[rancid] Fortigate VDOMs
Adriaan Le Roux
adrianleroux at icloud.com
Sat Mar 9 06:29:01 UTC 2019
Hi Everyone
I have been a part of this rancid forum for years now and only doing my first post now.
BTW very nice email list to be a a part of.
I am busy inter grating rancid to backup Huawei devices.
Please can anyone shed some light as to where the best scripts are for these devices OLT”s and switches.
Your input would be greatly appreciated
Best Regards
Adrian le Roux
Sent from my iPhone
> On 09 Mar 2019, at 08:25, Linux Threads <linuxthreads at gmail.com> wrote:
>
> HI,
>
> Thank you for all your inputs seems like permissions on the FGT was the problem I am able to pull full-config now,
>
> Kind Regards
>
> Juan
>
>> On Fri, 8 Mar 2019 at 18:17, Ni Ne <nineoften at hotmail.com> wrote:
>> Check that the user account rancid is logging in as in .cloginrc has permissions to all VDOMs. You can test it yourself by logging to the firewall as that user and seeing what it sees.
>>
>> Using the "show full" mode should not be necessary to see all VDOMs. It just shows the default settings, still at their default values, that would normally be hidden.
>>
>> From: Rancid-discuss <rancid-discuss-bounces at shrubbery.net> on behalf of Linux Threads <linuxthreads at gmail.com>
>> Sent: Friday, March 8, 2019 5:43 AM
>> To: rancid-discuss at shrubbery.net
>> Subject: [rancid] Fortigate VDOMs
>>
>> Hi Rancid Community,
>>
>> I am backing up Fortigate devices with the new Debian Rancid ver. 3.9.1, however 1 FGT Device has no VDOMs and 2 more does not have VDOMs
>>
>> router.db one has to specify fortigate or fortigate-full depending on your needs thus when configuring fortigate-full no VDOM config is pulled, however when running show full-configuration is run on the affected units running VDOMs one can see the VDOM config with IPSECs and all,
>>
>> help would be apprenticed greatly
>>
>> extract /etc/rancid/rancid.types.base
>> # Fortinet Fortigate firewall
>> # Normal or FULL configuration
>> fortigate;script;rancid -t fortigate
>> fortigate;login;fnlogin
>> fortigate;timeout;90
>> fortigate;module;fortigate
>> fortigate;inloop;fortigate::inloop
>> fortigate;command;fortigate::GetSystem;get system status
>> fortigate;command;fortigate::GetConf;show
>> #
>> fortigate-full;script;rancid -t fortigate
>> fortigate-full;login;fnlogin
>> fortigate-full;timeout;90
>> fortigate-full;module;fortigate
>> fortigate-full;inloop;fortigate::inloop
>> fortigate-full;command;fortigate::GetSystem;get system status
>> fortigate-full;command;fortigate::GetConf;show full-configuration
>>
>> Regards
>>
>> Juan
>>
>>
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-discuss at shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20190309/35990402/attachment.html>
More information about the Rancid-discuss
mailing list