From scott.larsen at cascorp.com Fri Jul 1 18:33:42 2022 From: scott.larsen at cascorp.com (Scott Larsen) Date: Fri, 1 Jul 2022 11:33:42 -0700 Subject: [rancid] Dell N series In-Reply-To: <2dc50066-e0e4-4ef1-96db-ca007d1830b4n@googlegroups.com> References: <2dc50066-e0e4-4ef1-96db-ca007d1830b4n@googlegroups.com> Message-ID: > How can I insert Dell switch into Rancid? I capture my C9010 chassis units and MXL-10/40GbE blade switches by using model type "force10" in the router.db. -- Scott -------------- next part -------------- An HTML attachment was scrubbed... URL: From mvoity at uvm.edu Fri Jul 1 21:38:53 2022 From: mvoity at uvm.edu (Michael T. Voity) Date: Fri, 1 Jul 2022 21:38:53 +0000 Subject: [rancid] Timeout In-Reply-To: References: Message-ID: <141ab5c2465048478599527ecb133e46@uvm.edu> No worries. Out procurement dept is not communicating well with us on what they need for po?s Sooner the better. -Mike _ Michael T. Voity | Network Engineer | Telecommunications & Network Services| Enterprise Technology Services | The University of Vermont | (802) 656-8112 | mvoity at uvm.edu From: Rancid-discuss [mailto:rancid-discuss-bounces at sea.shrubbery.net] On Behalf Of brutuz bigdaddy Sent: Monday, January 3, 2022 9:32 AM To: rancid-discuss at sea.shrubbery.net Subject: [rancid] Timeout I have this information.. add user myNexus5k prodlogin add password myNexus5k prodpass add noenable myNexus5k 1 add method myNexus5k ssh running debug: expect: does "" (spawn_id exp7) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no Password: expect: does "Password: " (spawn_id exp7) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no expect: timed out Error: TIMEOUT reached The nexus5k switch has banners/motd. It looks like pass is not being sent. -------------- next part -------------- An HTML attachment was scrubbed... URL: From mvoity at uvm.edu Fri Jul 1 21:39:56 2022 From: mvoity at uvm.edu (Michael T. Voity) Date: Fri, 1 Jul 2022 21:39:56 +0000 Subject: [rancid] Timeout In-Reply-To: <141ab5c2465048478599527ecb133e46@uvm.edu> References: <141ab5c2465048478599527ecb133e46@uvm.edu> Message-ID: <3dc869d71bde4ea0b16b9c871715f51e@uvm.edu> Sorry, wrong thread?. _ Michael T. Voity | Network Engineer | Telecommunications & Network Services| Enterprise Technology Services | The University of Vermont | (802) 656-8112 | mvoity at uvm.edu From: Rancid-discuss [mailto:rancid-discuss-bounces at sea.shrubbery.net] On Behalf Of Michael T. Voity Sent: Friday, July 1, 2022 5:39 PM To: brutuz bigdaddy ; rancid-discuss at sea.shrubbery.net Subject: Re: [rancid] Timeout No worries. Out procurement dept is not communicating well with us on what they need for po?s Sooner the better. -Mike _ Michael T. Voity | Network Engineer | Telecommunications & Network Services| Enterprise Technology Services | The University of Vermont | (802) 656-8112 | mvoity at uvm.edu From: Rancid-discuss [mailto:rancid-discuss-bounces at sea.shrubbery.net] On Behalf Of brutuz bigdaddy Sent: Monday, January 3, 2022 9:32 AM To: rancid-discuss at sea.shrubbery.net Subject: [rancid] Timeout I have this information.. add user myNexus5k prodlogin add password myNexus5k prodpass add noenable myNexus5k 1 add method myNexus5k ssh running debug: expect: does "" (spawn_id exp7) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no Password: expect: does "Password: " (spawn_id exp7) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no expect: timed out Error: TIMEOUT reached The nexus5k switch has banners/motd. It looks like pass is not being sent. -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Fri Jul 1 22:17:48 2022 From: heas at shrubbery.net (heasley) Date: Fri, 1 Jul 2022 22:17:48 +0000 Subject: [rancid] Dell N series In-Reply-To: References: <2dc50066-e0e4-4ef1-96db-ca007d1830b4n@googlegroups.com> Message-ID: Fri, Jul 01, 2022 at 11:33:42AM -0700, Scott Larsen: > > How can I insert Dell switch into Rancid? > > I capture my C9010 chassis units and MXL-10/40GbE blade switches by using > model type "force10" in the router.db. afaik most dell are just OEMs, so various modules are used. I've commented the rancid.types.base file with many of the dell/hp/etc models where folks have comfirmed success. From adudek16 at gmail.com Sat Jul 2 17:24:04 2022 From: adudek16 at gmail.com (Aaron Dudek) Date: Sat, 2 Jul 2022 13:24:04 -0400 Subject: [rancid] Timeout In-Reply-To: References: Message-ID: It might help if you could share some of the banner, removing anything that you might not want to share with X. There might be a character that is causing the confusion. Aaron On Fri, Jul 1, 2022 at 2:18 PM brutuz bigdaddy wrote: > I have this information.. > > add user myNexus5k prodlogin > add password myNexus5k prodpass > add noenable myNexus5k 1 > add method myNexus5k ssh > > running debug: > expect: does "" (spawn_id exp7) match regular expression "[\r\n]+"? (No > Gate, RE only) gate=yes re=no > "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no > "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no > Password: > expect: does "Password: " (spawn_id exp7) match regular expression > "[\r\n]+"? (No Gate, RE only) gate=yes re=no > "^(.+[:.])1 ((>|#| \(enable\)))"? (No Gate, RE only) gate=yes re=no > "^.+(>|#| \(enable\))"? (No Gate, RE only) gate=yes re=no > expect: timed out > > Error: TIMEOUT reached > > The nexus5k switch has banners/motd. It looks like pass is not being sent. > _______________________________________________ > Rancid-discuss mailing list > Rancid-discuss at www.shrubbery.net > https://www.shrubbery.net/mailman/listinfo/rancid-discuss > -------------- next part -------------- An HTML attachment was scrubbed... URL: From ak at mid.net Tue Jul 5 14:52:22 2022 From: ak at mid.net (Adam Korab) Date: Tue, 5 Jul 2022 09:52:22 -0500 Subject: [rancid] Spurious diffs on VyOS Message-ID: [disclaimer: I sent this to the list last week while the list was broken per heas. I waited a few days to see if it would pop up in the archive, and it has not. That said, if you're seeing this twice, I apologize. -AK] Hi, Working on a problem where spurious diffs are received by rancid (3.13) when executing against a VyOS VM (v1.3.1-S1). Given the order of commands here: executing vlogin -t 120 -c"show hardware cpu;show hardware dmi;show hardware pci;show hardware scsi;show hardware usb;show system routing-daemons;show system image;show version all;show configuration;show configuration commands" r20.stlsmo03.mid.net it looks to me like sometimes 'show hardware pci' is firing before all the output from 'show hardware dmi' has completed, resulting in the diff. Perhaps worth noting is that bios_date is the first line returned from 'show hardware dmi' Further interesting is that this VM is one of several that rancid tracks, all running an identical VyOS image - but it's the only one that exhibits this behavior - even when the output of 'show hardware dmi' is 100% identical between VMs. My hunch is that this may be something within vlogin that is not (always) waiting for the prompt to return before firing the next command, but that's the point where I need help. I realize I could probably just comment out the two commands in vyos.pm because they really shouldn't change much on a VM, but given that VyOS could also be a hardware appliance, that certainly seems like the wrong way to solve the problem. Thanks! --Adam Output 9am: diff --git a/configs/r20.stlsmo03.mid.net b/configs/r20.stlsmo03.mid.net index bb45c1b..b22874e 100644 - -- a/configs/r20.stlsmo03.mid.net @@ -27,7 +27,8 @@ # NUMA node0 CPU(s): 0-3 # Flags: fpu vme de pse tsc msr pae mce cx8 # apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr # sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc # arch_perfmon nopl xtopology tsc_reliable nonstop_tsc # cpuid pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 # x2apic movbe popcnt tsc_deadline_timer aes xsave avx # f16c rdrand hypervisor lahf_lm abm cpuid_fault # invpcid_single pti ssbd ibrs ibpb stibp fsgsbase # tsc_adjust bmi1 avx2 smep bmi2 invpcid xsaveopt arat # md_clear flush_l1d arch_capabilities # r20.stlsmo03:~$ show hardware dmi - # bios_date: 12/12/2018 + # bios_date: show hardware pci + # 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: Output 10am: diff --git a/configs/r20.stlsmo03.mid.net b/configs/r20.stlsmo03.mid.net index b22874e..bb45c1b 100644 - -- a/configs/r20.stlsmo03.mid.net @@ -27,8 +27,7 @@ # NUMA node0 CPU(s): 0-3 # Flags: fpu vme de pse tsc msr pae mce cx8 # apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr # sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc # arch_perfmon nopl xtopology tsc_reliable nonstop_tsc # cpuid pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 # x2apic movbe popcnt tsc_deadline_timer aes xsave avx # f16c rdrand hypervisor lahf_lm abm cpuid_fault # invpcid_single pti ssbd ibrs ibpb stibp fsgsbase # tsc_adjust bmi1 avx2 smep bmi2 invpcid xsaveopt arat # md_clear flush_l1d arch_capabilities # r20.stlsmo03:~$ show hardware dmi - # bios_date: show hardware pci - # 12/12/2018 + # bios_date: 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: Relevant excerpt of config file: # r20.stlsmo03:~$ show hardware dmi # bios_date: 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: board_name: 440BX Desktop Reference # Platform # board_vendor: Intel Corporation # board_version: None # chassis_asset_tag: No Asset Tag # chassis_type: 1 # chassis_vendor: No Enclosure # chassis_version: N/A # product_family: product_name: VMware Virtual Platform # product_sku: product_version: None # sys_vendor: VMware, Inc. # r20.stlsmo03:~$ show hardware pci # 00:00.0 Host bridge: Intel Corporation 440BX/ZX/DX - # 82443BX/ZX/DX Host bridge (rev 01) # 00:01.0 PCI bridge: Intel Corporation 440BX/ZX/DX - # 82443BX/ZX/DX AGP bridge (rev 01) # 00:07.0 ISA bridge: Intel Corporation 82371AB/EB/MB PIIX4 # ISA (rev 08) # 00:07.1 IDE interface: Intel Corporation 82371AB/EB/MB # PIIX4 IDE (rev 01) # 00:07.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI # (rev 08) # 00:07.7 System peripheral: VMware Virtual Machine # Communication Interface (rev 10) # 00:0f.0 VGA compatible controller: VMware SVGA II Adapter # 00:11.0 PCI bridge: VMware PCI bridge (rev 02) # 00:15.0 PCI bridge: VMware PCI Express Root Port (rev 01) [more PCI bridge output omitted] From ak at mid.net Tue Jul 5 14:52:22 2022 From: ak at mid.net (Adam Korab) Date: Tue, 5 Jul 2022 09:52:22 -0500 Subject: [rancid] Spurious diffs on VyOS Message-ID: [disclaimer: I sent this to the list last week while the list was broken per heas. I waited a few days to see if it would pop up in the archive, and it has not. That said, if you're seeing this twice, I apologize. -AK] Hi, Working on a problem where spurious diffs are received by rancid (3.13) when executing against a VyOS VM (v1.3.1-S1). Given the order of commands here: executing vlogin -t 120 -c"show hardware cpu;show hardware dmi;show hardware pci;show hardware scsi;show hardware usb;show system routing-daemons;show system image;show version all;show configuration;show configuration commands" r20.stlsmo03.mid.net it looks to me like sometimes 'show hardware pci' is firing before all the output from 'show hardware dmi' has completed, resulting in the diff. Perhaps worth noting is that bios_date is the first line returned from 'show hardware dmi' Further interesting is that this VM is one of several that rancid tracks, all running an identical VyOS image - but it's the only one that exhibits this behavior - even when the output of 'show hardware dmi' is 100% identical between VMs. My hunch is that this may be something within vlogin that is not (always) waiting for the prompt to return before firing the next command, but that's the point where I need help. I realize I could probably just comment out the two commands in vyos.pm because they really shouldn't change much on a VM, but given that VyOS could also be a hardware appliance, that certainly seems like the wrong way to solve the problem. Thanks! --Adam Output 9am: diff --git a/configs/r20.stlsmo03.mid.net b/configs/r20.stlsmo03.mid.net index bb45c1b..b22874e 100644 - -- a/configs/r20.stlsmo03.mid.net @@ -27,7 +27,8 @@ # NUMA node0 CPU(s): 0-3 # Flags: fpu vme de pse tsc msr pae mce cx8 # apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr # sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc # arch_perfmon nopl xtopology tsc_reliable nonstop_tsc # cpuid pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 # x2apic movbe popcnt tsc_deadline_timer aes xsave avx # f16c rdrand hypervisor lahf_lm abm cpuid_fault # invpcid_single pti ssbd ibrs ibpb stibp fsgsbase # tsc_adjust bmi1 avx2 smep bmi2 invpcid xsaveopt arat # md_clear flush_l1d arch_capabilities # r20.stlsmo03:~$ show hardware dmi - # bios_date: 12/12/2018 + # bios_date: show hardware pci + # 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: Output 10am: diff --git a/configs/r20.stlsmo03.mid.net b/configs/r20.stlsmo03.mid.net index b22874e..bb45c1b 100644 - -- a/configs/r20.stlsmo03.mid.net @@ -27,8 +27,7 @@ # NUMA node0 CPU(s): 0-3 # Flags: fpu vme de pse tsc msr pae mce cx8 # apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr # sse sse2 ss ht syscall nx pdpe1gb rdtscp lm constant_tsc # arch_perfmon nopl xtopology tsc_reliable nonstop_tsc # cpuid pni pclmulqdq ssse3 fma cx16 pcid sse4_1 sse4_2 # x2apic movbe popcnt tsc_deadline_timer aes xsave avx # f16c rdrand hypervisor lahf_lm abm cpuid_fault # invpcid_single pti ssbd ibrs ibpb stibp fsgsbase # tsc_adjust bmi1 avx2 smep bmi2 invpcid xsaveopt arat # md_clear flush_l1d arch_capabilities # r20.stlsmo03:~$ show hardware dmi - # bios_date: show hardware pci - # 12/12/2018 + # bios_date: 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: Relevant excerpt of config file: # r20.stlsmo03:~$ show hardware dmi # bios_date: 12/12/2018 # bios_vendor: Phoenix Technologies LTD # bios_version: 6.00 # board_asset_tag: board_name: 440BX Desktop Reference # Platform # board_vendor: Intel Corporation # board_version: None # chassis_asset_tag: No Asset Tag # chassis_type: 1 # chassis_vendor: No Enclosure # chassis_version: N/A # product_family: product_name: VMware Virtual Platform # product_sku: product_version: None # sys_vendor: VMware, Inc. # r20.stlsmo03:~$ show hardware pci # 00:00.0 Host bridge: Intel Corporation 440BX/ZX/DX - # 82443BX/ZX/DX Host bridge (rev 01) # 00:01.0 PCI bridge: Intel Corporation 440BX/ZX/DX - # 82443BX/ZX/DX AGP bridge (rev 01) # 00:07.0 ISA bridge: Intel Corporation 82371AB/EB/MB PIIX4 # ISA (rev 08) # 00:07.1 IDE interface: Intel Corporation 82371AB/EB/MB # PIIX4 IDE (rev 01) # 00:07.3 Bridge: Intel Corporation 82371AB/EB/MB PIIX4 ACPI # (rev 08) # 00:07.7 System peripheral: VMware Virtual Machine # Communication Interface (rev 10) # 00:0f.0 VGA compatible controller: VMware SVGA II Adapter # 00:11.0 PCI bridge: VMware PCI bridge (rev 02) # 00:15.0 PCI bridge: VMware PCI Express Root Port (rev 01) [more PCI bridge output omitted] From heas at shrubbery.net Wed Jul 6 17:34:02 2022 From: heas at shrubbery.net (heasley) Date: Wed, 6 Jul 2022 17:34:02 +0000 Subject: [rancid] Spurious diffs on VyOS In-Reply-To: References: Message-ID: Tue, Jul 05, 2022 at 09:52:22AM -0500, Adam Korab: > Working on a problem where spurious diffs are received by > rancid (3.13) when executing against a VyOS VM (v1.3.1-S1). > > Given the order of commands here: > > executing vlogin -t 120 -c"show hardware cpu;show hardware dmi;show hardware pci;show hardware scsi;show hardware usb;show system routing-daemons;show system image;show version all;show configuration;show configuration commands" r20.stlsmo03.mid.net > > it looks to me like sometimes 'show hardware pci' is firing before all the > output from 'show hardware dmi' has completed, resulting in the diff. > Perhaps worth noting is that bios_date is the first line returned from 'show > hardware dmi' > > Further interesting is that this VM is one of several that rancid tracks, > all running an identical VyOS image - but it's the only one that exhibits > this behavior - even when the output of 'show hardware dmi' is 100% > identical between VMs. > > My hunch is that this may be something within vlogin that is not (always) > waiting for the prompt to return before firing the next command, but that's > the point where I need help. I realize I could probably just comment out the > two commands in vyos.pm because they really shouldn't change much on a VM, > but given that VyOS could also be a hardware appliance, that certainly seems > like the wrong way to solve the problem. I do not have a copy of vlogin. Ensure that it is finding the complete prompt after it successfully logs into the device. The login scripts generally use a loose prompt match first, then once logged-in, send a return to generate a new prompt and create a more exact prompt match regex based on what is received. Also, look at the preceding output. vlogin might have become out of sync with the prompts in output prior to the show hardware dmi command. This is where the -d option (if vlogin supports it) helps, though it can be rather ugly. From ak at mid.net Thu Jul 7 00:15:52 2022 From: ak at mid.net (Adam Korab) Date: Wed, 6 Jul 2022 19:15:52 -0500 Subject: [rancid] Spurious diffs on VyOS In-Reply-To: References: Message-ID: heasley wrote: > > I do not have a copy of vlogin. Ensure that it is finding the complete > prompt after it successfully logs into the device. The login scripts > generally use a loose prompt match first, then once logged-in, send a > return to generate a new prompt and create a more exact prompt match > regex based on what is received. In that case, I'm not sure where I got this, and it doesn't appear to have blame in the comments, other than referencing rancid v2.3.6. 14327 Oct 15 2020 vlogin Complete text contents pasted here: https://h.mid.net/ZDSl4tpam6 > This is where the -d option (if vlogin supports it) helps, > though it can >be rather ugly. AK From jethro.binks at strath.ac.uk Wed Jul 20 20:29:11 2022 From: jethro.binks at strath.ac.uk (Jethro Binks) Date: Wed, 20 Jul 2022 20:29:11 +0000 Subject: [rancid] Support for new OS (HP) ArubaOS-CX In-Reply-To: <1b1f0b90-af78-5d43-7955-bf881f0f0ca5@ag-installations.co.uk> References: <825456851.1006912.1648066818447.ref@mail.yahoo.com> <825456851.1006912.1648066818447@mail.yahoo.com> <20220323211251.kgbhnpusicp3sgr6@gauge.lan> <2079184030.1230590.1648072723531@mail.yahoo.com> <20220325012536.7jlpkpuzb7gru65h@gauge.lan> <1b1f0b90-af78-5d43-7955-bf881f0f0ca5@ag-installations.co.uk> Message-ID: Hello, I worked a bit more on this and have put it properly on github now: https://github.com/jrbinks/rancid-arubaoscx Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks, Network Manager, Information Services Directorate, University Of Strathclyde, Glasgow, UK The University of Strathclyde is a charitable body, registered in Scotland, number SC015263. ________________________________ From: A Galloway Sent: 25 March 2022 12:09 To: rancid-discuss at www.shrubbery.net ; Jethro Binks Subject: Re: [rancid] Support for new OS (HP) ArubaOS-CX Hi Jethro, Thanks for writing this module. It's working for us on a JL675A 6100 switch, and we've tried it on both ArubaOS-CX version PL.10.06.0110 and PL.10.09.1010. Cheers, A Galloway Jethro Binks jethro.binks at strath.ac.uk Fri Jan 14 19:43:07 UTC 2022 ________________________________ Hello, Ref: https://www.shrubbery.net/pipermail/rancid-discuss/2021-May/011036.html Ref: https://www.shrubbery.net/pipermail/rancid-discuss/2021-May/011038.html I found some time to take a look at this. Note that this is for ArubaOS-CX, not ArubaOS (which is what Provision on newer products is now referred to as), nor AOS (which is the wireless controller OS: see here https://github.com/miken32/rancid-aruba). You can find my current effort here: https://gist.github.com/jrbinks/c28691f11238c23432394302a948900b Looking to get a real-world feedback for it, then can hand it over for inclusion. It uses the usual clogin as the login script. You will need something like the following in .cloginrc: add password routername {PLACEHOLDER-NOTUSED} add identity routername {~/.ssh/id_rancid} add user routername rancid add method routername {ssh} add noenable routername 1 add cyphertype routername {aes128-ctr} As far as I can see, you have to have your user in the administrators group. And in rancid.types.conf you might want something like: arubaoscx;script;rancid -t arubaoscx arubaoscx;login;clogin arubaoscx;module;arubaoscx arubaoscx;inloop;arubaoscx::inloop arubaoscx;command;rancid::RunCommand;no page # system commands arubaoscx;command;arubaoscx::CommentOutput;show system arubaoscx;command;arubaoscx::CommentOutput;show version arubaoscx;command;arubaoscx::CommentOutput;show images # hardware commands arubaoscx;command;arubaoscx::CommentOutput;show module arubaoscx;command;arubaoscx::CommentOutput;show environment power-supply arubaoscx;command;arubaoscx::CommentOutput;show environment power-redundancy arubaoscx;command;arubaoscx::CommentOutput;show environment fan arubaoscx;command;arubaoscx::CommentOutput;show environment temperature arubaoscx;command;arubaoscx::CommentOutput;show environment led arubaoscx;command;arubaoscx::CommentOutput;show interface transceiver # system state commands arubaoscx;command;arubaoscx::CommentOutput;show vsx brief arubaoscx;command;arubaoscx::CommentOutput;show vsx status arubaoscx;command;arubaoscx::CommentOutput;show vsx config-consistency arubaoscx;command;arubaoscx::CommentOutput;show vsx lacp configuration arubaoscx;command;arubaoscx::CommentOutput;show vsf arubaoscx;command;arubaoscx::CommentOutput;show vsf detail arubaoscx;command;arubaoscx::CommentOutput;show vsf link arubaoscx;command;arubaoscx::CommentOutput;show vlan arubaoscx;command;arubaoscx::CommentOutput;show ntp status arubaoscx;command;arubaoscx::CommentOutput;show lldp neighbor-info arubaoscx;command;arubaoscx::CommentOutput;show ip ospf arubaoscx;command;arubaoscx::CommentOutput;show ip ospf interface arubaoscx;command;arubaoscx::CommentOutput;show ip ospf neighbors arubaoscx;command;arubaoscx::CommentOutput;show ip ospf statistics arubaoscx;command;arubaoscx::CommentOutput;show bgp ipv4 unicast summary arubaoscx;command;arubaoscx::CommentOutput;show bgp ipv6 unicast summary arubaoscx;command;arubaoscx::ShowConfiguration;show running-config Tested on: Aruba JL658A 6300M Aruba JL635A 8325-48Y8C both version 10.5. I will upgrade a box to something more recent and re-test soon. I don't have any of the edge products to test. Let me know how you get on and if any other commands would be useful. Also, there are probably more secrets to be hidden, if you run with filtering of passwords and community strings. Jethro. . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks, Network Manager, Information Services Directorate, University Of Strathclyde, Glasgow, UK The University of Strathclyde is a charitable body, registered in Scotland, number SC015263. ________________________________ From: Jethro R Binks > Sent: 04 June 2021 21:48 To: rancid-discuss at shrubbery.net > Subject: Re: [rancid] Support for new OS (HP) ArubaOS-CX Interest here, but not been able to get development time to look at it. Jethro. On Wed, 5 May 2021, Viktor Svanstr?m wrote: > Hi list, > I have a Aruba JL581A HPE Aruba 8320 Switch running ArubaOS-CX TL.10.04.2000. At the moment it seems like there is no support for this OS in rancid? Is there any plan to support it or has anyone out there managed to make their own custom login script? > > Best regards Viktor > > . . . . . . . . . . . . . . . . . . . . . . . . . Jethro R Binks, Network Manager, Information Services Directorate, University Of Strathclyde, Glasgow, UK The University of Strathclyde is a charitable body, registered in Scotland, number SC015263. -------------- next part -------------- An HTML attachment was scrubbed... URL: From ajschro at cdw.com Thu Jul 21 19:27:07 2022 From: ajschro at cdw.com (AJ Schroeder) Date: Thu, 21 Jul 2022 19:27:07 +0000 Subject: [rancid] Cisco ISE/ADE-OS backups Message-ID: Hello list, I'll just get this out of the way, I have inherited a customized version of RANCID (v2.3.8) that we use to backup a bunch of different devices from all kinds of manufacturers. From what I can tell the customization that has been done was to redact a bunch of "unstable" things to stop versions from incrementing. A bunch of different devices have been added into our rancid repo and things are humming along. That's not really my question, just wanted to level set. Has anyone successfully gotten Cisco ISE (a.k.a. ADE-OS) working with RANCID? Someone had written a "iselogin" script and "ciscoise" interpreter working but it was quite unstable and had tons of duplicate output. So I wrote a different "ciscoise" script to use "clogin" rather than having yet another login script. I can get certain parts of the output but the output of "show run" seems to be sent all at once in one big blob. I am not sure how I would go about pulling that apart, so I figured I'd ask if anyone has gotten Cisco ISE working with RANCID before I sink more time and effort into this. Thanks in advance, AJ Schroeder -------------- next part -------------- An HTML attachment was scrubbed... URL: From heas at shrubbery.net Thu Jul 21 20:03:34 2022 From: heas at shrubbery.net (heasley) Date: Thu, 21 Jul 2022 20:03:34 +0000 Subject: [rancid] Cisco ISE/ADE-OS backups In-Reply-To: References: Message-ID: Thu, Jul 21, 2022 at 07:27:07PM +0000, AJ Schroeder: > I'll just get this out of the way, I have inherited a customized version of RANCID (v2.3.8) that we use to backup a bunch of different devices from all kinds of manufacturers. From what I can tell the customization that has been done was to redact a bunch of "unstable" things to stop versions from incrementing. A bunch of different devices have been added into our rancid repo and things are humming along. That's not really my question, just wanted to level set. You can upgrade to recent code and still use your altered versions by adding them to rancid.types.conf with your own device type names (and possibly some renaming of the scripts). You might at time try the current versions to see if they have fixed whatever output was oscillating from the 2.3.8 version. > Has anyone successfully gotten Cisco ISE (a.k.a. ADE-OS) working with RANCID? Someone had written a "iselogin" script and "ciscoise" interpreter working but it was quite unstable and had tons of duplicate output. So I wrote a different "ciscoise" script to use "clogin" rather than having yet another login script. I can get certain parts of the output but the output of "show run" seems to be sent all at once in one big blob. I am not sure how I would go about pulling that apart, so I figured I'd ask if anyone has gotten Cisco ISE working with RANCID before I sink more time and effort into this. I know nothing about ade-os, but I am not sure that I understand what you mean by 'one big blob'. Do you mean it is one line? To have it output w/o a pager is perfect. maybe an example or more information about the format/representation of the config From ajschro at cdw.com Thu Jul 21 21:07:10 2022 From: ajschro at cdw.com (AJ Schroeder) Date: Thu, 21 Jul 2022 21:07:10 +0000 Subject: [rancid] Cisco ISE/ADE-OS backups In-Reply-To: References: Message-ID: -----Original Message----- From: heasley Sent: Thursday, July 21, 2022 3:04 PM To: AJ Schroeder Cc: rancid-discuss at www.shrubbery.net Subject: Re: [rancid] Cisco ISE/ADE-OS backups EXTERNAL EMAIL Thu, Jul 21, 2022 at 07:27:07PM +0000, AJ Schroeder: >> I'll just get this out of the way, I have inherited a customized version of RANCID (v2.3.8) that we use to backup a bunch of different devices from all kinds of manufacturers. From what I can tell the customization that has been done was to redact a bunch of "unstable" things to stop versions from incrementing. A bunch of different devices have been added into our rancid repo and things are humming along. That's not really my question, just wanted to level set. >You can upgrade to recent code and still use your altered versions by adding them to rancid.types.conf with your own device type names (and possibly some renaming of the scripts). You might at time try the current versions to see if they have fixed whatever output was oscillating from the 2.3.8 version. That is in the plan to get rancid upgraded - in the process of planning it out. >> Has anyone successfully gotten Cisco ISE (a.k.a. ADE-OS) working with RANCID? Someone had written a "iselogin" script and "ciscoise" interpreter working but it was quite unstable and had tons of duplicate output. So I wrote a different "ciscoise" script to use "clogin" rather than having yet another login script. I can get certain parts of the output but the output of "show run" seems to be sent all at once in one big blob. I am not sure how I would go about pulling that apart, so I figured I'd ask if anyone has gotten Cisco ISE working with RANCID before I sink more time and effort into this. >I know nothing about ade-os, but I am not sure that I understand what you mean by 'one big blob'. Do you mean it is one line? To have it output w/o a pager is perfect. maybe an example or more information about the format/representation of the config When I run my custom "ciscoise" interpreter in debug mode I see that RANCID logs in, disables paging with "term length 0", sets the terminal type to vt100, then sends the "show running-config", it pauses for a couple seconds, then the prompt appears and RANCID sends over "exit" and the script ends. However the running config output does not appear on the screen. When I'm logged into the CLI interactively it displays like a "normal" cisco config, but it looks like the entire config gets sent as one line. As a side note, it looks like Cisco ISE is using screen instead of vt100, but I don't think that is causing a problem. Below is a redacted version of the config that I am seeing when I run the custom 'iselogin' in debug mode: expect: does "! \r\nhostname ise-server01\r\n! \r\nip domain-name ad.example.com\r\n! \r\nipv6 enable\r\n! \r\ninterface GigabitEthernet 0\r\n ip address 10.20.30.40 255.255.254.0\r\n ipv6 address autoconfig\r\n ipv6 enable\r\n! \r\nip name-server 1.1.1.1 8.8.8.8 8.8.4.4\r\n! \r\nip default-gateway 10.20.30.1\r\n! \r\n! \r\nclock timezone America/Chicago\r\n! \r\nntp server time.nist.gov \r\nntp server time.google.com \r\n!\u0008\nusername rancid-user password hash role admin \r\n!\u0008\nmax-ssh-sessions 5\r\n!\u0008\nservice sshd enable\r\nservice sshd encryption-algorithm aes128-gcm at openssh.com chacha20-poly1305 at openssh.com aes256-gcm at openssh.com aes128-ctr aes256-ctr\r\n!\u0008\nrepository ISE_Reports\r\n url sftp://x.x.x.x/backups/\r\n user backup password hash **********\r\n!\u0008\npassword-policy\r\n lower-case-required\r\n upper-case-required\r\n digit-required\r\n no-username\r\n no-previous-password\r\n min-password-length 4\r\n password-lock-enabled\r\n password-lock-timeout 15\r\n password-lock-retry-count 3\r\n!\u0008\nlogging loglevel 6\r\n!\u0008\nsnmp-server enable\r\nsnmp-server contact "SysAdmin"\r\nsnmp-server engineID ABCDEFGHIJK\r\nsnmp-server user snmp-user v3 hash \r\n!\u0008\nconn-limit 30 port 9060 \r\nconn-limit 5 port 9061 \r\n!\u0008\n!\u0008\nicmp echo on\r\n!\u0008\nise-server01/rancid-user# From ajschro at cdw.com Mon Jul 25 14:58:12 2022 From: ajschro at cdw.com (AJ Schroeder) Date: Mon, 25 Jul 2022 14:58:12 +0000 Subject: [rancid] Cisco ISE/ADE-OS backups In-Reply-To: References: Message-ID: To close the loop on this issue the fix was to download and build the latest version of RANCID in a different location (test VM in my case) and then replace my custom 'iselogin' with the newly built 'clogin' script and things worked as expected. I had no idea that the clogin scripts would be backwards compatible. Many thanks to Heasly for the expert insight and help even though we are running a very old version of rancid. Yes - we are planning on upgrading to the new version in the near future. From: AJ Schroeder Sent: Thursday, July 21, 2022 2:27 PM To: rancid-discuss at www.shrubbery.net Subject: Cisco ISE/ADE-OS backups Hello list, I'll just get this out of the way, I have inherited a customized version of RANCID (v2.3.8) that we use to backup a bunch of different devices from all kinds of manufacturers. From what I can tell the customization that has been done was to redact a bunch of "unstable" things to stop versions from incrementing. A bunch of different devices have been added into our rancid repo and things are humming along. That's not really my question, just wanted to level set. Has anyone successfully gotten Cisco ISE (a.k.a. ADE-OS) working with RANCID? Someone had written a "iselogin" script and "ciscoise" interpreter working but it was quite unstable and had tons of duplicate output. So I wrote a different "ciscoise" script to use "clogin" rather than having yet another login script. I can get certain parts of the output but the output of "show run" seems to be sent all at once in one big blob. I am not sure how I would go about pulling that apart, so I figured I'd ask if anyone has gotten Cisco ISE working with RANCID before I sink more time and effort into this. Thanks in advance, AJ Schroeder -------------- next part -------------- An HTML attachment was scrubbed... URL: