[rancid] Restoring Cisco Wireless Lan Controller from rancid?

Discussion:

Elliot Wilen

2014-01-03 23:43:23 UTC

Hello,

I've been playing with rancid and with the scripts for ciscowlc that have been posted to this list. There was a major variant posted at http://www.shrubbery.net/pipermail/rancid-discuss/2012-March/006276.html, however I've been working with the "mainstream" scripts which I found most recently at http://www.shrubbery.net/pipermail/rancid-discuss/2013-July/006971.html The only variations I've found in the main line are:

wlogin: control paging with set length0/term length 0, vs. config paging disable
ciscowlc: show running-config, vs. show run-config commands

Since the second option in each script seems to work on our device, I've opted to use those. Our device is running software version 7.0.220.0.

About the only other wrinkle I found was that I had to "add autoenable <device> 1" for the device within the .cloginrc.

Now wlogin works fine, and rancid-run completes successfully. But I'm not sure the archived configuration is really usable as-is for restoring the configuration. When I compare it to the file I get when I upload the config via tftp, I see:

tftp'd file uses "config" for each line (this is trivial)
a number of configuration lines in the tftp'd file don't seem to have an exact equivalent
a few odd lines appear in the rancid config archive such as:

"Not supported"
"Max no. of clients 0Max no. of clients 0Max no. of clients 0"

I've verified that these differences are from the output of "show run-config commands." I.e., it's Cisco's fault.

But I'm wondering if the archived config produced by rancid is something I can trust as an actual backup. Has anyone tried restoring the config from rancid?

I wonder if I might be better off having rancid trigger tftp (ftp, sftp, etc.) and then grab the file. This page has some ideas that might be incorporated: http://networkengineering.stackexchange.com/questions/3246/is-there-an-automatable-way-to-backup-the-configuration-from-a-wlc-2504-controll

Thoughts?

--
Elliot Wilen
Sr. System Administrator
Aechelon Technology
E-Mail: ***@aechelon.com

Daniel Schmidt

2014-01-05 03:36:19 UTC

Permalink

>But Im wondering if the archived config produced by rancid is something I
can trust as an actual backup. Has anyone tried restoring the config from
rancid?

Yup. Worked 4 me.

On Fri, Jan 3, 2014 at 4:43 PM, Elliot Wilen <***@aechelon.com>wrote:

> Hello,
>
>
>
> Ive been playing with rancid and with the scripts for ciscowlc that have
> been posted to this list. There was a major variant posted at
> http://www.shrubbery.net/pipermail/rancid-discuss/2012-March/006276.html,
> however Ive been working with the mainstream scripts which I found most
> recently at
> http://www.shrubbery.net/pipermail/rancid-discuss/2013-July/006971.htmlThe only variations Ive found in the main line are:
>
>
>
> wlogin: control paging with set length0/term length 0, vs. config paging
> disable
>
> ciscowlc: show running-config, vs. show run-config commands
>
>
>
> Since the second option in each script seems to work on our device, Ive
> opted to use those. Our device is running software version 7.0.220.0.
>
>
>
> About the only other wrinkle I found was that I had to add autoenable
> <device> 1 for the device within the .cloginrc.
>
>
>
> Now wlogin works fine, and rancid-run completes successfully. But Im not
> sure the archived configuration is really usable as-is for restoring the
> configuration. When I compare it to the file I get when I upload the config
> via tftp, I see:
>
>
>
> tftpd file uses config for each line (this is trivial)
>
> a number of configuration lines in the tftpd file dont seem to have an
> exact equivalent
>
> a few odd lines appear in the rancid config archive such as:
>
>
>
> Not supported
>
> Max no. of clients 0Max no. of clients 0Max no. of clients 0
>
>
>
> Ive verified that these differences are from the output of show
> run-config commands. I.e., its Ciscos fault.
>
>
>
> But Im wondering if the archived config produced by rancid is something I
> can trust as an actual backup. Has anyone tried restoring the config from
> rancid?
>
>
>
> I wonder if I might be better off having rancid trigger tftp (ftp, sftp,
> etc.) and then grab the file. This page has some ideas that might be
> incorporated:
> http://networkengineering.stackexchange.com/questions/3246/is-there-an-automatable-way-to-backup-the-configuration-from-a-wlc-2504-controll
>
>
>
> Thoughts?
>
>
>
> --
>
> Elliot Wilen
>
> Sr. System Administrator
>
> Aechelon Technology
>
> E-Mail: ***@aechelon.com
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>

E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.

