ID: <20100129140044.GB12053@tigger.mamista.net> $quoted_author = "Brian Lam" ; > > The expect / python script /usr/local/rancid/bin/clogin was looping because > my router doesn't like 'exit' and prefer 'quit'. You can either modify the following to match the 'force10' platform (does the newer one accept quit?) # line 678 if { [ string compare "extreme" "$platform" ] } { send -h "exit\r" } else { send -h "quit\r" } or you could add a stanza in the next section to catch the error thrown when sending 'exit' to old force10. cheers Marty From valvai81 at gmail.com Fri Jan 29 14:21:39 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Fri, 29 Jan 2010 15:21:39 +0100 Subject: [rancid] Re: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <2ec55ac61001290548l5ecc29fdrf8dd020939cfe55a@mail.gmail.com> References: <4B609A02.508@gmail.com> <2ec55ac61001280523t35b4b8c7ta51ed0f878f2c55b@mail.gmail.com> <4B61CDEA.1050805@gmail.com> <2ec55ac61001290456t3f086705vf0b06ad8c55a69f3@mail.gmail.com> <4B62E49D.7030301@gmail.com> <2ec55ac61001290548l5ecc29fdrf8dd020939cfe55a@mail.gmail.com> Message-ID: <4B62EEF3.2070504@gmail.com> Excuse me, but the output of the B2login is nothing? The timeout is caused from the absence of the username and the password in .clogin.rc , have you modified it? Marcos A. Miachiro ha scritto: > Hi, > > Take a look: > > rancid-vm:~# B2login -u rancid -p rancid123 -c "show version" sw-pmc-1-1 > rancid-vm:~# B2rancid -d sw-pmc-1-1 > executing B2login -t 90 -c"show config;show version" sw-pmc-1-1 > sw-pmc-1-1 B2login error: Error: TIMEOUT reached > sw-pmc-1-1 B2login error: Error: TIMEOUT reached > sw-pmc-1-1: missed cmd(s): show version,show config > sw-pmc-1-1: missed cmd(s): show version,show config > sw-pmc-1-1: End of run not found > sw-pmc-1-1: End of run not found > ! > rancid-vm:~# > > > 2010/1/29 Valentino Vaia > > > Can you send to me please the output of the different command: > 1) ./B2login -u your-admin-username -p your-switch-password -c > "show version" sw-pmc-1-1 > 2) ./B2rancid -d sw-pmc-1-1 > > Have you added at the file .clogin.rc > add user sw-pmc-1-1 your-username > add userpassword sw-pmc-1-1 your-password > > > > > Marcos A. Miachiro ha scritto: > > Hi, > > > I can execute *B2Login* and enter in *telnet* mode of *enterasys*. > > But when i try run "*show config*": > > sw-pmc-1-1(su)->show config > > Error: TIMEOUT reached > rancid-vm:/usr/lib/rancid/bin# show config > bash: show: command not found > rancid-vm:/usr/lib/rancid/bin# > > Thanks. > > > Marcos > > 2010/1/28 Valentino Vaia >> > > > Have you tried simply the B2login? What is the output? > You can use to test : > ./B2login -u your-admin-username -p you-switch-password -c > "show > version" sw-pmc-1-1 > Have you just tried this? > > Have you added the username and password of the switch in > .clogin.rc ? > Have you tried: ./B2rancid -d sw-pmc-1-1 ? > > Valentino > > Marcos A. Miachiro ha scritto: > > Hi man, > > > I'm trying to get Enterasys *B3* config's, but rancid > don't work. > > > The log show me this: > > sw-pmc-1-1 B2login error: Error: TIMEOUT reached > sw-pmc-1-1: missed cmd(s): show version,show config > sw-pmc-1-1: End of run not found > > Do u know something about ? > > Thanks ! > > > Marcos > > 2010/1/27 Valentino Vaia > > > > > >>> > > My mail address is valvai81 at gmail.com > > . > > > > To correct the error > > sh: B2login: command not found > 192.168.1.1 : missed cmd(s): show > version,show > config > 192.168.1.1 : End of run not found > > > > you must add to the $PATH variable the path of yours > scripts for > example: > PATH=$PATH:/usr/local/rancid/bin > > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > > > > > >> > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > > > From heas at shrubbery.net Fri Jan 29 17:57:21 2010 From: heas at shrubbery.net (john heasley) Date: Fri, 29 Jan 2010 09:57:21 -0800 Subject: [rancid] Re: How can we modify results of configurations in the cvsweb In-Reply-To: <7efdf8de1001290118mb9204bfie92614ed06d8f514@mail.gmail.com> References: <7efdf8de1001290118mb9204bfie92614ed06d8f514@mail.gmail.com> Message-ID: <20100129175721.GE9098@shrubbery.net> Fri, Jan 29, 2010 at 10:18:42AM +0100, Rad Wep: > Hi, > > I would like to have a new result of Rancid process with few words between > each shown command. I mean in the cvsweb, we want to see something like that > : > <=== Show Version ===> > result of sh version > > <=== Show Vlan ===> > result of sh vlan > > <=== Show Run ===> > result of sh run > > Is it possible? If yes, which files do we have to modify? you must change the rancid script. jrancid does this, mostly because it turned-out to be a good way separate the output. From blam at rockyou.com Fri Jan 29 18:32:00 2010 From: blam at rockyou.com (Brian Lam) Date: Fri, 29 Jan 2010 10:32:00 -0800 Subject: [rancid] Re: expect script help In-Reply-To: <20100129140044.GB12053@tigger.mamista.net> References: <11abb0e31001281305r52381fe6s874b16f5bbb553fa@mail.gmail.com> <20100129140044.GB12053@tigger.mamista.net> Message-ID: <11abb0e31001291032w7c8ba742u4cadd72ecaf14a86@mail.gmail.com> thank you. i should be able to figure out from here. i will let you know. On Fri, Jan 29, 2010 at 6:00 AM, Martin Barry wrote: > $quoted_author = "Brian Lam" ; > > > > The expect / python script /usr/local/rancid/bin/clogin was looping > because > > my router doesn't like 'exit' and prefer 'quit'. > > You can either modify the following to match the 'force10' platform (does > the newer one accept quit?) > > # line 678 > if { [ string compare "extreme" "$platform" ] } { > send -h "exit\r" > } else { > send -h "quit\r" > } > > > or you could add a stanza in the next section to catch the error thrown > when > sending 'exit' to old force10. > > cheers > Marty > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -- Brian Lam | IT/Operations | Rockyou, Inc. | Phone: 408-425-9801 | AIM: brianclam2 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100129/65b59480/attachment.html From valvai81 at gmail.com Fri Jan 29 20:44:07 2010 From: valvai81 at gmail.com (Valentino Vaia) Date: Fri, 29 Jan 2010 21:44:07 +0100 Subject: [rancid] Fwd: Rancid & Enterasys B2/B3/N3/N7 switch In-Reply-To: <10e80e871001291240i5de51f24k7fd4334ddb23c0e8@mail.gmail.com> References: <4B609A02.508@gmail.com> <1264673325.4b61622d167f7@imp.free.fr> <4B61CB22.1040907@gmail.com> <1264767550.4b62d23e307b4@imp.free.fr> <4B62E2C9.4040305@gmail.com> <1264776765.4b62f63d859d9@imp.free.fr> <26749F95-5773-4D89-91B1-9A7CE9DC48B0@gmail.com> <1264778797.4b62fe2d3cd8c@imp.free.fr> <10e80e871001291240i5de51f24k7fd4334ddb23c0e8@mail.gmail.com> Message-ID: <10e80e871001291244q7205694cu196c7b79ead06e9e@mail.gmail.com> ---------- Forwarded message ---------- From: Valentino Vaia Date: 2010/1/29 Subject: Re: [rancid] Rancid & Enterasys B2/B3/N3/N7 switch To: relychaure at free.fr 2010/1/29 Selon Valentino Vaia : > > > > > > > > > > > Il giorno 29/gen/2010, alle ore 15.52, relychaure at free.fr ha scritto: > > > > > > > >> in this way in the bin directory you will find a file named > > >> 192.168.1.1.new with the output of the B2login script. > > >> You receive a login timeout from the B2rancid, have you added in the > > >> .clogin.rc file the username and the password of the switch? > > >> for example: > > >> add user 192.168.1.1 your-username > > >> add userpassword 192.168.1.1 your-password > > >> > > >> > > >> > > >> > > > > > > No problem to login, .clogin.rc file is ok. > > > > > > rancid at nsradminfedlog:~/bin$ PATH=$PATH:/home/rancid/bin > > > rancid at nsradminfedlog:~/bin$ ./B2rancid -d 192.168.1.1 > > > executing B2login -t 90 -c"show config" 192.168.1.1 > > > PROMPT MATCH: FED-SW-GSI-003-E1(ro)-> > > > HIT COMMAND:FED-SW-GSI-003-E1(ro)->show config > > > In ShowConfig: FED-SW-GSI-003-E1(ro)->show config > > > 192.168.1.1: End of run not found > > > 192.168.1.1: End of run not found > > > Error: TIMEOUT reached > > > > > > So I can connect but I have a problem with commands. > > > As I don't have change your script, have you ever had the error ? > > > > > > And 192.168.5.31.new contains : > > > !RANCID-CONTENT-TYPE: Enterasys B2 > > > ! > > > This command shows non-default configurations only. > > > Use 'show config all' to show both default and non-default > > > configurations. > > > begin > > > ! > > > #***** NON-DEFAULT CONFIGURATION ***** > > > ! > > > ! > > > #arp > > > ! > > > #arpinspection > > > ! > > > #banner > > > ! > > > #cdp > > > ! > > > #ciscodp > > > ! > > > #console > > > ! > > > #diffserv > > > ! > > > #dhcps > > > ! > > > #dhcpsnooping > > > ! > > > --More-- next page, one line, quit > > > Error: TIMEOUT reached > > > > > > > > > > Now I understand your problem, I have had the same with allied telesis > > switch. What is your B2's firmware version? I haven't this trouble > > with firmware major than 4. To correct this trouble is necessary > > modify the B2login or change firmware. > > > > Strange, this B2 switch has a firmware > 4 !! > Chassis Firmware Revision: 04.02.01.0006 > But if you have the correction, I'm interested for the other switchs. > I don't understand why yours B2 ask you to press ?!? I have the same firmware and I haven't to press anything?!? In the script expect B2login you can substitute the procedure run_commands whit this: proc run_commands { command } { global in_proc set in_proc 1 set commands [split $command \;] set num_commands [llength $commands] for { set i 0 } { $i < $num_commands } { incr i } { send "[subst -nocommands [lindex $commands $i]]\r" expect "->" expect { " config" { send -- " "; expect { " next page, one line, quit " { send -- " "; exp_continue} "->" { send "\r" } } } "->" { } } } set in_proc 0 } I use a procedure similar for allied telesis and it works. After the modification can you post to me the output of? ./B2login -u your-username -p your-password -c "show config" 192.168.5.31 If the B2login works probably you must change the order of the commands in the command_table in the B2rancid from this @commandtable = ( # {'bcc' => 'RunCommand'}, {'show config' => 'ShowConfig'}, {'show version' => 'ShowConfig'}, # {'exit' => 'RunCommand'} ); to @commandtable = ( # {'bcc' => 'RunCommand'}, {'show version' => 'ShowConfig'}, {'show config' => 'ShowConfig'}, # {'exit' => 'RunCommand'} ); I have done this for Allied switch. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20100129/b1656bdf/attachment.html From heas at shrubbery.net Fri Jan 29 21:34:15 2010 From: heas at shrubbery.net (john heasley) Date: Fri, 29 Jan 2010 13:34:15 -0800 Subject: [rancid] Re: having config just post 'sho run' info In-Reply-To: References: Message-ID: <20100129213415.GZ9098@shrubbery.net> Thu, Jan 28, 2010 at 09:41:46AM -0500, George.Nussbaum at l-3com.com: > Hello, > > I was wondering if there is a way to have rancid just post the 'show > running-config' info in my Cisco backups instead of all of the other > stuff that comes before it? you can edit the script; but you must also collect show version.