Discussion:
[rancid] Netscreen/Juniper ISG1000 FW Not Working
Gregory W Zill
2008-10-23 14:30:23 UTC
Permalink
The commands on this firewall start with "GET" but no matter how I try
to setup the router.db it wants to send all kinds of "SHOW" commands. Is
there some fix for netscreen/juniper? Any help would be appreciated.
--
gregory w zill, mba, cissp
Information Security Engineer
Managed Services Team
-----------------------------
Solutionary, Inc.
Making Security Manageable
v: 402-361-3066
John Payne
2008-10-24 14:20:08 UTC
Permalink
Post by Gregory W Zill
The commands on this firewall start with "GET" but no matter how I try
to setup the router.db it wants to send all kinds of "SHOW"
commands. Is
there some fix for netscreen/juniper? Any help would be appreciated.
What are you putting in the router.db file? ISG2000s and all kinds
of netscreen and SSGs are working happily with "netscreen".
Gregory W Zill
2008-10-24 14:29:59 UTC
Permalink
Yeah, I think I am working now, finally

I changed type to netscreen and added the missing curly brace in
~bin/nrancid plus added some commenting around an enable chunk in
~bin/nlogin because it was trying to enable and failing after the curly
brace fix. I read about both of these fixes on google. Our rancid
version is one or two clicks behind so the manual fix is just until our
systems groups can update it.

Next I want to add some additional commands to pull down 'get chassis'
and some other info -- have you done this?
Post by Gregory W Zill
The commands on this firewall start with "GET" but no matter how I try
to setup the router.db it wants to send all kinds of "SHOW" commands. Is
there some fix for netscreen/juniper? Any help would be appreciated.
What are you putting in the router.db file? ISG2000s and all kinds of
netscreen and SSGs are working happily with "netscreen".
--
gregory w zill, mba, cissp
Information Security Engineer
Managed Services Team
-----------------------------
Solutionary, Inc.
Making Security Manageable
v: 402-361-3066
A***@HydroOne.com
2008-10-24 14:31:04 UTC
Permalink
I know that there is patch required for Netscreen; we have to modify it
to get it working for SSG's and ISG's.

It is nlogin, nracnid require some changes to be made.

Check this link:

http://natesteffen.com/article_rancid_dell_ns.html



-----Original Message-----
From: rancid-discuss-***@shrubbery.net
[mailto:rancid-discuss-***@shrubbery.net] On Behalf Of Gregory W
Zill
Sent: Thursday, October 23, 2008 10:30 AM
To: 'rancid-***@shrubbery.net'
Subject: [rancid] Netscreen/Juniper ISG1000 FW Not Working

The commands on this firewall start with "GET" but no matter how I try
to setup the router.db it wants to send all kinds of "SHOW" commands. Is

there some fix for netscreen/juniper? Any help would be appreciated.
--
gregory w zill, mba, cissp
Information Security Engineer
Managed Services Team
-----------------------------
Solutionary, Inc.
Making Security Manageable
v: 402-361-3066
Loading...