From jethro.binks at strath.ac.uk Thu Nov 1 09:37:43 2018 From: jethro.binks at strath.ac.uk (Jethro R Binks) Date: Thu, 1 Nov 2018 09:37:43 +0000 (GMT) Subject: [rancid] Problem rancid 3.7 after cmw / hp 5130 routers 5130 firmware upgrade In-Reply-To: <20181031162451.GB1057@shrubbery.net> References: <20181030154029.GA96655@shrubbery.net> <20181031162451.GB1057@shrubbery.net> Message-ID: On Wed, 31 Oct 2018, heasley wrote: > we do not support that module; ask whomever wrote it. but, my guess > would be that the cause is that the device appears to not reliably > echo the after 'exit' and the loop around input must be adjusted > to accept that, as the ios module does. > > i do not know the hp 5130; you might try the hp, foundry, or smc device > types that rancid supports. I can look at this. I haven't tried version 3208P03 so I'll upgrade one of mine and see what has happened and suggest changes. Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks, Network Manager, Information Services Directorate, University Of Strathclyde, Glasgow, UK The University of Strathclyde is a charitable body, registered in Scotland, number SC015263. From nineoften at hotmail.com Thu Nov 1 21:51:46 2018 From: nineoften at hotmail.com (Ni Ne) Date: Thu, 1 Nov 2018 21:51:46 +0000 Subject: [rancid] Restoring OpenGear configuration from RANCID file Message-ID: Ran into this today and figured I would share. If you try to restore a RANCID file from an OpenGear directly onto the device it won?t work. You need to modify the configuration file first in a few ways: 1. Remove initial comment lines added by RANCID, and the line that talks about the make/model/version * Essentially modify file so the line with After: Then you must paste in your modified configuration file via the WebUI of the OpenGear under the menu Configuration Backup > XML Configuration. Hope this helps someone, -Aaron -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Mon Nov 5 19:29:07 2018 From: heas at shrubbery.net (heasley) Date: Mon, 5 Nov 2018 19:29:07 +0000 Subject: [rancid] paloalto feedback in current alpha [was: Re: clogin commenting script commands following multiple blanks lines] In-Reply-To: <57c1f63c-e380-f367-cfb1-b20fc07a949b@buh.org> References: <20181024211803.E44A79CA7B@sea.shrubbery.net> <20181024211930.GA72307@shrubbery.net> <20181024223210.GC72307@shrubbery.net> <57c1f63c-e380-f367-cfb1-b20fc07a949b@buh.org> Message-ID: <20181105192907.GF26905@shrubbery.net> Fri, Oct 26, 2018 at 06:24:10PM -0400, Erik Muller: > On 10/24/18 18:32 , heasley wrote: > > Wed, Oct 24, 2018 at 09:19:31PM +0000, heasley: > > ok; committed. Either the alpha tarball or the svn repo. Welcome testers, > > esp for palo alto, of which I have none. > > At least on 8.1.4 on my 3250s, the cli is a little bit busted until you get out of interactive mode - for every space you enter between words in the command, it redraws the current line, which was messing up the prompt matching as below. Fix for that attached at end of message. > -e super; committed. thanks. > diff -ur rancid-3.99.99/etc/rancid.types.base rancid-3.99.99-em/etc/rancid.types.base > --- rancid-3.99.99/etc/rancid.types.base 2018-10-24 11:13:49.000000000 -0400 > +++ rancid-3.99.99-em/etc/rancid.types.base 2018-10-26 17:16:53.950868707 -0400 > @@ -607,9 +607,8 @@ > paloalto;login;panlogin > paloalto;module;panos > paloalto;inloop;panos::inloop > -paloalto;command;rancid::RunCommand;set cli scripting-mode on > -paloalto;command;rancid::RunCommand;set cli pager off > paloalto;command;panos::ShowInfo;show system info > +paloalto;command;panos::ShowInventory;show chassis inventory > paloalto;command;panos::ShowConfig;show config running > # > procket;script;prancid > diff -ur rancid-3.99.99/lib/panos.pm.in rancid-3.99.99-em/lib/panos.pm.in > --- rancid-3.99.99/lib/panos.pm.in 2016-02-16 07:28:46.000000000 -0500 > +++ rancid-3.99.99-em/lib/panos.pm.in 2018-10-26 17:19:11.552895792 -0400 > @@ -119,6 +119,23 @@ > return(0); > } > > +# This routine parses "show chassis inventory" > +sub ShowInventory { > + my($INPUT, $OUTPUT, $cmd) = @_; > + my($slot); > + > + print STDERR " In ShowInventory:: $_" if ($debug); > + > + while (<$INPUT>) { > + tr/\015//d; > + last if (/^$prompt/); > + > + ProcessHistory("INV","","","#$_"); > + } > + ProcessHistory("INV","","","#\n"); > + return(0); > +} > + > > # This routine parses "show config running" > sub ShowConfig { Is this a new command or specific to larger platforms? What is the error if the command is unknown? > diff -ur rancid-3.99.99/lib/nxos.pm.in rancid-3.99.99-em/lib/nxos.pm.in > --- rancid-3.99.99/lib/nxos.pm.in 2018-09-19 18:02:44.000000000 -0400 > +++ rancid-3.99.99-em/lib/nxos.pm.in 2018-10-26 17:58:51.611639817 -0400 > @@ -494,9 +494,12 @@ > # Drop vtp_debug.log and vtp_debug_old.log CDETS bug CSCuy87611 > /\s+vtp_debug(_old)?\.log$/ && next; > > + # Drop bcm_mem_locl_trace.log > + /\s+bcm_mem_lock_trace\.log$/ && next; > + > next if (/BufferMonitor-1HourData/); > > - if (/( debug_logs| log)\/$/) { > + if (/( debug_logs| log| vdc_\d+)\/$/) { > # change > # 8192 Jan 08 14:05:05 2015 log/ > # to did I miss an explaination of this patch? I see what it does, but ... From serv.informatique.chd at gmail.com Tue Nov 6 09:03:09 2018 From: serv.informatique.chd at gmail.com (Service Informatique CH DECIZE) Date: Tue, 6 Nov 2018 10:03:09 +0100 Subject: [rancid] Problem rancid 3.7 after cmw / hp 5130 routers 5130 firmware upgrade In-Reply-To: References: <20181030154029.GA96655@shrubbery.net> <20181031162451.GB1057@shrubbery.net> Message-ID: Hello, Many thanks Jethro, your help is welcome. When will have you time to take a look at the problem please ? Just to know if we can hope a solution soon, or not... Yann. Le jeu. 1 nov. 2018 ? 10:37, Jethro R Binks a ?crit : > On Wed, 31 Oct 2018, heasley wrote: > > > we do not support that module; ask whomever wrote it. but, my guess > > would be that the cause is that the device appears to not reliably > > echo the after 'exit' and the loop around input must be adjusted > > to accept that, as the ios module does. > > > > i do not know the hp 5130; you might try the hp, foundry, or smc device > > types that rancid supports. > > I can look at this. I haven't tried version 3208P03 so I'll upgrade one > of mine and see what has happened and suggest changes. > > Jethro. > > > . . . . . . . . . . . . . . . . . . . . . . . . . > Jethro R Binks, Network Manager, > Information Services Directorate, University Of Strathclyde, Glasgow, UK > > The University of Strathclyde is a charitable body, registered in > Scotland, number SC015263. > -------------- next part -------------- An HTML attachment was scrubbed... URL: From erikm at buh.org Tue Nov 6 12:53:42 2018 From: erikm at buh.org (Erik Muller) Date: Tue, 6 Nov 2018 07:53:42 -0500 Subject: [rancid] paloalto feedback in current alpha [was: Re: clogin commenting script commands following multiple blanks lines] In-Reply-To: <20181105192907.GF26905@shrubbery.net> References: <20181024211803.E44A79CA7B@sea.shrubbery.net> <20181024211930.GA72307@shrubbery.net> <20181024223210.GC72307@shrubbery.net> <57c1f63c-e380-f367-cfb1-b20fc07a949b@buh.org> <20181105192907.GF26905@shrubbery.net> Message-ID: On 11/5/18 14:29 , heasley wrote: > Fri, Oct 26, 2018 at 06:24:10PM -0400, Erik Muller: >> >> +# This routine parses "show chassis inventory" >> +sub ShowInventory { ... > > Is this a new command or specific to larger platforms? What is the error > if the command is unknown? I assume it's universal across all PA (looks like it was introduced to the CLI reference docs in panos 6.0), but I only have one model to test against, on which it does: admin at fw1.ams(active)> show chassis inventory Slot Component Serial Number Ports Revision PA-3250 0xxxxxxxxxx1 20 1.1 FANTRAY1 PA-3200-FANTRAY 0xxxxxxxxxx9 1.0 PS1 (left) D1U54P-W-650-12-HB4C-PAN Mxxxxxxxxxx7 RB PS2 (right) D1U54P-W-650-12-HB4C-PAN Mxxxxxxxxxx1 RB Presumably on a box that doesn't support it, you'd get: admin at fw1.ams(active)> show badcommand Invalid syntax. admin at fw1.ams(active)> >> diff -ur rancid-3.99.99/lib/nxos.pm.in rancid-3.99.99-em/lib/nxos.pm.in >> --- rancid-3.99.99/lib/nxos.pm.in 2018-09-19 18:02:44.000000000 -0400 >> +++ rancid-3.99.99-em/lib/nxos.pm.in 2018-10-26 17:58:51.611639817 -0400 >> + # Drop bcm_mem_locl_trace.log >> + /\s+bcm_mem_lock_trace\.log$/ && next; >> + >> - if (/( debug_logs| log)\/$/) { >> + if (/( debug_logs| log| vdc_\d+)\/$/) { > > did I miss an explaination of this patch? I see what it does, but ... Whoops, meant to break that out as a separate patch. Nexus 9300s on 7.0.3.I7.5 seem to fairly regularly append to debug:/bcm_mem_lock_trace.log resulting in a lot of noisy diffs. The vdc_1 bit I was testing, but may not be necessary - I think that may only update when a config change is saved, but doesn't seem to generate any spurious changes in normal operation. From KGeil at orda.org Tue Nov 6 18:13:18 2018 From: KGeil at orda.org (Kevin Geil) Date: Tue, 6 Nov 2018 18:13:18 +0000 Subject: [rancid] Ubiquiti edgeswitch (edgemax) script? Message-ID: Hi, I'm trying to get RANCID to poll my ubiquiti edge switches, and am a bit perplexed. From what I've found online in other mailing lists, it is possible to use RANCID to poll these, using the edgemax script. So far, I've set up the router.db with edgemax. When I invoke rancid-run, nothing much happens, and when I look in the log, I see: ===================================== Getting missed routers: round 2. myEdgeSwitch: End of run not found ! ===================================== So far, I have tried adding my own device type by copying the "EdgeMax" device config in rancid.types.base to rancid.types.conf, and calling it EdgeSwitch (which is the right thing to do right? Despite the dire warnings at the top of each file, it's not entirely clear how to do this, as they both warn against editing the file). I tried to use ulogin instead of clogin, with the same result. I can successfully authenticate to the switches by using both clogin and ulogin. What is now really confusing is that I don't know what script RANCID should be running. In rancid.types.base, the edgemax config looks like this: ## UBNT EdgeMAX edgemax;script;rancid -t edgemax edgemax;login;clogin edgemax;module;edgemax ...more commands... What confuses me is that there isn't a script in the bin directory called edgemax, so I'm not sure what script it should be running. There IS a file in lib/rancid called edgemax.pm, but that doesn't get referenced by the config in rancid.types.base. If someone could help clarify 1. What "end of run not found" means to me, and 2. What script the edgemax config should be running, I might be able to figure this all out. Thank you. Kevin -------------- next part -------------- An HTML attachment was scrubbed... URL: From doug.hughes at keystonenap.com Tue Nov 6 18:33:10 2018 From: doug.hughes at keystonenap.com (Doug Hughes) Date: Tue, 6 Nov 2018 13:33:10 -0500 Subject: [rancid] Ubiquiti edgeswitch (edgemax) script? In-Reply-To: References: Message-ID: <0980b208-ac1d-c209-1b9d-b9c220eb7658@keystonenap.com> I have a few of the edge switches (edgeswitch-X) I use this in my etc/rancid.types.conf # Ubiquiti Switches and some radios ubntsw;script;rancid -t ubntsw ubntsw;login;ulogin ubntsw;module;ubnt ubntsw;inloop;ubnt::inloop ubntsw;command;ubnt::ShowVersion;show version ubntsw;command;ubnt::ShowConfig;show configuration I have my own ulogin, but it looks like your login that you are currently using works just fine. Basically, there are only 2 commands that matter, the show version and show configuration. I contributed by lib/rancid/ubnt.pl back a couple of years ago, but can't remember if it made it in. There may be a more recent way to do it, but I'm happy to share it. On 11/6/2018 1:13 PM, Kevin Geil wrote: > > Hi, I?m trying to get RANCID to poll my ubiquiti edge switches, and am > a bit perplexed.? From what I?ve found online in other mailing lists, > it is possible to use RANCID to poll these, using the edgemax script. > So far, I?ve set up the router.db with edgemax.? When I > invoke rancid-run, nothing much happens, and when I look in the log, I > see: > > ===================================== > > Getting missed routers: round 2. > > myEdgeSwitch: End of run not found > > ! > > ===================================== > > ? > > So far, I have tried adding my own device type by copying the > ?EdgeMax? device config in rancid.types.base to rancid.types.conf, and > calling it EdgeSwitch (which is the right thing to do right? Despite > the dire warnings at the top of each file, it?s not entirely clear how > to do this, as they both warn against editing the file).? I tried to > use ulogin instead of clogin, with the same result. > I can successfully ?authenticate to the switches by using both clogin > and ulogin. > > ? > > > What is now really confusing is that I don?t know what script RANCID > should be running.? In rancid.types.base, the edgemax config looks > like this: > > ? > > ## UBNT EdgeMAX > > edgemax;script;rancid -t edgemax > > edgemax;login;clogin > > edgemax;module;edgemax > > ?more commands? > > > What confuses me is that there isn?t a script in the bin directory > called edgemax, so I?m not sure what script it should be running.? > There IS a file in lib/rancid called edgemax.pm, but that doesn?t get > referenced by the config in rancid.types.base. > > > If someone could help clarify > > ? > > 1. What ?end of run not found? means to me, and > > 2. What script the edgemax config should be running, I might be able > to figure this all out.? > > > Thank you. > > ? > > Kevin > > > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss -- Doug Hughes Keystone NAP Fairless Hills, PA 1.844.KEYBLOCK (539.2562) -------------- next part -------------- An HTML attachment was scrubbed... URL: -------------- next part -------------- A non-text attachment was scrubbed... Name: keystone-nap.png Type: image/png Size: 3476 bytes Desc: not available URL: From heas at shrubbery.net Tue Nov 6 18:43:23 2018 From: heas at shrubbery.net (heasley) Date: Tue, 6 Nov 2018 18:43:23 +0000 Subject: [rancid] Ubiquiti edgeswitch (edgemax) script? In-Reply-To: References: Message-ID: <20181106184323.GB36501@shrubbery.net> Tue, Nov 06, 2018 at 06:13:18PM +0000, Kevin Geil: > Hi, I'm trying to get RANCID to poll my ubiquiti edge switches, and am a bit perplexed. From what I've found online in other mailing lists, it is possible to use RANCID to poll these, using the edgemax script. So far, I've set up the router.db with edgemax. When I invoke rancid-run, nothing much happens, and when I look in the log, I see: > ===================================== > Getting missed routers: round 2. > myEdgeSwitch: End of run not found > ! > ===================================== > > So far, I have tried adding my own device type by copying the "EdgeMax" device config in rancid.types.base to rancid.types.conf, and calling it EdgeSwitch (which is the right thing to do right? Despite the dire warnings at the top of each file, it's not entirely clear how to do this, as they both warn against editing the file). I tried to use ulogin instead of clogin, with the same result. > I can successfully authenticate to the switches by using both clogin and ulogin. unless you are changing the device spec somehow, there is no need to copy it. just use the edgemax spec. otherwise, yes, copy the spec to the .conf file with a different name. > > What is now really confusing is that I don't know what script RANCID should be running. In rancid.types.base, the edgemax config looks like this: > > ## UBNT EdgeMAX > edgemax;script;rancid -t edgemax > edgemax;login;clogin > edgemax;module;edgemax > ...more commands... the script is rancid, which imports the named modules, edgemax{.pm} in this case. also see rancid.types.conf(5) > What confuses me is that there isn't a script in the bin directory called edgemax, so I'm not sure what script it should be running. There IS a file in lib/rancid called edgemax.pm, but that doesn't get referenced by the config in rancid.types.base. > > If someone could help clarify > > 1. What "end of run not found" means to me, and it means that it did not find the end of the config or possibly no config. S3 Q2 of the FAQ has a good test outline. > 2. What script the edgemax config should be running, I might be able to figure this all out. > > Thank you. > > Kevin > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss From heas at shrubbery.net Tue Nov 6 18:46:48 2018 From: heas at shrubbery.net (heasley) Date: Tue, 6 Nov 2018 18:46:48 +0000 Subject: [rancid] Ubiquiti edgeswitch (edgemax) script? In-Reply-To: <0980b208-ac1d-c209-1b9d-b9c220eb7658@keystonenap.com> References: <0980b208-ac1d-c209-1b9d-b9c220eb7658@keystonenap.com> Message-ID: <20181106184647.GC36501@shrubbery.net> Tue, Nov 06, 2018 at 01:33:10PM -0500, Doug Hughes: > > I have a few of the edge switches (edgeswitch-X) > > I use this in my etc/rancid.types.conf > > # Ubiquiti Switches and some radios > ubntsw;script;rancid -t ubntsw > ubntsw;login;ulogin > ubntsw;module;ubnt > ubntsw;inloop;ubnt::inloop > ubntsw;command;ubnt::ShowVersion;show version > ubntsw;command;ubnt::ShowConfig;show configuration > > I have my own ulogin, but it looks like your login that you are > currently using works just fine. > > Basically, there are only 2 commands that matter, the show version and > show configuration. > > I contributed by lib/rancid/ubnt.pl back a couple of years ago, but > can't remember if it made it in. There may be a more recent way to do > it, but I'm happy to share it. Lacking testing from other folks, I wrote one a few IETFs ago. there are 3 variations for UBNT switches/routers; see rancid.types.conf. If I missed anything that your script supports, please lmk, otherwise I expect it matches or supercedes it. From doug.hughes at keystonenap.com Tue Nov 6 18:49:55 2018 From: doug.hughes at keystonenap.com (Doug Hughes) Date: Tue, 6 Nov 2018 13:49:55 -0500 Subject: [rancid] Ubiquiti edgeswitch (edgemax) script? In-Reply-To: <20181106184647.GC36501@shrubbery.net> References: <0980b208-ac1d-c209-1b9d-b9c220eb7658@keystonenap.com> <20181106184647.GC36501@shrubbery.net> Message-ID: <91e25323-37c8-f028-693b-ff6a8a070199@keystonenap.com> Yeah, I haven't upgraded in a little while, so I had a suspicion that you had released a more recent one. On 11/6/2018 1:46 PM, heasley wrote: > Tue, Nov 06, 2018 at 01:33:10PM -0500, Doug Hughes: >> I have a few of the edge switches (edgeswitch-X) >> >> I use this in my etc/rancid.types.conf >> >> # Ubiquiti Switches and some radios >> ubntsw;script;rancid -t ubntsw >> ubntsw;login;ulogin >> ubntsw;module;ubnt >> ubntsw;inloop;ubnt::inloop >> ubntsw;command;ubnt::ShowVersion;show version >> ubntsw;command;ubnt::ShowConfig;show configuration >> >> I have my own ulogin, but it looks like your login that you are >> currently using works just fine. >> >> Basically, there are only 2 commands that matter, the show version and >> show configuration. >> >> I contributed by lib/rancid/ubnt.pl back a couple of years ago, but >> can't remember if it made it in. There may be a more recent way to do >> it, but I'm happy to share it. > Lacking testing from other folks, I wrote one a few IETFs ago. there > are 3 variations for UBNT switches/routers; see rancid.types.conf. If I > missed anything that your script supports, please lmk, otherwise I expect > it matches or supercedes it. -- Doug Hughes Keystone NAP Fairless Hills, PA 1.844.KEYBLOCK (439.2562) -------------- next part -------------- An HTML attachment was scrubbed... URL: From Abdoulaye.CAMARA at orangemali.com Mon Nov 19 07:37:23 2018 From: Abdoulaye.CAMARA at orangemali.com (Abdoulaye CAMARA) Date: Mon, 19 Nov 2018 07:37:23 +0000 Subject: [rancid] error message References: <28820C3B52F8FD4BB58179EB80F9B69B01F267516E@GAFEX01.orangemali.local> <20181115183913.GG44752@shrubbery.net> Message-ID: <28820C3B52F8FD4BB58179EB80F9B69B01F269BD3A@GAFEX01.orangemali.local> Hello When I run rancid Get this error message in the log files perl: no suitable device found perl: no suitable device found Could someone please help or advise ? Ce message ?lectronique ainsi que toutes les pi?ces jointes est destin? ? ?tre re?u uniquement par les personnes autoris?es ? recevoir les informations confidentielles qu'il peut contenir. Les messages ?lectroniques aux clients, partenaires ou fournisseurs d?ORANGE MALI peuvent contenir des informations confidentielles et privil?gi?es. Toute diffusion non autoris?e est interdite. Veuillez ne pas lire, copier, transf?rer ou stocker ce message si vous n??tes pas un destinataire attendu de celui-ci. Si vous avez re?u ce message par erreur, veuillez le transf?rer ? l?exp?diteur et le supprimer compl?tement de votre syst?me informatique. From danm at prime.gushi.org Wed Nov 21 21:14:28 2018 From: danm at prime.gushi.org (Dan Mahoney (Gushi)) Date: Wed, 21 Nov 2018 13:14:28 -0800 (PST) Subject: [rancid] IOS topic: How to create a read-only user? Message-ID: Hey there, I log in to my cisco devices with SSH keys, but I don't think that matters for the purposes of this. I'd like to create a "rancid" user for my (cisco, primarily IOS classic) devices which has full privileges to do things like "show run", but that has no ability to change the configs. I know this is possible to do as part of Tacplus, but as I only have three or four devices, spinning up tacplus seems more complicated than need be. (This is why I mentioned ssh, just in case -- all my users have local privilege levels in the config). I'm sure this has been asked before, but my google-fu is failing me here. Bonus points if you know this for things like IOS-XR/XE or Junos. -- --------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC FB: fb.com/DanielMahoneyIV LI: linkedin.com/in/gushi Site: http://www.gushi.org --------------------------- From emille at abccommunications.com Wed Nov 21 21:17:35 2018 From: emille at abccommunications.com (Emille Blanc) Date: Wed, 21 Nov 2018 13:17:35 -0800 Subject: [rancid] IOS topic: How to create a read-only user? In-Reply-To: References: Message-ID: <4FBAFC2ECF5D6244BA4A26C1C94A1E270D7A3A39C2@exchange> I was about to say "We use TAC+", but since that's not what you're after... Your best bet would be parser views to do this. It'll give you the best control at the user level, without messing around with privilege levels. They're a bit of a PITA to setup, though. https://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gtclivws.html -----Original Message----- From: Rancid-discuss [mailto:rancid-discuss-bounces at shrubbery.net] On Behalf Of Dan Mahoney (Gushi) Sent: Wednesday, November 21, 2018 1:14 PM To: rancid-discuss at shrubbery.net Subject: [rancid] IOS topic: How to create a read-only user? Hey there, I log in to my cisco devices with SSH keys, but I don't think that matters for the purposes of this. I'd like to create a "rancid" user for my (cisco, primarily IOS classic) devices which has full privileges to do things like "show run", but that has no ability to change the configs. I know this is possible to do as part of Tacplus, but as I only have three or four devices, spinning up tacplus seems more complicated than need be. (This is why I mentioned ssh, just in case -- all my users have local privilege levels in the config). I'm sure this has been asked before, but my google-fu is failing me here. Bonus points if you know this for things like IOS-XR/XE or Junos. -- --------Dan Mahoney-------- Techie, Sysadmin, WebGeek Gushi on efnet/undernet IRC FB: fb.com/DanielMahoneyIV LI: linkedin.com/in/gushi Site: http://www.gushi.org --------------------------- _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo/rancid-discuss From heas at shrubbery.net Wed Nov 21 21:46:45 2018 From: heas at shrubbery.net (heasley) Date: Wed, 21 Nov 2018 21:46:45 +0000 Subject: [rancid] IOS topic: How to create a read-only user? In-Reply-To: References: Message-ID: <20181121214645.GB27773@shrubbery.net> Wed, Nov 21, 2018 at 01:14:28PM -0800, Dan Mahoney (Gushi): > I'd like to create a "rancid" user for my (cisco, primarily IOS classic) > devices which has full privileges to do things like "show run", but that > has no ability to change the configs. > > I know this is possible to do as part of Tacplus, but as I only have three > or four devices, spinning up tacplus seems more complicated than need be. > (This is why I mentioned ssh, just in case -- all my users have local > privilege levels in the config). > > I'm sure this has been asked before, but my google-fu is failing me here. > > Bonus points if you know this for things like IOS-XR/XE or Junos. in classic or xe, afaik, the only way is tacacs command authorization. they require level 15 to read the config - so.... though newer xe appears to have xr-like roles. for nx or xr, tacacs author or i _think_ its possible to create roles or askgroups (depending which you're smoking) particular to the perms that you want. that should be enough to seed your google foo. From weylin at bu.edu Fri Nov 23 05:50:21 2018 From: weylin at bu.edu (Piegorsch, Weylin William) Date: Fri, 23 Nov 2018 05:50:21 +0000 Subject: [rancid] IOS topic: How to create a read-only user? In-Reply-To: <20181121214645.GB27773@shrubbery.net> References: <20181121214645.GB27773@shrubbery.net> Message-ID: Unfortunately the only thing available to you in IOS classis is privlevels and parser views. I just tried IOS XE 16.6, and parser views are there; privlevel is been around everywhere in IOS and IOS XE (and even NX-OS though you have to jump hoops to use it there) since forever. So for IOS Classis, take your pick. Actually I didn?t know about parser views, thank you to Emille for teaching me something. With priv levels, you define the specific commands available in a privlevel (where the privlevel is either 1 through 14 or 2 though 14, can't remember if 1 is definable), then assign a user to that privlevel and the user is able to use *that specific command* as if it were privlevel 15. With parser views, I'm just reading about it now but from what I can tell it's similar except you can achieve significantly finer-grain control in a number of different ways. I suspect though that privlevels will be quicker to achieve what you're trying to do. It's "dirtier" (I suspect) than parser views, but if you were looking for the most-elegant solution you would have gone with a AAA server so I suspect you're more focused on getting a "good enough" job done quickly, than on getting it done best. IOS XR and NX-OS have pre-defined read-only roles. You didn?t ask about them, but "eh" these two are pretty easy. IOS XR isn?t documented formally in 5.3.3, but this article is written by Xander Thujis who (at the time) was the product lead so I think it's trustworthy: https://community.cisco.com/t5/xr-os-and-platforms/creating-username-passwd-on-ios-xr/m-p/2895304/highlight/true#M7066 NX-OS has had read-only baked-in for years, the specifics depend on the hardware: https://routing-bits.com/2011/05/24/nexus-user-roles/ weylin ? On 11/21/18, 4:46 PM, "heasley" wrote: Wed, Nov 21, 2018 at 01:14:28PM -0800, Dan Mahoney (Gushi): > I'd like to create a "rancid" user for my (cisco, primarily IOS classic) > devices which has full privileges to do things like "show run", but that > has no ability to change the configs. > > I know this is possible to do as part of Tacplus, but as I only have three > or four devices, spinning up tacplus seems more complicated than need be. > (This is why I mentioned ssh, just in case -- all my users have local > privilege levels in the config). > > I'm sure this has been asked before, but my google-fu is failing me here. > > Bonus points if you know this for things like IOS-XR/XE or Junos. in classic or xe, afaik, the only way is tacacs command authorization. they require level 15 to read the config - so.... though newer xe appears to have xr-like roles. for nx or xr, tacacs author or i _think_ its possible to create roles or askgroups (depending which you're smoking) particular to the perms that you want. that should be enough to seed your google foo. From Abdoulaye.CAMARA at orangemali.com Mon Nov 19 07:04:25 2018 From: Abdoulaye.CAMARA at orangemali.com (Abdoulaye CAMARA) Date: Mon, 19 Nov 2018 07:04:25 +0000 Subject: [rancid] error message In-Reply-To: <20181115183913.GG44752@shrubbery.net> References: <28820C3B52F8FD4BB58179EB80F9B69B01F267516E@GAFEX01.orangemali.local> <20181115183913.GG44752@shrubbery.net> Message-ID: <28820C3B52F8FD4BB58179EB80F9B69B01F269BBFE@GAFEX01.orangemali.local> Hello When I run rancid Get this error message in the log files perl: no suitable device found perl: no suitable device found Could someone please help or advise ? Ce message ?lectronique ainsi que toutes les pi?ces jointes est destin? ? ?tre re?u uniquement par les personnes autoris?es ? recevoir les informations confidentielles qu'il peut contenir. Les messages ?lectroniques aux clients, partenaires ou fournisseurs d?ORANGE MALI peuvent contenir des informations confidentielles et privil?gi?es. Toute diffusion non autoris?e est interdite. Veuillez ne pas lire, copier, transf?rer ou stocker ce message si vous n??tes pas un destinataire attendu de celui-ci. Si vous avez re?u ce message par erreur, veuillez le transf?rer ? l?exp?diteur et le supprimer compl?tement de votre syst?me informatique. From lola9253 at gmail.com Mon Nov 26 11:22:13 2018 From: lola9253 at gmail.com (=?UTF-8?B?0JzQuNGF0LDQuNC7?=) Date: Mon, 26 Nov 2018 12:22:13 +0100 Subject: [rancid] Gossamer Threads Mailing List Archive - rancid / Users digest Message-ID: Hello Dear Mr. Heasly I have the same problem, please help, the command is really sh environment all, below is a full output System temperature status is: Ok Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Cpu temp sensor 38.8 (N/A) N/A 95 100 2 Rear temp sensor 33.0 (N/A) N/A 65 75 3 Board temp sensor 30.0 (N/A) N/A 55 65 4 Front-panel temp sensor 27.9 (N/A) N/A 55 65 5 Board temp sensor 31.5 (N/A) N/A 75 85 6 FM6000 temp sensor 36.0 (N/A) N/A 92 100 PowerSupply 1: Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Power supply sensor 26.5 (N/A) N/A 60 70 PowerSupply 2: Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Power supply sensor 28.0 (N/A) N/A 60 70 System cooling status is: Ok Ambient temperature: 27C Airflow: port-side intake Config Actual Speed Stable Fan Status Speed Speed Uptime Stability Uptime -------------- ------ ------ ------ ---------------- --------- ---------------- 1/1 Ok 91% 92% 2 days, 20:11:21 Stable 2 days, 20:11:02 2/1 Ok 91% 92% 2 days, 20:11:21 Stable 2 days, 20:11:02 3/1 Ok 91% 90% 2 days, 20:11:21 Stable 2 days, 20:11:02 4/1 Ok 91% 92% 2 days, 20:11:21 Stable 2 days, 20:11:02 PowerSupply1/1 Ok 91% 94% 2 days, 20:10:58 Stable 2 days, 20:09:46 PowerSupply2/1 Ok 91% 93% 2 days, 20:10:58 Stable 2 days, 20:09:46 Power Input Output Output Supply Model Capacity Current Current Power Status Uptime ------ ----------- -------- ------- ------- ------ ------ ---------------- 1 PWR-460AC-F 460W 0.33A 4.88A 55.0W Ok 2 days, 20:10:58 2 PWR-460AC-F 460W 0.30A 4.62A 55.0W Ok 2 days, 20:10:58 Total -- 920W -- -- 110.0W -- -- Best regards, Mikhail Below is a digest of all new posts to the rancid / Users mailing list in the last twenty four hours. -------------------------------------------------------------------------------- Subject: Re: Arista Power supply timestamps Posted on: Mon Sep 17 14:46:40 2018 URL: https://lists.gt.net/rancid/Users/10432 Mon, Sep 17, 2018 at 11:30:35AM -0700, Azher: > Hello, > > I am backing up Arista devices using RANCID and works great, version > 3.7. Is there a way to ignore the following timestamped lines for > power supplies ? you'll have to show me the full output of the cli command that produces the input. i suspect that is show env all > Thanks > -Azher > > - !Power Supply 1: PWR-3KT-AC-RED 3000W Ok 122 days, 21:25:54 > > - !Power Supply 2: PWR-3KT-AC-RED 3000W Ok 122 days, 21:25:49 > > - !Power Supply 3: PWR-3KT-AC-RED 3000W Ok 122 days, 21:25:50 > > - !Power Supply 4: PWR-3KT-AC-RED 3000W Ok 122 days, 21:25:53 > > + !Power Supply 1: PWR-3KT-AC-RED 3000W Ok 123 days, 21:25:51 > > + !Power Supply 2: PWR-3KT-AC-RED 3000W Ok 123 days, 21:25:46 > > + !Power Supply 3: PWR-3KT-AC-RED 3000W Ok 123 days, 21:25:48 > > + !Power Supply 4: PWR-3KT-AC-RED 3000W Ok 123 days, 21:25:50 > > > - !Power Supply 1: PWR-500AC-F 500W Ok 56 days, 14:55:49 > > - !Power Supply 2: PWR-500AC-F 500W Ok 58 days, 8:59:50 > > + !Power Supply 1: PWR-500AC-F 500W Ok 57 days, 14:55:47 > > + !Power Supply 2: PWR-500AC-F 500W Ok 59 days, 8:59:48 > > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at shrubbery.net > http://www.shrubbery.net/mailman/listinfo/rancid-discuss _______________________________________________ Rancid-discuss mailing list Rancid-discuss at shrubbery.net http://www.shrubbery.net/mailman/listinfo/rancid-discuss -------------------------------------------------------------------------------- To unsubscribe from this digest, please update your profile at: https://lists.gt.net/ Mit freundlichen Gr??en, Mikhail. -------------- next part -------------- An HTML attachment was scrubbed... URL: From rwest at zyedge.com Tue Nov 27 15:55:46 2018 From: rwest at zyedge.com (Ryan West) Date: Tue, 27 Nov 2018 15:55:46 +0000 Subject: [rancid] FXOS debugging Message-ID: Hello, I've attempted to login via fxrancid, but I'm not entirely sure where it's failing. Here is the debug when trying to run one command with fxrancid -d > spawn id exp0 sent spawn id exp5 sent showspawn id exp5 sent < model> modelspawn id exp5 sent <\r\n> spawn id exp5 sent Cisco Firepower 2130 Threat Defense spawn id exp5 sent <\r\n> spawn id exp5 sent <> > > And here it fails when trying to run the same command but with a command fxlogin -d -c 'show model' expect: does "> " (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) ">" expect: set expect_out(1,string) "" expect: set expect_out(2,string) ">" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) ">" send: sending "show model\r" to { exp5 } invalid command name "^-" while executing "^-" invoked from within "expect { -re "\b+" { exp_continue } -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" } -re "^\[^\n\r]*$reprom..." (procedure "run_commands" line 36) invoked from within "run_commands $prompt $command" ("foreach" body line 206) invoked from within "foreach router [lrange $argv $i end] { set router [string tolower $router] # attempt at platform switching. set platform "" send_user ..." (file "/usr/local/rancid/bin/fxlogin" line 870) Thanks, -ryan -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Tue Nov 27 16:04:10 2018 From: heas at shrubbery.net (heasley) Date: Tue, 27 Nov 2018 16:04:10 +0000 Subject: [rancid] FXOS debugging In-Reply-To: References: Message-ID: <20181127160409.GC49902@shrubbery.net> Tue, Nov 27, 2018 at 03:55:46PM +0000, Ryan West: > Hello, > > I've attempted to login via fxrancid, but I'm not entirely sure where it's failing. Here is the debug when trying to run one command with fxrancid -d > > And here it fails when trying to run the same command but with a command fxlogin -d -c 'show model' you have to include the information that preceeded this and i need to see the complete and unaltered prompt. > expect: does "> " (spawn_id exp5) match glob pattern "Login failed"? no > "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no > "Press any key to continue"? no > "Enter Selection: "? Gate "Enter Selection: "? gate=no > "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no > "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no > "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no > "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no > "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no > "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=yes > expect: set expect_out(0,string) ">" > expect: set expect_out(1,string) "" > expect: set expect_out(2,string) ">" > expect: set expect_out(spawn_id) "exp5" > expect: set expect_out(buffer) ">" > send: sending "show model\r" to { exp5 } > invalid command name "^-" > while executing > "^-" > invoked from within > "expect { > -re "\b+" { exp_continue } > -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprom..." > (procedure "run_commands" line 36) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 206) > invoked from within > "foreach router [lrange $argv $i end] { > set router [string tolower $router] > # attempt at platform switching. > set platform "" > send_user ..." > (file "/usr/local/rancid/bin/fxlogin" line 870) From rwest at zyedge.com Tue Nov 27 16:34:22 2018 From: rwest at zyedge.com (Ryan West) Date: Tue, 27 Nov 2018 16:34:22 +0000 Subject: [rancid] FXOS debugging In-Reply-To: <20181127160409.GC49902@shrubbery.net> References: <20181127160409.GC49902@shrubbery.net> Message-ID: I lost the ability to reply inline easily, but here it is. rancid at netman:~$ fxlogin -d -c 'show model' custname-den-fw1 custname-den-fw1 spawn ssh -c 3des-cbc,aes128-cbc,aes256-cbc,aes256-ctr -x -l admin custname-den-fw1 parent: waiting for sync byte parent: telling child to go ahead parent: now unsynchronized from child spawn: returns {2858} Gate keeper glob pattern for '^<-+ More -+>[^ ]*' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '(Connection refused|Secure connection [^ ]+ refused)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '(Connection closed by|Connection to [^ ]+ closed)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '(Host key not found |The authenticity of host .* be established)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for 'HOST IDENTIFICATION HAS CHANGED' is 'HOST IDENTIFICATION HAS CHANGED'. Activating booster. Gate keeper glob pattern for 'Offending key for ' is 'Offending key for '. Activating booster. Gate keeper glob pattern for '^warning: remote host denied authentication agent forwarding.' is 'warning: remote host denied authentication agent forwarding?'. Activating booster. Gate keeper glob pattern for '(denied|Sorry)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for 'last login:' is 'last login:'. Activating booster. Gate keeper glob pattern for 'failed login:' is 'failed login:'. Activating booster. Gate keeper glob pattern for '% (Bad passwords|Authentication failed)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for 'Enter Selection: ' is 'Enter Selection: '. Activating booster. Gate keeper glob pattern for 'Press the key [^ ]+[ ]+' is 'Press the key *'. Activating booster. Gate keeper glob pattern for '@[^ ]+ ([Pp]assword|passwd|Enter password for [^ :]+):' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for 'Enter passphrase.*: ' is 'Enter passphrase*: '. Activating booster. Gate keeper glob pattern for '([Uu]sername|Login|login|user name|User):' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '([Pp]assword|passwd|Enter password for [^ :]+):' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '^([^ >]*)(>|#)' is ''. Not usable, disabling the performance booster. Gate keeper glob pattern for '[^ ]*[ ]+' is ''. Not usable, disabling the performance booster. expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no admin at custname-den-fw1's password: expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "admin at custname-den-fw1's password: " (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "@custname-den-fw1's password:" expect: set expect_out(1,string) "password" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "admin at custname-den-fw1's password:" send: sending "hipassword\r" to { exp5 } expect: continuing expect expect: does " " (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does " " (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does " " (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does " " (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does " " (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does " " (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does " " (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no expect: does " \r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does " \r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does " \r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does " \r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does " \r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does " \r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does " \r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) " \r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) " \r\n" expect: continuing expect expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0 expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Last login: Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=yes re=yes expect: set expect_out(0,string) "Last login:" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Last login:" expect: continuing expect expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) " Tue Nov 27 16:26:21 UTC 2018 from 205.177.112.120 on pts/0\r\n" expect: continuing expect expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no Successful login attempts for user 'admin' : 11 expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "Successful login attempts for user 'admin' : 11\r\n\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "Successful login attempts for user 'admin' : 11\r\n\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Successful login attempts for user 'admin' : 11\r\n\r\n" expect: continuing expect expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. Cisco is a registered trademark of Cisco Systems, Inc. All other trademarks are property of their respective owners. expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\nCisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Copyright 2004-2017, Cisco and/or its affiliates. All rights reserved. \r\n" expect: continuing expect expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "Cisco is a registered trademark of Cisco Systems, Inc. \r\nAll other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "Cisco is a registered trademark of Cisco Systems, Inc. \r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Cisco is a registered trademark of Cisco Systems, Inc. \r\n" expect: continuing expect expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "All other trademarks are property of their respective owners.\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "All other trademarks are property of their respective owners.\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "All other trademarks are property of their respective owners.\r\n" expect: continuing expect expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no Cisco Fire Linux OS v6.2.2 (build 11) Cisco Firepower 2130 Threat Defense v6.2.2 (build 81) expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "\r\nCisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "\r\n" expect: continuing expect expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "Cisco Fire Linux OS v6.2.2 (build 11)\r\nCisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "Cisco Fire Linux OS v6.2.2 (build 11)\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Cisco Fire Linux OS v6.2.2 (build 11)\r\n" expect: continuing expect expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) "Cisco Firepower 2130 Threat Defense v6.2.2 (build 81)\r\n\r\n" expect: continuing expect expect: does "" (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "" (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "" (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "" (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "" (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "" (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=no "Login invalid"? no "[^\r\n]*[\r\n]+"? (No Gate, RE only) gate=yes re=no > expect: does "> " (spawn_id exp5) match regular expression "^<-+ More -+>[^\n\r]*"? (No Gate, RE only) gate=yes re=no "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no "(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no expect: does "> " (spawn_id exp5) match glob pattern "unknown host\r"? no expect: does "> " (spawn_id exp5) match glob pattern "Host is unreachable"? no "No address associated with name"? no "(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no "HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no "Offending key for "? Gate "Offending key for "? gate=no expect: does "> " (spawn_id exp5) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no expect: does "> " (spawn_id exp5) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no expect: does "> " (spawn_id exp5) match regular expression "last login:"? Gate "last login:"? gate=no "failed login:"? Gate "failed login:"? gate=no expect: does "> " (spawn_id exp5) match glob pattern "Login failed"? no "% (Bad passwords|Authentication failed)"? (No Gate, RE only) gate=yes re=no "Press any key to continue"? no "Enter Selection: "? Gate "Enter Selection: "? gate=no "Press the key [^\r\n]+[\r\n]+"? Gate "Press the key *"? gate=no "@[^\r\n]+ ([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "Enter passphrase.*: "? Gate "Enter passphrase*: "? gate=no "([Uu]sername|Login|login|user name|User):"? (No Gate, RE only) gate=yes re=no "([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no "^([^ >]*)(>|#)"? (No Gate, RE only) gate=yes re=yes expect: set expect_out(0,string) ">" expect: set expect_out(1,string) "" expect: set expect_out(2,string) ">" expect: set expect_out(spawn_id) "exp5" expect: set expect_out(buffer) ">" send: sending "show model\r" to { exp5 } invalid command name "^-" while executing "^-" invoked from within "expect { -re "\b+" { exp_continue } -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" } -re "^\[^\n\r]*$reprom..." (procedure "run_commands" line 36) invoked from within "run_commands $prompt $command" ("foreach" body line 206) invoked from within "foreach router [lrange $argv $i end] { set router [string tolower $router] # attempt at platform switching. set platform "" send_user ..." (file "/usr/local/rancid/bin/fxlogin" line 870) Thanks, -ryan From heas at shrubbery.net Wed Nov 28 06:54:40 2018 From: heas at shrubbery.net (heasley) Date: Wed, 28 Nov 2018 06:54:40 +0000 Subject: [rancid] FXOS debugging In-Reply-To: References: <20181127160409.GC49902@shrubbery.net> Message-ID: <20181128065439.GA64400@shrubbery.net> Tue, Nov 27, 2018 at 04:34:22PM +0000, Ryan West: > send: sending "show model\r" to { exp5 } > invalid command name "^-" > while executing > "^-" > invoked from within > "expect { > -re "\b+" { exp_continue } > -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprom..." > (procedure "run_commands" line 36) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 206) > invoked from within > "foreach router [lrange $argv $i end] { > set router [string tolower $router] > # attempt at platform switching. > set platform "" > send_user ..." > (file "/usr/local/rancid/bin/fxlogin" line 870) hmm, i suspect this is a tcl bug. are you perhaps using some crusty Centos with an old tcl? you could try changing: -re "^\[^-]*--More--\[^\r\n]*\[\r\n]+" { # fxos FTP pager to -re -- "^\[^-]*--More--\[^\r\n]*\[\r\n]+" { # fxos FTP pager From lola9253 at gmail.com Wed Nov 28 08:13:27 2018 From: lola9253 at gmail.com (=?UTF-8?B?0JzQuNGF0LDQuNC7?=) Date: Wed, 28 Nov 2018 09:13:27 +0100 Subject: [rancid] Arista DCS-7150S-24-F Message-ID: Hello. I have a lot of such messages: - !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:36:23 - !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:36:23 + !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 14:06:22 + !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 14:06:2 - !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:06:24 - !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:06:24 + !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:36:23 + !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:36:23 Command that produce it is sh environment all, below is full output: sh environment all System temperature status is: Ok Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Cpu temp sensor 39.8 (N/A) N/A 95 100 2 Rear temp sensor 32.8 (N/A) N/A 65 75 3 Board temp sensor 29.6 (N/A) N/A 55 65 4 Front-panel temp sensor 27.5 (N/A) N/A 55 65 5 Board temp sensor 31.4 (N/A) N/A 75 85 6 FM6000 temp sensor 35.9 (N/A) N/A 92 100 PowerSupply 1: Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Power supply sensor 26.0 (N/A) N/A 60 70 PowerSupply 2: Alert Critical Temp Setpoint Limit Limit Sensor Description (C) (C) (C) (C) ------- ----------------------------------- ------- ----------- ------ --------- 1 Power supply sensor 29.0 (N/A) N/A 60 70 System cooling status is: Ok Ambient temperature: 27C Airflow: port-side intake Config Actual Speed Stable Fan Status Speed Speed Uptime Stability Uptime -------------- ------ ------ ------ ---------------- --------- ---------------- 1/1 Ok 90% 88% 4 days, 16:44:35 Stable 4 days, 16:44:17 2/1 Ok 90% 88% 4 days, 16:44:35 Stable 4 days, 16:44:17 3/1 Ok 90% 90% 4 days, 16:44:35 Stable 4 days, 16:44:17 4/1 Ok 90% 90% 4 days, 16:44:35 Stable 4 days, 16:44:15 PowerSupply1/1 Ok 90% 89% 4 days, 16:44:13 Stable 4 days, 16:43:24 PowerSupply2/1 Ok 90% 89% 4 days, 16:44:13 Stable 4 days, 16:43:24 Power Input Output Output Supply Model Capacity Current Current Power Status Uptime ------ ----------- -------- ------- ------- ------ ------ ---------------- 1 PWR-460AC-F 460W 0.33A 4.75A 55.0W Ok 4 days, 16:44:13 2 PWR-460AC-F 460W 0.30A 4.62A 55.0W Ok 4 days, 16:44:13 Total -- 920W -- -- 110.0W -- -- How can i get rid of it? Thanks :) Mit freundlichen Gr??en, Mikhail. -------------- next part -------------- An HTML attachment was scrubbed... URL: From rwest at zyedge.com Wed Nov 28 16:09:40 2018 From: rwest at zyedge.com (Ryan West) Date: Wed, 28 Nov 2018 16:09:40 +0000 Subject: [rancid] FXOS debugging In-Reply-To: <20181128065439.GA64400@shrubbery.net> References: <20181127160409.GC49902@shrubbery.net> <20181128065439.GA64400@shrubbery.net> Message-ID: Same error - Here is the list of installed TCL packages: libtcl8.5:amd64 libtcl8.6:amd64 tcl tcl-expect:amd64 tcl8.5 tcl8.6 On a 9.6 Debian version. It's just this script that this throwing errors as well. Thanks, -ryan -----Original Message----- From: heasley Sent: Wednesday, November 28, 2018 1:55 AM To: Ryan West Cc: Rancid-discuss at shrubbery.net Subject: Re: [rancid] FXOS debugging Tue, Nov 27, 2018 at 04:34:22PM +0000, Ryan West: > send: sending "show model\r" to { exp5 } invalid command name "^-" > while executing > "^-" > invoked from within > "expect { > -re "\b+" { exp_continue } > -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprom..." > (procedure "run_commands" line 36) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 206) > invoked from within > "foreach router [lrange $argv $i end] { > set router [string tolower $router] > # attempt at platform switching. > set platform "" > send_user ..." > (file "/usr/local/rancid/bin/fxlogin" line 870) hmm, i suspect this is a tcl bug. are you perhaps using some crusty Centos with an old tcl? you could try changing: -re "^\[^-]*--More--\[^\r\n]*\[\r\n]+" { # fxos FTP pager to -re -- "^\[^-]*--More--\[^\r\n]*\[\r\n]+" { # fxos FTP pager From heas at shrubbery.net Wed Nov 28 19:30:51 2018 From: heas at shrubbery.net (heasley) Date: Wed, 28 Nov 2018 19:30:51 +0000 Subject: [rancid] Arista DCS-7150S-24-F In-Reply-To: References: Message-ID: <20181128193050.GE54335@shrubbery.net> Wed, Nov 28, 2018 at 09:13:27AM +0100, ??????: > Hello. I have a lot of such messages: > > - !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:36:23 > - !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:36:23 > + !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 14:06:22 > + !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 14:06:2 > > - !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:06:24 > - !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:06:24 > + !Power Supply 1: PWR-460AC-F 460W Ok 4 days, 13:36:23 > + !Power Supply 2: PWR-460AC-F 460W Ok 4 days, 13:36:23 > > Command that produce it is sh environment all, below is full output: > > sh environment all > System temperature status is: Ok > Alert Critical > Temp Setpoint Limit Limit > Sensor Description (C) (C) (C) (C) > ------- ----------------------------------- ------- ----------- ------ --------- > 1 Cpu temp sensor 39.8 (N/A) N/A 95 100 > 2 Rear temp sensor 32.8 (N/A) N/A 65 75 > 3 Board temp sensor 29.6 (N/A) N/A 55 65 > 4 Front-panel temp sensor 27.5 (N/A) N/A 55 65 > 5 Board temp sensor 31.4 (N/A) N/A 75 85 > 6 FM6000 temp sensor 35.9 (N/A) N/A 92 100 > > PowerSupply 1: > Alert Critical > Temp Setpoint Limit Limit > Sensor Description (C) (C) (C) (C) > ------- ----------------------------------- ------- ----------- ------ --------- > 1 Power supply sensor 26.0 (N/A) N/A 60 70 > > PowerSupply 2: > Alert Critical > Temp Setpoint Limit Limit > Sensor Description (C) (C) (C) (C) > ------- ----------------------------------- ------- ----------- ------ --------- > 1 Power supply sensor 29.0 (N/A) N/A 60 70 > > System cooling status is: Ok > Ambient temperature: 27C > Airflow: port-side intake > Config Actual Speed Stable > Fan Status Speed Speed Uptime Stability Uptime > -------------- ------ ------ ------ ---------------- --------- ---------------- > 1/1 Ok 90% 88% 4 days, 16:44:35 Stable 4 days, 16:44:17 > 2/1 Ok 90% 88% 4 days, 16:44:35 Stable 4 days, 16:44:17 > 3/1 Ok 90% 90% 4 days, 16:44:35 Stable 4 days, 16:44:17 > 4/1 Ok 90% 90% 4 days, 16:44:35 Stable 4 days, 16:44:15 > PowerSupply1/1 Ok 90% 89% 4 days, 16:44:13 Stable 4 days, 16:43:24 > PowerSupply2/1 Ok 90% 89% 4 days, 16:44:13 Stable 4 days, 16:43:24 > > Power Input Output Output > Supply Model Capacity Current Current Power Status Uptime > ------ ----------- -------- ------- ------- ------ ------ ---------------- > 1 PWR-460AC-F 460W 0.33A 4.75A 55.0W Ok 4 days, 16:44:13 > 2 PWR-460AC-F 460W 0.30A 4.62A 55.0W Ok 4 days, 16:44:13 > Total -- 920W -- -- 110.0W -- -- > > How can i get rid of it? Thanks :) please try rancid 3.8; i think it is fixed there. > Mit freundlichen Gr??en, Mikhail. Ebenso. From heas at shrubbery.net Wed Nov 28 22:54:01 2018 From: heas at shrubbery.net (heasley) Date: Wed, 28 Nov 2018 22:54:01 +0000 Subject: [rancid] FXOS debugging In-Reply-To: References: <20181127160409.GC49902@shrubbery.net> <20181128065439.GA64400@shrubbery.net> Message-ID: <20181128225401.GD95116@shrubbery.net> Wed, Nov 28, 2018 at 04:09:40PM +0000, Ryan West: > Same error - > > Here is the list of installed TCL packages: > > libtcl8.5:amd64 > libtcl8.6:amd64 > tcl > tcl-expect:amd64 > tcl8.5 > tcl8.6 > > On a 9.6 Debian version. It's just this script that this throwing errors as well. Why (how) do you have tcl 8.5 and 8.6? Please make sure that expect is linked with 8.6. From songyuan007 at gmail.com Fri Nov 30 08:40:31 2018 From: songyuan007 at gmail.com (yuan song) Date: Fri, 30 Nov 2018 16:40:31 +0800 Subject: [rancid] how cisco nx-os switch work with rancid with read-only account Message-ID: i have a read access account "RO" in nexus 3048, and i add it to .cloginrc file like that: add method 10.36.0.71 {ssh} add cyphertype * aes128-ctr,aes128-cbc,3des-cbc add user 10.36.0.71 ro add password 10.36.0.71 XXX add noenable 10.36.0.71 1 however, rancid log give me: 10.36.0.71: End of run not found Error: TIMEOUT reached But, if i give my account full read&write permission, It works just fine. Hope someone could help me here, thx a lot PS:nexus config role name rancid rule 1 permit read rule 2 permit command show * username ro password XXX role rancid From rwest at zyedge.com Fri Nov 30 15:47:23 2018 From: rwest at zyedge.com (Ryan West) Date: Fri, 30 Nov 2018 15:47:23 +0000 Subject: [rancid] FXOS debugging In-Reply-To: <20181128225401.GD95116@shrubbery.net> References: <20181127160409.GC49902@shrubbery.net> <20181128065439.GA64400@shrubbery.net> <20181128225401.GD95116@shrubbery.net> Message-ID: John, Still hitting the same issue and replicated it on a fresh Ubuntu 18.04 LTS with 8.6 expect/tcl loaded on it. > invalid command name "^-" while executing "^-" invoked from within "expect { -re "\b+" { exp_continue } -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" } -re "^\[^\n\r]*$reprom..." (procedure "run_commands" line 36) invoked from within "run_commands $prompt $command" ("foreach" body line 206) invoked from within "foreach router [lrange $argv $i end] { set router [string tolower $router] # attempt at platform switching. set platform "" send_user ..." (file "/home/rwest/bin/fxlogin" line 870) Thanks, -ryan -----Original Message----- From: heasley Sent: Wednesday, November 28, 2018 5:54 PM To: Ryan West Cc: heasley ; Rancid-discuss at shrubbery.net Subject: Re: [rancid] FXOS debugging Wed, Nov 28, 2018 at 04:09:40PM +0000, Ryan West: > Same error - > > Here is the list of installed TCL packages: > > libtcl8.5:amd64 > libtcl8.6:amd64 > tcl > tcl-expect:amd64 > tcl8.5 > tcl8.6 > > On a 9.6 Debian version. It's just this script that this throwing errors as well. Why (how) do you have tcl 8.5 and 8.6? Please make sure that expect is linked with 8.6. From cgauthier at comscore.com Fri Nov 30 16:05:52 2018 From: cgauthier at comscore.com (Gauthier, Chris) Date: Fri, 30 Nov 2018 16:05:52 +0000 Subject: [rancid] F5 'bigip' SNMP password hash changes every run Message-ID: Hello, We are using rancid 3.7 here and it successfully is backing up our F5?s. However, since I added SNMPv3 onto a new pair of F5?s, the password hash changes every time rancid runs. I don?t mind this, since the purpose is to maintain a backup that I can straight-out deploy to the device, except that I don?t want the email telling me that password changed every time (which is hourly for us). Is there a way to filter out this from the email but not from what is actually committed into the repo? Thanks, Chris PS, forgive the signature and HTML-emails. I cannot control any of that. Chris Gauthier Senior Network Engineer | Comscore t +1 (503) 331-2704 | cgauthier at comscore.com 317 SW Alder Street, Suite 700 | Portland, OR 97204 United States comscore.com ???This e-mail (including any attachments) may contain information that is private, confidential, or protected by attorney-client or other privilege. If you received this e-mail in error, please delete it from your system and notify sender. -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Fri Nov 30 16:46:41 2018 From: heas at shrubbery.net (heasley) Date: Fri, 30 Nov 2018 16:46:41 +0000 Subject: [rancid] how cisco nx-os switch work with rancid with read-only account In-Reply-To: References: Message-ID: <20181130164640.GA42945@shrubbery.net> Fri, Nov 30, 2018 at 04:40:31PM +0800, yuan song: > i have a read access account "RO" in nexus 3048, and i add it to > .cloginrc file like that: > add method 10.36.0.71 {ssh} > add cyphertype * aes128-ctr,aes128-cbc,3des-cbc > add user 10.36.0.71 ro > add password 10.36.0.71 XXX > add noenable 10.36.0.71 1 > > however, rancid log give me: > 10.36.0.71: End of run not found > Error: TIMEOUT reached > > But, if i give my account full read&write permission, It works just fine. > Hope someone could help me here, thx a lot > > PS:nexus config > role name rancid > rule 1 permit read > rule 2 permit command show * > username ro password XXX role rancid rancid must be able to alter some terminal settings; I do not know if the role above allows this. It must also be able to run dir. see the full command list in rancid.types.base. also see the rancid FAQ; Section 3, Question 2. From heas at shrubbery.net Fri Nov 30 18:20:46 2018 From: heas at shrubbery.net (heasley) Date: Fri, 30 Nov 2018 18:20:46 +0000 Subject: [rancid] F5 'bigip' SNMP password hash changes every run In-Reply-To: References: Message-ID: <20181130182046.GA11523@shrubbery.net> Fri, Nov 30, 2018 at 04:05:52PM +0000, Gauthier, Chris: > Hello, > > We are using rancid 3.7 here and it successfully is backing up our F5?s. However, since I added SNMPv3 onto a new pair of F5?s, the password hash changes every time rancid runs. I don?t mind this, since the purpose is to maintain a backup that I can straight-out deploy to the device, except that I don?t want the email telling me that password changed every time (which is hourly for us). > > Is there a way to filter out this from the email but not from what is actually committed into the repo? well, some options: - alter rancid/share/rtrfilter to instead filter by line regex; also see rancid.conf(5):DIFFSCRIPT - have two collections; one which filters passwords/etc, another which does not, but which also has no diff-mail recipients. also see rancid.conf(5):FILES section From weylin at bu.edu Fri Nov 30 20:26:06 2018 From: weylin at bu.edu (Piegorsch, Weylin William) Date: Fri, 30 Nov 2018 20:26:06 +0000 Subject: [rancid] how cisco nx-os switch work with rancid with read-only account In-Reply-To: References: Message-ID: What if you delete these commands: role name rancid rule 1 permit read rule 2 permit command show * and re-define your username command as: username ro password XXX role network-operator if you're on the CLI, "show role" will show you the pre-defined roles. See here for documentation. https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3000/sw/system_mgmt/503_u2_2/b_Cisco_Nexus_3000_system_mgmt_config_gd_503_U2_2/b_Cisco_Nexus_3000_system_mgmt_config_gd_503_U2_2_chapter_0101.html#con_1230629 Using default / pre-defined roles, you don?t need to craft a role specifically for rancid. Unless you're concerned about a rogue user logging in with stolen credentials and having access to "show" commands you don't want to allow. Weylin ?-----Original Message----- From: yuan song Date: Friday, November 30, 2018 at 3:40 AM To: Subject: [rancid] how cisco nx-os switch work with rancid with read-only account i have a read access account "RO" in nexus 3048, and i add it to .cloginrc file like that: add method 10.36.0.71 {ssh} add cyphertype * aes128-ctr,aes128-cbc,3des-cbc add user 10.36.0.71 ro add password 10.36.0.71 XXX add noenable 10.36.0.71 1 however, rancid log give me: 10.36.0.71: End of run not found Error: TIMEOUT reached But, if i give my account full read&write permission, It works just fine. Hope someone could help me here, thx a lot PS:nexus config role name rancid rule 1 permit read rule 2 permit command show * username ro password XXX role rancid From heas at shrubbery.net Fri Nov 30 20:30:45 2018 From: heas at shrubbery.net (heasley) Date: Fri, 30 Nov 2018 20:30:45 +0000 Subject: [rancid] FXOS debugging In-Reply-To: References: <20181127160409.GC49902@shrubbery.net> <20181128065439.GA64400@shrubbery.net> <20181128225401.GD95116@shrubbery.net> Message-ID: <20181130203045.GI11523@shrubbery.net> Fri, Nov 30, 2018 at 03:47:23PM +0000, Ryan West: > John, > > Still hitting the same issue and replicated it on a fresh Ubuntu 18.04 LTS with 8.6 expect/tcl loaded on it. > > > invalid command name "^-" > while executing > "^-" > invoked from within > "expect { > -re "\b+" { exp_continue } > -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)" > } > -re "^\[^\n\r]*$reprom..." > (procedure "run_commands" line 36) > invoked from within > "run_commands $prompt $command" > ("foreach" body line 206) > invoked from within > "foreach router [lrange $argv $i end] { > set router [string tolower $router] > # attempt at platform switching. > set platform "" > send_user ..." > (file "/home/rwest/bin/fxlogin" line 870) I do not see the cause in the code or the debug output. And, I do not have a device to test against. running fxlogin against an IOS device works fine. maybe start with making sure that you are using the most recent alpha version of fxlogin. diffs since rancid 3.7 are attached. > Thanks, > > -ryan > > -----Original Message----- > From: heasley > Sent: Wednesday, November 28, 2018 5:54 PM > To: Ryan West > Cc: heasley ; Rancid-discuss at shrubbery.net > Subject: Re: [rancid] FXOS debugging > > Wed, Nov 28, 2018 at 04:09:40PM +0000, Ryan West: > > Same error - > > > > Here is the list of installed TCL packages: > > > > libtcl8.5:amd64 > > libtcl8.6:amd64 > > tcl > > tcl-expect:amd64 > > tcl8.5 > > tcl8.6 > > > > On a 9.6 Debian version. It's just this script that this throwing errors as well. > > Why (how) do you have tcl 8.5 and 8.6? Please make sure that expect is linked with 8.6. -------------- next part -------------- A non-text attachment was scrubbed... Name: fxlogin.in.diff Type: text/x-diff Size: 2886 bytes Desc: not available URL: