Discussion:
[rancid] MPLS and Rancid
Todd Heide
2009-07-23 16:02:11 UTC
Permalink
I don't know if this has been addressed yet, but I have a need for
Rancid to be able to access devices in an MPLS environment.

What we have is a network of devices, some on MPLS that is reachable via
a share, and some that are completely autonomous from the rest of the
network, they have their own firewall in the colo and everything is
reached through that, unless you have access to a Core router, and can
then reach them through their VRF.

What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core
router, to the customers routers via the VRF commands. These would need
to be done one device at a time so it doesn't overwhelm the core router
with connections.

Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would
be something I would schedule to be done once a day, starting at 11 PM.

Can it be done?



Todd
Ryan West
2009-07-23 16:06:03 UTC
Permalink
Todd,

I think you might be able to do what you want with usercmd patch, you might need to search the archives for it.

-ryan

From: rancid-discuss-***@shrubbery.net [mailto:rancid-discuss-***@shrubbery.net] On Behalf Of Todd Heide
Sent: Thursday, July 23, 2009 12:02 PM
To: rancid-***@shrubbery.net
Subject: [rancid] MPLS and Rancid

I don't know if this has been addressed yet, but I have a need for Rancid to be able to access devices in an MPLS environment.
What we have is a network of devices, some on MPLS that is reachable via a share, and some that are completely autonomous from the rest of the network, they have their own firewall in the colo and everything is reached through that, unless you have access to a Core router, and can then reach them through their VRF.
What I was thinking is if there is a way for Rancid to log into a Core router, and then from there, ssh or telnet, depending on the Core router, to the customers routers via the VRF commands. These would need to be done one device at a time so it doesn't overwhelm the core router with connections.
Basically, Rancid logs into say 10.255.255.254, then issues, telnet 10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing, logs out, then does it again for the next device on the list. This would be something I would schedule to be done once a day, starting at 11 PM.
Can it be done?

Todd
Todd Heide
2009-07-23 17:16:13 UTC
Permalink
Thanks, didn't see the link though. J



Thanks

Todd

From: ***@gheek.net [mailto:***@gheek.net] On Behalf Of Lance
Vermilion
Sent: Thursday, July 23, 2009 12:09 PM
To: Ryan West
Cc: Todd Heide; rancid-***@shrubbery.net
Subject: Re: [rancid] Re: MPLS and Rancid



Todd,



Ryan is correct, the usercmd patch would get you where you want. The
patch was written by Ed Ravin. Here is a link to the patch and a nice
little thread about how to use the patch.



The only issue is the patch is quite old so you might have to do some
adjustments.



John,



Is there any chance the usercmd can be added to the distro?



-Lance

2009/7/23 Ryan West <***@zyedge.com>

Todd,



I think you might be able to do what you want with usercmd patch, you
might need to search the archives for it.



-ryan



From: rancid-discuss-***@shrubbery.net
[mailto:rancid-discuss-***@shrubbery.net] On Behalf Of Todd Heide
Sent: Thursday, July 23, 2009 12:02 PM
To: rancid-***@shrubbery.net
Subject: [rancid] MPLS and Rancid



I don't know if this has been addressed yet, but I have a need for
Rancid to be able to access devices in an MPLS environment.

What we have is a network of devices, some on MPLS that is reachable via
a share, and some that are completely autonomous from the rest of the
network, they have their own firewall in the colo and everything is
reached through that, unless you have access to a Core router, and can
then reach them through their VRF.

What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core
router, to the customers routers via the VRF commands. These would need
to be done one device at a time so it doesn't overwhelm the core router
with connections.

Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would
be something I would schedule to be done once a day, starting at 11 PM.

Can it be done?



Todd
Lance Vermilion
2009-07-23 17:27:19 UTC
Permalink
Damn that was slick of me. :-D
#Usage example.
http://www.shrubbery.net/pipermail/rancid-discuss/2006-November/001875.html

#PATCH
http://www.shrubbery.net/pipermail/rancid-discuss/2006-May/001490.html
<http://www.shrubbery.net/pipermail/rancid-discuss/2006-May/001490.html>
Thanks, didn’t see the link though. J
*Thanks*
Todd
Vermilion
*Sent:* Thursday, July 23, 2009 12:09 PM
*To:* Ryan West
*Subject:* Re: [rancid] Re: MPLS and Rancid
Todd,
Ryan is correct, the usercmd patch would get you where you want. The patch
was written by Ed Ravin. Here is a link to the patch and a nice little
thread about how to use the patch.
The only issue is the patch is quite old so you might have to do some
adjustments.
John,
Is there any chance the usercmd can be added to the distro?
-Lance
Todd,
I think you might be able to do what you want with usercmd patch, you might
need to search the archives for it.
-ryan
*Sent:* Thursday, July 23, 2009 12:02 PM
*Subject:* [rancid] MPLS and Rancid
I don’t know if this has been addressed yet, but I have a need for Rancid
to be able to access devices in an MPLS environment.
What we have is a network of devices, some on MPLS that is reachable via a
share, and some that are completely autonomous from the rest of the network,
they have their own firewall in the colo and everything is reached through
that, unless you have access to a Core router, and can then reach them
through their VRF.
What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core router, to
the customers routers via the VRF commands. These would need to be done one
device at a time so it doesn’t overwhelm the core router with connections.
Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would be
something I would schedule to be done once a day, starting at 11 PM.
Can it be done?
Todd
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
Lance Vermilion
2009-07-23 17:09:19 UTC
Permalink
Todd,
Ryan is correct, the usercmd patch would get you where you want. The patch
was written by Ed Ravin. Here is a link to the patch and a nice little
thread about how to use the patch.

