Discussion:
[rancid] Ironport anti-spam appliance support
Scott Brynen
2012-09-09 19:54:37 UTC
Permalink
I've coded up an ironport module for RANCID; I know a couple of people have been looking for that in the past.
Available for download at http://snafu.ca/rancid-ironport.tgz

Let me know if it works for you..
Steve Madel
2012-09-13 16:37:31 UTC
Permalink
Getting the following errors when trying to use this. I can ssh in
manually with the username and password in my .cloginrc file just fine.

Cannot find module (MTA-MIB): At line 0 in (none)
Cannot find module (NETWORK-SERVICES-MIB): At line 0 in (none)
Cannot find module (SCTP-MIB): At line 0 in (none)
Cannot find module (LM-SENSORS-MIB): At line 0 in (none)
Cannot rename /var/net-snmp/snmpapp.conf to /var/net-snmp/snmpapp.0.conf
Cannot unlink /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
cvs [status aborted]: cannot open file ironport for comparing:
Permission denied


Trying to get all of the configs.
ironport iplogin error: Error: TIMEOUT reached
ironport: missed cmd(s): showconfig
ironport: End of run not found

On 09/09/2012 02:54 PM, Scott Brynen wrote:
> I've coded up an ironport module for RANCID; I know a couple of people have been looking for that in the past.
> Available for download at http://snafu.ca/rancid-ironport.tgz
>
> Let me know if it works for you..
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
Scott Brynen
2012-09-13 17:02:21 UTC
Permalink
This isn't a problem with the script itself, but a problem with the rancid install as a whole. You should be able to go into the bin directory and try running

./iplogin -c"showconfig;exit" <nameofdevice>
and make sure you're running it as the rancid user

The error messages you've quoted look like they're not from RANCID, as RANCID doesn't play with NET-SNMP at all, the only one that does appear to be RANCID is the "cvs [status aborted]: cannot open file ironport for comparing: Permission denied"


Anybody else tried it?



-----Original Message-----
From: rancid-discuss-***@shrubbery.net [mailto:rancid-discuss-***@shrubbery.net] On Behalf Of Steve Madel
Sent: Thursday, September 13, 2012 9:38 AM
To: rancid-***@shrubbery.net
Subject: Re: [rancid] Ironport anti-spam appliance support

Getting the following errors when trying to use this. I can ssh in manually with the username and password in my .cloginrc file just fine.
Cannot find module (MTA-MIB): At line 0 in (none)
Cannot find module (NETWORK-SERVICES-MIB): At line 0 in (none)
Cannot find module (SCTP-MIB): At line 0 in (none)
Cannot find module (LM-SENSORS-MIB): At line 0 in (none)
Cannot rename /var/net-snmp/snmpapp.conf to /var/net-snmp/snmpapp.0.conf
Cannot unlink /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
read_config_store open failure on /var/net-snmp/snmpapp.conf
cvs [status aborted]: cannot open file ironport for comparing:
Permission denied




Trying to get all of the configs.
ironport iplogin error: Error: TIMEOUT reached
ironport: missed cmd(s): showconfig
ironport: End of run not found

On 09/09/2012 02:54 PM, Scott Brynen wrote:
> I've coded up an ironport module for RANCID; I know a couple of people have been looking for that in the past.
> Available for download at http://snafu.ca/rancid-ironport.tgz
>
> Let me know if it works for you..
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
Steve Madel
2012-09-13 17:05:07 UTC
Permalink
Running the command below brings the following output.

Do you want to include passwords? Please be aware that a configuration
without passwords will fail to be loaded with loadconfig. [N]>


Error: TIMEOUT reached


On 09/13/2012 12:02 PM, Scott Brynen wrote:
> This isn't a problem with the script itself, but a problem with the rancid install as a whole. You should be able to go into the bin directory and try running
>
> ./iplogin -c"showconfig;exit" <nameofdevice>
> and make sure you're running it as the rancid user
>
> The error messages you've quoted look like they're not from RANCID, as RANCID doesn't play with NET-SNMP at all, the only one that does appear to be RANCID is the "cvs [status aborted]: cannot open file ironport for comparing: Permission denied"
>
>
> Anybody else tried it?
>
>
>
> -----Original Message-----
> From: rancid-discuss-***@shrubbery.net [mailto:rancid-discuss-***@shrubbery.net] On Behalf Of Steve Madel
> Sent: Thursday, September 13, 2012 9:38 AM
> To: rancid-***@shrubbery.net
> Subject: Re: [rancid] Ironport anti-spam appliance support
>
> Getting the following errors when trying to use this. I can ssh in manually with the username and password in my .cloginrc file just fine.
> Cannot find module (MTA-MIB): At line 0 in (none)
> Cannot find module (NETWORK-SERVICES-MIB): At line 0 in (none)
> Cannot find module (SCTP-MIB): At line 0 in (none)
> Cannot find module (LM-SENSORS-MIB): At line 0 in (none)
> Cannot rename /var/net-snmp/snmpapp.conf to /var/net-snmp/snmpapp.0.conf
> Cannot unlink /var/net-snmp/snmpapp.conf
> read_config_store open failure on /var/net-snmp/snmpapp.conf
> read_config_store open failure on /var/net-snmp/snmpapp.conf
> read_config_store open failure on /var/net-snmp/snmpapp.conf
> cvs [status aborted]: cannot open file ironport for comparing:
> Permission denied
>
>
>
>
> Trying to get all of the configs.
> ironport iplogin error: Error: TIMEOUT reached
> ironport: missed cmd(s): showconfig
> ironport: End of run not found
>
> On 09/09/2012 02:54 PM, Scott Brynen wrote:
>> I've coded up an ironport module for RANCID; I know a couple of people have been looking for that in the past.
>> Available for download at http://snafu.ca/rancid-ironport.tgz
>>
>> Let me know if it works for you..
>> _______________________________________________
>> Rancid-discuss mailing list
>> Rancid-***@shrubbery.net
>> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-***@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
>
Scott Brynen
2012-09-18 21:15:18 UTC
Permalink
Glad to hear it's working for you now Steve.

I've uploaded all of the various fixes we've discussed into a new copy at http://snafu.ca/ironport.tgz
Hopefully more than two of us find it useful...



-----Original Message-----
From: Steve Madel [mailto:***@solutionary.com]
Sent: Tuesday, September 18, 2012 9:08 AM
To: Scott Brynen
Subject: Re: [rancid] Ironport anti-spam appliance support

After the last change, everything is working as it should and rancid is polling/sending me diffs of changes made to our ironport appliances.

Thanks for all the help on this, and thanks for writing the scripts that make this possible.


On 09/17/2012 04:41 PM, Scott Brynen wrote:
> OK; one more place with a prompt. Change line 193 to
> if (/$prompt/) {
>
......
>>>>>>>>>>>>
>>>>>>>>>>>>
>>>>>>>>>>>> Trying to get all of the configs.
>>>>>>>>>>>> ironport iplogin error: Error: TIMEOUT reached
>>>>>>>>>>>> ironport: missed cmd(s): showconfig
>>>>>>>>>>>> ironport: End of run not found
>>>>>>>>>>>>
>>>>>>>>>>>> On 09/09/2012 02:54 PM, Scott Brynen wrote:
>>>>>>>>>>>>> I've coded up an ironport module for RANCID; I know a couple of people have been looking for that in the past.
>>>>>>>>>>>>> Available for download at
>>>>>>>>>>>>> http://snafu.ca/rancid-ironport.tgz
>>>>>>>>>>>>>
>>>>>>>>>>>>> Let me know if it works for you..
Loading...