Elliot Wilen

2014-01-05 13:07:10 UTC

Permalink

On Jan 4, 2014, at 7:36 PM, "Daniel Schmidt" <***@wyo.gov<mailto:***@wyo.gov>> wrote:

>But Im wondering if the archived config produced by rancid is something I can trust as an actual backup. Has anyone tried restoring the config from rancid?

Yup. Worked 4 me.

Hi, Daniel,

Do you know if you get any of those funny lines in the output?

What was you restore method, if I may ask?

Thanks.

--Elliot Wilen

Daniel Schmidt

2014-01-08 15:59:32 UTC

Permalink

I can't remember - I think I just copied it from command line, or maybe to
start. I don't have those lines of garbage.

On Sun, Jan 5, 2014 at 6:07 AM, Elliot Wilen <***@aechelon.com>wrote:

>
> On Jan 4, 2014, at 7:36 PM, "Daniel Schmidt" <***@wyo.gov>
> wrote:
>
> >But Im wondering if the archived config produced by rancid is
> something I can trust as an actual backup. Has anyone tried restoring the
> config from rancid?
>
> Yup. Worked 4 me.
>
>
> Hi, Daniel,
>
> Do you know if you get any of those funny lines in the output?
>
> What was you restore method, if I may ask?
>
> Thanks.
>
> --Elliot Wilen
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>

E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.

Elliot Wilen

2014-01-09 22:35:16 UTC

Permalink

Thanks, Daniel. I think my firmware version must be different. In addition to the garbage output, even the commands don't seem to follow the right syntax to just dump them back into the device. (I.e., not just lack of "config" at the start of each line.)

While we wait to upgrade our firmware I'm going to work on plan B: uploading the config from the WLC with tftp and then importing. For this I'm debating using wraprancid (https://sites.google.com/site/jrbinks/code/rancid/wraprancid) vs. clogin -s and rancid -f.
--
Elliot Wilen
Sr. System Administrator
Aechelon Technology

Daniel Schmidt

2014-01-10 16:23:32 UTC

Permalink

Works fine 4 me. U ARE using cisco-wlc5 rancid type, right?

! Manufacturer's Name.............................. Cisco Systems Inc.
! Product Name..................................... Cisco Controller
! Product Version.................................. 7.4.103.5
! RTOS Version..................................... 7.4.103.5
! Bootloader Version............................... 7.0.220.0
! Emergency Image Version.......................... 7.2.104.17

On Thu, Jan 9, 2014 at 3:35 PM, Elliot Wilen <***@aechelon.com>wrote:

> Thanks, Daniel. I think my firmware version must be different. In
> addition to the garbage output, even the commands dont seem to follow the
> right syntax to just dump them back into the device. (I.e., not just lack
> of config at the start of each line.)
>
>
>
> While we wait to upgrade our firmware Im going to work on plan B:
> uploading the config from the WLC with tftp and then importing. For this
> Im debating using wraprancid (
> https://sites.google.com/site/jrbinks/code/rancid/wraprancid) vs. clogin
> s and rancid f.
>
> --
>
> Elliot Wilen
>
> Sr. System Administrator
>
> Aechelon Technology
>
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>

E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.

Elliot Wilen

2014-01-10 20:13:29 UTC

Permalink

Yes, I am, but note from my earlier message that my current firmware (Product Version) is 7.0.220.0.

Probably Cisco has fixed some things since then, and we'll be upgrading shortly. But I think I'll still feel more comfortable having a backup using the approved method. At worst (i.e., being lazy) I can probably do it both the rancid way to capture the UDI and system info, and with tftp with wraprancid, by having separate entries in router.db.

I'll post back to the list once I've got a decent wrapper script.

--
Elliot Wilen
Sr. System Administrator
Aechelon Technology

From: Daniel Schmidt [mailto:***@wyo.gov]

Works fine 4 me. U ARE using cisco-wlc5 rancid type, right?

! Manufacturer's Name.............................. Cisco Systems Inc.

! Product Name..................................... Cisco Controller

! Product Version.................................. 7.4.103.5

! RTOS Version..................................... 7.4.103.5

! Bootloader Version............................... 7.0.220.0

! Emergency Image Version.......................... 7.2.104.17