From cterpreau at gmail.com Mon Feb 4 11:41:38 2008 From: cterpreau at gmail.com (Christophe Terpreau) Date: Mon, 4 Feb 2008 12:41:38 +0100 Subject: [rancid] Error msg Message-ID: <8f7786aa0802040341u6ea0fcak4564a1462789c3c6@mail.gmail.com> Hello, i've this error msg now: starting: Mon Feb 4 12:21:43 CET 2008 + echo + [ -f /tmp/.Collegien.run.lock ] + trap rm -fr $LOCKFILE;exit 1 1 2 3 6 10 15 + touch /tmp/.Collegien.run.lock + [ 0 -eq 0 ] + control_rancid Collegien Trying to get all of the configs. /usr/local/libexec/rancid//control_rancid: par: not found ===================================== Getting missed routers: round 1. /usr/local/libexec/rancid//control_rancid: par: not found ===================================== Getting missed routers: round 2. /usr/local/libexec/rancid//control_rancid: par: not found ===================================== Getting missed routers: round 3. /usr/local/libexec/rancid//control_rancid: par: not found ===================================== Getting missed routers: round 4. /usr/local/libexec/rancid//control_rancid: par: not found cvs diff: Diffing . cvs diff: Diffing configs cvs commit: Examining . cvs commit: Examining configs + rm -f /tmp/.Collegien.run.lock + trap 1 2 3 6 10 15 + echo + date + echo ending: Mon Feb 4 12:21:43 CET 2008 ending: Mon Feb 4 12:21:43 CET 2008o Can someone knows what it means. Many thx. From cedric at prolocation.net Mon Feb 4 15:39:55 2008 From: cedric at prolocation.net (Cedric Both) Date: Mon, 4 Feb 2008 16:39:55 +0100 Subject: [rancid] HP 5300/5400/3500 TIMEOUT reached error with hlogin Message-ID: <033e01c86744$32749f80$975dde80$@net> Hi All, I'm having troubles with hlogin and the HP 5300/5400/3500 series. I've applied the patch that I found in the mailinglist from last january 2008 to hlogin.in, but it still isn't working. when I do: /usr/local/rancid/bin/hlogin -noenable -c "show version" I go throug the username and password promt, But it hangs on the normal prompt, and after a few seconds I get a timeout error. Here is the output: [rancid@ infra10 ~]$ /usr/local/rancid/bin/hlogin -noenable -c "show version; exit" 192.168.244.2 192.168.244.2 spawn hpuifilter -- telnet 192.168.244.2 Trying 192.168.244.2... Connected to 192.168.244.2. Escape character is '^]'. ProCurve J8697A Switch 5406zl Software revision K.12.43 Copyright (C) 1991-2007 Hewlett-Packard Co. All Rights Reserved. RESTRICTED RIGHTS LEGEND Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subdivision (b) (3) (ii) of the Rights in Technical Data and Computer Software clause at 52.227-7013. HEWLETT-PACKARD COMPANY, 3000 Hanover St., Palo Alto, CA 94303 We'd like to keep you up to date about: * Software feature updates * New product announcements * Special events Please register your products now at: www.ProCurve.com Press any key to continuePassword: MER-Switch# Error: TIMEOUT reached I think it's because the no paging option does not work. Any input on this problem ? Kind regards, Cedric Both Prolocation B.V. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080204/98fe2b8b/attachment.html From gregoryzill at solutionary.com Wed Feb 6 15:44:45 2008 From: gregoryzill at solutionary.com (Gregory W Zill) Date: Wed, 06 Feb 2008 09:44:45 -0600 Subject: [rancid] Cisco ASA SSM Module In-Reply-To: <033e01c86744$32749f80$975dde80$@net> References: <033e01c86744$32749f80$975dde80$@net> Message-ID: <1202312685.17678.55.camel@oddjob.corp.solutionary.com> Has anyone adapted the "cisco" transport to dig into the SSM modules within a 5500 chassis? I am adding more and more ASA to rancid and would like to add this functionality. Thanks in advance for any pointers. -- gregory w zill, mba, cissp Information Security Engineer Managed Services Team ----------------------------- Solutionary, Inc. Making Security Manageable v: 402-361-3066 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080206/1d895312/attachment.bin From joaje at dongenergy.dk Wed Feb 6 16:48:44 2008 From: joaje at dongenergy.dk (Joachim Jerberg Jensen) Date: Wed, 6 Feb 2008 17:48:44 +0100 Subject: [rancid] Re: Failure with Extreme XOS 12.x In-Reply-To: <36F7365E-8586-439D-844B-AB294FFFEC4F@teun.tv> References: <474C4187.8010000@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DA761@CLU01EX.de-prod.dk> <474D3507.8060804@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DAD59@CLU01EX.de-prod.dk> <36F7365E-8586-439D-844B-AB294FFFEC4F@teun.tv> Message-ID: <8DBE4A01414BDD409232EF0C48A87E1B01FA7E81@CLU01EX.de-prod.dk> > From: Teun Vink [mailto:teun at teun.tv] > Sent: Wednesday, February 06, 2008 4:11 PM > > Hi, > > I'm experiencing similar problems on our X450's running XOS 12. I've > tried the patch mentioned above, but still the rancid runs don't end. > > Was this patch all you did? If so, could you please share your xrancid > file with me to see what I did wrong? I have uploaded clogin and xrancid files here: http://www.jerberg.dk/XOS-patch/ I don't use it anymore, as we have got EPICenter up and running. But as far as I remember it will fail the two first logins, and 3. will succeed. As It was a temporarily solution, I didn't want to spend time to find out why. The clogin only works with Extreme, so you might have an "Extreme version" of clogin, and a "non-Extreme version" if you have a mixed environment. I did it that way.. I know it's nasty, but it worked for me until we got the EPICenter. Good luck Cheers Joachim Jerberg Jensen > > Thanks, > > Teun From rancid at gheek.net Wed Feb 6 18:57:47 2008 From: rancid at gheek.net (Lance Vermilion) Date: Wed, 6 Feb 2008 11:57:47 -0700 Subject: [rancid] Re: Cisco ASA SSM Module In-Reply-To: <1202312685.17678.55.camel@oddjob.corp.solutionary.com> References: <033e01c86744$32749f80$975dde80$@net> <1202312685.17678.55.camel@oddjob.corp.solutionary.com> Message-ID: <8423e7bb0802061057i66802538oc6116a3caba556b9@mail.gmail.com> There is a IPS module script out there. I have not yet had time to test it and see if it works. -Lance On 2/6/08, Gregory W Zill wrote: > Has anyone adapted the "cisco" transport to dig into the SSM modules > within a 5500 chassis? I am adding more and more ASA to rancid and would > like to add this functionality. Thanks in advance for any pointers. > -- > gregory w zill, mba, cissp > Information Security Engineer > Managed Services Team > ----------------------------- > Solutionary, Inc. > Making Security Manageable > v: 402-361-3066 > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > From teun at teun.tv Wed Feb 6 15:11:17 2008 From: teun at teun.tv (Teun Vink) Date: Wed, 6 Feb 2008 16:11:17 +0100 Subject: [rancid] Re: Failure with Extreme XOS 12.x In-Reply-To: <8DBE4A01414BDD409232EF0C48A87E1B019DAD59@CLU01EX.de-prod.dk> References: <474C4187.8010000@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DA761@CLU01EX.de-prod.dk> <474D3507.8060804@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DAD59@CLU01EX.de-prod.dk> Message-ID: <36F7365E-8586-439D-844B-AB294FFFEC4F@teun.tv> On Nov 29, 2007, at 9:27 AM, Joachim Jerberg Jensen wrote: [...] >> xrancid calls clogin - clogin logs in as an admin user and then >> tries to >> run an 'enable' cmd. Off course this returns not the expected results >> and the rancid script times out... >> >> Log output: >> Trying to get all of the configs. >> couldn't compile regular expression pattern: quantifier operand >> invalid >> while executing >> "expect -nobrace -re {* tln-ch-zr([^#>\r\n]+)?[#>](\([^)\r\n]+\))?} >> {} >> -re {[ >> ^M]+} { exp_continue }" >> invoked from within >> "expect { >> -re $reprompt {} >> -re "\[\n\r]+" { exp_continue } >> }" >> (procedure "run_commands" line 23) >> invoked from within >> "run_commands $prompt $command" >> ("foreach" body line 150) >> invoked from within >> "foreach router [lrange $argv $i end] { >> set router [string tolower $router] >> # attempt at platform switching. >> set platform "" >> send_user ..." >> (file "/home/rancid/bin/clogin" line 712)^M >> x.x.x.x: missed cmd(s): show configuration detail,show slot,show >> configuration,show version,show diag,show memory,show switch > > I think this is the problem: > >> x.x.x.x: End of run not found > > It doesn't detect when the configuration is finished, so the > $found_end = 1; > never becomes set. > > Try to edit xrancid: > > -- > # catch anything that wasnt match above. > ProcessHistory("COMMENTS","keysort","H0","$_"); > # end of config > #if (/^# End of configuration file/i) { > ++ if (/^# Module vrrp configuration./i) { > printf STDERR " End WriteTerm: $_" if ($debug); > $found_end = 1; > return(0); > -- > This will set $found_end=1 when it detects the part where VRRP is > configured, which is the last part of the configuration. > It's a nasty hack, but it should work. > Hi, I'm experiencing similar problems on our X450's running XOS 12. I've tried the patch mentioned above, but still the rancid runs don't end. Was this patch all you did? If so, could you please share your xrancid file with me to see what I did wrong? Thanks, Teun From adudek16 at gmail.com Wed Feb 6 20:43:46 2008 From: adudek16 at gmail.com (Aaron Dudek) Date: Wed, 6 Feb 2008 15:43:46 -0500 Subject: [rancid] Previous configuration information... Message-ID: <96ba9bee0802061243j5fae59eboa5b297083494e77e@mail.gmail.com> How can I import a file that is in cvs format (routername,v) into rancid? I'm migrating a configuration from sccs and would like to get the historic info into rancid. TIA Aaron -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080206/3d2d4aa0/attachment.html From adudek16 at gmail.com Thu Feb 7 04:18:03 2008 From: adudek16 at gmail.com (Aaron Dudek) Date: Wed, 6 Feb 2008 23:18:03 -0500 Subject: [rancid] Re: Previous configuration information... In-Reply-To: <96ba9bee0802061243j5fae59eboa5b297083494e77e@mail.gmail.com> References: <96ba9bee0802061243j5fae59eboa5b297083494e77e@mail.gmail.com> Message-ID: <96ba9bee0802062018u68f5a198ndb0254401e3ea5f6@mail.gmail.com> How can I import a file that is in cvs format (routername,v) into rancid? I'm migrating a configuration from sccs and would like to get the historic info into rancid. TIA Aaron -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080206/92e24b69/attachment.html From sean at craigslist.org Thu Feb 7 07:53:10 2008 From: sean at craigslist.org (Sean Knox) Date: Wed, 06 Feb 2008 23:53:10 -0800 Subject: [rancid] Re: Previous configuration information... In-Reply-To: <96ba9bee0802062018u68f5a198ndb0254401e3ea5f6@mail.gmail.com> References: <96ba9bee0802061243j5fae59eboa5b297083494e77e@mail.gmail.com> <96ba9bee0802062018u68f5a198ndb0254401e3ea5f6@mail.gmail.com> Message-ID: <47AAB8E6.1040702@craigslist.org> Aaron Dudek wrote: > How can I import a file that is in cvs format (routername,v) into > rancid? I'm migrating a configuration from sccs and would like to get > the historic info into rancid. Hey Aaron, Check out the RANCID FAQ-- there's a bit in there about renaming files that I'd think do the trick in your case. Look for: Q. I am renaming a device but would like to retain the history in CVS. How is this done? http://shrubbery.net/rancid/FAQ sk From adudek16 at gmail.com Thu Feb 7 15:37:05 2008 From: adudek16 at gmail.com (Aaron Dudek) Date: Thu, 7 Feb 2008 10:37:05 -0500 Subject: [rancid] Re: Previous configuration information... In-Reply-To: <47AAB8E6.1040702@craigslist.org> References: <96ba9bee0802061243j5fae59eboa5b297083494e77e@mail.gmail.com> <96ba9bee0802062018u68f5a198ndb0254401e3ea5f6@mail.gmail.com> <47AAB8E6.1040702@craigslist.org> Message-ID: <96ba9bee0802070737s63171e4ane198abf31596567e@mail.gmail.com> I will check it out. I'm not sure how I overlooked that. It does look like it might work. Thanks Aaron On Feb 7, 2008 2:53 AM, Sean Knox wrote: > Aaron Dudek wrote: > > How can I import a file that is in cvs format (routername,v) into > > rancid? I'm migrating a configuration from sccs and would like to get > > the historic info into rancid. > > Hey Aaron, > > Check out the RANCID FAQ-- there's a bit in there about renaming files > that I'd think do the trick in your case. Look for: > > Q. I am renaming a device but would like to retain the history in CVS. > How is this done? > > http://shrubbery.net/rancid/FAQ > > sk > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080207/118c8bc8/attachment.html From ghankins at mindspring.com Thu Feb 7 21:54:34 2008 From: ghankins at mindspring.com (Greg Hankins) Date: Thu, 7 Feb 2008 16:54:34 -0500 Subject: [rancid] New Force10 f10rancid.in for FTOS devices Message-ID: <20080207215434.GA1491@force10networks.com> A new f10rancid module that supports all Force10 devices running FTOS is now available. John Heasley did most of the work, and I added some tweaks for specific devices. I tested this version on the E-Series, C-Series and S-Series running FTOS 7.5.1 and 7.6.1 but it should work fine on older FTOS versions too. Devices running SFTOS are not supported. It will be included in an upcoming release but in the meantime you can grab it here: http://www.twoguys.org/~gregh/software/f10rancid.in . Then move it to the bin directory. Greg -- Greg Hankins From dave at kailea.com Fri Feb 8 02:13:28 2008 From: dave at kailea.com (David Stubblefield) Date: Thu, 7 Feb 2008 18:13:28 -0800 Subject: [rancid] Looking for F5 files Message-ID: Greetings, I was looking to backup F5 configs and found the following thread in which it looks like this was done and 3 emails were attached. Hoping someone has those files and can send them to me. Thanks in advance. -- Original Thread-- http://www.shrubbery.net/pipermail/rancid-discuss/2007-July/002352.html Lance, Thanks a lot for all your help. Pretty much you did all the work while I watched what you are doing :-).. Attached are cleaned up files. In f5rancid file, I have left some basic functions(non platform specific) just in case we expand this script to do a lot more than just "b list" output. In rancid-fe, we defined a new device type "f5", f5login was copied from clogin and remarked some "term length" statements we don't need on F5. All 3 files are attached and working great. Please be aware, we are not parsing anything at all. All its doing is basic function of running "b list" command and capturing its output. As I expand more on this, I will be sure to share with the audience here. Again, thanks a lot for all your help today. Regards, Sam -------------------------- Thanks, -Dave -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080207/e2cb1a1b/attachment.html From rancid at gheek.net Fri Feb 8 04:17:58 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 7 Feb 2008 21:17:58 -0700 Subject: [rancid] Re: Looking for F5 files In-Reply-To: References: Message-ID: <8423e7bb0802072017v7877dc18h16f22705a4ef6ba1@mail.gmail.com> David, Here is the original thread that I added the files too. http://www.shrubbery.net/pipermail/rancid-discuss/2008-January/002675.html Also here is the thread where I said I repackaged the F5 scripts in a Rancid distribution. http://www.shrubbery.net/pipermail/rancid-discuss/2008-January/002697.html http://www.shrubbery.net/pipermail/rancid-discuss/2008-January/002707.html Pretty soon those files will be moving to a wordpress blog so they will be searchable on gheek.net along with a lot more. Let me know if you need help. -Lance On 2/7/08, David Stubblefield wrote: > > Greetings, > > I was looking to backup F5 configs and found the following thread in which > it looks like this was done and 3 emails were attached. Hoping someone has > those files and can send them to me. Thanks in advance. > > -- Original Thread-- > http://www.shrubbery.net/pipermail/rancid-discuss/2007-July/002352.html > > Lance, > > Thanks a lot for all your help. Pretty much you did all the work while I > watched what you are doing :-).. > > Attached are cleaned up files. In f5rancid file, I have left some basic > functions(non platform specific) just in case we expand this script to > do a lot more than just "b list" output. In rancid-fe, we defined a new > device type "f5", f5login was copied from clogin and remarked some "term > length" statements we don't need on F5. > > All 3 files are attached and working great. Please be aware, we are not > parsing anything at all. All its doing is basic function of running "b > list" command and capturing its output. As I expand more on this, I will > be sure to share with the audience here. > > Again, thanks a lot for all your help today. > > Regards, > Sam > > -------------------------- > Thanks, > -Dave > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From teun at teun.tv Fri Feb 8 08:46:21 2008 From: teun at teun.tv (Teun Vink) Date: Fri, 8 Feb 2008 09:46:21 +0100 Subject: [rancid] Re: Failure with Extreme XOS 12.x In-Reply-To: <8DBE4A01414BDD409232EF0C48A87E1B01FA7E81@CLU01EX.de-prod.dk> References: <474C4187.8010000@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DA761@CLU01EX.de-prod.dk> <474D3507.8060804@gmx.net> <8DBE4A01414BDD409232EF0C48A87E1B019DAD59@CLU01EX.de-prod.dk> <36F7365E-8586-439D-844B-AB294FFFEC4F@teun.tv> <8DBE4A01414BDD409232EF0C48A87E1B01FA7E81@CLU01EX.de-prod.dk> Message-ID: On Feb 6, 2008, at 5:48 PM, Joachim Jerberg Jensen wrote: >> From: Teun Vink [mailto:teun at teun.tv] >> Sent: Wednesday, February 06, 2008 4:11 PM >> >> Hi, >> >> I'm experiencing similar problems on our X450's running XOS 12. I've >> tried the patch mentioned above, but still the rancid runs don't end. >> >> Was this patch all you did? If so, could you please share your >> xrancid >> file with me to see what I did wrong? > > I have uploaded clogin and xrancid files here: > > http://www.jerberg.dk/XOS-patch/ > > I don't use it anymore, as we have got EPICenter up and running. > But as far as I remember it will fail the two first logins, and 3. > will succeed. > As It was a temporarily solution, I didn't want to spend time to > find out why. > > The clogin only works with Extreme, so you might have an "Extreme > version" of clogin, > and a "non-Extreme version" if you have a mixed environment. I did > it that way.. > > I know it's nasty, but it worked for me until we got the EPICenter. Thanks. I still have some issues (end of runs still aren't detected nicely), but this might be of some help! Teun From eravin at panix.com Tue Feb 12 02:48:00 2008 From: eravin at panix.com (Ed Ravin) Date: Mon, 11 Feb 2008 21:48:00 -0500 Subject: [rancid] Netopia support - trancid / tlogin Message-ID: <20080212024800.GA29980@panix.com> I've dusted off the Netopia scripts submitted by Jan Czmok back in December 2003 to the rancid-discuss list. After a few minor adjustments, they seem to work fine for the two routers I tested, a Netopia R7200 (SDSL) and a Netopia 4622XL (T1). I then added a line to rancid-fe to map "netopia" to "trancid", and that was it. The scripts should work for any Netopia router with firmware that supports the "control-N" command to drop out of the Playskool interface into the command line, and supports the "show config" command. That should be nearly all their routers, unless the firmware is more than 4 or 5 years old. Thanks again to Jan for submitting this to the list! Tarball attached. -------------- next part -------------- A non-text attachment was scrubbed... Name: netopia.rancid.tgz Type: application/x-tar-gz Size: 6227 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080211/ebf6b43c/attachment.bin From ssnodgra at pheran.com Wed Feb 13 17:16:52 2008 From: ssnodgra at pheran.com (Steve Snodgrass) Date: Wed, 13 Feb 2008 12:16:52 -0500 Subject: [rancid] Rancid 2.3.2a8 Message-ID: <20080213171652.GA20573@narn.pheran.com> I just noticed that version 2.3.2a8 is on the FTP site and is a few days old, but there's no mention of this version on the web site or mailing list. It looks legitimate based on the contents, but it would be nice to see a confirmation. Thanks. -- Steve Snodgrass * ssnodgra at pheran.com * Network/Security/Linux/Perl Geek "If you want to be somebody else, change your mind." -Sister Hazel From heas at shrubbery.net Wed Feb 13 18:16:59 2008 From: heas at shrubbery.net (john heasley) Date: Wed, 13 Feb 2008 10:16:59 -0800 Subject: [rancid] Re: Rancid 2.3.2a8 In-Reply-To: <20080213171652.GA20573@narn.pheran.com> References: <20080213171652.GA20573@narn.pheran.com> Message-ID: <20080213181659.GB17334@shrubbery.net> Confirmed. But, shortly after creating it I decided I wanted some other changes included. So, expect a 2.3.2a9 soon. I'm trying to get a number of things from the list & private-mail cleaned-up/included. Wed, Feb 13, 2008 at 12:16:52PM -0500, Steve Snodgrass: > I just noticed that version 2.3.2a8 is on the FTP site and is a few days > old, but there's no mention of this version on the web site or mailing list. > It looks legitimate based on the contents, but it would be nice to see a > confirmation. Thanks. > > -- > Steve Snodgrass * ssnodgra at pheran.com * Network/Security/Linux/Perl Geek > "If you want to be somebody else, change your mind." -Sister Hazel > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From nduda at VistaPrint.com Wed Feb 13 18:34:40 2008 From: nduda at VistaPrint.com (Nick Duda) Date: Wed, 13 Feb 2008 13:34:40 -0500 Subject: [rancid] move away 'router' it is in the way In-Reply-To: <20080213181659.GB17334@shrubbery.net> References: <20080213171652.GA20573@narn.pheran.com> <20080213181659.GB17334@shrubbery.net> Message-ID: In my logs, I see: cvs status: move away `ip address`; it is in the way What does this mean? I don't get updates from that device anymore. - Nick From nduda at VistaPrint.com Wed Feb 13 18:56:34 2008 From: nduda at VistaPrint.com (Nick Duda) Date: Wed, 13 Feb 2008 13:56:34 -0500 Subject: [rancid] Re: move away 'router' it is in the way In-Reply-To: <20080213185359.GH17334@shrubbery.net> References: <20080213171652.GA20573@narn.pheran.com> <20080213181659.GB17334@shrubbery.net> <20080213185359.GH17334@shrubbery.net> Message-ID: Thanks, Mike Ashcraft emailed me as well. Sorry I didn't check the archives. Rancid has never broke, always running strong. Issue fixed -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Wednesday, February 13, 2008 1:54 PM To: Nick Duda Subject: Re: [rancid] move away 'router' it is in the way someone or somehow the cvs file didnt get created. cd group/configs rm ip address cvs update if ip address reappears you're done. else remove it ffrom router.db, run rancid-run group, put it back in router.db. Wed, Feb 13, 2008 at 01:34:40PM -0500, Nick Duda: > In my logs, I see: > > cvs status: move away `ip address`; it is in the way > > What does this mean? I don't get updates from that device anymore. > > - Nick > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From justin at justinshore.com Thu Feb 14 18:54:44 2008 From: justin at justinshore.com (Justin Shore) Date: Thu, 14 Feb 2008 12:54:44 -0600 Subject: [rancid] Device name change and group change Message-ID: <47B48E74.8050109@justinshore.com> Is there an easy way to change a device's name and move it to a new group in CVS? I define RANCID groups by POP. I just moved a router from one POP to another and am also changing its name. I'd like to not lose all of the old CVS history if I could help it. Suggestions? Thanks Justin From heas at shrubbery.net Thu Feb 14 19:01:44 2008 From: heas at shrubbery.net (john heasley) Date: Thu, 14 Feb 2008 11:01:44 -0800 Subject: [rancid] Re: Device name change and group change In-Reply-To: <47B48E74.8050109@justinshore.com> References: <47B48E74.8050109@justinshore.com> Message-ID: <20080214190144.GE1470@shrubbery.net> cd ~rancid (or /var/rancid or wherever your repository resides) mv CVS/group/configs/name,v CVS/newgroup/configs/newname,v (cd group; cvs update) (cd newgroup; cvs update) edit the router.db files Thu, Feb 14, 2008 at 12:54:44PM -0600, Justin Shore: > Is there an easy way to change a device's name and move it to a new > group in CVS? I define RANCID groups by POP. I just moved a router > from one POP to another and am also changing its name. I'd like to not > lose all of the old CVS history if I could help it. Suggestions? > > Thanks > Justin > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From rancid at gheek.net Thu Feb 14 19:21:13 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 14 Feb 2008 12:21:13 -0700 Subject: [rancid] Re: Device name change and group change In-Reply-To: <20080214190144.GE1470@shrubbery.net> References: <47B48E74.8050109@justinshore.com> <20080214190144.GE1470@shrubbery.net> Message-ID: <8423e7bb0802141121s4e5b8898p128a5157379a1519@mail.gmail.com> This info in priceless. On 2/14/08, john heasley wrote: > cd ~rancid (or /var/rancid or wherever your repository resides) > mv CVS/group/configs/name,v CVS/newgroup/configs/newname,v > (cd group; cvs update) > (cd newgroup; cvs update) > edit the router.db files > > Thu, Feb 14, 2008 at 12:54:44PM -0600, Justin Shore: > > Is there an easy way to change a device's name and move it to a new > > group in CVS? I define RANCID groups by POP. I just moved a router > > from one POP to another and am also changing its name. I'd like to not > > lose all of the old CVS history if I could help it. Suggestions? > > > > Thanks > > Justin > > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From rancid at gheek.net Thu Feb 14 19:21:52 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 14 Feb 2008 12:21:52 -0700 Subject: [rancid] Re: Device name change and group change In-Reply-To: <8423e7bb0802141121s4e5b8898p128a5157379a1519@mail.gmail.com> References: <47B48E74.8050109@justinshore.com> <20080214190144.GE1470@shrubbery.net> <8423e7bb0802141121s4e5b8898p128a5157379a1519@mail.gmail.com> Message-ID: <8423e7bb0802141121r7e813298t7a3e80aa9d418d8c@mail.gmail.com> Maybe adding it to the FAQ will help other with the same need....assuming it isn't already there. -Lance On 2/14/08, Lance Vermilion wrote: > This info in priceless. > > On 2/14/08, john heasley wrote: > > cd ~rancid (or /var/rancid or wherever your repository resides) > > mv CVS/group/configs/name,v CVS/newgroup/configs/newname,v > > (cd group; cvs update) > > (cd newgroup; cvs update) > > edit the router.db files > > > > Thu, Feb 14, 2008 at 12:54:44PM -0600, Justin Shore: > > > Is there an easy way to change a device's name and move it to a new > > > group in CVS? I define RANCID groups by POP. I just moved a router > > > from one POP to another and am also changing its name. I'd like to not > > > lose all of the old CVS history if I could help it. Suggestions? > > > > > > Thanks > > > Justin > > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > From willay at gmail.com Thu Feb 14 13:52:43 2008 From: willay at gmail.com (William) Date: Thu, 14 Feb 2008 13:52:43 +0000 Subject: [rancid] PIX scripted reload with RANCID? Message-ID: Hi guys, Just wanted to double check, I would like to script a reboot on a Cisco PIX running 6.x. What I plan to do is crontab clogin -x /usr/home/rancid/cmd.txt pixnamehere > /tmp/logfile.txt cmd.txt to contain: reload\n \n Is that going to do it? From memory when you issue a reload it will ask for confirmation, I'm hoping the last \n will do the trick? I'd be grateful for any input, thank you. W From RPECK2 at hfhs.org Fri Feb 15 13:05:54 2008 From: RPECK2 at hfhs.org (Robert Peck) Date: Fri, 15 Feb 2008 08:05:54 -0500 Subject: [rancid] Nortel 5500 and 8600 switches with Rancid Message-ID: HI, Can anyone tell me if rancid works with Nortel 5510, 5520 and 8600 switches?? Thanx ============================================================================== CONFIDENTIALITY NOTICE: This email contains information from the sender that may be CONFIDENTIAL, LEGALLY PRIVILEGED, PROPRIETARY or otherwise protected from disclosure. This email is intended for use only by the person or entity to whom it is addressed. If you are not the intended recipient, any use, disclosure, copying, distribution, printing, or any action taken in reliance on the contents of this email, is strictly prohibited. If you received this email in error, please contact the sending party by reply email, delete the email from your computer system and shred any paper copies. Note to Patients: There are a number of risks you should consider before using e-mail to communicate with us. See our Privacy Policy and Henry Ford My Health at www.henryford.com for more detailed information. If you do not believe that our policy gives you the privacy and security protection you need, do not send e-mail or Internet communications to us. ============================================================================== From jethro.binks at strath.ac.uk Fri Feb 15 15:34:33 2008 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Fri, 15 Feb 2008 15:34:33 +0000 (GMT) Subject: [rancid] Small patch for francid.in Message-ID: <20080215152558.E36059@defjam.cc.strath.ac.uk> Attached is a small patch which removes the secret_data for the SSL crypto key on the SuperX platform (at least). For whatever reason, I was finding that this was changing between rancid runs (I think newlines were appearing), and it probably doesn't need to be stored anyway. Incidentally, I also see a similar problem with the Serial number of BigIrons, where for whatever reason rancid doesn't always obtain it correctly, ending up with garbage, for example (we've seen this for years): -! Serial #: CH20033740 +! Serial #: C????????? So I also locally apply: @@ -179,6 +179,8 @@ next if (/^(The system |Crash time)/); next if (/^((Active|Standby) Management|LP Slot \d+) uptime is/); +# ::Strath:: + next if (/^\s+Serial #/); Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks Computing Officer, IT Services University Of Strathclyde, Glasgow, UK -------------- next part -------------- A non-text attachment was scrubbed... Name: rancid-crypto-ssl.patch Type: text/x-diff Size: 519 bytes Desc: Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080215/f3f016a1/attachment.bin From smunzani at comcast.net Fri Feb 15 18:27:21 2008 From: smunzani at comcast.net (Sam Munzani) Date: Fri, 15 Feb 2008 12:27:21 -0600 Subject: [rancid] .cloginrc question. How to use wild card? Message-ID: <47B5D989.8040706@comcast.net> Team, I have my devices named like this. xxx-rtr01, xxx-rtr02, xxx-rtr03 etc all the way up to 10. routers 1 through 6 supports telnet method only while 7 through 10 supports ssh only. Is there a clean way to define these 2 groups in .cloginrc? I tried following and captured the error messages. *Experiment # 1: .cloginrc section* add user test*[1-2] {admin} add password test*[1-2] {password} add method test*[1-2] telnet add autoenable test*[1-2] 1 $ clogin test-rtr01 Error: invalid command name "1-2" *Experiment # 2: * add user test*{*\[1-6]} {admin} add password test*{*\[1-6]} {password} add method test*{*\[1-6]} telnet add autoenable test*{*\[1-6]} 1 $ clogin test-rtr01 test-rtr01 Error: no password for test-rtr01 in /opt/rancid/.cloginrc. *Experiment # 3: * add user test{*\[1-6]} {admin} add password test{*\[1-6]} {password} add method test{*\[1-6]} telnet add autoenable test{*\[1-6]} 1 $ clogin test-rtr01 test-rtr01 Error: no password for test-rtr01 in /opt/rancid/.cloginrc. Any help is greatly appreciated. Thanks, sam -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080215/5e1c4422/attachment.html From heas at shrubbery.net Fri Feb 15 18:32:44 2008 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Feb 2008 10:32:44 -0800 Subject: [rancid] Re: .cloginrc question. How to use wild card? In-Reply-To: <47B5D989.8040706@comcast.net> References: <47B5D989.8040706@comcast.net> Message-ID: <20080215183244.GN7912@shrubbery.net> Fri, Feb 15, 2008 at 12:27:21PM -0600, Sam Munzani: > Team, > > I have my devices named like this. xxx-rtr01, xxx-rtr02, xxx-rtr03 etc > all the way up to 10. routers 1 through 6 supports telnet method only > while 7 through 10 supports ssh only. Is there a clean way to define > these 2 groups in .cloginrc? I tried following and captured the error > messages. its a glob & first match. add method xxx-rtr0\[1-6] {telnet} add method xxx-rtr* {ssh} the quoting is necessary to avoid tcl's [] grammar. > *Experiment # 1: .cloginrc section* > add user test*[1-2] {admin} > add password test*[1-2] {password} > add method test*[1-2] telnet > add autoenable test*[1-2] 1 > > $ clogin test-rtr01 > > Error: invalid command name "1-2" > > *Experiment # 2: * > add user test*{*\[1-6]} {admin} > add password test*{*\[1-6]} {password} > add method test*{*\[1-6]} telnet > add autoenable test*{*\[1-6]} 1 > > $ clogin test-rtr01 > test-rtr01 > > Error: no password for test-rtr01 in /opt/rancid/.cloginrc. > > *Experiment # 3: * > add user test{*\[1-6]} {admin} > add password test{*\[1-6]} {password} > add method test{*\[1-6]} telnet > add autoenable test{*\[1-6]} 1 > > $ clogin test-rtr01 > test-rtr01 > > Error: no password for test-rtr01 in /opt/rancid/.cloginrc. > > Any help is greatly appreciated. > > Thanks, > sam > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Fri Feb 15 18:40:41 2008 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Feb 2008 10:40:41 -0800 Subject: [rancid] Re: Small patch for francid.in In-Reply-To: <20080215152558.E36059@defjam.cc.strath.ac.uk> References: <20080215152558.E36059@defjam.cc.strath.ac.uk> Message-ID: <20080215184041.GP7912@shrubbery.net> Fri, Feb 15, 2008 at 03:34:33PM +0000, Jethro R Binks: > Attached is a small patch which removes the secret_data for the SSL crypto > key on the SuperX platform (at least). For whatever reason, I was finding > that this was changing between rancid runs (I think newlines were > appearing), and it probably doesn't need to be stored anyway. > > Incidentally, I also see a similar problem with the Serial number of > BigIrons, where for whatever reason rancid doesn't always obtain it > correctly, ending up with garbage, for example (we've seen this for > years): > > -! Serial #: CH20033740 > +! Serial #: C????????? That would remove the module/LC serial numbers. Could you provide an example of the diff, not cut-n-pasted so white-space it retained exactly? > So I also locally apply: > > @@ -179,6 +179,8 @@ > > next if (/^(The system |Crash time)/); > next if (/^((Active|Standby) Management|LP Slot \d+) uptime is/); > +# ::Strath:: > + next if (/^\s+Serial #/); > > Jethro. > > . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . > Jethro R Binks > Computing Officer, IT Services > University Of Strathclyde, Glasgow, UK > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From mashcraft at omniture.com Fri Feb 15 18:43:26 2008 From: mashcraft at omniture.com (Mike Ashcraft) Date: Fri, 15 Feb 2008 11:43:26 -0700 Subject: [rancid] Re: .cloginrc question. How to use wild card? In-Reply-To: <47B5D989.8040706@comcast.net> References: <47B5D989.8040706@comcast.net> Message-ID: <45EB285310B55542A513F93230F0A5330439402A@EXCHANGE0.orm.omniture.com> Sam, Put the entire hostname glob inside the curly braces. For example: Add user {test*[1-2]} {admin} Mike From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Sam Munzani Sent: Friday, February 15, 2008 11:27 AM To: rancid-discuss at shrubbery.net Subject: [rancid] .cloginrc question. How to use wild card? Team, I have my devices named like this. xxx-rtr01, xxx-rtr02, xxx-rtr03 etc all the way up to 10. routers 1 through 6 supports telnet method only while 7 through 10 supports ssh only. Is there a clean way to define these 2 groups in .cloginrc? I tried following and captured the error messages. Experiment # 1: .cloginrc section add user test*[1-2] {admin} add password test*[1-2] {password} add method test*[1-2] telnet add autoenable test*[1-2] 1 $ clogin test-rtr01 Error: invalid command name "1-2" Experiment # 2: add user test*{*\[1-6]} {admin} add password test*{*\[1-6]} {password} add method test*{*\[1-6]} telnet add autoenable test*{*\[1-6]} 1 $ clogin test-rtr01 test-rtr01 Error: no password for test-rtr01 in /opt/rancid/.cloginrc. Experiment # 3: add user test{*\[1-6]} {admin} add password test{*\[1-6]} {password} add method test{*\[1-6]} telnet add autoenable test{*\[1-6]} 1 $ clogin test-rtr01 test-rtr01 Error: no password for test-rtr01 in /opt/rancid/.cloginrc. Any help is greatly appreciated. Thanks, sam -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080215/82f66618/attachment.html From smunzani at comcast.net Fri Feb 15 18:43:34 2008 From: smunzani at comcast.net (Sam Munzani) Date: Fri, 15 Feb 2008 12:43:34 -0600 Subject: [rancid] Re: .cloginrc question. How to use wild card? In-Reply-To: <20080215183244.GN7912@shrubbery.net> References: <47B5D989.8040706@comcast.net> <20080215183244.GN7912@shrubbery.net> Message-ID: <47B5DD56.7050803@comcast.net> That did it. Thanks a lot John, Sam > Fri, Feb 15, 2008 at 12:27:21PM -0600, Sam Munzani: > >> Team, >> >> I have my devices named like this. xxx-rtr01, xxx-rtr02, xxx-rtr03 etc >> all the way up to 10. routers 1 through 6 supports telnet method only >> while 7 through 10 supports ssh only. Is there a clean way to define >> these 2 groups in .cloginrc? I tried following and captured the error >> messages. >> > > its a glob & first match. > > add method xxx-rtr0\[1-6] {telnet} > add method xxx-rtr* {ssh} > > the quoting is necessary to avoid tcl's [] grammar. > > >> *Experiment # 1: .cloginrc section* >> add user test*[1-2] {admin} >> add password test*[1-2] {password} >> add method test*[1-2] telnet >> add autoenable test*[1-2] 1 >> >> $ clogin test-rtr01 >> >> Error: invalid command name "1-2" >> >> *Experiment # 2: * >> add user test*{*\[1-6]} {admin} >> add password test*{*\[1-6]} {password} >> add method test*{*\[1-6]} telnet >> add autoenable test*{*\[1-6]} 1 >> >> $ clogin test-rtr01 >> test-rtr01 >> >> Error: no password for test-rtr01 in /opt/rancid/.cloginrc. >> >> *Experiment # 3: * >> add user test{*\[1-6]} {admin} >> add password test{*\[1-6]} {password} >> add method test{*\[1-6]} telnet >> add autoenable test{*\[1-6]} 1 >> >> $ clogin test-rtr01 >> test-rtr01 >> >> Error: no password for test-rtr01 in /opt/rancid/.cloginrc. >> >> Any help is greatly appreciated. >> >> Thanks, >> sam >> > > >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080215/5c2d6530/attachment.html From nate.beck at jivesoftware.com Fri Feb 15 19:06:23 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Fri, 15 Feb 2008 11:06:23 -0800 Subject: [rancid] Switch type for Dell switches Message-ID: We have some Dell switches that are legacy here at my new company. We are in the process of replacing them with HP and Cisco switches. What would I put in my router.db for a switch type to get those switches into rancid? Thanks Nate -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080215/6ba6c22e/attachment.html From heas at shrubbery.net Fri Feb 15 19:07:51 2008 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Feb 2008 11:07:51 -0800 Subject: [rancid] Re: Switch type for Dell switches In-Reply-To: References: Message-ID: <20080215190751.GT7912@shrubbery.net> the Dells that are in fact SMCs, should be supported by the 'smc' type. see router.db(5) Fri, Feb 15, 2008 at 11:06:23AM -0800, Nate Beck: > We have some Dell switches that are legacy here at my new company. We are > in the process of replacing them with HP and Cisco switches. What would I > put in my router.db for a switch type to get those switches into rancid? > > Thanks > > Nate > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From jethro.binks at strath.ac.uk Fri Feb 15 21:21:20 2008 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Fri, 15 Feb 2008 21:21:20 +0000 (GMT) Subject: [rancid] Re: Small patch for francid.in In-Reply-To: <20080215184041.GP7912@shrubbery.net> References: <20080215152558.E36059@defjam.cc.strath.ac.uk> <20080215184041.GP7912@shrubbery.net> Message-ID: <20080215211904.Y36059@defjam.cc.strath.ac.uk> On Fri, 15 Feb 2008, john heasley wrote: > Fri, Feb 15, 2008 at 03:34:33PM +0000, Jethro R Binks: > > Attached is a small patch which removes the secret_data for the SSL crypto > > key on the SuperX platform (at least). For whatever reason, I was finding > > that this was changing between rancid runs (I think newlines were > > appearing), and it probably doesn't need to be stored anyway. > > > > Incidentally, I also see a similar problem with the Serial number of > > BigIrons, where for whatever reason rancid doesn't always obtain it > > correctly, ending up with garbage, for example (we've seen this for > > years): > > > > -! Serial #: CH20033740 > > +! Serial #: C????????? > > That would remove the module/LC serial numbers. Could you provide an > example of the diff, not cut-n-pasted so white-space it retained exactly? I know, which is why I only mention it in passing for information. I don't expect it to be included in the code, although I'd be interested to know if other people have observed the issue. The characters replaced are often 8bit chars. I've not looked in any detail to try and find out what causes it to happen. The attached patch to my original mail to deal with the secret_data was the important issue. Jethro. > > > So I also locally apply: > > > > @@ -179,6 +179,8 @@ > > > > next if (/^(The system |Crash time)/); > > next if (/^((Active|Standby) Management|LP Slot \d+) uptime is/); > > +# ::Strath:: > > + next if (/^\s+Serial #/); > > > > Jethro. > > > > . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . > > Jethro R Binks > > Computing Officer, IT Services > > University Of Strathclyde, Glasgow, UK > > > _______________________________________________ > > Rancid-discuss mailing list > > Rancid-discuss at shrubbery.net > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks Computing Officer, IT Services University Of Strathclyde, Glasgow, UK From heas at shrubbery.net Fri Feb 15 21:48:30 2008 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Feb 2008 13:48:30 -0800 Subject: [rancid] Re: Rancid Access-lists In-Reply-To: References: <20050511032204.GD26198@shrubbery.net> Message-ID: <20080215214830.GA1233@shrubbery.net> The following rancid.conf knob has been added, beginning with 2.3.2a8, to affect the ACL sorting, # if ACLSORT is NO, access-lists will NOT be sorted. #ACLSORT=YES; export ACLSORT > John - > Spending more time looking at this, the config lines could be > moved without impacting any functionality. Due to the nature of the > router it has several locations that if it receives traffic from it drops > it, if it has any other traffic it's supposed to log. This is simply in > place to reduce log volume. It's currently not having that much of an > impact other than sending an auditor scrambling and causing a caveat for > router restores. > > access-list 122 deny ip any any log > access-list 122 deny ip any > access-list 122 deny ip any > access-list 122 deny ip any > access-list 122 deny ip any > access-list 122 deny ip any > access-list 122 deny ip any > access-list 122 deny ip any > > I also have several ACL's that are optimized by packet hits given the > large amount of traffic and RANCID sorts those as well. So these aren't > necessarily functional problems so much as performance and audit issues. I > suppose I can hack up the script to turn this off, but I'd imagine other > people might possibly run into the same problem. Thanks, > > Mark > > mark_scheuber at mgic.com > > > > john heasley > Sent by: owner-rancid-discuss at shrubbery.net > 05/10/2005 10:22 PM > > To > Mark Scheuber > cc > rancid-discuss at shrubbery.net > Subject > Re: Rancid Access-lists > > > > > > > Tue, May 10, 2005 at 03:22:43PM -0500, Mark Scheuber: > > Hi, I'm having a rather odd problem with RANCID. It's apparently > sorting > > my Cisco ACL's by IP which is bad to say the least. I'm just wondering > > > if anyone else has experienced this or knew of a way to shut this off? > > rancid sorts a few of the ACL "types", but not all. there are no knobs > to adjust this behavior. > > I thought that we only adjusted those which could be without buggering it. > example, please? > From heas at shrubbery.net Fri Feb 15 21:58:01 2008 From: heas at shrubbery.net (john heasley) Date: Fri, 15 Feb 2008 13:58:01 -0800 Subject: [rancid] Cyclades/Avocent Message-ID: <20080215215801.GA17893@shrubbery.net> I'm fairly new to the Cyclades/Avocent console server devices, but a module was contributed and I'm trying to make sure that everything works. One of the last two bits is "enable" access, ie: /bin/su. The problem is that the one that I have access to does not allow me to su to root. The only thing I've seen in the manual about su access is being in the wheel group (like normal bsd), which my user is a member. Can anyone offer suggestions about why su might not work? From heas at shrubbery.net Sat Feb 16 17:42:19 2008 From: heas at shrubbery.net (john heasley) Date: Sat, 16 Feb 2008 09:42:19 -0800 Subject: [rancid] Re: Nortel 5500 and 8600 switches with Rancid In-Reply-To: References: Message-ID: <20080216174219.GC24516@shrubbery.net> Fri, Feb 15, 2008 at 08:05:54AM -0500, Robert Peck: > HI, > > Can anyone tell me if rancid works with Nortel 5510, 5520 and 8600 > switches?? It may, as type "baynet". But, there was some discussion in Nov about needing some changes to blogin to reach the CLI (from a menu) and in July someone mentioned that it didn't work with the 4000 series. I don't know anything about these devices. From ttauber at 1-4-5.net Mon Feb 18 02:00:29 2008 From: ttauber at 1-4-5.net (Tony Tauber) Date: Sun, 17 Feb 2008 18:00:29 -0800 Subject: [rancid] Re: Nortel 5500 and 8600 switches with Rancid In-Reply-To: <20080216174219.GC24516@shrubbery.net> References: <20080216174219.GC24516@shrubbery.net> Message-ID: <20080218020029.GA6418@1-4-5.net> On Sat, Feb 16, 2008 at 09:42:19AM -0800, john heasley wrote: > Fri, Feb 15, 2008 at 08:05:54AM -0500, Robert Peck: > > HI, > > > > Can anyone tell me if rancid works with Nortel 5510, 5520 and 8600 > > switches?? > > It may, as type "baynet". But, there was some discussion in Nov about > needing some changes to blogin to reach the CLI (from a menu) and in > July someone mentioned that it didn't work with the 4000 series. > > I don't know anything about these devices. In a previous job I had to deal with the 8600 (formerly Passport) boxes. I remember having posted something to this list from around that time and was able to find this in the archive. I don't think I have any of the scripts any more and don't remember all that much about those devices either. http://www.shrubbery.net/pipermail/rancid-discuss/2004-July/000808.html Hopefully it can help you out. Tony --- From smunzani at comcast.net Mon Feb 18 04:56:55 2008 From: smunzani at comcast.net (Sam Munzani) Date: Sun, 17 Feb 2008 22:56:55 -0600 Subject: [rancid] Any good way to search a keyword in the rancid-discuss archive? Message-ID: <47B91017.9040402@comcast.net> Hi, I am looking for Cisco ACE modules backup. I know there was a discussion on this topic but going through the archive files one at a time would be tedious. Is there a trick to search keyword ACE through all archives and find matching posts? Thanks, Sam From ssnodgra at pheran.com Mon Feb 18 05:00:38 2008 From: ssnodgra at pheran.com (Steve Snodgrass) Date: Mon, 18 Feb 2008 00:00:38 -0500 Subject: [rancid] Re: Any good way to search a keyword in the rancid-discuss archive? In-Reply-To: <47B91017.9040402@comcast.net> References: <47B91017.9040402@comcast.net> Message-ID: <47B910F6.1060003@pheran.com> On 2/17/2008 11:56 PM, Sam Munzani wrote: > Hi, > > I am looking for Cisco ACE modules backup. I know there was a discussion > on this topic but going through the archive files one at a time would be > tedious. Is there a trick to search keyword ACE through all archives and > find matching posts? http://www.shrubbery.net/rancid/search.html -- Steve Snodgrass * ssnodgra at pheran.com * Network/Security/Linux/Perl Geek "If you want to be somebody else, change your mind." -Sister Hazel From dale.shaw+rancid-discuss at gmail.com Mon Feb 18 05:12:47 2008 From: dale.shaw+rancid-discuss at gmail.com (Dale Shaw) Date: Mon, 18 Feb 2008 16:12:47 +1100 Subject: [rancid] Re: Any good way to search a keyword in the rancid-discuss archive? In-Reply-To: <47B91017.9040402@comcast.net> References: <47B91017.9040402@comcast.net> Message-ID: <3329cbb40802172112j321a7e79v3c15f43e91e7c259@mail.gmail.com> Hi Sam, On Feb 18, 2008 3:56 PM, Sam Munzani wrote: > Hi, > > I am looking for Cisco ACE modules backup. I know there was a discussion > on this topic but going through the archive files one at a time would be > tedious. Is there a trick to search keyword ACE through all archives and > find matching posts? How about Googling for: cisco ACE site:shrubbery.net inurl:rancid-discuss (doesn't return many hits, but the method seems sound enough) cheers, Dale From nate.beck at jivesoftware.com Mon Feb 18 16:47:24 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Mon, 18 Feb 2008 08:47:24 -0800 Subject: [rancid] Issue with Rancid running Message-ID: All, I just installed Rancid on Friday of last week on a RHEL5 box. It currently only has 1 switch in it, a HP 2848. When I tested the clogin it worked fine. Then when I run rancid-run it ran fine the first time. After that it has timed out everytime and thrown an error. However when I run the command it runs fine. Has anyone ever seen something like this before? Thanks Nate -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080218/3c2dbe0d/attachment.html From sfulton at akn.ca Mon Feb 18 05:00:19 2008 From: sfulton at akn.ca (Stephen Fulton) Date: Mon, 18 Feb 2008 00:00:19 -0500 Subject: [rancid] Tasman/Nortel Secure Router series. Message-ID: Can anyone recommend a way to capture the configs of Tasman Networks, now Nortel's secure router series? Stephen From smunzani at comcast.net Mon Feb 18 16:57:25 2008 From: smunzani at comcast.net (Sam Munzani) Date: Mon, 18 Feb 2008 10:57:25 -0600 Subject: [rancid] Re: Issue with Rancid running In-Reply-To: References: Message-ID: <47B9B8F5.3050603@comcast.net> Nate, define that switch as hp and use hlogin. Thanks, Sam > All, > I just installed Rancid on Friday of last week on a RHEL5 box. It > currently only has 1 switch in it, a HP 2848. When I tested the > clogin it worked fine. Then when I run rancid-run it ran fine the > first time. After that it has timed out everytime and thrown an > error. However when I run the command it runs fine. Has anyone ever > seen something like this before? > > Thanks > > Nate > ------------------------------------------------------------------------ > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080218/26c7243b/attachment.html From nate.beck at jivesoftware.com Mon Feb 18 17:01:03 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Mon, 18 Feb 2008 09:01:03 -0800 Subject: [rancid] Re: Issue with Rancid running In-Reply-To: <47B9B8F5.3050603@comcast.net> Message-ID: I have the switch defined as hp in the router.db already. How do you define hlogin? On 2/18/08 8:57 AM, "Sam Munzani" wrote: > Nate, > > define that switch as hp and use hlogin. > > Thanks, > Sam >> Issue with Rancid running All, >> I just installed Rancid on Friday of last week on a RHEL5 box. It >> currently only has 1 switch in it, a HP 2848. When I tested the clogin it >> worked fine. Then when I run rancid-run it ran fine the first time. After >> that it has timed out everytime and thrown an error. However when I run the >> command it runs fine. Has anyone ever seen something like this before? >> >> Thanks >> >> Nate >> >> >> >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> >> -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080218/7a23f9da/attachment.html From nate.beck at jivesoftware.com Mon Feb 18 18:35:05 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Mon, 18 Feb 2008 10:35:05 -0800 Subject: [rancid] Re: Issue with Rancid running In-Reply-To: <20080218171214.GG11181@shrubbery.net> Message-ID: I have reinstalled with 2.3.2a8 and I still get this in the logs Trying to get all of the configs. 10.211.169.218 clogin error: Error: TIMEOUT reached 10.211.169.218: missed cmd(s): show stack,show module,show flash,show version,show system-information,write term 10.211.169.218: End of run not found ; ===================================== But if I run /usr/local/rancid/bin/clogin 10.211.169.218 it works just fine On 2/18/08 9:12 AM, "john heasley" wrote: > please try 2.3.2a7 or a8. > > Mon, Feb 18, 2008 at 09:10:26AM -0800, Nate Beck: >> Rancid 2.3.2a2 >> Host os RHEL5 see below >> The only thing that appears in the log is this >> >> Trying to get all of the configs. >> 10.211.169.218 clogin error: Error: TIMEOUT reached >> 10.211.169.218: missed cmd(s): admin show diag,dir /all slavedisk2:,show rsp >> chassis-info,dir /all sec-slot2:,show diag,dir /all disk1:,s$ >> 10.211.169.218: End of run not found >> ! >> ===================================== >> Getting missed routers: round 1. >> 10.211.169.218 clogin error: Error: TIMEOUT reached >> 10.211.169.218: missed cmd(s): admin show diag,dir /all slavedisk2:,show rsp >> chassis-info,dir /all sec-slot2:,show diag,dir /all disk1:,s$ >> 10.211.169.218: End of run not found >> ! >> ===================================== >> >> >> >> >> On 2/18/08 9:05 AM, "john heasley" wrote: >> >>> you havent told us what version of rancid, which host o/s, or if any errors >>> appeared in the log. >>> >>> Mon, Feb 18, 2008 at 09:01:03AM -0800, Nate Beck: >>>> I have the switch defined as hp in the router.db already. How do you >>>> define >>>> hlogin? >>>> >>>> >>>> On 2/18/08 8:57 AM, "Sam Munzani" wrote: >>>> >>>>> Nate, >>>>> >>>>> define that switch as hp and use hlogin. >>>>> >>>>> Thanks, >>>>> Sam >>>>>> Issue with Rancid running All, >>>>>> I just installed Rancid on Friday of last week on a RHEL5 box. It >>>>>> currently only has 1 switch in it, a HP 2848. When I tested the clogin >>>>>> it >>>>>> worked fine. Then when I run rancid-run it ran fine the first time. >>>>>> After >>>>>> that it has timed out everytime and thrown an error. However when I run >>>>>> the >>>>>> command it runs fine. Has anyone ever seen something like this before? >>>>>> >>>>>> Thanks >>>>>> >>>>>> Nate >>>>>> >>>>>> >>>>>> >>>>>> _______________________________________________ >>>>>> Rancid-discuss mailing list >>>>>> Rancid-discuss at shrubbery.net >>>>>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >>>>>> >>>>>> >>>> >>> >>>> _______________________________________________ >>>> Rancid-discuss mailing list >>>> Rancid-discuss at shrubbery.net >>>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> From jeff at ocjtech.us Mon Feb 18 05:21:37 2008 From: jeff at ocjtech.us (Jeffrey Ollie) Date: Sun, 17 Feb 2008 23:21:37 -0600 Subject: [rancid] Re: Any good way to search a keyword in the rancid-discuss archive? In-Reply-To: <47B91017.9040402@comcast.net> References: <47B91017.9040402@comcast.net> Message-ID: <935ead450802172121v608c394dq6160539eb1ba33ab@mail.gmail.com> On 2/17/08, Sam Munzani wrote: > > I am looking for Cisco ACE modules backup. I know there was a discussion > on this topic but going through the archive files one at a time would be > tedious. Is there a trick to search keyword ACE through all archives and > find matching posts? Google is thy friend. Use "+site:shrubbery.net" as one of your search terms in Google and it will only return results for shrubbery.net: http://www.google.com/search?q=%2Bsite%3Ashrubbery.net+ACE Jeff From nico at sonycom.com Tue Feb 19 15:36:09 2008 From: nico at sonycom.com (Nico De Ranter) Date: Tue, 19 Feb 2008 16:36:09 +0100 Subject: [rancid] Nortel Passport Message-ID: <1203435369.3666.105.camel@devil.sonytel.be> Hi, I'm trying to make Rancid 2.3.1 work with a Nortel Passport 8600. I've had a look at the archives and found a lot of references to Nortel however I still can't make it work. I did find Tony's patches for blogin and brancid that look very promising however they seem to be for another version of rancid as I can't apply them to my version. I tried manually making most changes but I think I'm missing something crucial. When I run ./passlogin -c 'show config' azur manually I notice the output gets cut off somewhere near the end of the config output. I get -------------------------------------------------- # # VRRP Connection closed by foreign host. -------------------------------------------------- While if I run a 'show config' manually on the router it goes on for about 20 more lines and ends with -------------------------------------------------- # # NAAP CONFIGURATION # back -------------------------------------------------- Any ideas on how to fix this? Thanks in advance, Nico From mashcraft at omniture.com Tue Feb 19 15:59:54 2008 From: mashcraft at omniture.com (Mike Ashcraft) Date: Tue, 19 Feb 2008 08:59:54 -0700 Subject: [rancid] Re: Issue with Rancid running In-Reply-To: References: <20080218171214.GG11181@shrubbery.net> Message-ID: <45EB285310B55542A513F93230F0A533043945B7@EXCHANGE0.orm.omniture.com> Nate, HP switches use hlogin instead of clogin to handle the differences in login and user interface from cisco devices. To diagnose your problem use: /usr/local/rancid/bin/hlogin 10.211.169.218 Good luck, Mike -----Original Message----- From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Nate Beck Sent: Monday, February 18, 2008 11:35 AM To: john heasley; rancid-discuss at shrubbery.net Subject: [rancid] Re: Issue with Rancid running I have reinstalled with 2.3.2a8 and I still get this in the logs Trying to get all of the configs. 10.211.169.218 clogin error: Error: TIMEOUT reached 10.211.169.218: missed cmd(s): show stack,show module,show flash,show version,show system-information,write term 10.211.169.218: End of run not found ; ===================================== But if I run /usr/local/rancid/bin/clogin 10.211.169.218 it works just fine On 2/18/08 9:12 AM, "john heasley" wrote: > please try 2.3.2a7 or a8. > > Mon, Feb 18, 2008 at 09:10:26AM -0800, Nate Beck: >> Rancid 2.3.2a2 >> Host os RHEL5 see below >> The only thing that appears in the log is this >> >> Trying to get all of the configs. >> 10.211.169.218 clogin error: Error: TIMEOUT reached >> 10.211.169.218: missed cmd(s): admin show diag,dir /all slavedisk2:,show rsp >> chassis-info,dir /all sec-slot2:,show diag,dir /all disk1:,s$ >> 10.211.169.218: End of run not found >> ! >> ===================================== >> Getting missed routers: round 1. >> 10.211.169.218 clogin error: Error: TIMEOUT reached >> 10.211.169.218: missed cmd(s): admin show diag,dir /all slavedisk2:,show rsp >> chassis-info,dir /all sec-slot2:,show diag,dir /all disk1:,s$ >> 10.211.169.218: End of run not found >> ! >> ===================================== >> >> >> >> >> On 2/18/08 9:05 AM, "john heasley" wrote: >> >>> you havent told us what version of rancid, which host o/s, or if any errors >>> appeared in the log. >>> >>> Mon, Feb 18, 2008 at 09:01:03AM -0800, Nate Beck: >>>> I have the switch defined as hp in the router.db already. How do you >>>> define >>>> hlogin? >>>> >>>> >>>> On 2/18/08 8:57 AM, "Sam Munzani" wrote: >>>> >>>>> Nate, >>>>> >>>>> define that switch as hp and use hlogin. >>>>> >>>>> Thanks, >>>>> Sam >>>>>> Issue with Rancid running All, >>>>>> I just installed Rancid on Friday of last week on a RHEL5 box. It >>>>>> currently only has 1 switch in it, a HP 2848. When I tested the clogin >>>>>> it >>>>>> worked fine. Then when I run rancid-run it ran fine the first time. >>>>>> After >>>>>> that it has timed out everytime and thrown an error. However when I run >>>>>> the >>>>>> command it runs fine. Has anyone ever seen something like this before? >>>>>> >>>>>> Thanks >>>>>> >>>>>> Nate >>>>>> >>>>>> >>>>>> >>>>>> _______________________________________________ >>>>>> Rancid-discuss mailing list >>>>>> Rancid-discuss at shrubbery.net >>>>>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >>>>>> >>>>>> >>>> >>> >>>> _______________________________________________ >>>> Rancid-discuss mailing list >>>> Rancid-discuss at shrubbery.net >>>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From heas at shrubbery.net Tue Feb 19 17:01:41 2008 From: heas at shrubbery.net (john heasley) Date: Tue, 19 Feb 2008 17:01:41 +0000 Subject: [rancid] Re: Nortel Passport In-Reply-To: <1203435369.3666.105.camel@devil.sonytel.be> References: <1203435369.3666.105.camel@devil.sonytel.be> Message-ID: <20080219170141.GK6404@shrubbery.net> Tue, Feb 19, 2008 at 04:36:09PM +0100, Nico De Ranter: > > Hi, > > I'm trying to make Rancid 2.3.1 work with a Nortel Passport 8600. I've > had a look at the archives and found a lot of references to Nortel > however I still can't make it work. I did find Tony's patches for blogin > and brancid that look very promising however they seem to be for another > version of rancid as I can't apply them to my version. I tried manually > making most changes but I think I'm missing something crucial. > > When I run > > ./passlogin -c 'show config' azur probably hanging on a pager. expect -d ./passlogin -c 'show config' azur > > manually I notice the output gets cut off somewhere near the end of the > config output. I get > > -------------------------------------------------- > # > # VRRP > Connection closed by foreign host. > -------------------------------------------------- > > While if I run a 'show config' manually on the router it goes on for > about 20 more lines and ends with > > -------------------------------------------------- > # > # NAAP CONFIGURATION > # > > > > back > -------------------------------------------------- > > Any ideas on how to fix this? > > Thanks in advance, > > Nico > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From nate.beck at jivesoftware.com Tue Feb 19 17:03:46 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Tue, 19 Feb 2008 09:03:46 -0800 Subject: [rancid] SVN backend Message-ID: All, I have 2.3.2a8 installed on rhel5. I enabled svn on install and set the rancid.conf to use svn also. But whenever rancid-run goes I get the following error in the log Trying to get all of the configs. All routers sucessfully completed. Sending . svn: Commit failed (details follow): svn: Out of date: '/networking' in transaction '5-1' ending: Tue Feb 19 05:47:00 GMT 2008 And everytime it runs, it mails me the complete config since it has not committed it to the repository. I tried running svn update and it says that it is current. Any ideas on how to fix this? Thanks Nate -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080219/9c9092bc/attachment.html From heas at shrubbery.net Tue Feb 19 17:06:56 2008 From: heas at shrubbery.net (john heasley) Date: Tue, 19 Feb 2008 17:06:56 +0000 Subject: [rancid] Re: SVN backend In-Reply-To: References: Message-ID: <20080219170656.GN6404@shrubbery.net> Tue, Feb 19, 2008 at 09:03:46AM -0800, Nate Beck: > All, > I have 2.3.2a8 installed on rhel5. I enabled svn on install and set the > rancid.conf to use svn also. But whenever rancid-run goes I get the > following error in the log > > > Trying to get all of the configs. > All routers sucessfully completed. > > Sending . > svn: Commit failed (details follow): > svn: Out of date: '/networking' in transaction '5-1' > > ending: Tue Feb 19 05:47:00 GMT 2008 > > And everytime it runs, it mails me the complete config since it has not > committed it to the repository. I tried running svn update and it says that > it is current. > > Any ideas on how to fix this? I havent tried svn for a while, but none of that code has changed. I'd guess that someone has been mucking about in there. go to the networking dir and 'svn update' and correct any complaints it may have. From nate.beck at jivesoftware.com Tue Feb 19 17:10:45 2008 From: nate.beck at jivesoftware.com (Nate Beck) Date: Tue, 19 Feb 2008 09:10:45 -0800 Subject: [rancid] Re: SVN backend In-Reply-To: <20080219170656.GN6404@shrubbery.net> Message-ID: When I go into the /usr/local/rancid/var/networking directory and run a 'svn update' it says that it is current. But it fails to commit on every run. On 2/19/08 9:06 AM, "john heasley" wrote: > Tue, Feb 19, 2008 at 09:03:46AM -0800, Nate Beck: >> All, >> I have 2.3.2a8 installed on rhel5. I enabled svn on install and set the >> rancid.conf to use svn also. But whenever rancid-run goes I get the >> following error in the log >> >> >> Trying to get all of the configs. >> All routers sucessfully completed. >> >> Sending . >> svn: Commit failed (details follow): >> svn: Out of date: '/networking' in transaction '5-1' >> >> ending: Tue Feb 19 05:47:00 GMT 2008 >> >> And everytime it runs, it mails me the complete config since it has not >> committed it to the repository. I tried running svn update and it says that >> it is current. >> >> Any ideas on how to fix this? > > I havent tried svn for a while, but none of that code has changed. I'd > guess that someone has been mucking about in there. go to the networking > dir and 'svn update' and correct any complaints it may have. From smunzani at comcast.net Tue Feb 19 18:12:44 2008 From: smunzani at comcast.net (Sam Munzani) Date: Tue, 19 Feb 2008 12:12:44 -0600 Subject: [rancid] Re: Any good way to search a keyword in the rancid-discuss archive? In-Reply-To: <3329cbb40802172112j321a7e79v3c15f43e91e7c259@mail.gmail.com> References: <47B91017.9040402@comcast.net> <3329cbb40802172112j321a7e79v3c15f43e91e7c259@mail.gmail.com> Message-ID: <47BB1C1C.9030007@comcast.net> Dale, Thanks for the google tip. I didn't find much useful things on ACE but using the syntax you provided, I searched many other things on google for my other projects :-) Thanks again, Sam > Hi Sam, > > On Feb 18, 2008 3:56 PM, Sam Munzani wrote: > >> Hi, >> >> I am looking for Cisco ACE modules backup. I know there was a discussion >> on this topic but going through the archive files one at a time would be >> tedious. Is there a trick to search keyword ACE through all archives and >> find matching posts? >> > > How about Googling for: > > cisco ACE site:shrubbery.net inurl:rancid-discuss > > (doesn't return many hits, but the method seems sound enough) > > cheers, > Dale > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080219/c5a8c0f5/attachment.html From lostpkts at gmail.com Tue Feb 19 21:19:17 2008 From: lostpkts at gmail.com (chris) Date: Tue, 19 Feb 2008 15:19:17 -0600 Subject: [rancid] Re: Riverbed WAN Accelerators In-Reply-To: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> References: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> Message-ID: <8d634f4f0802191319s3ce20cabob83c7a4b7038d07f@mail.gmail.com> I was digging a bit more into this and noticed that the Riverbeds look a lot more like a Foundry than a Cisco. So I changed it in my router.db to Foundry but it fails with a timeout in the logs. I run flogin manually on the device this is what it does. rancid at mothership:~/bin> ./flogin los-3520-A los-3520-a spawn ssh -c 3des -x -l rancid los-3520-a Riverbed Steelhead rancid at los-3520-a's password: Last login: Tue Feb 19 13:05:24 2008 from 10.3.1.36 rancid los-3520-A > rancid % Unrecognized command "rancid". Type "?" for help. los-3520-A > enable los-3520-A # So it gets to an enable prompt fine. So I'm not exactly sure what its timeout on. The logs show: los-3520-A flogin error: Error: TIMEOUT reached I'm fairly sure I'm close as the comands that will run on the Foundry will work on teh Riverbed... at least the show version and write term ones that I want. Can someone please point me in the right direction? Thanks On Feb 19, 2008 11:55 AM, chris wrote: > I saw a post back in Jan on gmane about using Rancid on Riverbeds. > But didn't see any replies, so was hoping someone could post to the > list if they know the answer. > > Has anyone had Rancid parse Riverbeds? They are very much like a > Cisco in CLI structure. > > They can do a show run to get the config. A 'show run full' or 'show > config full' gets all the default values as well. > > Was hoping someone has done this for these devices and can point me in > the right direction. > > Thanks > Chris > From lostpkts at gmail.com Tue Feb 19 17:55:41 2008 From: lostpkts at gmail.com (chris) Date: Tue, 19 Feb 2008 11:55:41 -0600 Subject: [rancid] Riverbed WAN Accelerators Message-ID: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> I saw a post back in Jan on gmane about using Rancid on Riverbeds. But didn't see any replies, so was hoping someone could post to the list if they know the answer. Has anyone had Rancid parse Riverbeds? They are very much like a Cisco in CLI structure. They can do a show run to get the config. A 'show run full' or 'show config full' gets all the default values as well. Was hoping someone has done this for these devices and can point me in the right direction. Thanks Chris From rancid at gheek.net Wed Feb 20 00:28:18 2008 From: rancid at gheek.net (Lance Vermilion) Date: Tue, 19 Feb 2008 17:28:18 -0700 Subject: [rancid] Re: Riverbed WAN Accelerators In-Reply-To: <8d634f4f0802191319s3ce20cabob83c7a4b7038d07f@mail.gmail.com> References: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> <8d634f4f0802191319s3ce20cabob83c7a4b7038d07f@mail.gmail.com> Message-ID: <8423e7bb0802191628x45f259a1h12e6c80f0e46afba@mail.gmail.com> Chris, It looks like you do not get prompted for a password after you enter the "enable ". That would cause an issue with rancid since it is expecting a password prompt. Thus the timeout you are seeing. I would presume the clogin script ends near the same. Where exactly does the clogin erorr out for you? Have you tried hlogin? -lance On 2/19/08, chris wrote: > I was digging a bit more into this and noticed that the Riverbeds look > a lot more like a Foundry than a Cisco. So I changed it in my > router.db to Foundry but it fails with a timeout in the logs. > > I run flogin manually on the device this is what it does. > > > rancid at mothership:~/bin> ./flogin los-3520-A > los-3520-a > spawn ssh -c 3des -x -l rancid los-3520-a > Riverbed Steelhead > rancid at los-3520-a's password: > Last login: Tue Feb 19 13:05:24 2008 from 10.3.1.36 > rancid > los-3520-A > rancid > % Unrecognized command "rancid". > Type "?" for help. > los-3520-A > enable > los-3520-A # > > So it gets to an enable prompt fine. So I'm not exactly sure what its > timeout on. > > The logs show: > > los-3520-A flogin error: Error: TIMEOUT reached > > I'm fairly sure I'm close as the comands that will run on the Foundry > will work on teh Riverbed... at least the show version and write term > ones that I want. > > Can someone please point me in the right direction? > > Thanks > > > On Feb 19, 2008 11:55 AM, chris wrote: > > I saw a post back in Jan on gmane about using Rancid on Riverbeds. > > But didn't see any replies, so was hoping someone could post to the > > list if they know the answer. > > > > Has anyone had Rancid parse Riverbeds? They are very much like a > > Cisco in CLI structure. > > > > They can do a show run to get the config. A 'show run full' or 'show > > config full' gets all the default values as well. > > > > Was hoping someone has done this for these devices and can point me in > > the right direction. > > > > Thanks > > Chris > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From lostpkts at gmail.com Wed Feb 20 14:28:11 2008 From: lostpkts at gmail.com (chris) Date: Wed, 20 Feb 2008 08:28:11 -0600 Subject: [rancid] Re: Riverbed WAN Accelerators In-Reply-To: <8423e7bb0802191628x45f259a1h12e6c80f0e46afba@mail.gmail.com> References: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> <8d634f4f0802191319s3ce20cabob83c7a4b7038d07f@mail.gmail.com> <8423e7bb0802191628x45f259a1h12e6c80f0e46afba@mail.gmail.com> Message-ID: <8d634f4f0802200628t326644e0y320b73150828a5db@mail.gmail.com> On Tue, Feb 19, 2008 at 6:28 PM, Lance Vermilion wrote: > Chris, > > It looks like you do not get prompted for a password after you enter > the "enable ". That would cause an issue with rancid since it > is expecting a password prompt. Thus the timeout you are seeing. > > I would presume the clogin script ends near the same. Where exactly > does the clogin erorr out for you? > > Have you tried hlogin? > > -lance > Lance, When I manually use hlogin, I get the same thing as using flogin. Doesn't prompt for the enable password. I'm not sure the autoenable knob will work as it doesn't put 'rancid' at an enable prompt at login... still have to enter enable to get there. Unless I'm not understanding the knob fully. John, I put the device as 'agm' in router.db but that didn't appear to work. Unless I completely misunderstood you. Trying to get all of the configs. unknown router manufacturer for los-3520-a: agm ===================================== Thanks for the help. I'm willing to keep trying ideas people come up with. Chris From rancid at gheek.net Wed Feb 20 17:11:30 2008 From: rancid at gheek.net (Lance Vermilion) Date: Wed, 20 Feb 2008 10:11:30 -0700 Subject: [rancid] Re: Riverbed WAN Accelerators In-Reply-To: <8d634f4f0802200628t326644e0y320b73150828a5db@mail.gmail.com> References: <8d634f4f0802190955g1b5a1c13g873172721f2a0879@mail.gmail.com> <8d634f4f0802191319s3ce20cabob83c7a4b7038d07f@mail.gmail.com> <8423e7bb0802191628x45f259a1h12e6c80f0e46afba@mail.gmail.com> <8d634f4f0802200628t326644e0y320b73150828a5db@mail.gmail.com> Message-ID: <8423e7bb0802200911v292cd45bjac42a7562557b43d@mail.gmail.com> This could easily be done with a minor code change. But aht would all be assuming you know how to make code changes. -lance On 2/20/08, chris wrote: > On Tue, Feb 19, 2008 at 6:28 PM, Lance Vermilion wrote: > > Chris, > > > > It looks like you do not get prompted for a password after you enter > > the "enable ". That would cause an issue with rancid since it > > is expecting a password prompt. Thus the timeout you are seeing. > > > > I would presume the clogin script ends near the same. Where exactly > > does the clogin erorr out for you? > > > > Have you tried hlogin? > > > > -lance > > > > Lance, > > When I manually use hlogin, I get the same thing as using flogin. > Doesn't prompt for the enable password. I'm not sure the autoenable > knob will work as it doesn't put 'rancid' at an enable prompt at > login... still have to enter enable to get there. Unless > I'm not understanding the knob fully. > > John, > > I put the device as 'agm' in router.db but that didn't appear to work. > Unless I completely misunderstood you. > > Trying to get all of the configs. > unknown router manufacturer for los-3520-a: agm > ===================================== > > Thanks for the help. I'm willing to keep trying ideas people come up with. > > Chris > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From lostpkts at gmail.com Thu Feb 21 17:41:15 2008 From: lostpkts at gmail.com (chris) Date: Thu, 21 Feb 2008 11:41:15 -0600 Subject: [rancid] F5 Devices Message-ID: <8d634f4f0802210941s29f8b60axc26142e7943a27e2@mail.gmail.com> I saw discussions on F5 devices from last few months. I downloaded the f5rancid_pl.txt and f5login_exp.txt files that were posted by Lance. I put them in the bin directory and renamed them f5rancid and f5login. I then edited rancid-fe and added in 'f5' => 'f5rancid', in the vendortable section. I then added my device to router.db and put the appropriate lines in .clonginrc that was listed in the files, making changes as needed. I then run rancid-run -r ch-f5sys01 And nothing in the logs. I tried doing a f5login manually to see what was going on and it says. Error: invalid command name "sage". I did notice that Lance said it was in 2.3.2a7.1 that he had up on his site. So I downloaded it and installed that version. However I get the following in the logs: Trying to get all of the configs. ch-f5sys01 f5login error: Error: invalid command name "sage" ch-f5sys01: missed cmd(s): ls --full-time --color=never /config/ssl/ssl.crt,bigpipe route static sho w,bigpipe monitor list,bigpipe base list,bigpipe platform,TERM=xterm,bigpipe config sync show,cat /c onfig/RegKey.license,ls --full-time --color=never /config/ssl/ssl.key,export TERM,bigpipe version,bi gpipe profile list,bigpipe list ch-f5sys01: End of run not found ! ===================================== Can someone please point me in the right direction of what I did wrong? Thanks Chris From rancid at gheek.net Thu Feb 21 18:30:03 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 21 Feb 2008 11:30:03 -0700 Subject: [rancid] Re: F5 Devices In-Reply-To: <8d634f4f0802210941s29f8b60axc26142e7943a27e2@mail.gmail.com> References: <8d634f4f0802210941s29f8b60axc26142e7943a27e2@mail.gmail.com> Message-ID: <8423e7bb0802211030r2ea3c5a3p15c7345513c02d49@mail.gmail.com> Chris, unfortunately we have been doing some things in the background in regards to a new F5 script that will work natively with clogin thus not requiring the use of f5login. I need to verify a couple of things for John H. today to make sure it works as expected. If that works then john will be releasing a new version of rancid that the new f5rancid script included. In the meantime..... In order for this to work you will need to include something like this in your .cloginrc add userprompt *f5* sshOnlyNoPrompt add autoenable *f5* 1 add user *f5* Regarding your errors. I am not sure where the sage portion came from. Are you sure you didn't add anything to the command line statement? -Lance On 2/21/08, chris wrote: > I saw discussions on F5 devices from last few months. I downloaded > the f5rancid_pl.txt and f5login_exp.txt files that were posted by > Lance. I put them in the bin directory and renamed them f5rancid and > f5login. > > I then edited rancid-fe and added in > 'f5' => 'f5rancid', > > in the vendortable section. > > I then added my device to router.db and put the appropriate lines in > .clonginrc that was listed in the files, making changes as needed. > > I then run rancid-run -r ch-f5sys01 > > And nothing in the logs. > > I tried doing a f5login manually to see what was going on and it says. > > Error: invalid command name "sage". > > I did notice that Lance said it was in 2.3.2a7.1 that he had up on his > site. So I downloaded it and installed that version. However I get > the following in the logs: > > Trying to get all of the configs. > ch-f5sys01 f5login error: Error: invalid command name "sage" > ch-f5sys01: missed cmd(s): ls --full-time --color=never > /config/ssl/ssl.crt,bigpipe route static sho > w,bigpipe monitor list,bigpipe base list,bigpipe > platform,TERM=xterm,bigpipe config sync show,cat /c > onfig/RegKey.license,ls --full-time --color=never > /config/ssl/ssl.key,export TERM,bigpipe version,bi > gpipe profile list,bigpipe list > ch-f5sys01: End of run not found > ! > ===================================== > > > > Can someone please point me in the right direction of what I did wrong? > > Thanks > Chris > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From bmassel at descartes.com Fri Feb 22 14:48:56 2008 From: bmassel at descartes.com (Brock Massel) Date: Fri, 22 Feb 2008 09:48:56 -0500 Subject: [rancid] Cisco/Altiga vpn concentrator Message-ID: <78CC970856BCB3468058B65560DA97D00366B846@XPOCSCA.corp.descartes.com> Has any one done any work to integrate the Cisco (nee Altiga) VPN concentrator into rancid? -B From Stephen.Shapery at cardinalhealth.com Fri Feb 22 15:28:03 2008 From: Stephen.Shapery at cardinalhealth.com (Shapery, Steve) Date: Fri, 22 Feb 2008 07:28:03 -0800 Subject: [rancid] Rancid and Custom Privilege levels Message-ID: <41AADDB58806454C8785A1924EAA0AA202610A8E@sanexch02.pyxis.cahais.com> Greetings all. I am in a situation where I have read-only access to a variety of vendor-managed Cisco routers. My access-level allows a ?show running-config? and a ?write term? but for some reason, Rancid is not too happy with accessing these devices. A clogin test is successful. The prompt has a #, and for all intents and purposes, it?s enabled. Here?s the output from the logs: Trying to get all of the configs. write(spawn_id=1): broken pipe while executing "send_user -- "$expect_out(buffer)"" invoked from within "expect -nobrace -re+ { exp_continue } -re {^[^ *]*Router11R([^#>?r?n]+)?[#>](?([^)?r?n]+?))?} { send_user -- "$expect_out (buffer)" } -r..." invoked from within "expect { -re "?b+" { exp_continue } -re "^?[^?n?r *]*$reprompt" { send_user -- "$expect_out(buff er)" } -re "^?[^?n?r]*$reprompt." { send..." invoked from within "if [ string match "*?;*" "$command" ] { set commands [split $command ?;] set num_commands [llength $commands] # the pager can not be turned off on ..." (procedure "run_commands" line 34) invoked from within "run_commands $prompt $command" ("foreach" body line 144) invoked from within "foreach router [lrange $argv $i end] { set router [string tolower $router] send_user "$router?n" # Figure out prompt. # Since autoena..." (file "/home/rancid/bin/clogin" line 616) uscdhlsanca11: missed cmd(s): dir /all slavedisk2:,dir /all sec-slot2:,show diag ,dir /all disk1:,dir /all sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,sho w spe version,dir /all slaveslot2:,dir /all disk0:,dir /all slaveslot0:,dir /all sec-slot1:,dir /all harddiska:,dir /all slavenvram:,dir /all sec-disk2:,dir /al l slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb:,dir /all slavedisk 1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all bootf lash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir /al l sup-bootflash:,dir /all slot2:,dir /all harddisk:,dir /all slot0:,dir /all sup -microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,dir /all sl aveslot1:,show running-config,show c7200,dir /all slot1: Router11: End of run not found ! ===================================== Any guidance would be appreciated. Thanks. Steve Shapery Senior Network Engineer EIT-TS Network Engineering - Cardinal Health 858-617-2621 (rolls to cell) steve.shapery at cardinal.com SD HQ B2 150 YIM: steve_cardinal ?? _________________________________________________ This message is for the designated recipient only and may contain privileged, proprietary or otherwise private information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the email by you is prohibited. Dansk - Deutsch - Espanol - Francais - Italiano - Japanese - Nederlands - Norsk - Portuguese Svenska: www.cardinalhealth.com/legal/email -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080222/4404445e/attachment.html From venkatesan.dhanasekar at wipro.com Fri Feb 22 11:41:17 2008 From: venkatesan.dhanasekar at wipro.com (venkatesan.dhanasekar at wipro.com) Date: Fri, 22 Feb 2008 17:11:17 +0530 Subject: [rancid] How to configure ranicd with viewvc Message-ID: Hi, Can you please help me and send me how to configure rancid with viewvc. This is the first time I am using both. Can you please send step by step its very useful to me. Thanks and Regards venkatesan The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080222/03d22885/attachment.html From rancid at gheek.net Fri Feb 22 17:31:42 2008 From: rancid at gheek.net (Lance Vermilion) Date: Fri, 22 Feb 2008 10:31:42 -0700 Subject: [rancid] Re: Rancid and Custom Privilege levels In-Reply-To: <41AADDB58806454C8785A1924EAA0AA202610A8E@sanexch02.pyxis.cahais.com> References: <41AADDB58806454C8785A1924EAA0AA202610A8E@sanexch02.pyxis.cahais.com> Message-ID: <8423e7bb0802220931j6abefc0ev1b23080dade4304d@mail.gmail.com> Steve, All you need to do is specify a new option in your .cloginrc add noenable uscdhlsanca11 That should get you working. -lance On 2/22/08, Shapery, Steve wrote: > > > > Greetings all. > > > > I am in a situation where I have read-only access to a variety of > vendor-managed Cisco routers. > > > > My access-level allows a 'show running-config' and a 'write term' but for > some reason, Rancid is not too happy with accessing these devices. > > > > A clogin test is successful. > > > > The prompt has a #, and for all intents and purposes, it's enabled. > > > > > > Here's the output from the logs: > > > > Trying to get all of the configs. > > write(spawn_id=1): broken pipe > > while executing > > "send_user -- "$expect_out(buffer)"" > > invoked from within > > "expect -nobrace -re+ { exp_continue } -re {^[^ > > *]*Router11R([^#>?r?n]+)?[#>](?([^)?r?n]+?))?} { send_user > -- "$expect_out > > (buffer)" > > } -r..." > > invoked from within > > "expect { > > -re "?b+" { exp_continue } > > -re "^?[^?n?r *]*$reprompt" { send_user -- > "$expect_out(buff > > er)" > > } > > -re "^?[^?n?r]*$reprompt." { send..." > > invoked from within > > "if [ string match "*?;*" "$command" ] { > > set commands [split $command ?;] > > set num_commands [llength $commands] > > # the pager can not be turned off on ..." > > (procedure "run_commands" line 34) > > invoked from within > > "run_commands $prompt $command" > > ("foreach" body line 144) > > invoked from within > > "foreach router [lrange $argv $i end] { > > set router [string tolower $router] > > send_user "$router?n" > > > > # Figure out prompt. > > # Since autoena..." > > (file "/home/rancid/bin/clogin" line 616) > > uscdhlsanca11: missed cmd(s): dir /all slavedisk2:,dir /all sec-slot2:,show > diag > > ,dir /all disk1:,dir /all sec-nvram:,dir /all disk2:,dir /all > sec-bootflash:,sho > > w spe version,dir /all slaveslot2:,dir /all disk0:,dir /all slaveslot0:,dir > /all > > sec-slot1:,dir /all harddiska:,dir /all slavenvram:,dir /all sec-disk2:,dir > /al > > l slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb:,dir /all > slavedisk > > 1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all > bootf > > lash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir > /al > > l sup-bootflash:,dir /all slot2:,dir /all harddisk:,dir /all slot0:,dir /all > sup > > -microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,dir > /all sl > > aveslot1:,show running-config,show c7200,dir /all slot1: > > Router11: End of run not found > > ! > > ===================================== > > > > Any guidance would be appreciated. > > > > Thanks. > > > > > > > > > > > > Steve Shapery > > Senior Network Engineer > > EIT-TS Network Engineering - Cardinal Health > > 858-617-2621 (rolls to cell) > > steve.shapery at cardinal.com > > SD HQ B2 150 > > YIM: steve_cardinal > > ?? > > _________________________________________________ This > message is for the designated recipient only and may contain privileged, > proprietary or otherwise private information. If you have received it in > error, please notify the sender immediately and delete the original. Any > other use of the email by you is prohibited. Dansk - Deutsch - Espanol - > Francais - Italiano - Japanese - Nederlands - Norsk - Portuguese Svenska: > www.cardinalhealth.com/legal/email > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From rancid at gheek.net Fri Feb 22 19:22:54 2008 From: rancid at gheek.net (Lance Vermilion) Date: Fri, 22 Feb 2008 12:22:54 -0700 Subject: [rancid] Re: How to configure ranicd with viewvc In-Reply-To: References: Message-ID: <8423e7bb0802221122g6d35fa6dp21fe8a8105613d29@mail.gmail.com> Please read this thread if you have questions. http://www.shrubbery.net/pipermail/rancid-discuss/2007-March/002099.html Here is the attachment of my old working viewvc configuration file. http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20070307/839c8ab6/attachment.bin -lance On 2/22/08, venkatesan.dhanasekar at wipro.com wrote: > > Hi, > > Can you please help me and send me how to configure rancid with viewvc. > > This is the first time I am using both. > > Can you please send step by step its very useful to me. > > Thanks and Regards > venkatesan > > > > > > > The information contained in this electronic message and any attachments to > this message are intended for the exclusive use of the addressee(s) and may > contain proprietary, confidential or privileged information. If you are not > the intended recipient, you should not disseminate, distribute or copy this > e-mail. Please notify the sender immediately and destroy all copies of this > message and any attachments. > > WARNING: Computer viruses can be transmitted via email. The recipient should > check this email and any attachments for the presence of viruses. The > company accepts no liability for any damage caused by any virus transmitted > by this email. > > www.wipro.com > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From Stephen.Shapery at cardinalhealth.com Sat Feb 23 18:45:29 2008 From: Stephen.Shapery at cardinalhealth.com (Shapery, Steve) Date: Sat, 23 Feb 2008 10:45:29 -0800 Subject: [rancid] Wildcards in banner potentially causing issue Message-ID: <41AADDB58806454C8785A1924EAA0AA202610C22@sanexch02.pyxis.cahais.com> So I have rancid running, trying to collect configs from Cisco routers, and it works dandy if I do a command-line clogin with the full commands. clogin -t 90 -c "show run" router1 however, if I run it through the rancid-run script, I get odd errors and it doesn't seem to work. The only thing I can think of is that the login banners have & * ' and & in them. Does anyone know if I have to somehow escape those out, or do something to force the rancid script to ignore the special characters? Thanks. _________________________________________________ This message is for the designated recipient only and may contain privileged, proprietary or otherwise private information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the email by you is prohibited. Dansk - Deutsch - Espanol - Francais - Italiano - Japanese - Nederlands - Norsk - Portuguese Svenska: www.cardinalhealth.com/legal/email -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080223/45ff1952/attachment.html From rancid at gheek.net Fri Feb 22 17:32:35 2008 From: rancid at gheek.net (Lance Vermilion) Date: Fri, 22 Feb 2008 10:32:35 -0700 Subject: [rancid] Re: Cisco/Altiga vpn concentrator In-Reply-To: <78CC970856BCB3468058B65560DA97D00366B846@XPOCSCA.corp.descartes.com> References: <78CC970856BCB3468058B65560DA97D00366B846@XPOCSCA.corp.descartes.com> Message-ID: <8423e7bb0802220932v48ded1d9v68066b69b316b7a9@mail.gmail.com> Brock, There is a script out there that will take care of that. It was setup for an older version of rancid rather than the new one. If you slightly alter the rancid-fe script you can get it to work. I don't have time to make a quick alteration to it. Here are the scripts which I archived for easy finding. **NOTE: They will be moving soon when I get everything moved into wordpress** http://gheek.net/scripts/misc/wrancid_rancid-fe.txt http://gheek.net/scripts/perl/wrancid_pl.txt http://gheek.net/scripts/perl/wrancid_vpn3k_pl.txt -Lance On 2/22/08, Brock Massel wrote: > Has any one done any work to integrate the Cisco (nee Altiga) VPN > concentrator into rancid? > > -B > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From eravin at panix.com Sun Feb 24 01:24:31 2008 From: eravin at panix.com (Ed Ravin) Date: Sat, 23 Feb 2008 20:24:31 -0500 Subject: [rancid] Re: Wildcards in banner potentially causing issue In-Reply-To: <41AADDB58806454C8785A1924EAA0AA202610C22@sanexch02.pyxis.cahais.com> References: <41AADDB58806454C8785A1924EAA0AA202610C22@sanexch02.pyxis.cahais.com> Message-ID: <20080224012431.GC14466@panix.com> On Sat, Feb 23, 2008 at 10:45:29AM -0800, Shapery, Steve wrote: > So I have rancid running, trying to collect configs from Cisco routers, > and it works dandy if I do a command-line clogin with the full > commands. > > > clogin -t 90 -c "show run" router1 > > > however, if I run it through the rancid-run script, I get odd errors > and it doesn't seem to work. > > > The only thing I can think of is that the login banners have & * ` and > & in them. > > > Does anyone know if I have to somehow escape those out, or do something > to force the rancid script to ignore the special characters? The RANCID FAQ ( http://www.shrubbery.net/rancid/FAQ ) says: Q. Are there any characters in the banner that rancid has problems with OR I changed the device's command prompt and now collection is failing? A. The trickiest part about clogin (et al) is recognizing the prompt correctly. clogin looks for '>' and '#' to figure out if it is logged in or in enable mode. So if you have a '>' or '#' in your login banner (or other motd), then clogin gets all confused and will not be able to log in correctly, and thus rancid will fail. Don't use '>' or '#' in your prompt or in your banner or other motd. Suggest you go through the FAQ and see if that warning or any other section in there applies to you. If you can't fix it, come back here and post the exact text of the "odd errors" that you're getting. From Stephen.Shapery at cardinalhealth.com Sun Feb 24 02:03:41 2008 From: Stephen.Shapery at cardinalhealth.com (Shapery, Steve) Date: Sat, 23 Feb 2008 18:03:41 -0800 Subject: [rancid] Re: Wildcards in banner potentially causing issue References: <41AADDB58806454C8785A1924EAA0AA202610C22@sanexch02.pyxis.cahais.com> <20080224012431.GC14466@panix.com> Message-ID: <41AADDB58806454C8785A1924EAA0AA202610C2A@sanexch02.pyxis.cahais.com> The devices were responding properly to a clogin -c 'command' but not to the rancid-run script. After digging and digging, it turned out that if I removed the 'show version' section of the rancid script, that it successfully ran. The devices are standard 3845's, with no unusual mods... so I have no idea. Oh well, at least it works now. -S -----Original Message----- From: Ed Ravin [mailto:eravin at panix.com] Sent: Saturday, February 23, 2008 5:25 PM To: Shapery, Steve Cc: rancid-discuss at shrubbery.net Subject: Re: [rancid] Wildcards in banner potentially causing issue On Sat, Feb 23, 2008 at 10:45:29AM -0800, Shapery, Steve wrote: > So I have rancid running, trying to collect configs from Cisco routers, > and it works dandy if I do a command-line clogin with the full > commands. > > > clogin -t 90 -c "show run" router1 > > > however, if I run it through the rancid-run script, I get odd errors > and it doesn't seem to work. > > > The only thing I can think of is that the login banners have & * ` and > & in them. > > > Does anyone know if I have to somehow escape those out, or do something > to force the rancid script to ignore the special characters? The RANCID FAQ ( http://www.shrubbery.net/rancid/FAQ ) says: Q. Are there any characters in the banner that rancid has problems with OR I changed the device's command prompt and now collection is failing? A. The trickiest part about clogin (et al) is recognizing the prompt correctly. clogin looks for '>' and '#' to figure out if it is logged in or in enable mode. So if you have a '>' or '#' in your login banner (or other motd), then clogin gets all confused and will not be able to log in correctly, and thus rancid will fail. Don't use '>' or '#' in your prompt or in your banner or other motd. Suggest you go through the FAQ and see if that warning or any other section in there applies to you. If you can't fix it, come back here and post the exact text of the "odd errors" that you're getting. _________________________________________________ This message is for the designated recipient only and may contain privileged, proprietary or otherwise private information. If you have received it in error, please notify the sender immediately and delete the original. Any other use of the email by you is prohibited. Dansk - Deutsch - Espanol - Francais - Italiano - Japanese - Nederlands - Norsk - Portuguese Svenska: www.cardinalhealth.com/legal/email From wrjacqmein at gmail.com Sun Feb 24 01:36:47 2008 From: wrjacqmein at gmail.com (Bill Jacqmein) Date: Sat, 23 Feb 2008 20:36:47 -0500 Subject: [rancid] Working on adding support for Sygate Enforcer Appliance Message-ID: <3c9a5bae0802231736s4e5d6b7es3333b767aabb4d15@mail.gmail.com> Appliance - Symantec Network Access Control Enforcer 6100 v5.1.5 Reworked the nlogin into selogin Currently can login and run commands. bin/selogin -c "show version;show hostname;show status;show configure;show console" -f .cloginrc Is anyone else working on scripting for the Enforcer appliance? Is selogin fit okay into the name structure? sgelogin? sgealogin? Others Im not thinking of. Thanks, Bill -------------- next part -------------- A non-text attachment was scrubbed... Name: selogin Type: application/octet-stream Size: 14420 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080223/5861913a/attachment.obj From andyswanson at comcast.net Sun Feb 24 21:01:58 2008 From: andyswanson at comcast.net (Andy Swanson) Date: Sun, 24 Feb 2008 16:01:58 -0500 Subject: [rancid] RANCID with HP Procurve 4100g In-Reply-To: References: Message-ID: <000701c87728$7f8e79a0$7eab6ce0$@net> I know this is not a new topic as I have seem questions on this before... However, I cant seem to get rancid to work with HP Procurve switches using ssh. I am getting the infamous banner : HP J4887A ProCurve Switch 4104GL Firmware revision G.07.70 Copyright (C) 1991-2005 Hewlett-Packard Co. All Rights Reserved. RESTRICTED RIGHTS LEGEND Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subdivision (b) (3) (ii) of the Rights in Technical Data and Computer Software clause at 52.227-7013. HEWLETT-PACKARD COMPANY, 3000 Hanover St., Palo Alto, CA 94303 Press any key to continue I know that the newer version of rancid is supposed to have fixed this but I still cant get it to work... I have trying to get this to work for weeks but it just will time out trying to get past this banner.. Does anybody have any idea how I can get around this, so I can use ssh?? Thanks for any help!! Andrew From andyswanson at comcast.net Sun Feb 24 23:26:55 2008 From: andyswanson at comcast.net (Andy Swanson) Date: Sun, 24 Feb 2008 18:26:55 -0500 Subject: [rancid] RANCID with HP Procurve 4100g Message-ID: <000001c8773c$befc0670$3cf41350$@net> I have found this post on this same topic: http://www.shrubbery.net/pipermail/rancid-discuss/2007-January/001947.html Looks like there was a tarbal attached with new scripts: hp4000m.rancid hp4000m.clogin cloginrc2pl.exp Rancid/ParseConfig.pm Rancid/Login.pm Any chance anyone has these file??? Andrew -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080224/8f6ee2d9/attachment.html From eravin at panix.com Sun Feb 24 23:46:07 2008 From: eravin at panix.com (Ed Ravin) Date: Sun, 24 Feb 2008 18:46:07 -0500 Subject: [rancid] Re: RANCID with HP Procurve 4100g In-Reply-To: <000001c8773c$befc0670$3cf41350$@net> References: <000001c8773c$befc0670$3cf41350$@net> Message-ID: <20080224234607.GB18938@panix.com> On Sun, Feb 24, 2008 at 06:26:55PM -0500, Andy Swanson wrote: > I have found this post on this same topic: > > http://www.shrubbery.net/pipermail/rancid-discuss/2007-January/001947.html > > Looks like there was a tarbal attached with new scripts: > > hp4000m.rancid > hp4000m.clogin > cloginrc2pl.exp > Rancid/ParseConfig.pm > Rancid/Login.pm > > Any chance anyone has these file??? I am the author of those files, and I do indeed have them. And I would be delighted to give them to you. But they are for the HP Procurve 4000, also known as the 8000 or 2424m, none of which is the HP 4100gl that you have. I think what you need is to set your device type to be "hp" and go about debugging with hlogin and hrancid, if you haven't tried that already. See the RANCID FAQ for hints on how to debug. By the way, I had no problem downloading the tarball from the above-mentioned URL - it comes down as "attachment.bin" and you can read it with "gzcat attachment.bin | tar tvf -". -- Ed From venkatesan.dhanasekar at wipro.com Mon Feb 25 12:26:18 2008 From: venkatesan.dhanasekar at wipro.com (venkatesan.dhanasekar at wipro.com) Date: Mon, 25 Feb 2008 17:56:18 +0530 Subject: [rancid] getting error executing the rancid with viewvc Message-ID: Hi All, I am getting following error while executing rancid with viewvc An Exception Has Occurred Rancid not found! The wrong path for this repository was configured, or the server on which the CVS tree lives may be down. Please try again in a few minutes. Python Traceback Traceback (most recent call last): File "/usr/local/viewvc-1.0.4/lib/viewvc.py", line 3665, in main request.run_viewvc() File "/usr/local/viewvc-1.0.4/lib/viewvc.py", line 234, in run_viewvc raise debug.ViewVCException( ViewVCException: ViewVC Unrecoverable Error: Rancid not found! The wrong path for this repository was configured, or the server on which the CVS tree lives may be down. Please try again in a few minutes. Can you please helpme to solve this error. Thanks and Regards venkatesan The information contained in this electronic message and any attachments to this message are intended for the exclusive use of the addressee(s) and may contain proprietary, confidential or privileged information. If you are not the intended recipient, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately and destroy all copies of this message and any attachments. WARNING: Computer viruses can be transmitted via email. The recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email. www.wipro.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080225/765ad309/attachment.html From peter.lothegard at lidendata.com Mon Feb 25 16:03:05 2008 From: peter.lothegard at lidendata.com (=?iso-8859-1?Q?Peter_L=F6theg=E5rd?=) Date: Mon, 25 Feb 2008 17:03:05 +0100 Subject: [rancid] upgrade from 2.3.2a6 to 2.3.2a8 In-Reply-To: Message-ID: Hi Can I replace specific files if I want to upgrade from 2.3.2a6 to 2.3.2a8 or do i need to compile and install from scratch? Regards /Peter ------------------------------------ Lidero Network AB Peter Lothegard ------------------------------------ From James.Munroe at gnb.ca Mon Feb 25 23:14:35 2008 From: James.Munroe at gnb.ca (Munroe, James (DSS/MAS)) Date: Mon, 25 Feb 2008 19:14:35 -0400 Subject: [rancid] Re: Cisco/Altiga vpn concentrator References: <78CC970856BCB3468058B65560DA97D00366B846@XPOCSCA.corp.descartes.com> <8423e7bb0802220932v48ded1d9v68066b69b316b7a9@mail.gmail.com> Message-ID: Does anyone out there have a modified version of the Cisco VPN wrapper scripts that work with Rancid 2.3.2a8? In particular an updated rancid-fe script with the wrapper configuration added? I've been mucking with the rancid-fe script trying to get the wrapper to load and operate properly...so far I've achieved only some awesome rancid powered email bombs :-( Thanks! Jim ________________________________ From: rancid-discuss-bounces at shrubbery.net on behalf of Lance Vermilion Sent: Fri 22/02/2008 1:32 PM Cc: Rancid-discuss at shrubbery.net Subject: [rancid] Re: Cisco/Altiga vpn concentrator Brock, There is a script out there that will take care of that. It was setup for an older version of rancid rather than the new one. If you slightly alter the rancid-fe script you can get it to work. I don't have time to make a quick alteration to it. Here are the scripts which I archived for easy finding. **NOTE: They will be moving soon when I get everything moved into wordpress** http://gheek.net/scripts/misc/wrancid_rancid-fe.txt http://gheek.net/scripts/perl/wrancid_pl.txt http://gheek.net/scripts/perl/wrancid_vpn3k_pl.txt -Lance On 2/22/08, Brock Massel wrote: > Has any one done any work to integrate the Cisco (nee Altiga) VPN > concentrator into rancid? > > -B > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From wrjacqmein at gmail.com Tue Feb 26 21:32:20 2008 From: wrjacqmein at gmail.com (Bill Jacqmein) Date: Tue, 26 Feb 2008 16:32:20 -0500 Subject: [rancid] Sygate Enforcer Info grabber Message-ID: <3c9a5bae0802261332t5e76405em9dba1231f5fc609e@mail.gmail.com> selogin - previous email - http://www.shrubbery.net/pipermail/rancid-discuss/2008-February/002841.html serancid - Based off the netscreen (nrancid) script. Added serancid perl script. Enjoy, Bill -------------- next part -------------- A non-text attachment was scrubbed... Name: serancid Type: application/octet-stream Size: 9322 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080226/ad47595c/attachment.obj From bsuresh1976 at hotmail.com Wed Feb 27 08:04:22 2008 From: bsuresh1976 at hotmail.com (bsuresh1976) Date: Wed, 27 Feb 2008 13:34:22 +0530 Subject: [rancid] ASSISTANCE NEEDED Message-ID: Guys, I am new to the RANCID. Rancid was setup by my colleague & I am the end user. Some of the routers works fine, but on some of the routers I get the below error. Could some one please assist me.? I googled for an answer, but I could not get the correct answer. routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: TIMEOUT reached routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir /all slavedisk2:,show rsp chassis-info,dir /all s ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all slaveslot0:,dir /all sec-slot1:,dir /all harddiska: ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb :,show variables boot,show boot,dir /all slavedisk1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir /all sup-bootflash:,dir /all slot 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,d ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir /all slot1: routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found Regards, Suresh -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/5b7a59bf/attachment.html From georg.naggies at r-it.at Wed Feb 27 08:19:26 2008 From: georg.naggies at r-it.at (georg.naggies at r-it.at) Date: Wed, 27 Feb 2008 09:19:26 +0100 Subject: [rancid] ASSISTANCE NEEDED In-Reply-To: <002801c87917$5cab7b90$7f3da8c0@webex.local> Message-ID: Hi! "TIMEOUT reached" just means that the device was not reachable, offline, powered down, could have been anything. Georg bsuresh1976 at hotmail.com Gesendet von: rancid-discuss-bounces at shrubbery.net 27.02.2008 09:04 An rancid-discuss at shrubbery.net Kopie Thema [rancid] ASSISTANCE NEEDED Guys, I am new to the RANCID. Rancid was setup by my colleague & I am the end user. Some of the routers works fine, but on some of the routers I get the below error. Could some one please assist me?? I googled for an answer, but I could not get the correct answer? routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: TIMEOUT reached routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir /all slavedisk2:,show rsp chassis-info,dir /all s ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all slaveslot0:,dir /all sec-slot1:,dir /all harddiska: ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb :,show variables boot,show boot,dir /all slavedisk1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir /all sup-bootflash:,dir /all slot 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,d ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir /all slot1: routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found Regards, Suresh _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss ---------------------------------------- Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR 0486809, UID ATU 16351908 Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen duerfen ueber dieses Medium nicht ausgetauscht werden. Correspondence with above mentioned sender via e-mail is only for information purposes. This medium may not be used for exchange of legally-binding communications. ---------------------------------------- -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/5de47b63/attachment.html From bsuresh1976 at hotmail.com Wed Feb 27 09:20:13 2008 From: bsuresh1976 at hotmail.com (bsuresh1976) Date: Wed, 27 Feb 2008 14:50:13 +0530 Subject: [rancid] Re: ASSISTANCE NEEDED In-Reply-To: References: <002801c87917$5cab7b90$7f3da8c0@webex.local> Message-ID: George, Thanks for your quick response.. ping bom01-wxbb-art01 PING bom01-wxbb-art01.webex.com (210.4.192.33) 56(84) bytes of data. 64 bytes from bom01-wxbb-art01.webex.com (210.4.192.33): icmp_seq=1 ttl=249 time=271 ms 64 bytes from bom01-wxbb-art01.webex.com (210.4.192.33): icmp_seq=2 ttl=249 time=271 ms 64 bytes from bom01-wxbb-art01.webex.com (210.4.192.33): icmp_seq=3 ttl=249 time=271 ms --- bom01-wxbb-art01.webex.com ping statistics --- 4 packets transmitted, 3 received, 25% packet loss, time 3003ms rtt min/avg/max/mdev = 271.257/271.397/271.608/0.620 ms, pipe 2 The router is UP. on September it was updated, please the below attachment. Regards, Suresh _____ From: georg.naggies at r-it.at [mailto:georg.naggies at r-it.at] Sent: Wednesday, February 27, 2008 1:49 PM To: bsuresh1976 at hotmail.com Cc: rancid-discuss at shrubbery.net; rancid-discuss-bounces at shrubbery.net Subject: [rancid] ASSISTANCE NEEDED Hi! "TIMEOUT reached" just means that the device was not reachable, offline, powered down, could have been anything. Georg ---------------------------------------- Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR 0486809, UID ATU 16351908 Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen duerfen ueber dieses Medium nicht ausgetauscht werden. Correspondence with above mentioned sender via e-mail is only for information purposes. This medium may not be used for exchange of legally-binding communications. ---------------------------------------- Inactive hide details for bsuresh1976 at hotmail.combsuresh1976@hotmail.com bsuresh1976 at hotmail.com Gesendet von: rancid-discuss-bounces at shrubbery.net 27.02.2008 09:04 An rancid-discuss at shrubbery.net Kopie Thema [rancid] ASSISTANCE NEEDED Guys, I am new to the RANCID. Rancid was setup by my colleague & I am the end user. Some of the routers works fine, but on some of the routers I get the below error. Could some one please assist me.? I googled for an answer, but I could not get the correct answer. routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: TIMEOUT reached routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir /all slavedisk2:,show rsp chassis-info,dir /all s ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all slaveslot0:,dir /all sec-slot1:,dir /all harddiska: ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb :,show variables boot,show boot,dir /all slavedisk1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir /all sup-bootflash:,dir /all slot 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,d ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir /all slot1: routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found Regards, Suresh _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/bba311b3/attachment.html -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/jpeg Size: 137202 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/bba311b3/attachment.jpe -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 105 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/bba311b3/attachment.gif -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 73 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/bba311b3/attachment-0001.gif -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/gif Size: 73 bytes Desc: not available Url : http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/bba311b3/attachment-0002.gif From suresh_indian at hotmail.com Wed Feb 27 08:02:50 2008 From: suresh_indian at hotmail.com (suresh_indian) Date: Wed, 27 Feb 2008 13:32:50 +0530 Subject: [rancid] HELP NEEDED ON THE BELOW ERROR Message-ID: Guys, I am new to the RANCID. Rancid was setup by my colleague & I am the end user. Some of the routers works fine, but on some of the routers I get the below error. Could some one please assist me.? I googled for an answer, but I could not get the correct answer. routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: TIMEOUT reached routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir /all slavedisk2:,show rsp chassis-info,dir /all s ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all slaveslot0:,dir /all sec-slot1:,dir /all harddiska: ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb :,show variables boot,show boot,dir /all slavedisk1:,show module,show controllers,show diagbus,dir /all slavedisk0:,dir /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show vtp status,dir /all sup-bootflash:,dir /all slot 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show vlan,dir /all slavebootflash:,show controllers cbus,d ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir /all slot1: routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found Regards, Suresh -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/37a1c6b6/attachment.html From heas at shrubbery.net Wed Feb 27 09:54:02 2008 From: heas at shrubbery.net (john heasley) Date: Wed, 27 Feb 2008 09:54:02 +0000 Subject: [rancid] Re: ASSISTANCE NEEDED In-Reply-To: References: <002801c87917$5cab7b90$7f3da8c0@webex.local> Message-ID: <20080227095402.GC3548@shrubbery.net> Wed, Feb 27, 2008 at 09:19:26AM +0100, georg.naggies at r-it.at: > Hi! > > "TIMEOUT reached" just means that the device was not reachable, offline, > powered down, could have been anything. > > Georg not quite, it appears that it got through at least the first command. So, the login was successful and its began ok. Please see section 3 of the FAQ. > > > > > bsuresh1976 at hotmail.com > Gesendet von: rancid-discuss-bounces at shrubbery.net > 27.02.2008 09:04 > > An > rancid-discuss at shrubbery.net > Kopie > > Thema > [rancid] ASSISTANCE NEEDED > > > > > > > Guys, > > I am new to the RANCID. Rancid was setup by my colleague & I am the end > user. Some of the routers works fine, but on some of the routers I get the > below error. > > Could some one please assist me?? I googled for an answer, but I could not > get the correct answer? > > routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found > routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: > TIMEOUT reached > routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir > /all slavedisk2:,show rsp chassis-info,dir /all s > ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all > sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp > e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all > slaveslot0:,dir /all sec-slot1:,dir /all harddiska: > ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all > slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb > :,show variables boot,show boot,dir /all slavedisk1:,show module,show > controllers,show diagbus,dir /all slavedisk0:,dir > /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show > vtp status,dir /all sup-bootflash:,dir /all slot > 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show > vlan,dir /all slavebootflash:,show controllers cbus,d > ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir > /all slot1: > routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found > > Regards, > > Suresh > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > ---------------------------------------- > Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR 0486809, UID ATU 16351908 > > Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen duerfen ueber dieses Medium nicht ausgetauscht werden. > Correspondence with above mentioned sender via e-mail is only for information purposes. This medium may not be used for exchange of legally-binding communications. > ---------------------------------------- > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From ctdecci at sandia.gov Wed Feb 27 18:36:14 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 10:36:14 -0800 Subject: [rancid] clogin bug setting prompt Message-ID: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> Apologies if this is known already. I am running RANCID 2.3.1 with expect 5.42.1. In clogin there is a bug in setting the prompt appropriately for switches using the "xyz> (enable)" prompt (or any other prompts including characters with special regex meaning--besides brackets). The parentheses from the $expect_out(buffer) are not escaped when the prompt variable is updated, so when "expect -re $prompt {}" is called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've attached a patch to clogin (it includes other characters too, just in case they may need to be escaped also). Regards, Casey -------------- next part -------------- --- clogin 2008-02-27 10:26:09.000000000 -0800 +++ clogin.new 2008-02-27 10:26:47.000000000 -0800 @@ -751,7 +751,7 @@ } -re "^.+> \\\(enable\\\)" { set junk $expect_out(0,string); - regsub -all "\[\]\[]" $junk {\\&} prompt; + regsub -all "\[\]\[\(\)+.?{}]" $junk {\\&} prompt; } } From rancid at gheek.net Wed Feb 27 19:30:53 2008 From: rancid at gheek.net (Lance Vermilion) Date: Wed, 27 Feb 2008 12:30:53 -0700 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> Message-ID: <8423e7bb0802271130t1aecf0afled1f9dc451a63c97@mail.gmail.com> Casey, Did you notice this issue on any alpha versions? -Lance On 2/27/08, Casey T. Deccio wrote: > Apologies if this is known already. I am running RANCID 2.3.1 with > expect 5.42.1. In clogin there is a bug in setting the prompt > appropriately for switches using the "xyz> (enable)" prompt (or any > other prompts including characters with special regex meaning--besides > brackets). The parentheses from the $expect_out(buffer) are not escaped > when the prompt variable is updated, so when "expect -re $prompt {}" is > called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've > attached a patch to clogin (it includes other characters too, just in > case they may need to be escaped also). > > Regards, > Casey > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > From heas at shrubbery.net Wed Feb 27 20:35:31 2008 From: heas at shrubbery.net (john heasley) Date: Wed, 27 Feb 2008 12:35:31 -0800 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> Message-ID: <20080227203531.GQ13768@shrubbery.net> Wed, Feb 27, 2008 at 10:36:14AM -0800, Casey T. Deccio: > Apologies if this is known already. I am running RANCID 2.3.1 with > expect 5.42.1. In clogin there is a bug in setting the prompt > appropriately for switches using the "xyz> (enable)" prompt (or any > other prompts including characters with special regex meaning--besides > brackets). The parentheses from the $expect_out(buffer) are not escaped > when the prompt variable is updated, so when "expect -re $prompt {}" is > called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've > attached a patch to clogin (it includes other characters too, just in > case they may need to be escaped also). Not escaping the () grouping atoms for Catalyst prompts is definitely a bug, thanks. I suppose not escaping the . atom is also a bug; is there a reason that you only applied this fix to Catalyst prompts? As for the +?{} atoms, these simply seem inappropriate for prompts. Just as '(enable)' rather offensive. I feel inclined to suggest that the configuration should be fixed rather than make this change. Is that short sighted? > --- clogin 2008-02-27 10:26:09.000000000 -0800 > +++ clogin.new 2008-02-27 10:26:47.000000000 -0800 > @@ -751,7 +751,7 @@ > } > -re "^.+> \\\(enable\\\)" { > set junk $expect_out(0,string); > - regsub -all "\[\]\[]" $junk {\\&} prompt; > + regsub -all "\[\]\[\(\)+.?{}]" $junk {\\&} prompt; > } > } > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss From ctdecci at sandia.gov Wed Feb 27 22:13:29 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 14:13:29 -0800 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <20080227203531.GQ13768@shrubbery.net> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> <20080227203531.GQ13768@shrubbery.net> Message-ID: <1204150409.10950.59.camel@boomerang.ran.sandia.gov> On Wed, 2008-02-27 at 13:35 -0700, john heasley wrote: > Not escaping the () grouping atoms for Catalyst prompts is definitely a bug, > thanks. > > I suppose not escaping the . atom is also a bug; is there a reason that you > only applied this fix to Catalyst prompts? > Only because I hadn't used and found it while working on a Catalyst platform. The change would be easy to implement on the other *login scripts, but I wouldn't have any way to test it. But I did add this to the other case in clogin (new patch). > As for the +?{} atoms, these simply seem inappropriate for prompts. Just > as '(enable)' rather offensive. I feel inclined to suggest that the > configuration should be fixed rather than make this change. Is that short > sighted? > I don't know that it is reasonable to expect that an administrator will use the +?{} atoms in the prompt. However, it certainly is *allowable* to use .+{}[]() (not "?") in the prompt (on Catalyst prompts anyway). I favor more general cases (i.e., escaping any atoms), but that's just my opinion FWIW. Regards, Casey -------------- next part -------------- --- clogin.in 2008-02-27 14:07:27.000000000 -0800 +++ clogin.in.new 2008-02-27 13:54:14.000000000 -0800 @@ -747,11 +747,11 @@ set platform "extreme" } -re "^.+$prompt" { set junk $expect_out(0,string); - regsub -all "\[\]\[]" $junk {\\&} prompt; + regsub -all "\[\]\[\(\)+.{}]" $junk {\\&} prompt; } -re "^.+> \\\(enable\\\)" { set junk $expect_out(0,string); - regsub -all "\[\]\[]" $junk {\\&} prompt; + regsub -all "\[\]\[\(\)+.{}]" $junk {\\&} prompt; } } From ctdecci at sandia.gov Wed Feb 27 22:21:01 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 14:21:01 -0800 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <8423e7bb0802271130t1aecf0afled1f9dc451a63c97@mail.gmail.com> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> <8423e7bb0802271130t1aecf0afled1f9dc451a63c97@mail.gmail.com> Message-ID: <1204150861.10950.64.camel@boomerang.ran.sandia.gov> On Wed, 2008-02-27 at 12:30 -0700, Lance Vermilion wrote: > Did you notice this issue on any alpha versions? > Lance, I haven't had a chance yet to test the alpha version, but upon browsing through the code, I saw the same problem with the setting of prompt. I'll confirm that when I can. Regards, Casey > On 2/27/08, Casey T. Deccio wrote: > > Apologies if this is known already. I am running RANCID 2.3.1 with > > expect 5.42.1. In clogin there is a bug in setting the prompt > > appropriately for switches using the "xyz> (enable)" prompt (or any > > other prompts including characters with special regex meaning--besides > > brackets). The parentheses from the $expect_out(buffer) are not escaped > > when the prompt variable is updated, so when "expect -re $prompt {}" is > > called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've > > attached a patch to clogin (it includes other characters too, just in > > case they may need to be escaped also). > > > > Regards, > > Casey > > From ctdecci at sandia.gov Wed Feb 27 22:52:17 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 14:52:17 -0800 Subject: [rancid] password from TTY Message-ID: <1204152737.10950.95.camel@boomerang.ran.sandia.gov> I'm working on a wrapper script for clogin that takes some dependence off the cloginrc file, particularly for cases where the script might be run on the command line rather than automatically. I'm wondering if these options would be useful or have been considered for the clogin source, so a wrapper isn't necessary. It would be nice to have a command-line option -passwordfromtty which prompts the user for a password from the TTY, so the user has an alternative option to storing the password in .cloginrc or specifying it on the command line. The clogin script always requires that the file exist. If the password is received from the TTY (or if it is specified from the command line), and the default options are sufficient, a cloginrc is not needed. Regards, Casey From ctdecci at sandia.gov Thu Feb 28 00:26:01 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 16:26:01 -0800 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> Message-ID: <1204158361.10950.120.camel@boomerang.ran.sandia.gov> On Wed, 2008-02-27 at 11:36 -0700, Casey T. Deccio wrote: > Apologies if this is known already. I am running RANCID 2.3.1 with > expect 5.42.1. In clogin there is a bug in setting the prompt > appropriately for switches using the "xyz> (enable)" prompt (or any > other prompts including characters with special regex meaning--besides > brackets). The parentheses from the $expect_out(buffer) are not escaped > when the prompt variable is updated, so when "expect -re $prompt {}" is > called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've > attached a patch to clogin (it includes other characters too, just in > case they may need to be escaped also). I think the patch I created is the wrong fix in the wrong place. I'm guessing the substitution I refer to in the patch is meant for escaping only the square brackets, so TCL does not interpret them as a command. It was not intended to escape regex atoms. The appropriate escaping of regex atoms is performed in the first ~25 lines of the run_commands proc. The problem is that this code isn't run if the -s switch is used. Maybe it would be most beneficial to define a proc that returned a reprompt, which was then called after getting the "full prompt"? Then the resulting $reprompt could be used by both the run_commands proc and subsequent commands for the file. Casey From ctdecci at sandia.gov Thu Feb 28 00:52:15 2008 From: ctdecci at sandia.gov (Casey T. Deccio) Date: Wed, 27 Feb 2008 16:52:15 -0800 Subject: [rancid] Re: clogin bug setting prompt In-Reply-To: <8423e7bb0802271130t1aecf0afled1f9dc451a63c97@mail.gmail.com> References: <1204137374.10950.36.camel@boomerang.ran.sandia.gov> <8423e7bb0802271130t1aecf0afled1f9dc451a63c97@mail.gmail.com> Message-ID: <1204159935.10950.123.camel@boomerang.ran.sandia.gov> On Wed, 2008-02-27 at 12:30 -0700, Lance Vermilion wrote: > Did you notice this issue on any alpha versions? > I confirmed this problem on 2.3.2a7. Casey > On 2/27/08, Casey T. Deccio wrote: > > Apologies if this is known already. I am running RANCID 2.3.1 with > > expect 5.42.1. In clogin there is a bug in setting the prompt > > appropriately for switches using the "xyz> (enable)" prompt (or any > > other prompts including characters with special regex meaning--besides > > brackets). The parentheses from the $expect_out(buffer) are not escaped > > when the prompt variable is updated, so when "expect -re $prompt {}" is > > called, the prompt matches "xyz> enable" but not "xyz> (enable)". I've > > attached a patch to clogin (it includes other characters too, just in > > case they may need to be escaped also). > > > > Regards, > > Casey From ssnodgra at pheran.com Thu Feb 28 02:06:16 2008 From: ssnodgra at pheran.com (Steve Snodgrass) Date: Wed, 27 Feb 2008 21:06:16 -0500 Subject: [rancid] Contributed RPM spec file for rancid Message-ID: <47C61718.5040607@pheran.com> Here is a spec file I recently put together for rancid 2.3.2a8. It is based on earlier spec files from Michael Stefaniuc and Dan Pfleger, but this one has been updated for the latest version, includes a subpackage for the looking glass scripts and has other refinements. Enjoy. -- Steve Snodgrass * ssnodgra at pheran.com * Network/Security/Linux/Perl Geek "If you want to be somebody else, change your mind." -Sister Hazel -------------- next part -------------- An embedded and charset-unspecified text was scrubbed... Name: rancid.spec Url: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080227/39e1e42f/attachment.ksh From stewbeme at yahoo.com Thu Feb 28 04:29:45 2008 From: stewbeme at yahoo.com (derek stewart) Date: Wed, 27 Feb 2008 20:29:45 -0800 (PST) Subject: [rancid] cisco fsm login Message-ID: <528030.17991.qm@web50905.mail.re2.yahoo.com> I need to login to a cisco fsm and run a command; session slot 1 proc 1. Whats the easiest way to do this? -derek ____________________________________________________________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping From bsuresh1976 at hotmail.com Thu Feb 28 04:42:45 2008 From: bsuresh1976 at hotmail.com (bsuresh1976) Date: Thu, 28 Feb 2008 10:12:45 +0530 Subject: [rancid] Re: ASSISTANCE NEEDED In-Reply-To: <20080227095402.GC3548@shrubbery.net> References: <002801c87917$5cab7b90$7f3da8c0@webex.local> <20080227095402.GC3548@shrubbery.net> Message-ID: John, Thanks for your time... here is the issue .... If I enable telnet on the router Line vty 0 4 transport input telnet ssh ( I added telnet here ) The result is that it partially works, but its dead slow.. rancid at rancid ~]$ clogin -c "show run" bom01-wxbb-art01 bom01-wxbb-art01 spawn telnet bom01-wxbb-art01 Trying 210.4.192.33... Connected to bom01-wxbb-art01.webex.com (210.4.192.33). Escape character is '^]'. Username: rancid Password: bom01-wxbb-art01# bom01-wxbb-art01#term length 0 ( I pressed ctrl+c here . ) bom01-wxbb-art01#[rancid at rancid ~]$ If I disable telnet. Lien vty 0 4 Transport input ssh ( I removed the telnet here ) Then the result is as below. [rancid at rancid ~]$ [rancid at rancid ~]$ clogin -c "show run" bom01-wxbb-art01 bom01-wxbb-art01 spawn telnet bom01-wxbb-art01 Trying 210.4.192.33... telnet: connect to address 210.4.192.33: Connection refused spawn ssh -c 3des -x -l rancid bom01-wxbb-art01 Error: TIMEOUT reached Please suggest whether do I need regenerate the crypto keys for ssh access? I am able to ssh to bom01-wxbb-art01 router from putty with out any issues. This router's brother bom01-wxbb-art02 is working fine with out any issues. Regards Suresh -----Original Message----- From: john heasley [mailto:heas at shrubbery.net] Sent: Wednesday, February 27, 2008 3:24 PM To: georg.naggies at r-it.at Cc: bsuresh1976 at hotmail.com; rancid-discuss at shrubbery.net Subject: Re: [rancid] ASSISTANCE NEEDED Wed, Feb 27, 2008 at 09:19:26AM +0100, georg.naggies at r-it.at: > Hi! > > "TIMEOUT reached" just means that the device was not reachable, offline, > powered down, could have been anything. > > Georg not quite, it appears that it got through at least the first command. So, the login was successful and its began ok. Please see section 3 of the FAQ. > > > > > bsuresh1976 at hotmail.com > Gesendet von: rancid-discuss-bounces at shrubbery.net > 27.02.2008 09:04 > > An > rancid-discuss at shrubbery.net > Kopie > > Thema > [rancid] ASSISTANCE NEEDED > > > > > > > Guys, > > I am new to the RANCID. Rancid was setup by my colleague & I am the end > user. Some of the routers works fine, but on some of the routers I get the > below error. > > Could some one please assist me?? I googled for an answer, but I could not > get the correct answer? > > routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found > routers.20080226.223517:bom01-wxbb-art01.webex.com clogin error: Error: > TIMEOUT reached > routers.20080226.223517:bom01-wxbb-art01.webex.com: missed cmd(s): dir > /all slavedisk2:,show rsp chassis-info,dir /all s > ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all > sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp > e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all > slaveslot0:,dir /all sec-slot1:,dir /all harddiska: > ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all > slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb > :,show variables boot,show boot,dir /all slavedisk1:,show module,show > controllers,show diagbus,dir /all slavedisk0:,dir > /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show > vtp status,dir /all sup-bootflash:,dir /all slot > 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show > vlan,dir /all slavebootflash:,show controllers cbus,d > ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir > /all slot1: > routers.20080226.223517:bom01-wxbb-art01.webex.com: End of run not found > > Regards, > > Suresh > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > ---------------------------------------- > Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR 0486809, UID ATU 16351908 > > Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen duerfen ueber dieses Medium nicht ausgetauscht werden. > Correspondence with above mentioned sender via e-mail is only for information purposes. This medium may not be used for exchange of legally-binding communications. > ---------------------------------------- > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080228/b88f31f7/attachment.html From rancid at gheek.net Thu Feb 28 13:54:00 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 28 Feb 2008 06:54:00 -0700 Subject: [rancid] Re: cisco fsm login In-Reply-To: <528030.17991.qm@web50905.mail.re2.yahoo.com> References: <528030.17991.qm@web50905.mail.re2.yahoo.com> Message-ID: <8423e7bb0802280554o5f5184a8tee89dcee398effd0@mail.gmail.com> After you session do you have to login again? If not you could always to the following from the cli using If that works like a charm then you could easily slightly change the script to run that at the beginning for a new type of device. If I get around to getting time I could probably help if it is really simple and not time consuming. -Lance clogin -c "session slot 1 proc 1; show run" myfwsm On 2/27/08, derek stewart wrote: > I need to login to a cisco fsm and run a command; session slot 1 proc 1. Whats the easiest way to do this? > > -derek > > > > > ____________________________________________________________________________________ > Looking for last minute shopping deals? > Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From rancid at gheek.net Thu Feb 28 13:56:11 2008 From: rancid at gheek.net (Lance Vermilion) Date: Thu, 28 Feb 2008 06:56:11 -0700 Subject: [rancid] Re: ASSISTANCE NEEDED In-Reply-To: References: <002801c87917$5cab7b90$7f3da8c0@webex.local> <20080227095402.GC3548@shrubbery.net> Message-ID: <8423e7bb0802280556x105ad7abxa5b25ecb3156c18@mail.gmail.com> Suresh, >From the same machine you run rancid from what happens if you ssh? -Lance On 2/27/08, bsuresh1976 wrote: > > > > John, > > > > Thanks for your time... here is the issue ... > > > > If I enable telnet on the router > > Line vty 0 4 > > transport input telnet ssh ( I added telnet here ) > > > > > > > > The result is that it partially works, but its dead slow?. > > > > rancid at rancid ~]$ clogin -c "show run" bom01-wxbb-art01 > > bom01-wxbb-art01 > > spawn telnet bom01-wxbb-art01 > > Trying 210.4.192.33... > > Connected to bom01-wxbb-art01.webex.com (210.4.192.33). > > Escape character is '^]'. > > > > Username: rancid > > Password: > > > > bom01-wxbb-art01# > > bom01-wxbb-art01#term length 0 ( I pressed ctrl+c here ? ) > > bom01-wxbb-art01#[rancid at rancid ~]$ > > > > If I disable telnet? > > > > Lien vty 0 4 > > Transport input ssh ( I removed the telnet here ) > > > > > > Then the result is as below? > > > > [rancid at rancid ~]$ > > [rancid at rancid ~]$ clogin -c "show run" bom01-wxbb-art01 > > bom01-wxbb-art01 > > spawn telnet bom01-wxbb-art01 > > Trying 210.4.192.33... > > telnet: connect to address 210.4.192.33: Connection refused > > spawn ssh -c 3des -x -l rancid bom01-wxbb-art01 > > > > Error: TIMEOUT reached > > > > > > Please suggest whether do I need regenerate the crypto keys for ssh access? > I am able to ssh to bom01-wxbb-art01 router from putty with out any issues. > > > > This router's brother bom01-wxbb-art02 is working fine with out any issues. > > > > > > Regards > > > > Suresh > > > > > -----Original Message----- > From: john heasley [mailto:heas at shrubbery.net] > Sent: Wednesday, February 27, 2008 3:24 PM > To: georg.naggies at r-it.at > Cc: bsuresh1976 at hotmail.com; rancid-discuss at shrubbery.net > Subject: Re: [rancid] ASSISTANCE NEEDED > > > > Wed, Feb 27, 2008 at 09:19:26AM +0100, georg.naggies at r-it.at: > > > Hi! > > > > > > "TIMEOUT reached" just means that the device was not reachable, offline, > > > powered down, could have been anything. > > > > > > Georg > > > > not quite, it appears that it got through at least the first command. So, > > the login was successful and its began ok. Please see section 3 of the FAQ. > > > > > > > > > > > > > > > > > bsuresh1976 at hotmail.com > > > Gesendet von: rancid-discuss-bounces at shrubbery.net > > > 27.02.2008 09:04 > > > > > > An > > > rancid-discuss at shrubbery.net > > > Kopie > > > > > > Thema > > > [rancid] ASSISTANCE NEEDED > > > > > > > > > > > > > > > > > > > > > Guys, > > > > > > I am new to the RANCID. Rancid was setup by my colleague & I am the end > > > user. Some of the routers works fine, but on some of the routers I get the > > > below error. > > > > > > Could some one please assist me?? I googled for an answer, but I could not > > > get the correct answer? > > > > > > routers.20080226.223517:bom01-wxbb-art01.webex.com: End > of run not found > > > routers.20080226.223517:bom01-wxbb-art01.webex.com clogin > error: Error: > > > TIMEOUT reached > > > routers.20080226.223517:bom01-wxbb-art01.webex.com: > missed cmd(s): dir > > > /all slavedisk2:,show rsp chassis-info,dir /all s > > > ec-slot2:,show diag,dir /all disk1:,show gsr chassis,dir /all > > > sec-nvram:,dir /all disk2:,dir /all sec-bootflash:,show sp > > > e version,dir /all slaveslot2:,dir /all disk0:,show bootvar,dir /all > > > slaveslot0:,dir /all sec-slot1:,dir /all harddiska: > > > ,dir /all slavenvram:,show flash,dir /all sec-disk2:,dir /all > > > slavesup-bootflash:,dir /all sec-disk0:,dir /all harddiskb > > > :,show variables boot,show boot,dir /all slavedisk1:,show module,show > > > controllers,show diagbus,dir /all slavedisk0:,dir > > > /all bootflash:,dir /all sec-slot0:,dir /all sec-disk1:,write term,show > > > vtp status,dir /all sup-bootflash:,dir /all slot > > > 2:,dir /all harddisk:,dir /all slot0:,dir /all sup-microcode:,show > > > vlan,dir /all slavebootflash:,show controllers cbus,d > > > ir /all slaveslot1:,dir /all nvram:,show running-config,show c7200,dir > > > /all slot1: > > > routers.20080226.223517:bom01-wxbb-art01.webex.com: End > of run not found > > > > > > Regards, > > > > > > Suresh > > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > > > > > > ---------------------------------------- > > > Raiffeisen Informatik GmbH, Firmenbuchnr. 88239p, Handelsgericht Wien, DVR > 0486809, UID ATU 16351908 > > > > > > Der Austausch von Nachrichten mit oben angefuehrtem Absender via E-Mail > dient ausschliesslich Informationszwecken. Rechtsgeschaeftliche Erklaerungen > duerfen ueber dieses Medium nicht ausgetauscht werden. > > > Correspondence with above mentioned sender via e-mail is only for > information purposes. This medium may not be used for exchange of > legally-binding communications. > > > ---------------------------------------- > > > > > _______________________________________________ > > > Rancid-discuss mailing list > > > Rancid-discuss at shrubbery.net > > > > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > From smunzani at comcast.net Thu Feb 28 16:09:44 2008 From: smunzani at comcast.net (Sam Munzani) Date: Thu, 28 Feb 2008 10:09:44 -0600 Subject: [rancid] Re: cisco fsm login In-Reply-To: <8423e7bb0802280554o5f5184a8tee89dcee398effd0@mail.gmail.com> References: <528030.17991.qm@web50905.mail.re2.yahoo.com> <8423e7bb0802280554o5f5184a8tee89dcee398effd0@mail.gmail.com> Message-ID: <47C6DCC8.5080107@comcast.net> Why not login to the FWSM directly using ssh or telnet once the module is configured? Sam > After you session do you have to login again? If not you could always > to the following from the cli using If that works like a charm then > you could easily slightly change the script to run that at the > beginning for a new type of device. If I get around to getting time I > could probably help if it is really simple and not time consuming. > > -Lance > > clogin -c "session slot 1 proc 1; show run" myfwsm > > On 2/27/08, derek stewart wrote: > >> I need to login to a cisco fsm and run a command; session slot 1 proc 1. Whats the easiest way to do this? >> >> -derek >> >> >> >> >> ____________________________________________________________________________________ >> Looking for last minute shopping deals? >> Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping >> _______________________________________________ >> Rancid-discuss mailing list >> Rancid-discuss at shrubbery.net >> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss >> >> > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080228/18f714ee/attachment.html From James.Baldwin at golfsmith.com Thu Feb 28 18:32:40 2008 From: James.Baldwin at golfsmith.com (Baldwin, James) Date: Thu, 28 Feb 2008 12:32:40 -0600 Subject: [rancid] RANCID/Solaris 10 x86 Message-ID: <039DDF55C904ED4A83611E4F8E7B739B0697974F@austsrvexch03.GSICORP.COM> I am running into a problem where cvs is aborting addition of configs. The rancid user has permission to write to all files under the localstatedir and owns them all. These are logging in via SSH (and google did show one person with a similar log having issues over SSH as well, however a clogin -c "show run" router is successful). Any ideas where to start? System information: Solaris 10 x86 Generic_120012-14 (should be current patch level) RANCID 2.3.1 (clean install) Logs: starting: Thu Feb 28 12:25:53 CST 2008 cvs status: cannot open CVS/Entries for reading: No such file or directory cvs status: use `cvs add' to create an entry for austrtrinternet01 cvs add: in directory .: cvs [add aborted]: there is no version here; do 'cvs checkout' first CVS added missing router austrtrinternet01 cvs status: cannot open CVS/Entries for reading: No such file or directory cvs status: use `cvs add' to create an entry for austrtrinternet02 cvs add: in directory .: cvs [add aborted]: there is no version here; do 'cvs checkout' first CVS added missing router austrtrinternet02 Trying to get all of the configs. All routers sucessfully completed. cvs diff: in directory .: cvs [diff aborted]: there is no version here; run 'cvs checkout' first cvs commit: in directory .: cvs [commit aborted]: there is no version here; run 'cvs checkout' first ending: Thu Feb 28 12:26:00 CST 2008 --- James Baldwin From eravin at panix.com Thu Feb 28 23:44:57 2008 From: eravin at panix.com (Ed Ravin) Date: Thu, 28 Feb 2008 18:44:57 -0500 Subject: [rancid] OAM Ping scripts? Message-ID: <20080228234456.GA27183@panix.com> Has anyone automated performing OAM ping on an interface? It seems like a natural fit for RANCID... From stewbeme at yahoo.com Fri Feb 29 02:32:56 2008 From: stewbeme at yahoo.com (derek stewart) Date: Thu, 28 Feb 2008 18:32:56 -0800 (PST) Subject: [rancid] Re: cisco fsm login Message-ID: <585604.38447.qm@web50906.mail.re2.yahoo.com> I wish, but the company i work for is high profile and this would not be allowed. I guess i will start with the "clogin -c "session slot 1 proc 1; show run" myfwsm" and see if i can figure it out. Thanks for everyones help, Derek ----- Original Message ---- From: Sam Munzani To: Lance Vermilion Cc: derek stewart ; rancid-discuss at shrubbery.net Sent: Thursday, February 28, 2008 10:09:44 AM Subject: Re: [rancid] Re: cisco fsm login Why not login to the FWSM directly using ssh or telnet once the module is configured? Sam After you session do you have to login again? If not you could always to the following from the cli using If that works like a charm then you could easily slightly change the script to run that at the beginning for a new type of device. If I get around to getting time I could probably help if it is really simple and not time consuming. -Lance clogin -c "session slot 1 proc 1; show run" myfwsm On 2/27/08, derek stewart wrote: I need to login to a cisco fsm and run a command; session slot 1 proc 1. Whats the easiest way to do this? -derek ____________________________________________________________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss ____________________________________________________________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080228/eda781f9/attachment.html From ecables at gmail.com Fri Feb 29 04:47:46 2008 From: ecables at gmail.com (Eric Cables) Date: Thu, 28 Feb 2008 20:47:46 -0800 Subject: [rancid] Re: cisco fsm login In-Reply-To: <585604.38447.qm@web50906.mail.re2.yahoo.com> References: <585604.38447.qm@web50906.mail.re2.yahoo.com> Message-ID: What does being high profile have to do with not being able to SSH into a FWSM? How is that any different than SSH'ng into the 6500, and then sessioning into the FWSM? The FWSM has the same mechanisms in place for restricting source management stations as a 6500 does. I'm sure it's none of my business, but it has sparked my curiosity. Does this policy apply to all firewalls in your network, or only FWSMs? On Thu, Feb 28, 2008 at 6:32 PM, derek stewart wrote: > I wish, but the company i work for is high profile and this would not be > allowed. I guess i will start with the "clogin -c "session slot 1 proc 1; > show run" myfwsm" and see if i can figure it out. > > > > Thanks for everyones help, > > Derek > > ----- Original Message ---- > From: Sam Munzani > To: Lance Vermilion > Cc: derek stewart ; rancid-discuss at shrubbery.net > Sent: Thursday, February 28, 2008 10:09:44 AM > Subject: Re: [rancid] Re: cisco fsm login > > Why not login to the FWSM directly using ssh or telnet once the module is > configured? > > Sam > > After you session do you have to login again? If not you could always > to the following from the cli using If that works like a charm then > you could easily slightly change the script to run that at the > beginning for a new type of device. If I get around to getting time I > could probably help if it is really simple and not time consuming. > > -Lance > > clogin -c "session slot 1 proc 1; show run" myfwsm > > On 2/27/08, derek stewart wrote: > > > I need to login to a cisco fsm and run a command; session slot 1 proc 1. Whats the easiest way to do this? > > -derek > > > > > ____________________________________________________________________________________ > Looking for last minute shopping deals? > Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping > _______________________________________________ > Rancid-discuss mailing listRancid-discuss at shrubbery.nethttp://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > _______________________________________________ > Rancid-discuss mailing listRancid-discuss at shrubbery.nethttp://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > > > > > ------------------------------ > Looking for last minute shopping deals? Find them fast with Yahoo! Search. > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss > -- Eric Cables -------------- next part -------------- An HTML attachment was scrubbed... URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20080228/566f9cfa/attachment.html