-
Notifications
You must be signed in to change notification settings - Fork 0
/
Todo
160 lines (155 loc) · 7.16 KB
/
Todo
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
- allow -r to be specified multiple times for rancid-run/control_rancid
- add description of the data path/process of a rancid script
- add configure option to force the location of perl
- would like router cmd-line timestamps based on login. suggest .cloginrc
knob for pre-cmd ("post-login"), pre-interactive-cmd ("post-interactive-
login"), and the like. it would need to be per-mfg, ie: either know the
mfg of the device or assume it from the *login cmd used. eg:
add pre-cmd * term monitor
add pre-cmd-ios * term monitor
- it would be useful to log commands that are permission denied rather than
just failing. it was mentioned on cisco-isp list.
- login script should catch output to stdout/user, so that if the rancid script
exits prematurely, such as due to a cmd authorization failure, the user
doesnt get a tcl traceback
See http://www.tcl.tk/man/tcl8.4/TclCmd/catch.htm
- related; could also add an error msg for required command like write term
in the authorization failure case:
return(-1) if (/command authorization failed/i);
- '% clogin clogin' w/ ssh default produces a tcl traceback
- RSP440 show version info is missing, eg:
!Chassis type: ASR9K Series - a ASR9K Series router
- make *login and login.top.in cmdline options common among all scripts
- sup2t show version info is missing
- cpu info missing from sup-2t
Index: configs/r01.londen01.uk.bb.gin.ntt.net
===================================================================
retrieving revision 1.807
diff -U 4 -r1.807 r01.londen01.uk.bb.gin.ntt.net
@@ -1,24 +1,23 @@
!RANCID-CONTENT-TYPE: cisco
!
!Chassis type: WS-C6509-E - a WS-C6509-E router
- !CPU: R7000, SR71000 CPU at 600Mhz, impl 0x504, Rev 1.2, 512KB L2 Cache
+ !CPU: M8572
!
- !Memory: main 983008K/65536K
- !Memory: nvram 1917K
- !Memory: bootflash 65536K
+ !Memory: main 1769472K/262144K
+ !Memory: nvram 2543K
!
!Catalyst Chassis type: WS-C6509-E, Catalyst 6500 9-slot backplane
!Catalyst Chassis S/N: SMC1130002A
!Catalyst Chassis assembly: 73-9221-06, rev A0, ver 1.4
!Processor ID: SMC1130002A
!
!
- !Image: Software: s72033_rp-ADVIPSERVICESK9-M, 12.2(33)SXI7, RELEASE SOFTWARE
(fc1)
- !Image: Compiled: Mon 18-Jul-11 05:49 by prod_rel_team
- !Image: disk0:s72033-advipservicesk9-mz.122-33.SXI7.bin
+ !Image: Software: s2t54-ADVIPSERVICESK9-M, 12.2(50)SY1, RELEASE SOFTWARE (fc2)
+ !Image: Compiled: Tue 29-Nov-11 20:49 by prod_rel_team
+ !Image: bootdisk:s2t54-advipservicesk9-mz.SPA.122-50.SY1.bin
!
- !ROM Bootstrap: Version 12.2(17r)S4, RELEASE SOFTWARE (fc1)
+ !ROM Bootstrap: Version 12.2(50r)SYS2, RELEASE SOFTWARE (fc1)
!
- rivlogin is a mess
- why does hlogin fail when the host key is not yet known? eg:
unix% ./hlogin procurve
procurve
spawn hpuifilter -- ssh -c 3des -x -l user procurve
Host key verification failed.
Error: Couldn't login
This happens on solaris only; linux and netbsd seem to be ok.
- lg.conf(5) needs the query stuff documented.
- could the cloginrc match function do a longest-match search instead of
first match?
- look at Andreas Dahl's Brocade switch collection scripts
- noenable should handle a value properly. i.e.: 1 == noenable, 0 == enable or
perhaps don't clear the -noenable cmd-line option. the manpage needs to be
fixed as well. see msg from fred jordan.
- recent hp procurve s/w does not seem have show flash or show module
- would like to have a "pre-login-sequence" cloginrc directive, see
rancid-disuss message from mike ethridge 16/may
- would like to have a "timeout" cloginrc directive
- would like to have a ssh "passphrase" cloginrc directive
- would like to have a "login_option" cloginrc directive to specify arbitrary
command-line options
- possibly a "debug" (exp_internal 1 ?) cloginrc directive? *login -d flag
for same? warning about filling logs?
- on 6500, show boot and show bootvar produce the same output and both appear
in the crunched config. should one be filtered?
- isis filtering for foundry?
- hlogin hangs when the procurve does not ask for passwords
- share/ tool to prune cvs versions, excluding those with tags, by (all but
latest | keep N versions | keep N days/months/years)
- extreme collection fails for tacacs-enabled boxen due to diffs in UI - blech!
- xrancid should collect both of these:
show configuration
show configuration detail
- FILTER_PWDS knob is not implemented in alteon, bay, ezt3 or redback due to
lack of h/w to test against. need help from the community.
- should par's -c override an input files' : cmd?
- should *login emmit "clogin error:" or "*login error:" to make matches for
login failures definitive?
- would like hpuifilter to be more friendly to interactive logins
- rancid with zebra via vtysh?
- rancid for unix?
- would be nice if it were possible to add additional commands to be run
per-platform as a user desires. how could the user also provide a
filtering routine?
- a format such as {<user>} as the pwd in .cloginrc to indicate *login should
prompt the user for the password
- implement the bits marked unimplemented in lg.conf
- detect 'same' vty configs
- ignoring length/width/passwd is a start, but need more
- merge clogin and jlogin (or *login !!) into one. possible?
- flogin needs to be fixed for the userpasswd bug seen in jlogin 1.17, but
this is clouded by the UI mess.
- rancid needs to treat the 3600s like the 7Ks and 12Ks...
Also, need to allow 12012s, and force 700s to not be treated like 7Ks.
- LG should sort routers
- LG {requested} command additions
- show controllers T3 (data)
- handle redback in the looking glass
- show ip as-path-access-list
- show access-list
- show ip community-list
- show ip route-map
- prancid - lots of GC'ing to be done
- prancid - sort logging file by filename. e.g.:
logging file messages facility kernel level debugging
logging file log facility any level debugging
logging file log archive files 10 size 10m
logging file messages archive files 10 size 10m
then, sort by facility, e.g.:
logging file messages facility kernel level debugging
logging file messages facility authorization level debugging
- should we add CVS ID header to saved configs? configurable option? - idea
from andrew fort
- cat 2900 extra info
<hostname> uptime is 3 weeks, 3 days, 14 hours, 17 minutes
System returned to ROM by power-on
System restarted at 15:21:54 UTC Mon Sep 30 2002
System image file is "flash:c2950-i6q4l2-mz.121-9.EA1d.bin"
cisco WS-C2950-24 (RC32300) processor (revision B0) with 20821K bytes of memory.
Processor board ID FHK0619X2RN
Last reset from system-reset
Running Standard Image
24 FastEthernet/IEEE 802.3 interface(s)
32K bytes of flash-simulated non-volatile configuration memory.
Base ethernet MAC Address: 00:09:B7:50:DE:C0
Motherboard assembly number: 73-5781-10
Power supply part number: 34-0965-01
Motherboard serial number: FOC061903JF
Power supply serial number: DAB061735H4
Model revision number: B0
Motherboard revision number: A0
Model number: WS-C2950-24
System serial number: FHK0619X2RN
Configuration register is 0xF
- Why does nlogin use a gratuitiously different variable name for the device(s)
in the main loop?