From erikm at buh.org Fri Dec 1 03:58:36 2017 From: erikm at buh.org (Erik Muller) Date: Thu, 30 Nov 2017 22:58:36 -0500 Subject: [rancid] Support for Ciena In-Reply-To: <20171122222009.GK96388@shrubbery.net> References: <20171122222009.GK96388@shrubbery.net> Message-ID: <52f9dfb8-4c3a-0d8b-19a8-47f03da07e83@buh.org> On 11/22/17 17:20 , heasley wrote: > Wed, Nov 22, 2017 at 09:43:43PM +0000, Will Lampen: >> I have several different models of ciena switches and wanted to know if there is some official support of someone has created the scripting to support this Vendor. > > ciena waveserver support is in 3.7. > And if you need SAOS support (3942, 3904, etc), you could try https://github.com/ermuller/rancid-stuff. It works for me, but I don't have access to any waveserver platform boxes to test it for a proper merge. -e From heas at shrubbery.net Fri Dec 1 20:55:05 2017 From: heas at shrubbery.net (heasley) Date: Fri, 1 Dec 2017 20:55:05 +0000 Subject: [rancid] DELL PowerConnect 70xx Watts Status In-Reply-To: References: Message-ID: <20171201205504.GH23462@shrubbery.net> Wed, Nov 29, 2017 at 01:55:42PM -0500, Gerhard Mourani: > Does someone have a solution to avoid this noisy backup in rancid 3.7 for a DELL PowerConnect 70xx series ? Can you show the entire output of 'show system' on this device? > Index: configs/192.168.1.13 > =================================================================== > retrieving revision 1.209 > diff -U 4 -r1.209 192.168.1.13 > @@ -54,15 +54,15 @@ > ! Unit Description Status Average Current Since > ! Power Power Date/Time > ! (Watts) (Watts) > ! ---- ----------- ----------- ---------- -------- ------------------- > - ! 1 System OK 0.2 67.0 > + ! 1 System OK 0.8 67.0 > ! 1 Internal OK N/A N/A 10/05/2017 20:18:35 > ! 1 Redundant No Power > - ! 2 System OK 0.6 68.8 > + ! 2 System OK 1.2 68.8 > ! 2 Internal OK N/A N/A 10/05/2017 20:18:35 > ! 2 Redundant No Power > - ! 3 System OK 0.9 70.6 > + ! 3 System OK 1.6 70.6 > ! 3 Internal OK N/A N/A 10/05/2017 20:18:23 > ! 3 Redundant No Power > ! USB Port Power Status: > ! ---------------------- > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss From heas at shrubbery.net Fri Dec 1 21:16:55 2017 From: heas at shrubbery.net (heasley) Date: Fri, 1 Dec 2017 21:16:55 +0000 Subject: [rancid] edgerouter lite In-Reply-To: References: <20171127061959.GB34634@shrubbery.net> <20171128161820.GH55033@shrubbery.net> Message-ID: <20171201211655.GD49858@shrubbery.net> Wed, Nov 29, 2017 at 07:48:11AM +0900, Randy Bush: > my edgerouter x seems to half work with type `edgerouter` but i get > false diffs such as the appended; no changes had been made and the diff > is gibberish. > > i also get a lot of login failures resulting in `config fetcher > problems` are syslogs going to the vty? and what version of rancid on what o/s? > randy > > diff --git a/configs/erx-tokyo.rg.net b/configs/erx-tokyo.rg.net > index 124225b..c38cde0 100644 > - -- a/configs/erx-tokyo.rg.net > @@ -1,6 +1,6 @@ > #RANCID-CONTENT-TYPE: edgerouter > # > - #Version: v1.9.7+hotfix.2 > + #show hardware cpu^JVersion: v1.9.7+hotfix.2 > #Build ID: 5010181 > #Build on: 08/18/17 04:12 > #HW model: EdgeRouter X 5-Port > @@ -22,7 +22,7 @@ > # version : 1.302 > # > # rancid at erx-tokyo:~$cli-shell-api showConfig --show-active-only > - lofirewall { > + logfirewall { > all-ping enable > broadcast-ping disable > ipv6-receive-redirects disable > @@ -231,7 +231,7 @@ service { > } > static-mapping vcisco { > ip-address 192.168.0.11 > - mac-address 12:34:56:78:90:AB > + o mac-address 12:34:56:78:90:AB > } > static-mapping zw-ipad { > ip-address 192.168.0.53 > @@ -314,7 +314,7 @@ system { > type ssh-rsa > } > } > - g full-name "Randy Bush" > + full-name "Randy Bush" > level admin > } > } From randy at psg.com Fri Dec 1 23:45:21 2017 From: randy at psg.com (Randy Bush) Date: Sat, 02 Dec 2017 08:45:21 +0900 Subject: [rancid] edgerouter lite In-Reply-To: <20171201211655.GD49858@shrubbery.net> References: <20171127061959.GB34634@shrubbery.net> <20171128161820.GH55033@shrubbery.net> <20171201211655.GD49858@shrubbery.net> Message-ID: > are syslogs going to the vty? do not think so; but have insufficient erx fu to be positive syslog { global { facility all { level notice } facility protocols { level debug } } host 666.42.77.69 { facility all { level crit } } } > and what version of rancid on what o/s? rancid.fat:/usr/home/rancid> uname -a FreeBSD rancid.fat 10.3-RELEASE-p20 FreeBSD 10.3-RELEASE-p20 #0: Wed Jul 12 03:10:26 UTC 2017 root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC i386 rancid.fat:/usr/home/rancid> rancid --version /usr/local/libexec/rancid/rancid version 3.6.2 calling Getopt::Std::getopts (version 1.11 [paranoid]), running under Perl version 5.24.3. [Now continuing due to backward compatibility and excessive paranoia. See 'perldoc Getopt::Std' about $Getopt::Std::STANDARD_HELP_VERSION.] Too few arguments: host name required From doug.hughes at keystonenap.com Sat Dec 2 01:42:00 2017 From: doug.hughes at keystonenap.com (Doug Hughes) Date: Fri, 1 Dec 2017 20:42:00 -0500 Subject: [rancid] edgerouter lite In-Reply-To: References: <20171127061959.GB34634@shrubbery.net> <20171128161820.GH55033@shrubbery.net> <20171201211655.GD49858@shrubbery.net> Message-ID: <1a558161-ed2b-712f-99ce-852a3a2af246@keystonenap.com> that's a really funky invalid IP address... regarding the global section, that's standard. I have the same thing without issues. But, I use ubntsw type in router.db On 12/1/2017 6:45 PM, Randy Bush wrote: >> are syslogs going to the vty? > do not think so; but have insufficient erx fu to be positive > > syslog { > global { > facility all { > level notice > } > facility protocols { > level debug > } > } > host 666.42.77.69 { > facility all { > level crit > } > } > } > >> and what version of rancid on what o/s? > rancid.fat:/usr/home/rancid> uname -a > FreeBSD rancid.fat 10.3-RELEASE-p20 FreeBSD 10.3-RELEASE-p20 #0: Wed Jul 12 03:10:26 UTC 2017 root at amd64-builder.daemonology.net:/usr/obj/usr/src/sys/GENERIC i386 > > > rancid.fat:/usr/home/rancid> rancid --version > /usr/local/libexec/rancid/rancid version 3.6.2 calling Getopt::Std::getopts (version 1.11 [paranoid]), > running under Perl version 5.24.3. > [Now continuing due to backward compatibility and excessive paranoia. > See 'perldoc Getopt::Std' about $Getopt::Std::STANDARD_HELP_VERSION.] > Too few arguments: host name required > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss -- Doug Hughes Keystone NAP Fairless Hills, PA 1.844.KEYBLOCK (539.2562) -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: keystone-nap.png Type: image/png Size: 3476 bytes Desc: not available URL: From andreas at in-berlin.de Sat Dec 2 07:53:16 2017 From: andreas at in-berlin.de (Andreas Herrmann) Date: Sat, 2 Dec 2017 08:53:16 +0100 Subject: [rancid] edgerouter lite In-Reply-To: References: <20171127061959.GB34634@shrubbery.net> <20171128161820.GH55033@shrubbery.net> Message-ID: <7ede353e-79df-2101-b3b4-7c435cd4c2a9@in-berlin.de> Hi there, I can ACK those strange errors. These formatting errors do not happen often. With my custom type and some modifications even quite less. I check every 15min and those error happens once/twice per week. More details can be find here in the thread "Edgerouter: showConfig command failure" I'm running rancid 3.7 with EdgeRouter Pro 8-Port and EdgeRouter Lite 3-Port. Andreas == round n ======= -#Version: v1.9.7+hotfix.4 +#show ubnt offload | no-more^JVersion: v1.9.7+hotfix.4 ... -# rancid at ams-gw:~$ cli-shell-api showConfig --show-active-only | no-more -firewall { +# rancid at ams-gw:~$cli-shell-api showConfig --show-active-only | no-more +lofirewall { == round n+1====== -#show ubnt offload | no-more^JVersion: v1.9.7+hotfix.4 +#Version: v1.9.7+hotfix.4 ... -# rancid at ams-gw:~$cli-shell-api showConfig --show-active-only | no-more -lofirewall { +# rancid at ams-gw:~$ cli-shell-api showConfig --show-active-only | no-more +firewall { ================== edgerouter_custom;script;rancid -t edgerouter_custom edgerouter_custom;login;ulogin -noenable -t 30 edgerouter_custom;module;edgerouter edgerouter_custom;inloop;edgerouter::inloop edgerouter_custom;command;rancid::RunCommand;terminal length 0 edgerouter_custom;command;edgerouter::ShowVersion;show version | no-more edgerouter_custom;command;edgerouter::ShowOffload;show ubnt offload | no-more edgerouter_custom;command;edgerouter::WriteTerm;cli-shell-api showConfig --show-active-only | no-more ================== modifications: * ~rancid/bin/ulogin set sleeps to 5s * not enough for Lite 3-Port -> MAX_ROUNDS=10 * ulogin -noenable -t 30 (was: -noenable -t 10) * {{ | no-more }} decreased formating errors ================== On 28.11.2017 23:48, Randy Bush wrote: > my edgerouter x seems to half work with type `edgerouter` but i get > false diffs such as the appended; no changes had been made and the diff > is gibberish. > > i also get a lot of login failures resulting in `config fetcher > problems` > > randy > > diff --git a/configs/erx-tokyo.rg.net b/configs/erx-tokyo.rg.net > index 124225b..c38cde0 100644 > - -- a/configs/erx-tokyo.rg.net > @@ -1,6 +1,6 @@ > #RANCID-CONTENT-TYPE: edgerouter > # > - #Version: v1.9.7+hotfix.2 > + #show hardware cpu^JVersion: v1.9.7+hotfix.2 > #Build ID: 5010181 > #Build on: 08/18/17 04:12 > #HW model: EdgeRouter X 5-Port > @@ -22,7 +22,7 @@ > # version : 1.302 > # > # rancid at erx-tokyo:~$cli-shell-api showConfig --show-active-only > - lofirewall { > + logfirewall { > all-ping enable > broadcast-ping disable > ipv6-receive-redirects disable > @@ -231,7 +231,7 @@ service { > } > static-mapping vcisco { > ip-address 192.168.0.11 > - mac-address 12:34:56:78:90:AB > + o mac-address 12:34:56:78:90:AB > } > static-mapping zw-ipad { > ip-address 192.168.0.53 > @@ -314,7 +314,7 @@ system { > type ssh-rsa > } > } > - g full-name "Randy Bush" > + full-name "Randy Bush" > level admin > } > } From heas at shrubbery.net Mon Dec 4 17:27:31 2017 From: heas at shrubbery.net (heasley) Date: Mon, 4 Dec 2017 17:27:31 +0000 Subject: [rancid] edgerouter lite In-Reply-To: References: <20171127061959.GB34634@shrubbery.net> <20171128161820.GH55033@shrubbery.net> <20171201211655.GD49858@shrubbery.net> Message-ID: <20171204172731.GB59888@shrubbery.net> Sat, Dec 02, 2017 at 08:45:21AM +0900, Randy Bush: > rancid.fat:/usr/home/rancid> rancid --version > /usr/local/libexec/rancid/rancid version 3.6.2 calling Getopt::Std::getopts (version 1.11 [paranoid]), would you move to 3.7, to eliminate the possibility of a fixed bug being the cause? From gmourani at gmail.com Mon Dec 4 18:52:20 2017 From: gmourani at gmail.com (Gerhard Mourani) Date: Mon, 4 Dec 2017 13:52:20 -0500 Subject: [rancid] DELL PowerConnect 70xx Watts Status In-Reply-To: <20171201205504.GH23462@shrubbery.net> References: <20171201205504.GH23462@shrubbery.net> Message-ID: <430510AB-A46B-4AAE-8F17-8132018C5F20@gmail.com> Hello, Sorry for the delay, here the output, thanks. EliteStack7024#show system System Description: Dell Ethernet Switch System Up Time: 60 days, 06h:26m:08s System Contact: xxx at xxx.xx System Name: EliteStack7024 System Location: xxxxxxxx Burned In MAC Address: xxxx.xxxx.xxxx System Object ID: 1.3.6.1.4.1.674.10895.3035 System Model ID: PCT7048 Machine Type: PowerConnect 7048 Temperature Sensors: Unit Description Temperature Status (Celsius) ---- ----------- ----------- ------ 1 MAC 31 Good 1 PHY 29 Good 2 MAC 30 Good 2 PHY 28 Good 3 MAC 32 Good 3 PHY 26 Good Fans: --More-- or (q)uit Unit Description Status ---- ----------- ------ 1 Fan 1 OK 1 Fan 2 OK 1 Fan 3 OK 2 Fan 1 OK 2 Fan 2 OK 2 Fan 3 OK 3 Fan 1 OK 3 Fan 2 OK 3 Fan 3 OK Power Supplies: Unit Description Status Average Current Since Power Power Date/Time (Watts) (Watts) ---- ----------- ----------- ---------- -------- ------------------- 1 System OK 1.4 65.2 1 Internal OK N/A N/A 10/05/2017 20:18:35 1 Redundant No Power 2 System OK 0.2 67.0 --More-- or (q)uit 2 Internal OK N/A N/A 10/05/2017 20:18:35 2 Redundant No Power 3 System OK 0.7 70.6 3 Internal OK N/A N/A 10/05/2017 20:18:23 3 Redundant No Power USB Port Power Status: ---------------------- Device Not Present Gerhard, > On Dec 1, 2017, at 3:55 PM, heasley wrote: > > Wed, Nov 29, 2017 at 01:55:42PM -0500, Gerhard Mourani: >> Does someone have a solution to avoid this noisy backup in rancid 3.7 for a DELL PowerConnect 70xx series ? > > Can you show the entire output of 'show system' on this device? > >> Index: configs/192.168.1.13 >> =================================================================== >> retrieving revision 1.209 >> diff -U 4 -r1.209 192.168.1.13 >> @@ -54,15 +54,15 @@ >> ! Unit Description Status Average Current Since >> ! Power Power Date/Time >> ! (Watts) (Watts) >> ! ---- ----------- ----------- ---------- -------- ------------------- >> - ! 