[rancid] terminal width on Cisco ASA
john heasley
heas at shrubbery.net
Fri Sep 9 16:02:27 UTC 2011
Fri, Sep 09, 2011 at 08:52:41AM -0700, Chris Gauthier:
> Here is an excerpt of the emails I get sometimes. They are stored correctly in the repository, though. I am running rancid 2.3.2 on Ubuntu Server 10.04.1 LTS. Portions of this excerpt have been changed to protect the names of the innocent, as well as my job. ;)
is this IOS, PIX, ASA, or ??
> Index: configs/172.16.0.2
> ===================================================================
> retrieving revision 1.393
> diff -U 4 -r1.393 172.16.0.2
> @@ -898,8 +898,11 @@
> access-list nat0_inside extended permit ip 192.168.124.0 255.255.255.0 10.119.17.0 255.255.255.0
> access-list nat0_inside extended permit ip 192.168.123.0 255.255.255.0 172.16.6.0 255.255.255.248
> access-list nat0_inside extended permit ip 192.168.4.0 255.255.255.0 172.16.6.0 255.255.255.248
> access-list nat0_inside extended permit ip 192.168.100.0 255.255.255.0 172.16.6.0 255.255.255.248
> + access-list nat0_inside extended permit ip 192.168.0.0 255.255.255.0
> + 172.16.6.0 255.255.255.248 access-list nat0_inside extended permit ip
> + 10.75.2.0 255.255.255.0 172.16.6.0 255.255.255.248 access-list
> + nat0_inside extended permit ip 172.16.0.0 255.255.255.240 172.16.6.0
> + 255.255.255.248
> access-list nat0_dmz extended permit ip 172.16.1.0 255.255.255.0 192.168.254.0 255.255.255.0
> access-list nat0_dmz extended permit ip 172.16.1.0 255.255.255.0 10.16.0.0 255.255.0.0
> access-list static_nat_vendor1 extended permit ip 192.168.100.0 255.255.255.0 host 172.30.255.1
> access-list cryptomap_vendor2 extended permit ip host 10.255.255.2 host 10.0.1.2 @@ -1103,8 +1106,10 @@
> access-list outside_access_out extended deny ip any 172.16.0.0 255.240.0.0
> access-list nat0_vendor3 extended permit ip 172.16.6.0 255.255.255.248 10.0.0.0 255.0.0.0
> access-list nat0_vendor3 extended permit ip 172.16.6.0 255.255.255.248 172.16.0.0 255.240.0.0
> access-list nat0_vendor3 extended permit ip 172.16.6.0 255.255.255.248 192.168.0.0 255.255.0.0
> + access-list vendor3 extended permit ip host 172.16.6.3 host
> + 172.16.6.1 access-list vendor3 extended permit ip host 172.16.6.3
> + host 172.16.0.2
> no pager
> logging enable
> logging timestamp
> logging asdm-buffer-size 200
>
>
> --Chris
>
>
> > -----Original Message-----
> > From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-
> > bounces at shrubbery.net] On Behalf Of Per-Olof Olsson
> > Sent: Friday, September 09, 2011 2:48 AM
> > To: P C
> > Cc: rancid-discuss at shrubbery.net
> > Subject: Re: [rancid] terminal width on Cisco ASA
> >
> > Not running any ASA but IOS and nexus switches.
> >
> > Have done some tests to extend width to max, by set width
> > it multiple times in clogin script.
> >
> > Just now running clogin using width 500 (nexus max 512) or
> > "no wrap" for IOS switches supporting "terminal width 0".
> >
> > If you not set width in scripts you will get
> > 80 when running from cron ("default vt100") or
> > current window width from where you run command by hand.
> >
> > In later versions of clogin width set to 80
> >
> > Diff from my running version of clogin.in (rancid 2.3.6)
> > ------------------------------------------------------
> > > diff -c clogin.in.ORG clogin.in
> >
> > *** clogin.in.ORG Wed Oct 6 22:31:24 2010
> > --- clogin.in Wed Jan 19 12:18:57 2011
> > ***************
> > *** 622,627 ****
> > --- 622,629 ----
> > set command "set logging session disable;$command"
> > } else {
> > send "terminal length 0\r"
> > + # More ugly code to turn of line wrap /Peo
> > + set command "terminal width 0;$command"
> > }
> > # match cisco config mode prompts too, such as router(config-if)#,
> > # but catalyst does not change in this fashion.
> > ***************
> > *** 921,927 ****
> > } else {
> > send "terminal length 0\r"
> > expect -re $prompt {}
> > ! send "terminal width 80\r"
> > }
> > expect -re $prompt {}
> > source $sfile
> > --- 923,934 ----
> > } else {
> > send "terminal length 0\r"
> > expect -re $prompt {}
> > ! # send "terminal width 80\r"
> > ! # Set long lines for NEXUS
> > ! # and no line wrap on IOS /Peo
> > ! send "set width 500\r"
> > ! expect -re $prompt {}
> > ! send "set width 0\r"
> > }
> > expect -re $prompt {}
> > source $sfile
> > -----------------------------------
> >
> > P C skrev 2011-09-08 18:26:
> > > How is the terminal width communicated to the Cisco security appliance
> > > by rancid-run when kicked off via crontab? I am getting output in my
> > > alerts like this, almost like it's cutting off at ~60-70 characters or
> > > so. When viewing through a shell via SSH, the output is the width of
> > > the window without issue and is not truncated.
> > >
> > > Is this some sort of variable I can set so the output does not get
> > > kicked to the next line like this?
> > >
> > > Or perhaps is this happening after the SSH session, and during the
> > > e-mail/CVS diff process?
> > >
> > > I have also considered terminal width xxx Cisco ASA side, but this is
> > > a permanent configuration command (config) mode and not a per-session
> > > exec command, so it's probably better just to send the right width to
> > > it in the first place via the SSH/terminal negotiation, however this
> > > may be done.
> > >
> > > + access-list myaclname extended permit ip host 10.100.100.100
> > > + object-group MY_OBJECT log warnings interval 10
> > > _______________________________________________
> > > Rancid-discuss mailing list
> > > Rancid-discuss at shrubbery.net
> > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> >
> >
> > /Peo
> > ----------------------------------------------------------
> > Per-Olof Olsson Email: peo at chalmers.se
> > Chalmers tekniska h?gskola IT-service
> > H?rsalsv?gen 5 412 96 G?teborg
> > Tel: 031/772 6738 Fax: 031/772 8680
> > ----------------------------------------------------------
> > _______________________________________________
> > Rancid-discuss mailing list
> > Rancid-discuss at shrubbery.net
> > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
>
> ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
> CONFIDENTIALITY NOTICE
> Attention: The information contained in this email and/or attachments is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon, this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and delete the material from any system and destroy any copies.
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
More information about the Rancid-discuss
mailing list