The only issue is the patch is quite old so you might have to do some
adjustments.

John,

Is there any chance the usercmd can be added to the distro?

-Lance
Post by Ryan West
Todd,
I think you might be able to do what you want with usercmd patch, you might
need to search the archives for it.
-ryan
*Sent:* Thursday, July 23, 2009 12:02 PM
*Subject:* [rancid] MPLS and Rancid
I don’t know if this has been addressed yet, but I have a need for Rancid
to be able to access devices in an MPLS environment.
What we have is a network of devices, some on MPLS that is reachable via a
share, and some that are completely autonomous from the rest of the network,
they have their own firewall in the colo and everything is reached through
that, unless you have access to a Core router, and can then reach them
through their VRF.
What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core router, to
the customers routers via the VRF commands. These would need to be done one
device at a time so it doesn’t overwhelm the core router with connections.
Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would be
something I would schedule to be done once a day, starting at 11 PM.
Can it be done?
Todd
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
john heasley
2009-07-23 18:34:33 UTC
Permalink
Todd,
Ryan is correct, the usercmd patch would get you where you want. The patch
was written by Ed Ravin. Here is a link to the patch and a nice little
thread about how to use the patch.
The only issue is the patch is quite old so you might have to do some
adjustments.
John,
Is there any chance the usercmd can be added to the distro?
i stuck it on my todo/review list this morning. that is a long list though.
-Lance
Post by Ryan West
Todd,
I think you might be able to do what you want with usercmd patch, you might
need to search the archives for it.
-ryan
*Sent:* Thursday, July 23, 2009 12:02 PM
*Subject:* [rancid] MPLS and Rancid
I don?t know if this has been addressed yet, but I have a need for Rancid
to be able to access devices in an MPLS environment.
What we have is a network of devices, some on MPLS that is reachable via a
share, and some that are completely autonomous from the rest of the network,
they have their own firewall in the colo and everything is reached through
that, unless you have access to a Core router, and can then reach them
through their VRF.
What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core router, to
the customers routers via the VRF commands. These would need to be done one
device at a time so it doesn?t overwhelm the core router with connections.
Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would be
something I would schedule to be done once a day, starting at 11 PM.
Can it be done?
Todd
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
Gary T. Giesen
2009-07-25 18:40:12 UTC
Permalink
Is there anything that the community can help with to speed it up?
Creating current patches for all *login files? Patching manpages? I'm
already considering doing all of this for my Fedora/EPEL package, as
the usercmd functionality is essential for my purposes.

GG
Post by john heasley
Todd,
Ryan is correct, the usercmd patch would get you where you want. The patch
was written by Ed Ravin. Here is a link to the patch and a nice little
thread about how to use the patch.
The only issue is the patch is quite old so you might have to do some
adjustments.
John,
Is there any chance the usercmd can be added to the distro?
i stuck it on my todo/review list this morning. that is a long list though.
-Lance
Post by Ryan West
Todd,
I think you might be able to do what you want with usercmd patch, you might
need to search the archives for it.
-ryan
*Sent:* Thursday, July 23, 2009 12:02 PM
*Subject:* [rancid] MPLS and Rancid
I don?t know if this has been addressed yet, but I have a need for Rancid
to be able to access devices in an MPLS environment.
What we have is a network of devices, some on MPLS that is reachable via a
share, and some that are completely autonomous from the rest of the network,
they have their own firewall in the colo and everything is reached through
that, unless you have access to a Core router, and can then reach them
through their VRF.
What I was thinking is if there is a way for Rancid to log into a Core
router, and then from there, ssh or telnet, depending on the Core router, to
the customers routers via the VRF commands. These would need to be done one
device at a time so it doesn?t overwhelm the core router with connections.
Basically, Rancid logs into say 10.255.255.254, then issues, telnet
10.255.254.2 /vrf testcase, logs into the device, does its Rancid thing,
logs out, then does it again for the next device on the list. This would be
something I would schedule to be done once a day, starting at 11 PM.
Can it be done?
Todd
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
_______________________________________________
Rancid-discuss mailing list
http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
Loading...