1 System OK 0.2 67.0 >> + ! 1 System OK 0.8 67.0 >> ! 1 Internal OK N/A N/A 10/05/2017 20:18:35 >> ! 1 Redundant No Power >> - ! 2 System OK 0.6 68.8 >> + ! 2 System OK 1.2 68.8 >> ! 2 Internal OK N/A N/A 10/05/2017 20:18:35 >> ! 2 Redundant No Power >> - ! 3 System OK 0.9 70.6 >> + ! 3 System OK 1.6 70.6 >> ! 3 Internal OK N/A N/A 10/05/2017 20:18:23 >> ! 3 Redundant No Power >> ! USB Port Power Status: >> ! ---------------------- >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Tue Dec 5 20:19:00 2017 From: heas at shrubbery.net (heasley) Date: Tue, 5 Dec 2017 20:19:00 +0000 Subject: [rancid] DELL PowerConnect 70xx Watts Status In-Reply-To: <20171205201745.1C89D234712@sea.shrubbery.net> <430510AB-A46B-4AAE-8F17-8132018C5F20@gmail.com> Message-ID: <20171205201859.GN90214@shrubbery.net> Mon, Dec 04, 2017 at 01:52:20PM -0500, Gerhard Mourani: > Hello, > > Sorry for the delay, here the output, thanks. > > EliteStack7024#show system > > System Description: Dell Ethernet Switch > System Up Time: 60 days, 06h:26m:08s > System Contact: xxx at xxx.xx > System Name: EliteStack7024 > System Location: xxxxxxxx > Burned In MAC Address: xxxx.xxxx.xxxx > System Object ID: 1.3.6.1.4.1.674.10895.3035 > System Model ID: PCT7048 > Machine Type: PowerConnect 7048 > Temperature Sensors: > > Unit Description Temperature Status > (Celsius) > ---- ----------- ----------- ------ > 1 MAC 31 Good > 1 PHY 29 Good > 2 MAC 30 Good > 2 PHY 28 Good > 3 MAC 32 Good > 3 PHY 26 Good > > Fans: > --More-- or (q)uit > > Unit Description Status > ---- ----------- ------ > 1 Fan 1 OK > 1 Fan 2 OK > 1 Fan 3 OK > 2 Fan 1 OK > 2 Fan 2 OK > 2 Fan 3 OK > 3 Fan 1 OK > 3 Fan 2 OK > 3 Fan 3 OK > > Power Supplies: > > Unit Description Status Average Current Since > Power Power Date/Time > (Watts) (Watts) > ---- ----------- ----------- ---------- -------- ------------------- > 1 System OK 1.4 65.2 > 1 Internal OK N/A N/A 10/05/2017 20:18:35 > 1 Redundant No Power > 2 System OK 0.2 67.0 > --More-- or (q)uit > 2 Internal OK N/A N/A 10/05/2017 20:18:35 > 2 Redundant No Power > 3 System OK 0.7 70.6 > 3 Internal OK N/A N/A 10/05/2017 20:18:23 > 3 Redundant No Power > > USB Port Power Status: > ---------------------- > Device Not Present Does this patch work properly in production? Index: bin/srancid.in =================================================================== --- bin/srancid.in (revision 3734) +++ bin/srancid.in (working copy) @@ -151,6 +151,35 @@ } } + # filter power rates and tmestamps from 7024 power supply info + # Power Supplies: + # + # Unit Description Status Average Current Since + # Power Power Date/Time + # (Watts) (Watts) + # ---- ----------- ----------- ---------- -------- ------------------- + # 1 System OK 1.4 65.2 + # 1 Internal OK N/A N/A 10/05/2017 20:18:35 + if (/power supplies/i) { + ProcessHistory("COMMENTS","keysort","C1", + "! Unit\tDescription\tStatus\n"); + ProcessHistory("COMMENTS","keysort","C1", + "! ----\t-----------\t------\n"); + while () { + s/^\s+\015//g; + tr/\015//d; + /^(unit\s|--+\s|\s)/i && next; + if (/(\d+)\s+(\w+)\s+(\w+(\s\w+)?)\s/) { + if (length($2) >= 8) { + ProcessHistory("COMMENTS","keysort","C1","! $1\t$2\t$3\n"); + } else { + ProcessHistory("COMMENTS","keysort","C1","! $1\t$2\t\t$3\n"); + } + } + /^\s*$/ && last; + } + } + /system description: (.*)/i && ProcessHistory("COMMENTS","keysort","A1", "!Chassis type: $1\n") && next; From Robert.Remsik at colostate.edu Tue Dec 5 22:50:54 2017 From: Robert.Remsik at colostate.edu (Remsik,Robert) Date: Tue, 5 Dec 2017 22:50:54 +0000 Subject: [rancid] Logging in with ssh keys vs username passwords Message-ID: Hello! I've got a couple network devices that support either username/password OR sshkeys, but not both, for management access. Is there a way to have rancid use an ssh key in the .clogit file or another way to I'm trying to setup sshing into network devices via ssh keys (bypassing username/passwords) and I'm not coming up with anything. Is this possible? Robert, Robert Remsik Telecom Desk Phone: 970 491 7120 Robert.Remsik at colostate.edu -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Tue Dec 5 23:38:39 2017 From: heas at shrubbery.net (heasley) Date: Tue, 5 Dec 2017 23:38:39 +0000 Subject: [rancid] Logging in with ssh keys vs username passwords In-Reply-To: References: Message-ID: <20171205233839.GC62760@shrubbery.net> Tue, Dec 05, 2017 at 10:50:54PM +0000, Remsik,Robert: > Hello! > > > I've got a couple network devices that support either username/password OR sshkeys, but not both, for management access. Is there a way to have rancid use an ssh key in the .clogit file or another way to > > > I'm trying to setup sshing into network devices via ssh keys (bypassing username/passwords) and I'm not coming up with anything. Is this possible? > yes, see cloginrc(5). From ericx at whoi.edu Tue Dec 5 23:45:09 2017 From: ericx at whoi.edu (Eric W. Bates) Date: Tue, 5 Dec 2017 18:45:09 -0500 Subject: [rancid] Logging in with ssh keys vs username passwords In-Reply-To: <20171205233839.GC62760@shrubbery.net> References: <20171205233839.GC62760@shrubbery.net> Message-ID: <74320568-c2a7-7f68-3922-5b2752aad830@whoi.edu> On 12/5/2017 6:38 PM, heasley wrote: > Tue, Dec 05, 2017 at 10:50:54PM +0000, Remsik,Robert: >> Hello! >> >> >> I've got a couple network devices that support either username/password OR sshkeys, but not both, for management access. Is there a way to have rancid use an ssh key in the .clogit file or another way to >> >> >> I'm trying to setup sshing into network devices via ssh keys (bypassing username/passwords) and I'm not coming up with anything. Is this possible? >> > > yes, see cloginrc(5). We prefer keys so at the very bottom of my .cloginrc I have: # these are the broadest defaults at the bottom. These are used if # nothing matches above. # # In theory, we use ssh key wherever we can and it just gets us in. # ./bin/clogin will barf if you don't provide a value for the password # field add user * {rancid} add password * {not-a-real-password} add method * {ssh} add autoenable * {1} add identity * {/usr/local/rancid3/.ssh/id_rsa} > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss > -------------- next part -------------- A non-text attachment was scrubbed... Name: smime.p7s Type: application/pkcs7-signature Size: 4188 bytes Desc: S/MIME Cryptographic Signature URL: From gmourani at gmail.com Wed Dec 6 20:07:31 2017 From: gmourani at gmail.com (Gerhard Mourani) Date: Wed, 6 Dec 2017 15:07:31 -0500 Subject: [rancid] DELL PowerConnect 70xx Watts Status In-Reply-To: <20171205201859.GN90214@shrubbery.net> References: <20171205201859.GN90214@shrubbery.net> Message-ID: <6EF23CF8-DEFA-4E9E-B2E2-B0C4E0311B43@gmail.com> Yes, it work! Stoped receiving the annoying diff on it. Thanks again for your continuing help. > On Dec 5, 2017, at 3:19 PM, heasley wrote: > > Mon, Dec 04, 2017 at 01:52:20PM -0500, Gerhard Mourani: >> Hello, >> >> Sorry for the delay, here the output, thanks. >> >> EliteStack7024#show system >> >> System Description: Dell Ethernet Switch >> System Up Time: 60 days, 06h:26m:08s >> System Contact: xxx at xxx.xx >> System Name: EliteStack7024 >> System Location: xxxxxxxx >> Burned In MAC Address: xxxx.xxxx.xxxx >> System Object ID: 1.3.6.1.4.1.674.10895.3035 >> System Model ID: PCT7048 >> Machine Type: PowerConnect 7048 >> Temperature Sensors: >> >> Unit Description Temperature Status >> (Celsius) >> ---- ----------- ----------- ------ >> 1 MAC 31 Good >> 1 PHY 29 Good >> 2 MAC 30 Good >> 2 PHY 28 Good >> 3 MAC 32 Good >> 3 PHY 26 Good >> >> Fans: >> --More-- or (q)uit >> >> Unit Description Status >> ---- ----------- ------ >> 1 Fan 1 OK >> 1 Fan 2 OK >> 1 Fan 3 OK >> 2 Fan 1 OK >> 2 Fan 2 OK >> 2 Fan 3 OK >> 3 Fan 1 OK >> 3 Fan 2 OK >> 3 Fan 3 OK >> >> Power Supplies: >> >> Unit Description Status Average Current Since >> Power Power Date/Time >> (Watts) (Watts) >> ---- ----------- ----------- ---------- -------- ------------------- >> 1 System OK 1.4 65.2 >> 1 Internal OK N/A N/A 10/05/2017 20:18:35 >> 1 Redundant No Power >> 2 System OK 0.2 67.0 >> --More-- or (q)uit >> 2 Internal OK N/A N/A 10/05/2017 20:18:35 >> 2 Redundant No Power >> 3 System OK 0.7 70.6 >> 3 Internal OK N/A N/A 10/05/2017 20:18:23 >> 3 Redundant No Power >> >> USB Port Power Status: >> ---------------------- >> Device Not Present > > Does this patch work properly in production? > > Index: bin/srancid.in > =================================================================== > --- bin/srancid.in (revision 3734) > +++ bin/srancid.in (working copy) > @@ -151,6 +151,35 @@ > } > } > > + # filter power rates and tmestamps from 7024 power supply info > + # Power Supplies: > + # > + # Unit Description Status Average Current Since > + # Power Power Date/Time > + # (Watts) (Watts) > + # ---- ----------- ----------- ---------- -------- ------------------- > + # 1 System OK 1.4 65.2 > + # 1 Internal OK N/A N/A 10/05/2017 20:18:35 > + if (/power supplies/i) { > + ProcessHistory("COMMENTS","keysort","C1", > + "! Unit\tDescription\tStatus\n"); > + ProcessHistory("COMMENTS","keysort","C1", > + "! ----\t-----------\t------\n"); > + while () { > + s/^\s+\015//g; > + tr/\015//d; > + /^(unit\s|--+\s|\s)/i && next; > + if (/(\d+)\s+(\w+)\s+(\w+(\s\w+)?)\s/) { > + if (length($2) >= 8) { > + ProcessHistory("COMMENTS","keysort","C1","! $1\t$2\t$3\n"); > + } else { > + ProcessHistory("COMMENTS","keysort","C1","! $1\t$2\t\t$3\n"); > + } > + } > + /^\s*$/ && last; > + } > + } > + > /system description: (.*)/i && > ProcessHistory("COMMENTS","keysort","A1", "!Chassis type: $1\n") && > next; > From anusha.lingam at yale.edu Wed Dec 6 21:00:45 2017 From: anusha.lingam at yale.edu (Lingam, Anusha) Date: Wed, 6 Dec 2017 21:00:45 +0000 Subject: [rancid] Rancid help Message-ID: Hello, I have the rancid version 3.2 installed on our RHEL7 server. We are doing a migration from an old RHEL machine. Rancid is configured successfully and rancid-cvs, rancid-run executes successfully. The problem is, we need to get the old configs from the CVS on old machine to the CVS on new machine. I tried to tar/untar of old CVS. Then, rancid-run is not updating the configs everytime. Thanks Anusha -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Wed Dec 6 21:18:14 2017 From: heas at shrubbery.net (heasley) Date: Wed, 6 Dec 2017 21:18:14 +0000 Subject: [rancid] Rancid help In-Reply-To: References: Message-ID: <20171206211814.GW99085@shrubbery.net> Wed, Dec 06, 2017 at 09:00:45PM +0000, Lingam, Anusha: > I tried to tar/untar of old CVS. Then, rancid-run is not updating the configs everytime. this ought to work if you 'cvs update' each group after untarring the cvs repo. From anusha.lingam at yale.edu Wed Dec 6 21:27:51 2017 From: anusha.lingam at yale.edu (Lingam, Anusha) Date: Wed, 6 Dec 2017 21:27:51 +0000 Subject: [rancid] Rancid help In-Reply-To: <20171206211814.GW99085@shrubbery.net> References: <20171206211814.GW99085@shrubbery.net> Message-ID: I just did that. The rancid-run doesn?t update the configs now. Your suggestions would be a great help. Thanks Anusha On 12/6/17, 4:18 PM, "heasley" wrote: Wed, Dec 06, 2017 at 09:00:45PM +0000, Lingam, Anusha: > I tried to tar/untar of old CVS. Then, rancid-run is not updating the configs everytime. this ought to work if you 'cvs update' each group after untarring the cvs repo. From m_zouhairy at skno.by Thu Dec 7 08:18:46 2017 From: m_zouhairy at skno.by (Vacheslav) Date: Thu, 7 Dec 2017 11:18:46 +0300 Subject: [rancid] Rancid help In-Reply-To: References: <20171206211814.GW99085@shrubbery.net> Message-ID: <001201d36f34$00e81a70$02b84f50$@skno.by> Well paste the result -----Original Message----- From: Rancid-discuss [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Lingam, Anusha Sent: Thursday, December 7, 2017 12:28 AM To: heasley Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Rancid help I just did that. The rancid-run doesn?t update the configs now. Your suggestions would be a great help. Thanks Anusha On 12/6/17, 4:18 PM, "heasley" wrote: Wed, Dec 06, 2017 at 09:00:45PM +0000, Lingam, Anusha: > I tried to tar/untar of old CVS. Then, rancid-run is not updating the configs everytime. this ought to work if you 'cvs update' each group after untarring the cvs repo. _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo/rancid-discuss From Robert.Remsik at colostate.edu Thu Dec 7 23:23:52 2017 From: Robert.Remsik at colostate.edu (Remsik,Robert) Date: Thu, 7 Dec 2017 23:23:52 +0000 Subject: [rancid] Logging in with ssh keys vs username passwords In-Reply-To: <74320568-c2a7-7f68-3922-5b2752aad830@whoi.edu> References: <20171205233839.GC62760@shrubbery.net>, <74320568-c2a7-7f68-3922-5b2752aad830@whoi.edu> Message-ID: That was the trick. Thank you very much. :D Robert Remsik Telecom Desk Phone: 970 491 7120 Robert.Remsik at colostate.edu ________________________________ From: Rancid-discuss on behalf of Eric W. Bates Sent: Tuesday, December 5, 2017 4:45 PM To: rancid-discuss at shrubbery.net Subject: Re: [rancid] Logging in with ssh keys vs username passwords On 12/5/2017 6:38 PM, heasley wrote: > Tue, Dec 05, 2017 at 10:50:54PM +0000, Remsik,Robert: >> Hello! >> >> >> I've got a couple network devices that support either username/password OR sshkeys, but not both, for management access. Is there a way to have rancid use an ssh key in the .clogit file or another way to >> >> >> I'm trying to setup sshing into network devices via ssh keys (bypassing username/passwords) and I'm not coming up with anything. Is this possible? >> > > yes, see cloginrc(5). We prefer keys so at the very bottom of my .cloginrc I have: # these are the broadest defaults at the bottom. These are used if # nothing matches above. # # In theory, we use ssh key wherever we can and it just gets us in. # ./bin/clogin will barf if you don't provide a value for the password # field add user * {rancid} add password * {not-a-real-password} add method * {ssh} add autoenable * {1} add identity * {/usr/local/rancid3/.ssh/id_rsa} > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: From Tanya.malone at onlineleadss.com Fri Dec 8 16:47:39 2017 From: Tanya.malone at onlineleadss.com (Tanya Malone) Date: Fri, 8 Dec 2017 11:47:39 -0500 Subject: [rancid] Updated SAGE Users Message-ID: Hi, Would you be interested in NetSuite users email list or Industry specific List? Data Field: verified Phone Number, Fax Number, Verified Email Address, Employee Size, Revenue size, SIC Code, Industry Type and many more). We also have other technology users like: Sage, QuickBooks, NetSuite, MS Dynamics, and Lawson etc. If interested, kindly let me know your targeted technology users and Targeted Geography, so that I will provide counts and more information. Quarter 4 offer: Flat 20% off on all purchases, Reply back to avail this offer. Looking forward to hear from you. Regards, Tanya Malone Demand generation head If you are not the right person to discuss about this please forward this to the person. To opt out please response "Remove". -------------- next part -------------- An HTML attachment was scrubbed... URL: From Thomas.Eichhorn at klinikum-nuernberg.de Mon Dec 11 14:51:27 2017 From: Thomas.Eichhorn at klinikum-nuernberg.de (Eichhorn, Thomas) Date: Mon, 11 Dec 2017 14:51:27 +0000 Subject: [rancid] rancid 3.7 and HP 1910-8G - can't get rancid to work with that router Message-ID: Hello, I'm new to rancid and don't know, how to solve my problem. Maybe someone can help me. I did setup rancid 3.7. Everything works quite well so far except for some routers. We've got a HP 1910-8G and I can't find a way to get rancid to work probably with that router type. If router type is set to 'hp', rancid-run won't end his run and runs forever without any configs get backed up. I've found some scripts ('h3clogin'; 'h3crancid') on another server in our network. rancid-run ends correctly with this script but throws some errors: defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) lnb-o2a: End of run not found % Unrecognized command found at '^' position. defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) lnb-o2b: End of run not found % Unrecognized command found at '^' position. lnb-o3a: End of run not found % Unrecognized command found at '^' position. lnb-o1a: End of run not found % Unrecognized command found at '^' position. lnb-o1b: End of run not found % Unrecognized command found at '^' position. lnb-o3b: End of run not found % Unrecognized command found at '^' position. Now I don't know what to do. Any suggestions? Thanks. Best regards, Thomas ________________________________ Klinikum N?rnberg, Sitz: N?rnberg, Amtsgericht N?rnberg -Registergericht- HRA 14190, Vorstand: Prof. Dr. Achim Jockwig (Vorsitzender), Dr. Andreas Becke, Univ.-Prof. Dr. Dr. Gu?nter Niklewski, Peter Schuh From heas at shrubbery.net Mon Dec 11 15:12:36 2017 From: heas at shrubbery.net (heasley) Date: Mon, 11 Dec 2017 15:12:36 +0000 Subject: [rancid] rancid 3.7 and HP 1910-8G - can't get rancid to work with that router In-Reply-To: References: Message-ID: <20171211151235.GD98309@shrubbery.net> Mon, Dec 11, 2017 at 02:51:27PM +0000, Eichhorn, Thomas: > Hello, > > I'm new to rancid and don't know, how to solve my problem. Maybe someone can help me. > > I did setup rancid 3.7. Everything works quite well so far except for some routers. > > We've got a HP 1910-8G and I can't find a way to get rancid to work probably with that router type. > > If router type is set to 'hp', rancid-run won't end his run and runs forever without any configs get backed up. HP OEMs a lot of their network hardware; so while badged hp, its not one to rancid due to the o/s. look at rancid.types.base; there are a number of comments there about HP devices and the rancid types that are known to work with them. > I've found some scripts ('h3clogin'; 'h3crancid') on another server in our network. rancid-run ends correctly with this script but throws some errors: > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > lnb-o2a: End of run not found > % Unrecognized command found at '^' position. > defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. > (Maybe you should just omit the defined()?) > lnb-o2b: End of run not found > % Unrecognized command found at '^' position. > lnb-o3a: End of run not found > % Unrecognized command found at '^' position. > lnb-o1a: End of run not found > % Unrecognized command found at '^' position. > lnb-o1b: End of run not found > % Unrecognized command found at '^' position. > lnb-o3b: End of run not found > % Unrecognized command found at '^' position. > > Now I don't know what to do. Any suggestions? h3crancid is a 3rdparty module. Those errors imply to me that some command required by that module are not implemented by the device. the errors before that appear to be programming errors, likely grammar that was permissible in a previous version of perl. Gr??e From david.chapman at pegasus.io Mon Dec 11 15:08:12 2017 From: david.chapman at pegasus.io (David Chapman) Date: Mon, 11 Dec 2017 15:08:12 +0000 Subject: [rancid] rancid 3.7 and HP 1910-8G - can't get rancid to work with that router Message-ID: <375B6D5F-013A-4C74-AFC1-8666EEDEA7FA@pegasus.io> I cannot tell if this switch line is Procurve or Comware. H3C is for the comware editions/versions. What does a show version or display version show at the command line? Here is a good debugging guide. https://www.barryodonovan.com/2011/02/05/useful-rancid-debugging-tips-2 Particularly setenv NOPIPE YES rancid -d which will show you the commands its running and the output. This email, including any attached files, may contain confidential and privileged information. If you received this communication in error, please contact the sender by reply e-mail and delete all copies of this message. From jethro.binks at strath.ac.uk Tue Dec 12 16:14:48 2017 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Tue, 12 Dec 2017 16:14:48 +0000 (GMT) Subject: [rancid] rancid 3.7 and HP 1910-8G - can't get rancid to work with that router In-Reply-To: <20171211151235.GD98309@shrubbery.net> References: <20171211151235.GD98309@shrubbery.net> Message-ID: On Mon, 11 Dec 2017, heasley wrote: > HP OEMs a lot of their network hardware; so while badged hp, its not one > to rancid due to the o/s. look at rancid.types.base; there are a number > of comments there about HP devices and the rancid types that are known to > work with them. 1910 is a Comware 5 model. > h3crancid is a 3rdparty module. Those errors imply to me that some > command required by that module are not implemented by the device. (I wrote it) Output for unrecognised commands should be skipped properly (some commands work on some models or comware versions and not on others, but this should all be handled properly). > the errors before that appear to be programming errors, likely grammar > that was permissible in a previous version of perl. That seems likely, but I don't keep up much with perl to know. But I don't see where this error might be coming from. defined(%hash) is deprecated at /usr/local/rancid/bin/h3crancid line 121. (Maybe you should just omit the defined()?) I've attached another h3crancid which is one I use locally. I can't be sure it doesn't have some local hacks but be interesting to see if it makes this error go away. Beyond that, follow David's advice by running it with some debugging, I would do something like: env NOPIPE=YES PATH=${PATH}:/usr/local/libexec/rancid rancid -d devicename adjusting the path to rancid accordingly. That will give you the .new and .raw files in the current directory which might be enlightening. Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks, Network Manager, Information Services Directorate, University Of Strathclyde, Glasgow, UK The University of Strathclyde is a charitable body, registered in Scotland, number SC015263. -------------- next part -------------- #! /usr/bin/perl5 ## ## $Id: $ ## ## @PACKAGE@ @VERSION@ ## Copyright (c) @COPYYEARS@ by Terrapin Communications, Inc. ## All rights reserved. ## ## This code is derived from software contributed to and maintained by ## Terrapin Communications, Inc. by Henry Kilmer, John Heasley, Andrew Partan, ## Pete Whiting, Austin Schutz, and Andrew Fort. ## ## Redistribution and use in source and binary forms, with or without ## modification, are permitted provided that the following conditions ## are met: ## 1. Redistributions of source code must retain the above copyright ## notice, this list of conditions and the following disclaimer. ## 2. Redistributions in binary form must reproduce the above copyright ## notice, this list of conditions and the following disclaimer in the ## documentation and/or other materials provided with the distribution. ## 3. All advertising materials mentioning features or use of this software ## must display the following acknowledgement: ## This product includes software developed by Terrapin Communications, ## Inc. and its contributors for RANCID. ## 4. Neither the name of Terrapin Communications, Inc. nor the names of its ## contributors may be used to endorse or promote products derived from ## this software without specific prior written permission. ## 5. It is requested that non-binding fixes and modifications be contributed ## back to Terrapin Communications, Inc. ## ## THIS SOFTWARE IS PROVIDED BY Terrapin Communications, INC. AND CONTRIBUTORS ## ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED ## TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR ## PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COMPANY OR CONTRIBUTORS ## BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR ## CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF ## SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS ## INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN ## CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ## ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE ## POSSIBILITY OF SUCH DAMAGE. # # RANCID - Really Awesome New Cisco confIg Differ # # h3crancid # # h3clogin/h3crancid covers the following product ranges: # # * 3Com SuperStack 4 (from 'joint venture' with Huawei) # * H3C # * HP Networking ('A' & some 'E' portfolio, post-2010 3Com acquitision) # # They may also work with some Huawei equipment. # # https://sites.google.com/site/jrbinks/code/rancid/h3c # # Usage: h3crancid [-dltCV] [-f filename | hostname] # # You can modify the behaviour by changing the variables listed in # 'END-USER TWEAKS', below. # Notable changes from standard *rancid programs: # # * abstracted path to the 'tail' utility # * altered "cisco_cmds" to be "device_cmds" # * define and use $logincmd # * abstracted $rancid_type # TODO: # # It may be useful to pull common subroutines like the sorting ones into # a library for use by all the *rancid programs. # # abstract the comment-out char (i.e., '!' here and cisco, '#' on Juniper) # to a variable. # NOTES: # # * the dir commands need a user greater than at least level 1 on some # platforms ############################################################################ # END-USER TWEAKS # The login program to use. If no path is given, $PATH is searched: my $logincmd = "h3clogin"; #my $logincmd = "/usr/local/libexec/h3clogin"; # my $TAIL = "/usr/bin/tail"; # # Enable display of the FIB: my $display_fib = 1; # # Enable display of the routing table: my $display_iproutes = 1; # # Enable display of the vlans: my $display_vlan_all = 1; # # Enable display of STP root: my $display_stproot = 1; # # Enable display of transceiver interface: my $display_xcvr_int = 0; # END OF END-USER TWEAKS ############################################################################# my $rancid_type = 'h3c'; use Getopt::Std; getopts('dflt:CV'); if ($opt_V) { print "@PACKAGE@ @VERSION@\n"; exit(0); } $log = $opt_l; $debug = $opt_d; $file = $opt_f; $host = $ARGV[0]; $clean_run = 0; $found_end = 0; #$timeo = 90; # login command timeout in seconds $timeo = 20; # login command timeout in seconds my(@commandtable, %commands, @commands);# command lists my($aclsort) = ("ipsort"); # ACL sorting mode my($filter_commstr); # SNMP community string filtering my($filter_pwds); # password filtering mode # This routine is used to print out the router configuration sub ProcessHistory { my($new_hist_tag,$new_command,$command_string, at string)=(@_); if((($new_hist_tag ne $hist_tag) || ($new_command ne $command)) && scalar %history) { print eval "$command \%history"; undef %history; } if (($new_hist_tag) && ($new_command) && ($command_string)) { if ($history{$command_string}) { $history{$command_string} = "$history{$command_string}@string"; } else { $history{$command_string} = "@string"; } } elsif (($new_hist_tag) && ($new_command)) { $history{++$#history} = "@string"; } else { print "@string"; } $hist_tag = $new_hist_tag; $command = $new_command; 1; } sub numerically { $a <=> $b; } # This is a sort routine that will sort numerically on the # keys of a hash as if it were a normal array. sub keynsort { local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $key (sort numerically keys(%lines)) { $sorted_lines[$i] = $lines{$key}; $i++; } @sorted_lines; } # This is a sort routine that will sort on the # keys of a hash as if it were a normal array. sub keysort { local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $key (sort keys(%lines)) { $sorted_lines[$i] = $lines{$key}; $i++; } @sorted_lines; } # This is a sort routine that will sort on the # values of a hash as if it were a normal array. sub valsort{ local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $key (sort values %lines) { $sorted_lines[$i] = $key; $i++; } @sorted_lines; } # This is a numerical sort routine (ascending). sub numsort { local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $num (sort {$a <=> $b} keys %lines) { $sorted_lines[$i] = $lines{$num}; $i++; } @sorted_lines; } # This is a sort routine that will sort on the # ip address when the ip address is anywhere in # the strings. sub ipsort { local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $addr (sort sortbyipaddr keys %lines) { $sorted_lines[$i] = $lines{$addr}; $i++; } @sorted_lines; } # These two routines will sort based upon IP addresses sub ipaddrval { my(@a) = ($_[0] =~ m#^(\d+)\.(\d+)\.(\d+)\.(\d+)$#); $a[3] + 256 * ($a[2] + 256 * ($a[1] + 256 * $a[0])); } sub sortbyipaddr { &ipaddrval($a) <=> &ipaddrval($b); } # This is a sort routine that will sort on the # ip route when the ip route is anywhere in # the strings. sub iproutesort { local(%lines)=@_; local($i) = 0; local(@sorted_lines); foreach $iproute (sort sortbyiproute keys %lines) { $sorted_lines[$i] = $lines{$iproute}; $i++; } @sorted_lines; } # These two routines will sort based upon IP route sub iprouteval { my(@a) = ($_[0] =~ m#^(\d+)\.(\d+)\.(\d+)\.(\d+)/(\d+)$#); $a[4] + ($a[3] + 256 * ($a[2] + 256 * ($a[1] + 256 * $a[0]))); } sub sortbyiproute { &iprouteval($a) <=> &iprouteval($b); } sub filter_lines { my ($l) = (@_); # Filter out some ANSI crud as a result of us not being able to turn # off per-session terminal paging: #s/^\033\[42D +\033\[42D(.+)$/$1/; # hwlogin+mods: #s/\033\133\064\062\104\s*\033\133\064\062\104//g; $l =~ s/\033\133\064\062\104\s+\033\133\064\062\104//g; $l =~ s/\033\133\061\066\104\s+\033\133\061\066\104//g; $l =~ s/\033\133\064\062\104//g; $l =~ s/\033\133\061\062\104//g; $l =~ s/.*\[37D(.*)/$1/g; # MA5600 # Probably not needed: $l =~ s/\s*---- More ----\s*//; $l =~ s/^ //; # Comware7 $l =~ s/Synchronization is finished.//g; return $l; } sub DisplayFib { print STDERR " In DisplayFib: $_" if ($debug); chomp; # Display the command we're processing in the output: #s/^[\[<].*?[\]>]\a?\s?(.*)/\'$1\':/g; ProcessHistory("FIB","","","!\n! '$cmd':\n!\n"); while () { tr/\015//d; last if(/^\s*$prompt/); chomp; $_ = filter_lines($_); return(1) if ( /^\s+\^$/ || /% Too many parameters found at '\^' position/ || /% Unrecognized command found at '\^' position/ || /(% )?Wrong parameter found at '\^' position/ || /% Wrong device .+/ || /Permission denied\./ ); next if /^$/; next if /^Destination count: \d+ FIB entry count: \d+/; # Chop out some detail that changes over time (Comware 3): s/(\s+)TimeStamp\s+/$1/; # TimeStamp column heading ProcessHistory("FIB","","","! $_\n"); if ( m,Destination/Mask, ) { while () { tr/\015//d; last if(/^\s*$prompt/); chomp; $_ = filter_lines($_); # Chop out some detail that changes over time (Comware 3): s/(\s+)t\[\d+\]\s+/$1/; # TimeStamp data # "display fib" on comware7 shows host entries for things # learned via arp too. For a distribution router, that's all # the devices on subnets routed by it! # If we filter out all "UH" entries that are NOT InLoop, we # get acceptable output. # # So we want to keep: # # 0.0.0.0/32 127.0.0.1 UH InLoop0 Null # # but reject: # # 10.1.44.161/32 10.1.44.161 UH Vlan44 Null # # However I've a feeling that this is a problematic # solution, and some object to the notion that rancid # should be representing such potentially dynamic data in # the first place, which is why we created the # $display_fib flag. ($dest, $nexthop, $flag, $outint, $label) = split; next if ( $flag eq 'UH' && $outint !~ /InLoop/ ); ProcessHistory("FIB", "iproutesort", "$dest", "! $_\n"); } ProcessHistory("FIB", "", "", "!\n"); # return here to ensure that we don't keep swallowing the # next command's output by returning to the surrounding # while loop return(0); } } return(0); } sub DisplayIPRoutes { print STDERR " In DisplayIPRoutes: $_" if ($debug); chomp; # Display the command we're processing in the output: #s/^[\[<].*?[\]>]\a?\s?(.*)/\'$1\':/g; ProcessHistory("IPR","","","!\n! '$cmd':\n!\n"); while () { tr/\015//d; last if(/^\s*$prompt/); chomp; $_ = filter_lines($_); return(1) if ( /^\s+\^$/ || /% Too many parameters found at '\^' position/ || /% Unrecognized command found at '\^' position/ || /(% )?Wrong parameter found at '\^' position/ || /% Wrong device .+/ || /Permission denied\./ ); ProcessHistory("IPR","","","! $_\n"); if ( m,Destination/Mask, ) { my $lastkey = ""; my $lastspaces = ""; while () { tr/\015//d; last if(/^\s*$prompt/); chomp; $_ = filter_lines($_); # If the key is blank, indicating multiple nexthops for # a particular route, then we use the previous one if ( m/^\s+(.+)/ ) { $key = $lastkey; $line = $key . $lastspaces . $1; ProcessHistory("IPR", "iproutesort", "$key", "! $line\n"); # $lastkey and $lastspaces are retained in case # they are needed for an additional line } if ( m/^(\S+)(\s+).+/ ) { $key = $1; $line = $_; $spaces = $2; ProcessHistory("IPR", "iproutesort", "$key", "! $line\n"); $lastkey = $key; $lastspaces = $spaces; } } # This isn't quite right; for example, it messes up oddities like this: # ... # 10.1.2.84/30 OSPF 10 1010 10.159.2.53 Vlan3660 # 10.1.2.88/30 OSPF 10 1100 10.159.2.53 Vlan3660 # OSPF 10 1100 10.159.2.49 Vlan3661 # 10.1.2.92/30 OSPF 10 1015 10.159.2.53 Vlan3660 # ... ProcessHistory("IPR", "", "", "!\n"); # return here to ensure that we don't keep swallowing the # next command's output by returning to the surrounding # while loop return(0); } } return(0); } #sub DisplayTransInt { # print STDERR " In DisplayTransInt: $_" if ($debug); # # chomp; # # # Display the command we're processing in the output: # s/^[\[<].*?[\]>]\a?\s?(.*)/\'$1\':/g; # ProcessHistory("TRINT","","","! $_\n!\n"); # # while () { # tr/\015//d; # last if(/^\s*$prompt/); # chomp; # $_ = filter_lines($_); # return(1) if ( # /^\s+\^$/ || # /% Too many parameters found at '\^' position/ || # /% Unrecognized command found at '\^' position/ || # /(% )?Wrong parameter found at '\^' position/ || # /% Wrong device .+/ || # /Permission denied\./ # ); # # # ProcessHistory("TRINT","","","! $_\n"); # } # ProcessHistory("TRINT","","","!\n"); # return(0); #} #sub DisplayNTPStatus { # print STDERR " In DisplayNTPStatus: $_" if ($debug); # # chomp; # # # Display the command we're processing in the output: # s/^[\[<].*?[\]>]\a?\s?(.*)/\'$1\':/g; # ProcessHistory("NTP","","","! $_\n!\n"); # # while () { # tr/\015//d; # last if(/^\s*$prompt/); # chomp; # $_ = filter_lines($_); # return(1) if ( # /^\s+\^$/ || # /% Too many parameters found at '\^' position/ || # /% Unrecognized command found at '\^' position/ || # /(% ?)Wrong parameter found at '\^' position/ || # /% Wrong device .+/ || # /Permission denied\./ # ); # # next unless m/(Clock status|Clock stratum|Reference clock ID)/; # # ProcessHistory("NTP","","","! $_\n"); # } # ProcessHistory("NTP","","","!\n"); # return(0); #} ## This routine processes general output of "display" commands sub CommentOutput { print STDERR " In CommentOutput: $_" if ($debug); chomp; # Display the command we're processing in the output: #s/^[\[<].*?[\]>]\a?\s?(.*)/\'$1\':/g; #ProcessHistory("COMMENTS", "", "", "! $_\n!\n"); #(my $cmd = $_) =~ s/^[\[<].*?[\]>]\a?\s?(.*)/$1/g; ProcessHistory("COMMENTS", "", "", "!\n! '$cmd':\n!\n"); while () { tr/\015//d; # If we find the prompt, we're done # Ordinarily this matches from the start of the line, however # we've seen circumstances at least in Comware7 where the # prompt is preceded by whitespace, like so: # ^M^M ^Mdisplay boot-loader^M last if(/^\s*$prompt/); chomp; # filter out some junk $_ = filter_lines($_); # Some commands are not supported on some models or versions # of code. These lines simply remove the associated error # messages: return(1) if ( /^\s+\^$/ || /% Too many parameters found at '\^' position/ || /% Unrecognized command found at '\^' position/ || /(% )?Wrong parameter found at '\^' position/ || /% Wrong device .+/ || /Permission denied\./ ); # Now we skip or modify some lines from various commands to # remove irrelevant content, or to avoid insignificant diffs # 'display local-user': s/\s+Current AccessNum:.+$//; # 'display version': next if (/^(Uptime is \d|.+ [Uu]ptime is \d).+$/); # No longer necessary since skipping the whole Uptime line: # Mangle these lines: #s/(.*)[Uu]ptime.*.weeks.*.days*.*hours*.*minutes*(.*)/$1 $2/; #s/(.*)[Uu]ptime.*days*.*hours*.*minutes*(.*)/$1 $2/; # MSRs display a 'last reboot' time, but sometimes the seconds # vary by one or two (presumably internal rounding), so simply make # the last digit a fixed '0'. It would probably be safer to make # the last two digits a fixed '00'. # (Thx Alexander Belokopytov) s/(^Last reboot.+)\d$/${1}0/; # 'dir ' commands if ( $cmd =~ /^dir / ) { # First field is just an index number, chop it out s/^\s+\d+\s+(.+)/ $1/; # Remove filenames that are updated frequently next if ( /logfile\.log$/ || /lauth\.dat$/ || /ifindex\.dat$/ || /startup\.mdb$/ || /private-data\.txt$/ || /dhcpleases$/ || /.+ KB total \(.+ KB free/ || /.+ KB total \(.+ KB free/ || /\.trash/ ); } # 'display ospf brief'/'display ospf' if ( $cmd =~ 'display ospf( brief)?' ) { #next if (/^(Ospf is not enabled yet|Info: OSPF routing process is not enabled|The feature OSPF has not been enabled.).+$/); next if (/^\s+SPF (Computation|Scheduled|calculation) Count:.+$/i); } if ( $cmd eq 'display power' ) { next if (/^(\s+Input Power).+$/); } if ( $cmd eq 'display poe powersupply' ) { next if (/^(PSE Total Power Consumption|PSE Available Power|PSE Peak Value|PSE Average Value).+$/); } if ( $cmd eq 'display ntp-service status' ) { next unless m/(Clock status|Clock stratum|Reference clock ID)/i; } if ( $cmd eq 'display transceiver interface' ) { s/^(\S+ transceiver information:).+$/$1/; # filter random garbage s/^Error: The transceiver is absent.$/ No transceiver present./; s/^Error: The combo port is inactive.$/ Inactive combo port./; } # Add the processed lines to the output buffer: ProcessHistory("COMMENTS","","","! $_\n"); } # Add a blank comment line to the output buffer ProcessHistory("COMMENTS", "", "", "!\n"); return(0); } ## This routine processes a "display current" sub DisplayCurrent { print STDERR " In DisplayCurrent: $_" if ($debug); # We aren't chomping these lines while () { tr/\015//d; last if(/^\s*$prompt/); $_ = filter_lines($_); return(0) if ($found_end); # Filter out some sensitive data: if ( $filter_commstr && /^ ?(snmp-agent (usm-user|community (read|write)) )(\S+)/ ) { ProcessHistory("","","","! $1$'"); next; } if ( $filter_pwds >= 1 && /^ ?(password (?:simple|cipher) )(\S+)/ || /^ ?(super password( level \d)? (cipher|simple) )(\S+)/ || /^ ?(set authentication password (cipher|simple) )(\S+)/ || /^ ?(key (?:authentication|accounting) )(\S+)/ ) { ProcessHistory("","","","! $1$'"); next; } # Filter mac addresses dynamically added to config next if (/^ ?mac-address security.+$/); ProcessHistory("", "", "", "$_"); # end of config if (/^return/) { $found_end = 1; return(0); } } return(0); } # dummy function sub DoNothing {print STDOUT;} # Main ## Not all commands are supported on all models and code versions ## Not all of these should necessarily be included @commandtable = ( # Commands relating to the operating system/version: {'display version' => 'CommentOutput'}, {'display boot-loader' => 'CommentOutput'}, {'display startup' => 'CommentOutput'}, {'dir /all' => 'CommentOutput'}, {'dir /all unit2>flash:/' => 'CommentOutput'}, {'dir /all slot2#flash:/' => 'CommentOutput'}, {'dir /all unit3>flash:/' => 'CommentOutput'}, {'dir /all slot3#flash:/' => 'CommentOutput'}, {'dir /all unit4>flash:/' => 'CommentOutput'}, {'dir /all slot4#flash:/' => 'CommentOutput'}, {'dir /all unit5>flash:/' => 'CommentOutput'}, {'dir /all slot5#flash:/' => 'CommentOutput'}, {'dir /all unit6>flash:/' => 'CommentOutput'}, {'dir /all slot6#flash:/' => 'CommentOutput'}, {'dir /all unit7>flash:/' => 'CommentOutput'}, {'dir /all slot7#flash:/' => 'CommentOutput'}, {'dir /all unit8>flash:/' => 'CommentOutput'}, {'dir /all slot8#flash:/' => 'CommentOutput'}, # Commands relating to the hardware: {'display device' => 'CommentOutput'}, {'display device manuinfo' => 'CommentOutput'}, {'display fan' => 'CommentOutput'}, {'display power' => 'CommentOutput'}, {'display poe powersupply' => 'CommentOutput'}, {'display poe temperature-protection' => 'CommentOutput'}, {'display transceiver interface' => 'CommentOutput'}, # Commands relating to authentication: {'display cluster' => 'CommentOutput'}, {'display domain' => 'CommentOutput'}, {'display local-user' => 'CommentOutput'}, {'display password-control' => 'CommentOutput'}, {'display password-control super' => 'CommentOutput'}, {'display ssh server status' => 'CommentOutput'}, # Commands relating to system state: {'display irf' => 'CommentOutput'}, {'display xrn-fabric' => 'CommentOutput'}, {'display ftm topology-database' => 'CommentOutput'}, {'display fib' => 'DisplayFib'}, {'display ip routing-table' => 'DisplayIPRoutes'}, {'display ospf' => 'CommentOutput'}, {'display ospf brief' => 'CommentOutput'}, {'display vlan all' => 'CommentOutput'}, {'display lacp sys' => 'CommentOutput'}, {'display link-aggregation summary' => 'CommentOutput'}, {'display link-aggregation verbose' => 'CommentOutput'}, {'display mirror all' => 'CommentOutput'}, {'display ntp-service status' => 'CommentOutput'}, {'display stp root' => 'CommentOutput'}, # And the system config itself: {'display current-configuration' => 'DisplayCurrent'}, ); # Remove some commands from the comman table if the user has toggled the # options not to execute them if ($display_fib == 0) { grep(delete $$_{'display fib'} , @commandtable) }; if ($display_iproutes == 0) { grep(delete $$_{'display ip routing-table'} , @commandtable) }; if ($display_vlan_all == 0) { grep(delete $$_{'display vlan all'} , @commandtable) }; if ($display_stproot == 0) { grep(delete $$_{'display stp root'} , @commandtable) }; if ($display_xcvr_int == 0) { grep(delete $$_{'display transceiver interface'} , @commandtable) }; # Use an array to preserve the order of the commands and a hash for mapping # commands to the subroutine and track commands that have been completed. @commands = map(keys(%$_), @commandtable); %commands = map(%$_, @commandtable); $commandcnt = scalar(keys %commands); $device_cmds=join(";", at commands); $cmds_regexp=join("|", map quotemeta($_), @commands); if (length($host) == 0) { if ($file) { print(STDERR "Too few arguments: file name required\n"); exit(1); } else { print(STDERR "Too few arguments: host name required\n"); exit(1); } } if ($opt_C) { print "$logincmd -t $timeo -c\'$commandstr\' $host\n"; exit(0); } open(OUTPUT,">$host.new") || die "Can't open $host.new for writing: $!\n"; select(OUTPUT); # make OUTPUT unbuffered if debugging if ($debug) { $| = 1; } if ($file) { print STDERR "opening file $host\n" if ($debug); print STDOUT "opening file $host\n" if ($log); open(INPUT,"<$host") || die "open failed for $host: $!\n"; } else { print STDERR "executing $logincmd -t $timeo -c\"$device_cmds\" $host\n" if ($debug); print STDOUT "executing $logincmd -t $timeo -c\"$device_cmds\" $host\n" if ($log); if (defined($ENV{NOPIPE}) && $ENV{NOPIPE} =~ /^YES/i) { # system "$logincmd -noenable -t $timeo -c \"$device_cmds\" $host $host.raw 2>&1" || die "$logincmd failed for $host: $!\n"; # system "$logincmd -t $timeo -c \"$device_cmds\" $host $host.raw 2>&1" || die "$logincmd failed for $host: $!\n"; system "$logincmd -t $timeo -c \"$device_cmds\" $host $host.raw 2>&1" || die "$logincmd failed for $host: $!\n"; open(INPUT, "< $host.raw") || die "$logincmd failed for $host: $!\n"; } else { # open(INPUT,"$logincmd -noenable -t $timeo -c \"$device_cmds\" $host ) { tr/\015//d; # h3c: # Look for the command at the end of the output # if (/\#exit$/) { # if (/\#quit$/) { # h3c: if (/[\]>#]\a?\s*quit/) { # if (/^[\[<].*[\]>]\a?\s?quit/) { $clean_run=1; last; } if (/^Error:/) { print STDOUT ("$host $logincmd error: $_"); print STDERR ("$host $logincmd error: $_") if ($debug); $clean_run=0; last; } # while (/#\s*($cmds_regexp)\s*$/) { # h3c: while (/[\]>#]\a?\s*($cmds_regexp)\s*$/) { # while (/^[\[<].*[\]>]\a?\s*($cmds_regexp)\s*$/) { $cmd = $1; if (!defined($prompt)) { # h3c: # Extract the prompt: look for something not [ or < at the start # of the line, until either ] or > or # is reached: #$prompt = ($_ =~ /^([^#]+#)/)[0]; #$prompt =~ s/([][}{)(\\])/\\$1/g; #$prompt = ($_ =~ /^([^\]>]+[\]>]\007?)/)[0]; $prompt = ($_ =~ /^([^\]>#]+[\]>]\a?)/)[0]; $prompt =~ s/([][}{)(\\])/\\$1/g; print STDERR ("PROMPT MATCH: $prompt\n") if ($debug); } print STDERR ("HIT COMMAND:$_") if ($debug); if (! defined($commands{$cmd})) { print STDERR "$host: found unexpected command - \"$cmd\"\n"; $clean_run = 0; last TOP; } $rval = &{$commands{$cmd}}(*INPUT, *OUTPUT, $cmd); delete($commands{$cmd}); if ($rval == -1) { $clean_run = 0; last TOP; } } } print STDOUT "Done $logincmd: $_\n" if ($log); # Flush History ProcessHistory("","","",""); # Cleanup close(INPUT); close(OUTPUT); if (defined($ENV{NOPIPE}) && $ENV{NOPIPE} =~ /^YES/i) { unlink("$host.raw") if (! $debug); } printf(STDOUT "$host: clean_run=$clean_run found_end=$found_end\n") if ($debug); # check for completeness if (scalar(%commands) || !$clean_run || !$found_end) { if (scalar(keys %commands) eq $commandcnt) { printf(STDERR "$host: missed cmd(s): all commands\n"); } elsif (scalar(%commands)) { printf(STDOUT "$host: missed cmd(s): %s\n", join(',', keys(%commands))); printf(STDERR "$host: missed cmd(s): %s\n", join(',', keys(%commands))) if ($debug); } if (!$clean_run || !$found_end) { print STDOUT "$host: End of run not found\n"; print STDERR "$host: End of run not found\n" if ($debug); system("$TAIL -1 $host.new"); } unlink "$host.new" if (! $debug); } From christer.hemgren at gmail.com Fri Dec 15 12:10:02 2017 From: christer.hemgren at gmail.com (Christer Hemgren) Date: Fri, 15 Dec 2017 04:10:02 -0800 (PST) Subject: [rancid] Adding Cisco UCS Message-ID: <0ec90352-8485-4381-87ea-0c920cf4509d@googlegroups.com> Hi I like to add Cisco UCS device to my Rancid 3.1. I get this in the log after som try and error. **** Trying to get all of the configs. exec(ucsrancid) failed router manufacturer ciscoucs: No such file or directory *** Do I need or recommended to upgrade rancid? Regards Christer -------------- next part -------------- An HTML attachment was scrubbed... URL: From c.o.hopkins at gmail.com Fri Dec 15 15:45:54 2017 From: c.o.hopkins at gmail.com (Craig Hopkins) Date: Fri, 15 Dec 2017 15:45:54 +0000 Subject: [rancid] Issue with custom ports Message-ID: Hi, I've tried adding add method HOST {ssh:60022} to my config, but it's still connecting to HOST on port 22. Is there something special to this flag? Running rancid 3.6.2 Cheers, Craig -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Fri Dec 15 20:01:46 2017 From: heas at shrubbery.net (heasley) Date: Fri, 15 Dec 2017 20:01:46 +0000 Subject: [rancid] Issue with custom ports In-Reply-To: References: Message-ID: <20171215200145.GF55275@shrubbery.net> Fri, Dec 15, 2017 at 03:45:54PM +0000, Craig Hopkins: > Hi, > > I've tried adding > > add method HOST {ssh:60022} > > to my config, but it's still connecting to HOST on port 22. Is there > something special to this flag? > > Running rancid 3.6.2 which device type? does clogin -m HOST display the method you expect? From c.o.hopkins at gmail.com Wed Dec 20 11:28:07 2017 From: c.o.hopkins at gmail.com (Craig Hopkins) Date: Wed, 20 Dec 2017 11:28:07 +0000 Subject: [rancid] Issue with custom ports In-Reply-To: <20171215200145.GF55275@shrubbery.net> References: <20171215200145.GF55275@shrubbery.net> Message-ID: On 15 December 2017 at 20:01, heasley wrote: > Fri, Dec 15, 2017 at 03:45:54PM +0000, Craig Hopkins: > > Hi, > > > > I've tried adding > > > > add method HOST {ssh:60022} > > > > to my config, but it's still connecting to HOST on port 22. Is there > > something special to this flag? > > > > Running rancid 3.6.2 > > which device type? does clogin -m HOST display the method you expect? > HOST password:/var/lib/rancid/.cloginrc:924: HOST PASSWORD PASSWORD user:/var/lib/rancid/.cloginrc:923: HOST USERNAME method:/var/lib/rancid/.cloginrc:680: * ssh telnet method:/var/lib/rancid/.cloginrc:925: HOST ssh:60022 Is the first method preventing the second one being triggered? I really don't want to comment it out and disrupt other hosts. Line 680 is a global we put in for all subsequent devices. -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Wed Dec 20 15:17:10 2017 From: heas at shrubbery.net (heasley) Date: Wed, 20 Dec 2017 15:17:10 +0000 Subject: [rancid] Issue with custom ports In-Reply-To: References: <20171215200145.GF55275@shrubbery.net> Message-ID: <20171220151710.GF86475@shrubbery.net> Wed, Dec 20, 2017 at 11:28:07AM +0000, Craig Hopkins: > On 15 December 2017 at 20:01, heasley wrote: > > > Fri, Dec 15, 2017 at 03:45:54PM +0000, Craig Hopkins: > > > Hi, > > > > > > I've tried adding > > > > > > add method HOST {ssh:60022} > > > > > > to my config, but it's still connecting to HOST on port 22. Is there > > > something special to this flag? > > > > > > Running rancid 3.6.2 > > > > which device type? does clogin -m HOST display the method you expect? > > > > HOST > password:/var/lib/rancid/.cloginrc:924: HOST PASSWORD PASSWORD > user:/var/lib/rancid/.cloginrc:923: HOST USERNAME > method:/var/lib/rancid/.cloginrc:680: * ssh telnet > method:/var/lib/rancid/.cloginrc:925: HOST ssh:60022 > > Is the first method preventing the second one being triggered? I really yes. > don't want to comment it out and disrupt other hosts. Line 680 is a global > we put in for all subsequent devices. move the * to the end. From c.o.hopkins at gmail.com Wed Dec 20 15:24:07 2017 From: c.o.hopkins at gmail.com (Craig Hopkins) Date: Wed, 20 Dec 2017 15:24:07 +0000 Subject: [rancid] Issue with custom ports In-Reply-To: <20171220151710.GF86475@shrubbery.net> References: <20171215200145.GF55275@shrubbery.net> <20171220151710.GF86475@shrubbery.net> Message-ID: On 20 December 2017 at 15:17, heasley wrote: > Wed, Dec 20, 2017 at 11:28:07AM +0000, Craig Hopkins: > > On 15 December 2017 at 20:01, heasley wrote: > > > > > Fri, Dec 15, 2017 at 03:45:54PM +0000, Craig Hopkins: > > > > Hi, > > > > > > > > I've tried adding > > > > > > > > add method HOST {ssh:60022} > > > > > > > > to my config, but it's still connecting to HOST on port 22. Is there > > > > something special to this flag? > > > > > > > > Running rancid 3.6.2 > > > > > > which device type? does clogin -m HOST display the method you expect? > > > > > > > HOST > > password:/var/lib/rancid/.cloginrc:924: HOST PASSWORD PASSWORD > > user:/var/lib/rancid/.cloginrc:923: HOST USERNAME > > method:/var/lib/rancid/.cloginrc:680: * ssh telnet > > method:/var/lib/rancid/.cloginrc:925: HOST ssh:60022 > > > > Is the first method preventing the second one being triggered? I really > > yes. > > > don't want to comment it out and disrupt other hosts. Line 680 is a > global > > we put in for all subsequent devices. > > move the * to the end. > Ta, that fixed it -------------- next part -------------- An HTML attachment was scrubbed... URL: From weylin at bu.edu Tue Dec 26 04:39:09 2017 From: weylin at bu.edu (Piegorsch, Weylin William) Date: Tue, 26 Dec 2017 04:39:09 +0000 Subject: [rancid] is there scripts for 3com router In-Reply-To: <20171030083223.GB82867@shrubbery.net> References: <490FA8C6CC4CDA44A7D3E449D75BF1F75D78F4@exchanger.efellows.bg> <49383891-A44D-47CF-85A5-F18CEC0FB218@bu.edu> <20171030083223.GB82867@shrubbery.net> Message-ID: <993D67D2-9540-434F-A7F2-C66ECF6A3302@bu.edu> Would a script from v1 work in v3? That?s what we upgraded from; the old server was circa 2002 or so. Anyway, thanks for the SMC info; I?ll check that out. Our 3COMs are so old I doubt it (the oldest we have running were installed around 1990 I think, with further installations until sometime 1999 - 2002). But, it can?t hurt to check, maybe we can restore rancid?s service to some of them at least. weylin -----Original Message----- From: heasley Date: Monday, October 30, 2017 at 04:32 To: Weylin Piegorsch Cc: Adrian Dimitrov , "rancid-discuss at shrubbery.net" Subject: Re: [rancid] is there scripts for 3com router Thu, Oct 26, 2017 at 08:13:10PM +0000, Piegorsch, Weylin William: > There are no 3com scripts. My predecessor had configured an SNMP thing, but that stopped working when we upgraded to rancid v3. If you find one, let me know because I would love to use it. theres no reason that i can think of that a script from v2 would not work in v3. anyway, some SMC swtiches were marketed under a 3com name, so the smc device type may support it. > From: Adrian Dimitrov > Date: Thursday, October 26, 2017 at 06:57 > To: "rancid-discuss at shrubbery.net" > Subject: [rancid] is there scripts for 3com router > > Hello team , > > Hope all of you guys are doing well. I have my rancid set up working perfectly fine for a long time now. I am backing up a lot of different devices successfully, but now I have to back up ?3COM? router and I can?t find scripts for this type of device. > Is there someone who can help with this? > > Best Regards, > Adrian Dimitrov > System Administrator > [Fellows-Mark-RGB_Sign] > Direct line: ; Mobile: +359 876 7744 41; SIP URI (Telepresence): adrian.dimitrov at efellows.bg ; Website: http://www.efellows.bg; > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss From heas at shrubbery.net Wed Dec 27 19:02:16 2017 From: heas at shrubbery.net (heasley) Date: Wed, 27 Dec 2017 19:02:16 +0000 Subject: [rancid] is there scripts for 3com router In-Reply-To: <993D67D2-9540-434F-A7F2-C66ECF6A3302@bu.edu> References: <490FA8C6CC4CDA44A7D3E449D75BF1F75D78F4@exchanger.efellows.bg> <49383891-A44D-47CF-85A5-F18CEC0FB218@bu.edu> <20171030083223.GB82867@shrubbery.net> <993D67D2-9540-434F-A7F2-C66ECF6A3302@bu.edu> Message-ID: <20171227190216.GE45403@shrubbery.net> Tue, Dec 26, 2017 at 04:39:09AM +0000, Piegorsch, Weylin William: > Would a script from v1 work in v3? That?s what we upgraded from; the old server was circa 2002 or so. it should, if the login script hasn't changed in an incompatible way with the device. to use a v1 or v2 script in v3, the device type must be added to your rancid.types.conf; see an existing v2 entry in rancid.types.base, such as smc. > Anyway, thanks for the SMC info; I?ll check that out. Our 3COMs are so old I doubt it (the oldest we have running were installed around 1990 I think, with further installations until sometime 1999 - 2002). But, it can?t hurt to check, maybe we can restore rancid?s service to some of them at least. > > weylin > > -----Original Message----- > From: heasley > Date: Monday, October 30, 2017 at 04:32 > To: Weylin Piegorsch > Cc: Adrian Dimitrov , "rancid-discuss at shrubbery.net" > Subject: Re: [rancid] is there scripts for 3com router > > Thu, Oct 26, 2017 at 08:13:10PM +0000, Piegorsch, Weylin William: > > There are no 3com scripts. My predecessor had configured an SNMP thing, but that stopped working when we upgraded to rancid v3. If you find one, let me know because I would love to use it. > > theres no reason that i can think of that a script from v2 would not work in > v3. > > anyway, some SMC swtiches were marketed under a 3com name, so the smc device > type may support it. > > > From: Adrian Dimitrov > > Date: Thursday, October 26, 2017 at 06:57 > > To: "rancid-discuss at shrubbery.net" > > Subject: [rancid] is there scripts for 3com router > > > > Hello team , > > > > Hope all of you guys are doing well. I have my rancid set up working perfectly fine for a long time now. I am backing up a lot of different devices successfully, but now I have to back up ?3COM? router and I can?t find scripts for this type of device. > > Is there someone who can help with this? > > > > Best Regards, > > Adrian Dimitrov > > System Administrator > > [Fellows-Mark-RGB_Sign] > > Direct line: ; Mobile: +359 876 7744 41; SIP URI (Telepresence): adrian.dimitrov at efellows.bg ; Website: http://www.efellows.bg; > > > > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo/rancid-discuss > > > From azheramin at gmail.com Thu Dec 28 19:47:59 2017 From: azheramin at gmail.com (Azher) Date: Thu, 28 Dec 2017 11:47:59 -0800 Subject: [rancid] Enterasys Switches help Message-ID: Hi All, I have a large deployment of different Enterasys switches (S,K,B,C,D,7100). It seems rancid is not happy with these switches somehow. clogin to the same device successfully logs into the switch and gives prompt and I can type the commands. When trying "rancid-run -r cal3-n7", the log file throws this error: [rancid at rancid ~/var/logs]$ tail -f extreme.20171228.113653 starting: Thu Dec 28 11:36:53 PST 2017 Trying to get all of the configs. cal3-n7 xlogin error: Error: Unknown: "terminal" cal3-n7: missed cmd(s): show version,show config cal3-n7: End of run not found # ===================================== Getting missed routers: round 1. cal3-n7 xlogin error: Error: Unknown: "terminal" cal3-n7: missed cmd(s): show version,show config cal3-n7: End of run not found # All routers successfully completed. cvs diff: Diffing . cvs diff: Diffing configs cvs commit: Examining . cvs commit: Examining configs --------------- Here is the config section: [rancid at rancid ~/var/extreme]$ more router.db | grep cal3-n7 cal3-n7;enterasys;up # Extreme Switches add user cal3-n7 admin add autoenable cal3-n7 1 add password cal3-n7 xxxxxxxxxxxx add method cal3-n7 ssh I have gone through some of the scripts which are in the mailing list, tried them, but no luck. Any one has experience with Enterasys devices ? Any working scripts would greatly help. Thanks -Azher -------------- next part -------------- An HTML attachment was scrubbed... URL: From cgauthier at comscore.com Thu Dec 28 22:39:51 2017 From: cgauthier at comscore.com (Gauthier, Chris) Date: Thu, 28 Dec 2017 22:39:51 +0000 Subject: [rancid] Enterasys Switches help In-Reply-To: References: Message-ID: <8C552B28-B543-441B-8FF7-F47E3B8A51B0@comscore.com> I would take a look at the rancid types file to make sure it?s running the commands you need. It seems like it?s throwing up in the very beginning of its run. There are several emails in the list on how to get into a ?debugging? mode if you?re not already familiar. That will help completely isolate the issue. --Chris Chris Gauthier Senior Network Engineer | comScore, Inc. t +1 (503) 331-2704 | cgauthier at comscore.com 317 SW Alder Street, Suite 700 | Portland, OR 97204 United States comscore.com ???This e-mail (including any attachments) may contain information that is private, confidential, or protected by attorney-client or other privilege. If you received this e-mail in error, please delete it from your system and notify sender. From: Rancid-discuss on behalf of Azher Date: Thursday, December 28, 2017 at 2:26 PM To: "rancid-discuss at shrubbery.net" Subject: [rancid] Enterasys Switches help Hi All, I have a large deployment of different Enterasys switches (S,K,B,C,D,7100). It seems rancid is not happy with these switches somehow. clogin to the same device successfully logs into the switch and gives prompt and I can type the commands. When trying "rancid-run -r cal3-n7", the log file throws this error: [rancid at rancid ~/var/logs]$ tail -f extreme.20171228.113653 starting: Thu Dec 28 11:36:53 PST 2017 Trying to get all of the configs. cal3-n7 xlogin error: Error: Unknown: "terminal" cal3-n7: missed cmd(s): show version,show config cal3-n7: End of run not found # ===================================== Getting missed routers: round 1. cal3-n7 xlogin error: Error: Unknown: "terminal" cal3-n7: missed cmd(s): show version,show config cal3-n7: End of run not found # All routers successfully completed. cvs diff: Diffing . cvs diff: Diffing configs cvs commit: Examining . cvs commit: Examining configs --------------- Here is the config section: [rancid at rancid ~/var/extreme]$ more router.db | grep cal3-n7 cal3-n7;enterasys;up # Extreme Switches add user cal3-n7 admin add autoenable cal3-n7 1 add password cal3-n7 xxxxxxxxxxxx add method cal3-n7 ssh I have gone through some of the scripts which are in the mailing list, tried them, but no luck. Any one has experience with Enterasys devices ? Any working scripts would greatly help. Thanks -Azher -------------- next part -------------- An HTML attachment was scrubbed... URL: From azheramin at gmail.com Fri Dec 29 02:08:57 2017 From: azheramin at gmail.com (Azher) Date: Thu, 28 Dec 2017 18:08:57 -0800 Subject: [rancid] Enterasys Switches help In-Reply-To: <8C552B28-B543-441B-8FF7-F47E3B8A51B0@comscore.com> References: <8C552B28-B543-441B-8FF7-F47E3B8A51B0@comscore.com> Message-ID: Hi Chris, I added following lines in the "rancid.types.base " otherwise there is just a reference of enterasys to rivrancid. enterasys;script;xrancid enterasys;login;xlogin enterasys;command;enterasys::ShowVersion;show version enterasys;command;enterasys::WriteTerm;show config Running in debug mode: [rancid at rancid ~/etc]$ rancid -d -t enterasys cal3-n7 loadtype: device type enterasys loadtype: found device type enterasys in /opt/rancid/etc/rancid.types.base loadtype: undefined function in enterasys: enterasys::ShowVersion Couldn't load device type spec for enterasys I am not sure why it is complaining because xrancid does have this function defined: # This routine parses "show version" sub ShowVersion { print STDERR " In ShowVersion: $_" if ($debug); And in the main routine: # Main @commandtable = ( {'show version' => 'ShowVersion'}, ### {'show memory' => 'ShowMemory'}, ### {'show diag' => 'ShowDiag'}, ### {'show switch' => 'ShowSwitch'}, ### {'show slot' => 'ShowSlot'}, # way too confusing {'show configuration detail' => 'WriteTerm'}, {'show config' => 'WriteTerm'}, ); Trying rivrancid also complains about no commands: [rancid at rancid ~]$ rivrancid -d cal3-n7 executing rivlogin -t 90 -c"system show uptime;system show version;system show hardware;system show active-config" cal3-n7 cal3-n7: missed cmd(s): all commands cal3-n7: End of run not found cal3-n7: clean_run is false ! Thanks -Azher On Thu, Dec 28, 2017 at 2:39 PM, Gauthier, Chris wrote: > I would take a look at the rancid types file to make sure it?s running the > commands you need. It seems like it?s throwing up in the very beginning of > its run. > > > > There are several emails in the list on how to get into a ?debugging? mode > if you?re not already familiar. That will help completely isolate the > issue. > > > > --Chris > > > > > Chris Gauthier Senior Network Engineer | comScore, Inc. > t +1 *(503) 331-2704* <(503)%20331-2704> | > *cgauthier at comscore.com* > 317 > > SW > > Alder > > Street, > > Suite > > 700 > > | > > Portland, > > OR > > 97204 > > United > > States > > *comscore.com* > ???This e-mail (including any attachments) may contain information that is > private, confidential, or protected by attorney-client or other privilege. > If you received this e-mail in error, please delete it from your system and > notify sender. > > > *From: *Rancid-discuss on behalf > of Azher > *Date: *Thursday, December 28, 2017 at 2:26 PM > *To: *"rancid-discuss at shrubbery.net" > *Subject: *[rancid] Enterasys Switches help > > > > Hi All, > > I have a large deployment of different Enterasys switches > (S,K,B,C,D,7100). It seems rancid is not happy with these switches somehow. > > > > clogin to the same device successfully logs into the switch and gives > prompt and I can type the commands. > > > > When trying "rancid-run -r cal3-n7", the log file throws this error: > > > > [rancid at rancid ~/var/logs]$ tail -f extreme.20171228.113653 > > starting: Thu Dec 28 11:36:53 PST 2017 > > Trying to get all of the configs. > > cal3-n7 xlogin error: Error: Unknown: "terminal" > cal3-n7: missed cmd(s): show version,show config > cal3-n7: End of run not found > # > ===================================== > Getting missed routers: round 1. > cal3-n7 xlogin error: Error: Unknown: "terminal" > cal3-n7: missed cmd(s): show version,show config > cal3-n7: End of run not found > # > All routers successfully completed. > > cvs diff: Diffing . > cvs diff: Diffing configs > cvs commit: Examining . > cvs commit: Examining configs > --------------- > > Here is the config section: > [rancid at rancid ~/var/extreme]$ more router.db | grep cal3-n7 > cal3-n7;enterasys;up > > # Extreme Switches > add user cal3-n7 admin > add autoenable cal3-n7 1 > add password cal3-n7 xxxxxxxxxxxx > add method cal3-n7 ssh > > I have gone through some of the scripts which are in the mailing list, > tried them, but no luck. > > > > Any one has experience with Enterasys devices ? Any working scripts would > greatly help. > > > > > > Thanks > > -Azher > > > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: From azheramin at gmail.com Fri Dec 29 02:42:46 2017 From: azheramin at gmail.com (Azher) Date: Thu, 28 Dec 2017 18:42:46 -0800 Subject: [rancid] ASA-5585 Enable mode Message-ID: Hi All, Our current Cisco ASA devices "ASA5550" , 8.4(7)30, work fine with RANCID. Same config does not work for ASA-5585, 9.8(1). I am not sure why it is sending "admin" twice and later it sends "enable" at the prompt .... Any suggestions ? add user sslvpnb admin add password sslvpnb pass1 pass2 add autoenable sslvpnb 0 add method sslvpnb ssh [rancid at rancid ~]$ more var/asa/router.db sslvpn1;cisco;up sslvpn2;cisco;up sslvpna;cisco;up sslvpnb;cisco;up [rancid at rancid ~]$ clogin sslvpnb sslvpnb spawn ssh -c aes128-ctr,aes128-cbc,3des-cbc -x -l admin sslvpnb admin at sslvpnb's password: User admin logged in to sslvpnb Logins over the last 44 days: 29. Last login: 18:09:41 PST Dec 28 2017 from 68.181.191.19 Failed logins since the last login: 0. Last failed login: 06:47:32 PST Dec 28 2017 from 68.181.191.19 Type help or '?' for a list of available commands. sslvpnb> admin ^ ERROR: % Invalid input detected at '^' marker. Error: Unrecognized command, check your enable command sslvpnb> admin ^ ERROR: % Invalid input detected at '^' marker. sslvpnb> enable Password: Invalid password Password: Invalid password Password: Invalid password Access denied. sslvpnb> Thanks -Azher -------------- next part -------------- An HTML attachment was scrubbed... URL: From jhalim10 at gmail.com Fri Dec 29 06:50:01 2017 From: jhalim10 at gmail.com (Jimmy Lim) Date: Fri, 29 Dec 2017 14:50:01 +0800 Subject: [rancid] Coriant Groove platform support Message-ID: Hi all, Does rancid support Coriant Groove platform like G30? I don't see it in bin directory. Cheers, Jimmy -------------- next part -------------- An HTML attachment was scrubbed... URL: From nick at foobar.org Fri Dec 29 13:36:06 2017 From: nick at foobar.org (Nick Hilliard) Date: Fri, 29 Dec 2017 13:36:06 +0000 Subject: [rancid] Coriant Groove platform support In-Reply-To: References: Message-ID: <5A4644C6.1030907@foobar.org> Jimmy Lim wrote: > Does rancid support Coriant Groove platform like G30? I don't see it in > bin directory. no but it should be pretty easy to add. It's a straightforward ssh/no-enable login, with the following commands issued: set -f cli-config cli-columns 65535 show inventory show softwareload show config | display commands quit -f just make sure you're not using fp2.0.0 because that eats the CRS config lines when you use the "display commands" pipe (fixed in fp2.0.1) Nick From Charles.Brooks at hbcs.org Fri Dec 29 18:09:51 2017 From: Charles.Brooks at hbcs.org (Charles T. Brooks) Date: Fri, 29 Dec 2017 18:09:51 +0000 Subject: [rancid] Nexus 9K support in RANCiD 3.7 Message-ID: We recently outfitted a new office with Cisco Nexus 9000s. I monitor router and switch configuration changes enterprise-wide with custom built RPM packages of RANCiD on RHEL7 with git and gitweb. The 9Ks have a constantly changing file date on a subfolder that can't be controlled: - !Flash: logflash: 69632 Dec 29 01:37:09 2017 debug_logs/ + !Flash: logflash: 69632 Dec 29 02:42:52 2017 debug_logs/ The following code patch to v7 prevents this from generating hourly commits and emails. --- nxos.pm.in.orig 2017-12-29 13:02:01.347259970 -0500 +++ nxos.pm.in 2017-12-29 13:03:39.336922201 -0500 @@ -497,7 +497,7 @@ sub DirSlotN { /\s+vtp_debug(_old)?\.log$/ && next; next if (/BufferMonitor-1HourData/); - if (/ log\/$/) { + if (/[_ ]logs?\/$/) { # change # 8192 Jan 08 14:05:05 2015 log/ # to There's also a problem with a constantly fluctuating memory size value, but I haven't figured out how to fix that. Thank you Heasley and co-conspirators for a great tool! --Charlie ------------------ CONFIDENTIALITY NOTICE --------------- This message, including any attachments, is for the sole use of the intended recipient(s) and may contain privileged confidential information protected by law. Any unauthorized review, use, disclosure or distribution of this message is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of this message. ------------------ CONFIDENTIALITY NOTICE --------------- From david.chapman at pegasus.io Fri Dec 29 19:06:34 2017 From: david.chapman at pegasus.io (David Chapman) Date: Fri, 29 Dec 2017 19:06:34 +0000 Subject: [rancid] Nexus 9K support in RANCiD 3.7 Message-ID: <827FCE1D-FFD0-4B26-866F-111BC300F2D9@pegasus.io> I like this fix. I had a similar problem on NXOS based FC switches but opted to have it just not list out the logflash. On 12/29/17, 12:11 PM, "Rancid-discuss on behalf of Charles T. Brooks" wrote: We recently outfitted a new office with Cisco Nexus 9000s. I monitor router and switch configuration changes enterprise-wide with custom built RPM packages of RANCiD on RHEL7 with git and gitweb. The 9Ks have a constantly changing file date on a subfolder that can't be controlled: - !Flash: logflash: 69632 Dec 29 01:37:09 2017 debug_logs/ + !Flash: logflash: 69632 Dec 29 02:42:52 2017 debug_logs/ The following code patch to v7 prevents this from generating hourly commits and emails. --- nxos.pm.in.orig 2017-12-29 13:02:01.347259970 -0500 +++ nxos.pm.in 2017-12-29 13:03:39.336922201 -0500 @@ -497,7 +497,7 @@ sub DirSlotN { /\s+vtp_debug(_old)?\.log$/ && next; next if (/BufferMonitor-1HourData/); - if (/ log\/$/) { + if (/[_ ]logs?\/$/) { # change # 8192 Jan 08 14:05:05 2015 log/ # to There's also a problem with a constantly fluctuating memory size value, but I haven't figured out how to fix that. Thank you Heasley and co-conspirators for a great tool! --Charlie ------------------ CONFIDENTIALITY NOTICE --------------- This message, including any attachments, is for the sole use of the intended recipient(s) and may contain privileged confidential information protected by law. Any unauthorized review, use, disclosure or distribution of this message is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of this message. ------------------ CONFIDENTIALITY NOTICE --------------- _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo/rancid-discuss This email, including any attached files, may contain confidential and privileged information. If you received this communication in error, please contact the sender by reply e-mail and delete all copies of this message. From heas at shrubbery.net Fri Dec 29 20:36:21 2017 From: heas at shrubbery.net (heasley) Date: Fri, 29 Dec 2017 20:36:21 +0000 Subject: [rancid] Nexus 9K support in RANCiD 3.7 In-Reply-To: <20171229203512.DAFA7280F34@sea.shrubbery.net> Message-ID: <20171229203621.GJ73992@shrubbery.net> Fri, Dec 29, 2017 at 06:09:51PM +0000, Charles T. Brooks: > We recently outfitted a new office with Cisco Nexus 9000s. I monitor router and switch configuration changes enterprise-wide with custom built RPM packages of RANCiD on RHEL7 with git and gitweb. > > The 9Ks have a constantly changing file date on a subfolder that can't be controlled: > > - !Flash: logflash: 69632 Dec 29 01:37:09 2017 debug_logs/ > + !Flash: logflash: 69632 Dec 29 02:42:52 2017 debug_logs/ > > The following code patch to v7 prevents this from generating hourly commits and emails. > > --- nxos.pm.in.orig 2017-12-29 13:02:01.347259970 -0500 > +++ nxos.pm.in 2017-12-29 13:03:39.336922201 -0500 > @@ -497,7 +497,7 @@ sub DirSlotN { > /\s+vtp_debug(_old)?\.log$/ && next; > > next if (/BufferMonitor-1HourData/); > - if (/ log\/$/) { > + if (/[_ ]logs?\/$/) { > # change > # 8192 Jan 08 14:05:05 2015 log/ > # to > > There's also a problem with a constantly fluctuating memory size value, but I haven't figured out how to fix that. > > Thank you Heasley and co-conspirators for a great tool! > > --Charlie How about the following, so nothing is mistakingly caught. Index: nxos.pm.in =================================================================== --- nxos.pm.in (revision 3754) +++ nxos.pm.in (working copy) @@ -497,7 +497,8 @@ /\s+vtp_debug(_old)?\.log$/ && next; next if (/BufferMonitor-1HourData/); - if (/ log\/$/) { + + if (/( debug_logs| log)\/$/) { # change # 8192 Jan 08 14:05:05 2015 log/ # to From Charles.Brooks at hbcs.org Fri Dec 29 23:00:36 2017 From: Charles.Brooks at hbcs.org (Charles T. Brooks) Date: Fri, 29 Dec 2017 23:00:36 +0000 Subject: [rancid] Nexus 9K support in RANCiD 3.7 In-Reply-To: <20171229203621.GJ73992@shrubbery.net> References: <20171229203512.DAFA7280F34@sea.shrubbery.net> , <20171229203621.GJ73992@shrubbery.net> Message-ID: I like your patch better! You might want to normalize the style in the previous line while you're in there - "&& next" instead of "next if". I'm not a perl guru, though. --Charlie ________________________________________ From: heasley [heas at shrubbery.net] Sent: Friday, December 29, 2017 3:36 PM To: Charles T. Brooks Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Nexus 9K support in RANCiD 3.7 How about the following, so nothing is mistakingly caught. Index: nxos.pm.in =================================================================== --- nxos.pm.in (revision 3754) +++ nxos.pm.in (working copy) @@ -497,7 +497,8 @@ /\s+vtp_debug(_old)?\.log$/ && next; next if (/BufferMonitor-1HourData/); - if (/ log\/$/) { + + if (/( debug_logs| log)\/$/) { # change # 8192 Jan 08 14:05:05 2015 log/ # to ------------------ CONFIDENTIALITY NOTICE --------------- This message, including any attachments, is for the sole use of the intended recipient(s) and may contain privileged confidential information protected by law. Any unauthorized review, use, disclosure or distribution of this message is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of this message. ------------------ CONFIDENTIALITY NOTICE --------------- From heas at shrubbery.net Sat Dec 30 00:33:19 2017 From: heas at shrubbery.net (heasley) Date: Sat, 30 Dec 2017 00:33:19 +0000 Subject: [rancid] Nexus 9K support in RANCiD 3.7 In-Reply-To: References: <20171229203512.DAFA7280F34@sea.shrubbery.net> <20171229203621.GJ73992@shrubbery.net> Message-ID: <20171230003319.GA30708@shrubbery.net> Fri, Dec 29, 2017 at 11:00:36PM +0000, Charles T. Brooks: > I like your patch better! You might want to normalize the style in the previous line while you're in there - "&& next" instead of "next if". I'm not a perl guru, though. It is not the same as the other lines. this code block filters the size and timestamp, but leaves the name. I suppose all of those filters could be changed to this type of filter. open to opinion. From heas at shrubbery.net Sun Dec 31 21:19:27 2017 From: heas at shrubbery.net (heasley) Date: Sun, 31 Dec 2017 21:19:27 +0000 Subject: [rancid] ASA-5585 Enable mode In-Reply-To: References: Message-ID: <20171231211927.GB74060@shrubbery.net> Thu, Dec 28, 2017 at 06:42:46PM -0800, Azher: > Hi All, > > Our current Cisco ASA devices "ASA5550" , 8.4(7)30, work fine with RANCID. > > Same config does not work for ASA-5585, 9.8(1). I am not sure why it is > sending "admin" twice and later it sends "enable" at the prompt .... Any > suggestions ? > > add user sslvpnb admin > add password sslvpnb pass1 pass2 > add autoenable sslvpnb 0 > add method sslvpnb ssh > > [rancid at rancid ~]$ more var/asa/router.db > sslvpn1;cisco;up > sslvpn2;cisco;up > sslvpna;cisco;up > sslvpnb;cisco;up > > [rancid at rancid ~]$ clogin sslvpnb > sslvpnb > spawn ssh -c aes128-ctr,aes128-cbc,3des-cbc -x -l admin sslvpnb > admin at sslvpnb's password: > User admin logged in to sslvpnb > Logins over the last 44 days: 29. Last login: 18:09:41 PST Dec 28 2017 > from 68.181.191.19 > Failed logins since the last login: 0. Last failed login: 06:47:32 PST Dec > 28 2017 from 68.181.191.19 its sending admin again because it sees "login:" before a prompt. why is it displaying this? > Type help or '?' for a list of available commands. > sslvpnb> admin > ^ > ERROR: % Invalid input detected at '^' marker. > > Error: Unrecognized command, check your enable command > sslvpnb> admin > ^ > ERROR: % Invalid input detected at '^' marker. > sslvpnb> enable > Password: > Invalid password > Password: > Invalid password > Password: > Invalid password > Access denied. > sslvpnb> > > > Thanks > -Azher > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss