Mailing List Archive

Can you login with wlogin?

On Fri, Jan 19, 2018 at 8:33 PM, Piegorsch, Weylin William <weylin@bu.edu>
wrote:

> Hello,
>
>
>
> I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller
> running 8.2.166.0. rancid is not able to acquire any of their configs.
> I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco,
> none of them work. The logs, copied below, show the results of cisco-wlc5
> (all controllers were identical, I’ve trimmed down to just one). What
> could be causing this? Why would the results vary across the five rounds?
> And, which type should I be using?
>
>
>
> weylin
>
>
>
>
>
> [rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
>
> starting: Fri Jan 19 14:25:01 EST 2018
>
>
>
>
>
>
>
> Trying to get all of the configs.
>
> controller: missed cmd(s): show run-config commands
>
> controller: End of run not found
>
> !WLC Show Sysinfo End
>
> =====================================
>
> Getting missed routers: round 1.
>
> controller: missed cmd(s): all commands
>
> controller wlogin error: Error: Connection closed (ssh): controller
>
> controller: End of run not found
>
> =====================================
>
> Getting missed routers: round 2.
>
> controller: missed cmd(s): show run-config commands
>
> controller: End of run not found
>
> =====================================
>
> Getting missed routers: round 3.
>
> controller: missed cmd(s): all commands
>
> controller wlogin error: Error: TIMEOUT reached
>
> controller: End of run not found
>
> !
>
> =====================================
>
> Getting missed routers: round 4.
>
> controller: missed cmd(s): show run-config commands
>
> controller: End of run not found
>
> !WLC Show Sysinfo End
>
>
>
> cvs diff: Diffing .
>
> cvs diff: Diffing configs
>
> cvs commit: Examining .
>
> cvs commit: Examining configs
>
>
>
> ending: Fri Jan 19 14:39:59 EST 2018
>
> [rancid@nsgv-prod-59 logs]$
>
>
>
>
>
> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss@shrubbery.net
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
>

--

E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.

I just tried five times on three different controllers; I got 100% success.
weylin

From: Daniel Schmidt <daniel.schmidt@wyo.gov>
Date: Sunday, January 21, 2018 at 00:17
To: Weylin Piegorsch <weylin@bu.edu>
Cc: "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Can you login with wlogin?

On Fri, Jan 19, 2018 at 8:33 PM, Piegorsch, Weylin William <weylin@bu.edu<mailto:weylin@bu.edu>> wrote:
Hello,

I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller running 8.2.166.0. rancid is not able to acquire any of their configs. I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco, none of them work. The logs, copied below, show the results of cisco-wlc5 (all controllers were identical, I’ve trimmed down to just one). What could be causing this? Why would the results vary across the five rounds? And, which type should I be using?

weylin


[rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
starting: Fri Jan 19 14:25:01 EST 2018



Trying to get all of the configs.
controller: missed cmd(s): show run-config commands
controller: End of run not found
!WLC Show Sysinfo End
=====================================
Getting missed routers: round 1.
controller: missed cmd(s): all commands
controller wlogin error: Error: Connection closed (ssh): controller
controller: End of run not found
=====================================
Getting missed routers: round 2.
controller: missed cmd(s): show run-config commands
controller: End of run not found
=====================================
Getting missed routers: round 3.
controller: missed cmd(s): all commands
controller wlogin error: Error: TIMEOUT reached
controller: End of run not found
!
=====================================
Getting missed routers: round 4.
controller: missed cmd(s): show run-config commands
controller: End of run not found
!WLC Show Sysinfo End

cvs diff: Diffing .
cvs diff: Diffing configs
cvs commit: Examining .
cvs commit: Examining configs

ending: Fri Jan 19 14:39:59 EST 2018
[rancid@nsgv-prod-59 logs]$



_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net<mailto:Rancid-discuss@shrubbery.net>
http://www.shrubbery.net/mailman/listinfo/rancid-discuss



E-Mail to and from me, in connection with the transaction
of public business, is subject to the Wyoming Public Records
Act and may be disclosed to third parties.

Sun, Jan 21, 2018 at 05:43:23AM +0000, Piegorsch, Weylin William:
> I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller running 8.2.166.0. rancid is not able to acquire any of their configs. I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco, none of them work. The logs, copied below, show the results of cisco-wlc5 (all controllers were identical, I’ve trimmed down to just one). What could be causing this? Why would the results vary across the five rounds? And, which type should I be using?
>
> weylin

does the patch below fix it? the patch is against HEAD, so there
may be some fuzz.

> [rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
> starting: Fri Jan 19 14:25:01 EST 2018
>
>
>
> Trying to get all of the configs.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
> =====================================
> Getting missed routers: round 1.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: Connection closed (ssh): controller
> controller: End of run not found
> =====================================
> Getting missed routers: round 2.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> =====================================
> Getting missed routers: round 3.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: TIMEOUT reached
> controller: End of run not found
> !
> =====================================
> Getting missed routers: round 4.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
>
> cvs diff: Diffing .
> cvs diff: Diffing configs
> cvs commit: Examining .
> cvs commit: Examining configs
>
> ending: Fri Jan 19 14:39:59 EST 2018
> [rancid@nsgv-prod-59 logs]$

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3739)
+++ lib/ciscowlc.pm.in (revision 3740)
@@ -42,7 +42,7 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(Connection.*closed.)?$/) {
+ if (/^.*logout(\s*Connection.*closed.)?$/) {
$clean_run = 1;
last;
}
Index: CHANGES
===================================================================
--- CHANGES (revision 3739)
+++ CHANGES (revision 3740)
@@ -1,4 +1,6 @@
3.99.99
+ ciscowlc.pm: handle variant of logout bug
+
fnrancid: update md5-keys filter for Fortigate 5.4.6

sros.pm: move show chassis power-supply o/p - Greg Hankins

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Thanks for the patch. I can’t test today, but I'll try it out tomorrow or Wednesday. If it doesn’t work, I'll also try with -d and NOPIPE=yes... forgot about that until now.
weylin

?-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Monday, January 22, 2018 at 10:17
To: Weylin Piegorsch <weylin@bu.edu>
Cc: Daniel Schmidt <daniel.schmidt@wyo.gov>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Sun, Jan 21, 2018 at 05:43:23AM +0000, Piegorsch, Weylin William:
> I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller running 8.2.166.0. rancid is not able to acquire any of their configs. I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco, none of them work. The logs, copied below, show the results of cisco-wlc5 (all controllers were identical, I’ve trimmed down to just one). What could be causing this? Why would the results vary across the five rounds? And, which type should I be using?
>
> weylin

does the patch below fix it? the patch is against HEAD, so there
may be some fuzz.

> [rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
> starting: Fri Jan 19 14:25:01 EST 2018
>
>
>
> Trying to get all of the configs.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
> =====================================
> Getting missed routers: round 1.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: Connection closed (ssh): controller
> controller: End of run not found
> =====================================
> Getting missed routers: round 2.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> =====================================
> Getting missed routers: round 3.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: TIMEOUT reached
> controller: End of run not found
> !
> =====================================
> Getting missed routers: round 4.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
>
> cvs diff: Diffing .
> cvs diff: Diffing configs
> cvs commit: Examining .
> cvs commit: Examining configs
>
> ending: Fri Jan 19 14:39:59 EST 2018
> [rancid@nsgv-prod-59 logs]$

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3739)
+++ lib/ciscowlc.pm.in (revision 3740)
@@ -42,7 +42,7 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(Connection.*closed.)?$/) {
+ if (/^.*logout(\s*Connection.*closed.)?$/) {
$clean_run = 1;
last;
}
Index: CHANGES
===================================================================
--- CHANGES (revision 3739)
+++ CHANGES (revision 3740)
@@ -1,4 +1,6 @@
3.99.99
+ ciscowlc.pm: handle variant of logout bug
+
fnrancid: update md5-keys filter for Fortigate 5.4.6

sros.pm: move show chassis power-supply o/p - Greg Hankins



_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Hi Heasley,

I was finally able to try this out. Actually - more specifically, I tried the same command on this WISM2 that I tried a moment ago on the WLC 8540, and got 100% identical results. I don’t think this issue is in catching the logout, though if you want me to I can try your patch below.

Weylin


?On 1/22/18, 1:01 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

Thanks for the patch. I can’t test today, but I'll try it out tomorrow or Wednesday. If it doesn’t work, I'll also try with -d and NOPIPE=yes... forgot about that until now.
weylin

-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Monday, January 22, 2018 at 10:17
To: Weylin Piegorsch <weylin@bu.edu>
Cc: Daniel Schmidt <daniel.schmidt@wyo.gov>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Sun, Jan 21, 2018 at 05:43:23AM +0000, Piegorsch, Weylin William:
> I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller running 8.2.166.0. rancid is not able to acquire any of their configs. I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco, none of them work. The logs, copied below, show the results of cisco-wlc5 (all controllers were identical, I’ve trimmed down to just one). What could be causing this? Why would the results vary across the five rounds? And, which type should I be using?
>
> weylin

does the patch below fix it? the patch is against HEAD, so there
may be some fuzz.

> [rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
> starting: Fri Jan 19 14:25:01 EST 2018
>
>
>
> Trying to get all of the configs.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
> =====================================
> Getting missed routers: round 1.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: Connection closed (ssh): controller
> controller: End of run not found
> =====================================
> Getting missed routers: round 2.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> =====================================
> Getting missed routers: round 3.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: TIMEOUT reached
> controller: End of run not found
> !
> =====================================
> Getting missed routers: round 4.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
>
> cvs diff: Diffing .
> cvs diff: Diffing configs
> cvs commit: Examining .
> cvs commit: Examining configs
>
> ending: Fri Jan 19 14:39:59 EST 2018
> [rancid@nsgv-prod-59 logs]$

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3739)
+++ lib/ciscowlc.pm.in (revision 3740)
@@ -42,7 +42,7 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(Connection.*closed.)?$/) {
+ if (/^.*logout(\s*Connection.*closed.)?$/) {
$clean_run = 1;
last;
}
Index: CHANGES
===================================================================
--- CHANGES (revision 3739)
+++ CHANGES (revision 3740)
@@ -1,4 +1,6 @@
3.99.99
+ ciscowlc.pm: handle variant of logout bug
+
fnrancid: update md5-keys filter for Fortigate 5.4.6

sros.pm: move show chassis power-supply o/p - Greg Hankins





_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.

weylin

?On 7/26/18, 5:17 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

Hi Heasley,

I was finally able to try this out. Actually - more specifically, I tried the same command on this WISM2 that I tried a moment ago on the WLC 8540, and got 100% identical results. I don’t think this issue is in catching the logout, though if you want me to I can try your patch below.

Weylin


On 1/22/18, 1:01 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

Thanks for the patch. I can’t test today, but I'll try it out tomorrow or Wednesday. If it doesn’t work, I'll also try with -d and NOPIPE=yes... forgot about that until now.
weylin

-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Monday, January 22, 2018 at 10:17
To: Weylin Piegorsch <weylin@bu.edu>
Cc: Daniel Schmidt <daniel.schmidt@wyo.gov>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Sun, Jan 21, 2018 at 05:43:23AM +0000, Piegorsch, Weylin William:
> I’m running rancid v3.4.1. I have a number of Cisco WISM2 controller running 8.2.166.0. rancid is not able to acquire any of their configs. I’ve tried various types in router.db: cisco-wlc4, cisco-wlc5, and cisco, none of them work. The logs, copied below, show the results of cisco-wlc5 (all controllers were identical, I’ve trimmed down to just one). What could be causing this? Why would the results vary across the five rounds? And, which type should I be using?
>
> weylin

does the patch below fix it? the patch is against HEAD, so there
may be some fuzz.

> [rancid@nsgv-prod-59 logs]$ cat wireless.20180119.142501
> starting: Fri Jan 19 14:25:01 EST 2018
>
>
>
> Trying to get all of the configs.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
> =====================================
> Getting missed routers: round 1.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: Connection closed (ssh): controller
> controller: End of run not found
> =====================================
> Getting missed routers: round 2.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> =====================================
> Getting missed routers: round 3.
> controller: missed cmd(s): all commands
> controller wlogin error: Error: TIMEOUT reached
> controller: End of run not found
> !
> =====================================
> Getting missed routers: round 4.
> controller: missed cmd(s): show run-config commands
> controller: End of run not found
> !WLC Show Sysinfo End
>
> cvs diff: Diffing .
> cvs diff: Diffing configs
> cvs commit: Examining .
> cvs commit: Examining configs
>
> ending: Fri Jan 19 14:39:59 EST 2018
> [rancid@nsgv-prod-59 logs]$

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3739)
+++ lib/ciscowlc.pm.in (revision 3740)
@@ -42,7 +42,7 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(Connection.*closed.)?$/) {
+ if (/^.*logout(\s*Connection.*closed.)?$/) {
$clean_run = 1;
last;
}
Index: CHANGES
===================================================================
--- CHANGES (revision 3739)
+++ CHANGES (revision 3740)
@@ -1,4 +1,6 @@
3.99.99
+ ciscowlc.pm: handle variant of logout bug
+
fnrancid: update md5-keys filter for Fortigate 5.4.6

sros.pm: move show chassis power-supply o/p - Greg Hankins







_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
>
> weylin

i dont see the problem in what you've provided; you'll have to share more
output with me.

eval `rancid -t cisco-wlc8 -C hostname` &> output

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.

Weylin

(cumm111-wism-aca05) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.2.166.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
Build Type....................................... DATA + WPS

System Name...................................... cumm111-wism-aca05
System Location.................................. 111 Cummington St., Room B05
System Contact................................... Network Operations Center
System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
Redundancy Mode.................................. SSO
IP Address....................................... 10.123.18.234
IPv6 Address..................................... ::
Last Reset....................................... Software reset
System Up Time................................... 97 days 17 hrs 26 mins 34 secs
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180


--More-- or (q)uit





?On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:

Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
>
> weylin

i dont see the problem in what you've provided; you'll have to share more
output with me.

eval `rancid -t cisco-wlc8 -C hostname` &> output


_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
weylin

?On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.

Weylin

(cumm111-wism-aca05) >show sysinfo

Manufacturer's Name.............................. Cisco Systems Inc.
Product Name..................................... Cisco Controller
Product Version.................................. 8.2.166.0
Bootloader Version............................... 1.0.20
Field Recovery Image Version..................... 7.6.101.1
Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
Build Type....................................... DATA + WPS

System Name...................................... cumm111-wism-aca05
System Location.................................. 111 Cummington St., Room B05
System Contact................................... Network Operations Center
System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
Redundancy Mode.................................. SSO
IP Address....................................... 10.123.18.234
IPv6 Address..................................... ::
Last Reset....................................... Software reset
System Up Time................................... 97 days 17 hrs 26 mins 34 secs
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
System Stats Realtime Interval................... 5
System Stats Normal Interval..................... 180


--More-- or (q)uit





On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:

Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
>
> weylin

i dont see the problem in what you've provided; you'll have to share more
output with me.

eval `rancid -t cisco-wlc8 -C hostname` &> output




_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> weylin

wlogin should have sent this command at the beginning. please look at
the beginning of the transcript with the device.

> ?On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
>
> Weylin
>
> (cumm111-wism-aca05) >show sysinfo
>
> Manufacturer's Name.............................. Cisco Systems Inc.
> Product Name..................................... Cisco Controller
> Product Version.................................. 8.2.166.0
> Bootloader Version............................... 1.0.20
> Field Recovery Image Version..................... 7.6.101.1
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> Build Type....................................... DATA + WPS
>
> System Name...................................... cumm111-wism-aca05
> System Location.................................. 111 Cummington St., Room B05
> System Contact................................... Network Operations Center
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> Redundancy Mode.................................. SSO
> IP Address....................................... 10.123.18.234
> IPv6 Address..................................... ::
> Last Reset....................................... Software reset
> System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> System Stats Realtime Interval................... 5
> System Stats Normal Interval..................... 180
>
>
> --More-- or (q)uit
>
>
>
>
>
> On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
>
> Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> >
> > weylin
>
> i dont see the problem in what you've provided; you'll have to share more
> output with me.
>
> eval `rancid -t cisco-wlc8 -C hostname` &> output
>
>
>
>

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
Weylin




[rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
[rancid@nsgv-prod-59 ~]$ cat -v output 
cumm111-wism-aca05.bu.edu
spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
^M
Access to this system is permitted for authorized persons only.  All connections are logged and monitored.  By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
(cumm111-wism-aca05) ^M
User: rancid^M
Password:*******^M
(cumm111-wism-aca05) >^M
(cumm111-wism-aca05) >config paging disable^M
^M
Incorrect usage.  Use the '?' or <TAB> key to list commands.^M
^M
(cumm111-wism-aca05) >show udi^M

^MNAME: "Chassis"    , DESCR: "Cisco Wireless Services Module 2"
^MPID: WS-SVC-WISM2-K9,  VID: V01,  SN: SAL172893FZ^M
^M
(cumm111-wism-aca05) >show sysinfo^M
^M
Manufacturer's Name.............................. Cisco Systems Inc.^M
Product Name..................................... Cisco Controller^M
Product Version.................................. 8.2.166.0^M
Bootloader Version............................... 1.0.20^M
Field Recovery Image Version..................... 7.6.101.1^M
Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
Build Type....................................... DATA + WPS
^M
System Name...................................... cumm111-wism-aca05^M
System Location.................................. 111 Cummington St., Room B05^M
System Contact................................... Network Operations Center^M
System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
Redundancy Mode.................................. SSO^M
IP Address....................................... 10.123.18.234^M
IPv6 Address..................................... ::^M
Last Reset....................................... Software reset^M
System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
System Stats Realtime Interval................... 5^M
System Stats Normal Interval..................... 180
^M
^M

Error: TIMEOUT reached
[rancid@nsgv-prod-59 ~]$





?On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:

Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> weylin

wlogin should have sent this command at the beginning. please look at
the beginning of the transcript with the device.

> On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
>
> Weylin
>
> (cumm111-wism-aca05) >show sysinfo
>
> Manufacturer's Name.............................. Cisco Systems Inc.
> Product Name..................................... Cisco Controller
> Product Version.................................. 8.2.166.0
> Bootloader Version............................... 1.0.20
> Field Recovery Image Version..................... 7.6.101.1
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> Build Type....................................... DATA + WPS
>
> System Name...................................... cumm111-wism-aca05
> System Location.................................. 111 Cummington St., Room B05
> System Contact................................... Network Operations Center
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> Redundancy Mode.................................. SSO
> IP Address....................................... 10.123.18.234
> IPv6 Address..................................... ::
> Last Reset....................................... Software reset
> System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> System Stats Realtime Interval................... 5
> System Stats Normal Interval..................... 180
>
>
> --More-- or (q)uit
>
>
>
>
>
> On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
>
> Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> >
> > weylin
>
> i dont see the problem in what you've provided; you'll have to share more
> output with me.
>
> eval `rancid -t cisco-wlc8 -C hostname` &> output
>
>
>
>


_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

This might be a tacacs issue. When I log in as a normal user, the config paging disable command appears when I type "?". I'll play around with that over the weekend.
Weylin


(cumm111-wism-aca05) >?

debug Manages system debug options.
exit
grep Print lines matching a pattern.
help Help
linktest Perform a link test to a specified MAC address.
logout Exit this session. Any unsaved changes are lost.
show Display switch options and settings.

(cumm111-wism-aca05) >





?On 7/27/18, 6:29 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
Weylin




[rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
[rancid@nsgv-prod-59 ~]$ cat -v output
cumm111-wism-aca05.bu.edu
spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
^M
Access to this system is permitted for authorized persons only. All connections are logged and monitored. By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
(cumm111-wism-aca05) ^M
User: rancid^M
Password:*******^M
(cumm111-wism-aca05) >^M
(cumm111-wism-aca05) >config paging disable^M
^M
Incorrect usage. Use the '?' or <TAB> key to list commands.^M
^M
(cumm111-wism-aca05) >show udi^M

^MNAME: "Chassis" , DESCR: "Cisco Wireless Services Module 2"
^MPID: WS-SVC-WISM2-K9, VID: V01, SN: SAL172893FZ^M
^M
(cumm111-wism-aca05) >show sysinfo^M
^M
Manufacturer's Name.............................. Cisco Systems Inc.^M
Product Name..................................... Cisco Controller^M
Product Version.................................. 8.2.166.0^M
Bootloader Version............................... 1.0.20^M
Field Recovery Image Version..................... 7.6.101.1^M
Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
Build Type....................................... DATA + WPS
^M
System Name...................................... cumm111-wism-aca05^M
System Location.................................. 111 Cummington St., Room B05^M
System Contact................................... Network Operations Center^M
System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
Redundancy Mode.................................. SSO^M
IP Address....................................... 10.123.18.234^M
IPv6 Address..................................... ::^M
Last Reset....................................... Software reset^M
System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
System Stats Realtime Interval................... 5^M
System Stats Normal Interval..................... 180
^M
^M

Error: TIMEOUT reached
[rancid@nsgv-prod-59 ~]$





On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:

Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> weylin

wlogin should have sent this command at the beginning. please look at
the beginning of the transcript with the device.

> On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
>
> Weylin
>
> (cumm111-wism-aca05) >show sysinfo
>
> Manufacturer's Name.............................. Cisco Systems Inc.
> Product Name..................................... Cisco Controller
> Product Version.................................. 8.2.166.0
> Bootloader Version............................... 1.0.20
> Field Recovery Image Version..................... 7.6.101.1
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> Build Type....................................... DATA + WPS
>
> System Name...................................... cumm111-wism-aca05
> System Location.................................. 111 Cummington St., Room B05
> System Contact................................... Network Operations Center
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> Redundancy Mode.................................. SSO
> IP Address....................................... 10.123.18.234
> IPv6 Address..................................... ::
> Last Reset....................................... Software reset
> System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> System Stats Realtime Interval................... 5
> System Stats Normal Interval..................... 180
>
>
> --More-- or (q)uit
>
>
>
>
>
> On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
>
> Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> >
> > weylin
>
> i dont see the problem in what you've provided; you'll have to share more
> output with me.
>
> eval `rancid -t cisco-wlc8 -C hostname` &> output
>
>
>
>




_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Hi John,

I'm still playing around with AAA. What I'm finding, is that the f*&^% WLC CLI authorization mechanism is all bork bork bork. I can set a read-only role, but that disables the ability to issue the "config pager disable" command since the entire "config *" command tree is not available. I can set a higher role, and perhaps the command will appear, but I'm struggling to figure out how to create a custom role definition (I suspect it might be impossible since the Cisco WLC is designed to be GUI-based). We can discuss another time allowing automation to make changes to the system - I'm fighting this battle internally but it's not going well, for now let's just say I need to demonstrate confidence that rancid will only get data, not change anything more complicated than a "last login" notice.

In any event - so, this leaves me with the CLI role I have, and without the "config paging disable" to be used.

I'm running rancid 3.4.1, I notice the latest 3.8 is slightly different in wlogin. But, they're relatively similar, and neither version (I think?) catches the specific prompts that might appear to prompt for paging. Might they possibly be added? See below what I did to wlogin v3.4.1 (aka my installation), let me know if I did this wrong (I'm an accomplished network engineer... but a poor excuse for a software engineer).

Also, wlogin uses "exit" to close the CLI when -c or -x is specified; it needs to be "logout" instead regardless of user role. Where do I change this? I suppose I can do this in rancid.types.base (.conf?), but I'd prefer not to since I /do/ use *login with the -p and -u options on occasion with some simple BASH command-line scripts to accomplish manual campus-wide pre-planned changes. I tried grep'ing through some files, that didn't work too well.

Weylin

I modified 3.4.1 bin/wlogin on this line:

for {set i 0} {$i < $num_commands} { incr i} {
send -- "[subst -nocommands [lindex $commands $i]]\r"
expect {
-re "\b+" { exp_continue }
-re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)"
}
-re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)"
exp_continue
}
-re "^--More--\[\r\n]+" { # specific match c1900 pager
send " "
exp_continue
}
-re "\[\n\r]+" { send_user -- "$expect_out(buffer)"
exp_continue
}
+ -re "^--More-- .*" { send "q" # note the [[:space:]] between --More-- and the period
+ exp_continue
+ }
}
}}


?On 7/27/18, 6:30 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

This might be a tacacs issue. When I log in as a normal user, the config paging disable command appears when I type "?". I'll play around with that over the weekend.
Weylin


(cumm111-wism-aca05) >?

debug Manages system debug options.
exit
grep Print lines matching a pattern.
help Help
linktest Perform a link test to a specified MAC address.
logout Exit this session. Any unsaved changes are lost.
show Display switch options and settings.

(cumm111-wism-aca05) >





On 7/27/18, 6:29 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
Weylin




[rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
[rancid@nsgv-prod-59 ~]$ cat -v output
cumm111-wism-aca05.bu.edu
spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
^M
Access to this system is permitted for authorized persons only. All connections are logged and monitored. By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
(cumm111-wism-aca05) ^M
User: rancid^M
Password:*******^M
(cumm111-wism-aca05) >^M
(cumm111-wism-aca05) >config paging disable^M
^M
Incorrect usage. Use the '?' or <TAB> key to list commands.^M
^M
(cumm111-wism-aca05) >show udi^M

^MNAME: "Chassis" , DESCR: "Cisco Wireless Services Module 2"
^MPID: WS-SVC-WISM2-K9, VID: V01, SN: SAL172893FZ^M
^M
(cumm111-wism-aca05) >show sysinfo^M
^M
Manufacturer's Name.............................. Cisco Systems Inc.^M
Product Name..................................... Cisco Controller^M
Product Version.................................. 8.2.166.0^M
Bootloader Version............................... 1.0.20^M
Field Recovery Image Version..................... 7.6.101.1^M
Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
Build Type....................................... DATA + WPS
^M
System Name...................................... cumm111-wism-aca05^M
System Location.................................. 111 Cummington St., Room B05^M
System Contact................................... Network Operations Center^M
System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
Redundancy Mode.................................. SSO^M
IP Address....................................... 10.123.18.234^M
IPv6 Address..................................... ::^M
Last Reset....................................... Software reset^M
System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
System Stats Realtime Interval................... 5^M
System Stats Normal Interval..................... 180
^M
^M

Error: TIMEOUT reached
[rancid@nsgv-prod-59 ~]$





On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:

Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> weylin

wlogin should have sent this command at the beginning. please look at
the beginning of the transcript with the device.

> On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
>
> Weylin
>
> (cumm111-wism-aca05) >show sysinfo
>
> Manufacturer's Name.............................. Cisco Systems Inc.
> Product Name..................................... Cisco Controller
> Product Version.................................. 8.2.166.0
> Bootloader Version............................... 1.0.20
> Field Recovery Image Version..................... 7.6.101.1
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> Build Type....................................... DATA + WPS
>
> System Name...................................... cumm111-wism-aca05
> System Location.................................. 111 Cummington St., Room B05
> System Contact................................... Network Operations Center
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> Redundancy Mode.................................. SSO
> IP Address....................................... 10.123.18.234
> IPv6 Address..................................... ::
> Last Reset....................................... Software reset
> System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> System Stats Realtime Interval................... 5
> System Stats Normal Interval..................... 180
>
>
> --More-- or (q)uit
>
>
>
>
>
> On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
>
> Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> >
> > weylin
>
> i dont see the problem in what you've provided; you'll have to share more
> output with me.
>
> eval `rancid -t cisco-wlc8 -C hostname` &> output
>
>
>
>






_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Mon, Jul 30, 2018 at 10:59:39AM +0000, Piegorsch, Weylin William:
> Hi John,
>
> I'm still playing around with AAA. What I'm finding, is that the f*&^% WLC CLI authorization mechanism is all bork bork bork. I can set a read-only role, but that disables the ability to issue the "config pager disable" command since the entire "config *" command tree is not available. I can set a higher role, and perhaps the command will appear, but I'm struggling to figure out how to create a custom role definition (I suspect it might be impossible since the Cisco WLC is designed to be GUI-based). We can discuss another time allowing automation to make changes to the system - I'm fighting this battle internally but it's not going well, for now let's just say I need to demonstrate confidence that rancid will only get data, not change anything more complicated than a "last login" notice.

this is a(nother) design flaw in the o/s, imiho. as in ios, the pager
should only affect the given vty, not the config of the device. not needing
to manipulate the pager is very convenient.

> In any event - so, this leaves me with the CLI role I have, and without the "config paging disable" to be used.

you could also change the config to disabled the pager, if most folk just
use the web UI. or try setting the stty rows to some large number before
initiating the connection to the device; it might honor it, but i've seen
many of these half-baked platforms ignore it if it doesn't lie within some
unspoken acceptable range.

> I'm running rancid 3.4.1, I notice the latest 3.8 is slightly different in wlogin. But, they're relatively similar, and neither version (I think?) catches the specific prompts that might appear to prompt for paging. Might they possibly be added? See below what I did to wlogin v3.4.1 (aka my installation), let me know if I did this wrong (I'm an accomplished network engineer... but a poor excuse for a software engineer).
>
> Also, wlogin uses "exit" to close the CLI when -c or -x is specified; it needs to be "logout" instead regardless of user role. Where do I change this? I suppose I can do this in rancid.types.base (.conf?), but I'd prefer not to since I /do/ use *login with the -p and -u options on occasion with some simple BASH command-line scripts to accomplish manual campus-wide pre-planned changes. I tried grep'ing through some files, that didn't work too well.

you just need a newer wlogin; current is using logout.

> Weylin
>
> I modified 3.4.1 bin/wlogin on this line:
>
> for {set i 0} {$i < $num_commands} { incr i} {
> send -- "[subst -nocommands [lindex $commands $i]]\r"
> expect {
> -re "\b+" { exp_continue }
> -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)"
> }
> -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> -re "^--More--\[\r\n]+" { # specific match c1900 pager
> send " "
> exp_continue
> }
> -re "\[\n\r]+" { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> + -re "^--More-- .*" { send "q" # note the [[:space:]] between --More-- and the period
> + exp_continue
> + }

difficult to say if that might cause problems with the output without seeing
the raw input. it depends upon how the device manipulates the pager prompt.
if that RE is matching too little/much, the line following the prompt will
shift back & forth randomly.

> }
> }}
>
>
> ?On 7/27/18, 6:30 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> This might be a tacacs issue. When I log in as a normal user, the config paging disable command appears when I type "?". I'll play around with that over the weekend.
> Weylin
>
>
> (cumm111-wism-aca05) >?
>
> debug Manages system debug options.
> exit
> grep Print lines matching a pattern.
> help Help
> linktest Perform a link test to a specified MAC address.
> logout Exit this session. Any unsaved changes are lost.
> show Display switch options and settings.
>
> (cumm111-wism-aca05) >
>
>
>
>
>
> On 7/27/18, 6:29 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
> Weylin
>
>
>
>
> [rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
> [rancid@nsgv-prod-59 ~]$ cat -v output
> cumm111-wism-aca05.bu.edu
> spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
> ^M
> Access to this system is permitted for authorized persons only. All connections are logged and monitored. By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
> (cumm111-wism-aca05) ^M
> User: rancid^M
> Password:*******^M
> (cumm111-wism-aca05) >^M
> (cumm111-wism-aca05) >config paging disable^M
> ^M
> Incorrect usage. Use the '?' or <TAB> key to list commands.^M
> ^M
> (cumm111-wism-aca05) >show udi^M
>
> ^MNAME: "Chassis" , DESCR: "Cisco Wireless Services Module 2"
> ^MPID: WS-SVC-WISM2-K9, VID: V01, SN: SAL172893FZ^M
> ^M
> (cumm111-wism-aca05) >show sysinfo^M
> ^M
> Manufacturer's Name.............................. Cisco Systems Inc.^M
> Product Name..................................... Cisco Controller^M
> Product Version.................................. 8.2.166.0^M
> Bootloader Version............................... 1.0.20^M
> Field Recovery Image Version..................... 7.6.101.1^M
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
> Build Type....................................... DATA + WPS
> ^M
> System Name...................................... cumm111-wism-aca05^M
> System Location.................................. 111 Cummington St., Room B05^M
> System Contact................................... Network Operations Center^M
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
> Redundancy Mode.................................. SSO^M
> IP Address....................................... 10.123.18.234^M
> IPv6 Address..................................... ::^M
> Last Reset....................................... Software reset^M
> System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
> System Stats Realtime Interval................... 5^M
> System Stats Normal Interval..................... 180
> ^M
> ^M
>
> Error: TIMEOUT reached
> [rancid@nsgv-prod-59 ~]$
>
>
>
>
>
> On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:
>
> Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> > I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> > weylin
>
> wlogin should have sent this command at the beginning. please look at
> the beginning of the transcript with the device.
>
> > On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
> >
> > When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
> >
> > Weylin
> >
> > (cumm111-wism-aca05) >show sysinfo
> >
> > Manufacturer's Name.............................. Cisco Systems Inc.
> > Product Name..................................... Cisco Controller
> > Product Version.................................. 8.2.166.0
> > Bootloader Version............................... 1.0.20
> > Field Recovery Image Version..................... 7.6.101.1
> > Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> > Build Type....................................... DATA + WPS
> >
> > System Name...................................... cumm111-wism-aca05
> > System Location.................................. 111 Cummington St., Room B05
> > System Contact................................... Network Operations Center
> > System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> > Redundancy Mode.................................. SSO
> > IP Address....................................... 10.123.18.234
> > IPv6 Address..................................... ::
> > Last Reset....................................... Software reset
> > System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> > System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> > System Stats Realtime Interval................... 5
> > System Stats Normal Interval..................... 180
> >
> >
> > --More-- or (q)uit
> >
> >
> >
> >
> >
> > On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
> >
> > Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> > >
> > > weylin
> >
> > i dont see the problem in what you've provided; you'll have to share more
> > output with me.
> >
> > eval `rancid -t cisco-wlc8 -C hostname` &> output
> >
> >
> >
> >
>
>
>
>
>
>

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

> this is a(nother) design flaw in the o/s, imiho.

FULLY AGREE!!!!! "config pager disable" is a per-session setting, and has no permanence. I tried setting it, and it lasted the duration of my session, but once I logged out/in the CLI reverted to a paging behavior. And yet, it's not available to a read-only user. Grrrr....

I'll start working with the wlogin from 3.8, and either upgrade rancid (management depending), replace wlogin, copy wlogin to wlogin-3.8 and define a new WLC type in rancid.types.conf, or as a last resort copy/paste the appropriate change.

Thanks for the help through this process.

weylin

?-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Monday, July 30, 2018 at 8:45 PM
To: Weylin Piegorsch <weylin@bu.edu>
Cc: heasley <heas@shrubbery.net>, Daniel Schmidt <daniel.schmidt@wyo.gov>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Mon, Jul 30, 2018 at 10:59:39AM +0000, Piegorsch, Weylin William:
> Hi John,
>
> I'm still playing around with AAA. What I'm finding, is that the f*&^% WLC CLI authorization mechanism is all bork bork bork. I can set a read-only role, but that disables the ability to issue the "config pager disable" command since the entire "config *" command tree is not available. I can set a higher role, and perhaps the command will appear, but I'm struggling to figure out how to create a custom role definition (I suspect it might be impossible since the Cisco WLC is designed to be GUI-based). We can discuss another time allowing automation to make changes to the system - I'm fighting this battle internally but it's not going well, for now let's just say I need to demonstrate confidence that rancid will only get data, not change anything more complicated than a "last login" notice.

this is a(nother) design flaw in the o/s, imiho. as in ios, the pager
should only affect the given vty, not the config of the device. not needing
to manipulate the pager is very convenient.

> In any event - so, this leaves me with the CLI role I have, and without the "config paging disable" to be used.

you could also change the config to disabled the pager, if most folk just
use the web UI. or try setting the stty rows to some large number before
initiating the connection to the device; it might honor it, but i've seen
many of these half-baked platforms ignore it if it doesn't lie within some
unspoken acceptable range.

> I'm running rancid 3.4.1, I notice the latest 3.8 is slightly different in wlogin. But, they're relatively similar, and neither version (I think?) catches the specific prompts that might appear to prompt for paging. Might they possibly be added? See below what I did to wlogin v3.4.1 (aka my installation), let me know if I did this wrong (I'm an accomplished network engineer... but a poor excuse for a software engineer).
>
> Also, wlogin uses "exit" to close the CLI when -c or -x is specified; it needs to be "logout" instead regardless of user role. Where do I change this? I suppose I can do this in rancid.types.base (.conf?), but I'd prefer not to since I /do/ use *login with the -p and -u options on occasion with some simple BASH command-line scripts to accomplish manual campus-wide pre-planned changes. I tried grep'ing through some files, that didn't work too well.

you just need a newer wlogin; current is using logout.

> Weylin
>
> I modified 3.4.1 bin/wlogin on this line:
>
> for {set i 0} {$i < $num_commands} { incr i} {
> send -- "[subst -nocommands [lindex $commands $i]]\r"
> expect {
> -re "\b+" { exp_continue }
> -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)"
> }
> -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> -re "^--More--\[\r\n]+" { # specific match c1900 pager
> send " "
> exp_continue
> }
> -re "\[\n\r]+" { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> + -re "^--More-- .*" { send "q" # note the [[:space:]] between --More-- and the period
> + exp_continue
> + }

difficult to say if that might cause problems with the output without seeing
the raw input. it depends upon how the device manipulates the pager prompt.
if that RE is matching too little/much, the line following the prompt will
shift back & forth randomly.

> }
> }}
>
>
> On 7/27/18, 6:30 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> This might be a tacacs issue. When I log in as a normal user, the config paging disable command appears when I type "?". I'll play around with that over the weekend.
> Weylin
>
>
> (cumm111-wism-aca05) >?
>
> debug Manages system debug options.
> exit
> grep Print lines matching a pattern.
> help Help
> linktest Perform a link test to a specified MAC address.
> logout Exit this session. Any unsaved changes are lost.
> show Display switch options and settings.
>
> (cumm111-wism-aca05) >
>
>
>
>
>
> On 7/27/18, 6:29 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
> Weylin
>
>
>
>
> [rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
> [rancid@nsgv-prod-59 ~]$ cat -v output
> cumm111-wism-aca05.bu.edu
> spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
> ^M
> Access to this system is permitted for authorized persons only. All connections are logged and monitored. By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
> (cumm111-wism-aca05) ^M
> User: rancid^M
> Password:*******^M
> (cumm111-wism-aca05) >^M
> (cumm111-wism-aca05) >config paging disable^M
> ^M
> Incorrect usage. Use the '?' or <TAB> key to list commands.^M
> ^M
> (cumm111-wism-aca05) >show udi^M
>
> ^MNAME: "Chassis" , DESCR: "Cisco Wireless Services Module 2"
> ^MPID: WS-SVC-WISM2-K9, VID: V01, SN: SAL172893FZ^M
> ^M
> (cumm111-wism-aca05) >show sysinfo^M
> ^M
> Manufacturer's Name.............................. Cisco Systems Inc.^M
> Product Name..................................... Cisco Controller^M
> Product Version.................................. 8.2.166.0^M
> Bootloader Version............................... 1.0.20^M
> Field Recovery Image Version..................... 7.6.101.1^M
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
> Build Type....................................... DATA + WPS
> ^M
> System Name...................................... cumm111-wism-aca05^M
> System Location.................................. 111 Cummington St., Room B05^M
> System Contact................................... Network Operations Center^M
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
> Redundancy Mode.................................. SSO^M
> IP Address....................................... 10.123.18.234^M
> IPv6 Address..................................... ::^M
> Last Reset....................................... Software reset^M
> System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
> System Stats Realtime Interval................... 5^M
> System Stats Normal Interval..................... 180
> ^M
> ^M
>
> Error: TIMEOUT reached
> [rancid@nsgv-prod-59 ~]$
>
>
>
>
>
> On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:
>
> Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> > I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> > weylin
>
> wlogin should have sent this command at the beginning. please look at
> the beginning of the transcript with the device.
>
> > On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
> >
> > When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
> >
> > Weylin
> >
> > (cumm111-wism-aca05) >show sysinfo
> >
> > Manufacturer's Name.............................. Cisco Systems Inc.
> > Product Name..................................... Cisco Controller
> > Product Version.................................. 8.2.166.0
> > Bootloader Version............................... 1.0.20
> > Field Recovery Image Version..................... 7.6.101.1
> > Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> > Build Type....................................... DATA + WPS
> >
> > System Name...................................... cumm111-wism-aca05
> > System Location.................................. 111 Cummington St., Room B05
> > System Contact................................... Network Operations Center
> > System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> > Redundancy Mode.................................. SSO
> > IP Address....................................... 10.123.18.234
> > IPv6 Address..................................... ::
> > Last Reset....................................... Software reset
> > System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> > System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> > System Stats Realtime Interval................... 5
> > System Stats Normal Interval..................... 180
> >
> >
> > --More-- or (q)uit
> >
> >
> >
> >
> >
> > On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
> >
> > Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> > >
> > > weylin
> >
> > i dont see the problem in what you've provided; you'll have to share more
> > output with me.
> >
> > eval `rancid -t cisco-wlc8 -C hostname` &> output
> >
> >
> >
> >
>
>
>
>
>
>


_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Tue, Jul 31, 2018 at 12:13:48PM +0000, Piegorsch, Weylin William:
> > this is a(nother) design flaw in the o/s, imiho.
>
> FULLY AGREE!!!!! "config pager disable" is a per-session setting, and has no permanence. I tried setting it, and it lasted the duration of my session, but once I logged out/in the CLI reverted to a paging behavior. And yet, it's not available to a read-only user. Grrrr....

if its not permanent, then its not changing the config. so your manglement
shouldnt have a complaint.

just use aaa authorization to allow only the commands that it needs.

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Hi John,

I’m getting increasingly annoyed with the Cisco WLC CLI – the WLC is clearly designed to be lifecycle-managed and -operated from Cisco PRIME Infrastructure, but for a while to come (because "boss said so") the CLI is all I have to work with for this effort.

As time permitted, I’ve dug around on the logout issue. I found that wlogin on 3.4.1 has this at line... I think it would be line 561 on a clean install of rancid 3.4.1:

send -h "exit\r"

I changed that line to ' send -h "logout\r" ', and now I'm getting a clean logout. Wlogin from 3.8 seems to fix this from reading through wlogin.in (I couldn't fudge things to get wlogin-3.8 to work and still use the rest of the 3.4.1 files).

In addition to catching these two -re match blocks in run_commands (I actually need both, it wouldn't work at all when I tried to combine them), that seems to have cleared up all the issues I have....

-re "^--More or .*" { send " "
exp_continue
}
-re "^--More-- .*" { send " "
exp_continue
}

...with the exception of “if (!$clean_run || !$found_end)”. For some reason I don’t understand, I keep getting “End of run not found”. I’ve attached .raw and .new files following an execution of “NOPIPE=YES rancid -d -t cisco-wlc5 <device>”. I’m guessing it’s somehow related to how the session closes, but that’s a 100% guess. Any idea how I can resolve?

weylin

On 7/31/18, 8:13 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:

> this is a(nother) design flaw in the o/s, imiho.

FULLY AGREE!!!!! "config pager disable" is a per-session setting, and has no permanence. I tried setting it, and it lasted the duration of my session, but once I logged out/in the CLI reverted to a paging behavior. And yet, it's not available to a read-only user. Grrrr....

I'll start working with the wlogin from 3.8, and either upgrade rancid (management depending), replace wlogin, copy wlogin to wlogin-3.8 and define a new WLC type in rancid.types.conf, or as a last resort copy/paste the appropriate change.

Thanks for the help through this process.

weylin

-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Monday, July 30, 2018 at 8:45 PM
To: Weylin Piegorsch <weylin@bu.edu>
Cc: heasley <heas@shrubbery.net>, Daniel Schmidt <daniel.schmidt@wyo.gov>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Mon, Jul 30, 2018 at 10:59:39AM +0000, Piegorsch, Weylin William:
> Hi John,
>
> I'm still playing around with AAA. What I'm finding, is that the f*&^% WLC CLI authorization mechanism is all bork bork bork. I can set a read-only role, but that disables the ability to issue the "config pager disable" command since the entire "config *" command tree is not available. I can set a higher role, and perhaps the command will appear, but I'm struggling to figure out how to create a custom role definition (I suspect it might be impossible since the Cisco WLC is designed to be GUI-based). We can discuss another time allowing automation to make changes to the system - I'm fighting this battle internally but it's not going well, for now let's just say I need to demonstrate confidence that rancid will only get data, not change anything more complicated than a "last login" notice.

this is a(nother) design flaw in the o/s, imiho. as in ios, the pager
should only affect the given vty, not the config of the device. not needing
to manipulate the pager is very convenient.

> In any event - so, this leaves me with the CLI role I have, and without the "config paging disable" to be used.

you could also change the config to disabled the pager, if most folk just
use the web UI. or try setting the stty rows to some large number before
initiating the connection to the device; it might honor it, but i've seen
many of these half-baked platforms ignore it if it doesn't lie within some
unspoken acceptable range.

> I'm running rancid 3.4.1, I notice the latest 3.8 is slightly different in wlogin. But, they're relatively similar, and neither version (I think?) catches the specific prompts that might appear to prompt for paging. Might they possibly be added? See below what I did to wlogin v3.4.1 (aka my installation), let me know if I did this wrong (I'm an accomplished network engineer... but a poor excuse for a software engineer).
>
> Also, wlogin uses "exit" to close the CLI when -c or -x is specified; it needs to be "logout" instead regardless of user role. Where do I change this? I suppose I can do this in rancid.types.base (.conf?), but I'd prefer not to since I /do/ use *login with the -p and -u options on occasion with some simple BASH command-line scripts to accomplish manual campus-wide pre-planned changes. I tried grep'ing through some files, that didn't work too well.

you just need a newer wlogin; current is using logout.

> Weylin
>
> I modified 3.4.1 bin/wlogin on this line:
>
> for {set i 0} {$i < $num_commands} { incr i} {
> send -- "[subst -nocommands [lindex $commands $i]]\r"
> expect {
> -re "\b+" { exp_continue }
> -re "^\[^\n\r *]*$reprompt" { send_user -- "$expect_out(buffer)"
> }
> -re "^\[^\n\r]*$reprompt." { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> -re "^--More--\[\r\n]+" { # specific match c1900 pager
> send " "
> exp_continue
> }
> -re "\[\n\r]+" { send_user -- "$expect_out(buffer)"
> exp_continue
> }
> + -re "^--More-- .*" { send "q" # note the [[:space:]] between --More-- and the period
> + exp_continue
> + }

difficult to say if that might cause problems with the output without seeing
the raw input. it depends upon how the device manipulates the pager prompt.
if that RE is matching too little/much, the line following the prompt will
shift back & forth randomly.

> }
> }}
>
>
> On 7/27/18, 6:30 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> This might be a tacacs issue. When I log in as a normal user, the config paging disable command appears when I type "?". I'll play around with that over the weekend.
> Weylin
>
>
> (cumm111-wism-aca05) >?
>
> debug Manages system debug options.
> exit
> grep Print lines matching a pattern.
> help Help
> linktest Perform a link test to a specified MAC address.
> logout Exit this session. Any unsaved changes are lost.
> show Display switch options and settings.
>
> (cumm111-wism-aca05) >
>
>
>
>
>
> On 7/27/18, 6:29 PM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
>
> Ah; thanks, I see it there. Something is amiss with that. "eval... ; cat -v" output below.
> Weylin
>
>
>
>
> [rancid@nsgv-prod-59 ~]$ eval `rancid -t cisco-wlc5 -C cumm111-wism-aca05.bu.edu` &> output
> [rancid@nsgv-prod-59 ~]$ cat -v output
> cumm111-wism-aca05.bu.edu
> spawn ssh -2 -c aes128-ctr,aes192-ctr,aes256-ctr,aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc -x -l rancid cumm111-wism-aca05.bu.edu^M
> ^M
> Access to this system is permitted for authorized persons only. All connections are logged and monitored. By accessing this system, you acknowledge that use of this and any other technology at Boston University is subject to the terms of the Boston University Conditions of Use and Policy on Computing Ethics; please see: http://www.bu.edu/computing/ethics for details.^M
> (cumm111-wism-aca05) ^M
> User: rancid^M
> Password:*******^M
> (cumm111-wism-aca05) >^M
> (cumm111-wism-aca05) >config paging disable^M
> ^M
> Incorrect usage. Use the '?' or <TAB> key to list commands.^M
> ^M
> (cumm111-wism-aca05) >show udi^M
>
> ^MNAME: "Chassis" , DESCR: "Cisco Wireless Services Module 2"
> ^MPID: WS-SVC-WISM2-K9, VID: V01, SN: SAL172893FZ^M
> ^M
> (cumm111-wism-aca05) >show sysinfo^M
> ^M
> Manufacturer's Name.............................. Cisco Systems Inc.^M
> Product Name..................................... Cisco Controller^M
> Product Version.................................. 8.2.166.0^M
> Bootloader Version............................... 1.0.20^M
> Field Recovery Image Version..................... 7.6.101.1^M
> Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2^M
> Build Type....................................... DATA + WPS
> ^M
> System Name...................................... cumm111-wism-aca05^M
> System Location.................................. 111 Cummington St., Room B05^M
> System Contact................................... Network Operations Center^M
> System ObjectID.................................. 1.3.6.1.4.1.9.1.1293^M
> Redundancy Mode.................................. SSO^M
> IP Address....................................... 10.123.18.234^M
> IPv6 Address..................................... ::^M
> Last Reset....................................... Software reset^M
> System Up Time................................... 98 days 3 hrs 47 mins 5 secs^M
> System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)^M
> System Stats Realtime Interval................... 5^M
> System Stats Normal Interval..................... 180
> ^M
> ^M
>
> Error: TIMEOUT reached
> [rancid@nsgv-prod-59 ~]$
>
>
>
>
>
> On 7/27/18, 11:16 AM, "heasley" <heas@shrubbery.net> wrote:
>
> Fri, Jul 27, 2018 at 12:08:37PM +0000, Piegorsch, Weylin William:
> > I did some experimenting, issuing the "config paging disable" CLI command on initial login seems to eliminate the paging issue, similar to the ASA "terminal pager 0" or the IOS "terminal length 0".
> > weylin
>
> wlogin should have sent this command at the beginning. please look at
> the beginning of the transcript with the device.
>
> > On 7/27/18, 8:01 AM, "Piegorsch, Weylin William" <weylin@bu.edu> wrote:
> >
> > When I login as myself and run the "show sysinfo" command, I get the below output. I notice that rancid (wlogin) gets stuck on the prompt at the end there. When expect sees the prompt, a <space> would be the appropriate response. I'm not sure how to disable paging, unfortunately.
> >
> > Weylin
> >
> > (cumm111-wism-aca05) >show sysinfo
> >
> > Manufacturer's Name.............................. Cisco Systems Inc.
> > Product Name..................................... Cisco Controller
> > Product Version.................................. 8.2.166.0
> > Bootloader Version............................... 1.0.20
> > Field Recovery Image Version..................... 7.6.101.1
> > Firmware Version................................. FPGA 1.7, Env 0.0, USB console 2.2
> > Build Type....................................... DATA + WPS
> >
> > System Name...................................... cumm111-wism-aca05
> > System Location.................................. 111 Cummington St., Room B05
> > System Contact................................... Network Operations Center
> > System ObjectID.................................. 1.3.6.1.4.1.9.1.1293
> > Redundancy Mode.................................. SSO
> > IP Address....................................... 10.123.18.234
> > IPv6 Address..................................... ::
> > Last Reset....................................... Software reset
> > System Up Time................................... 97 days 17 hrs 26 mins 34 secs
> > System Timezone Location......................... (GMT -5:00) Eastern Time (US and Canada)
> > System Stats Realtime Interval................... 5
> > System Stats Normal Interval..................... 180
> >
> >
> > --More-- or (q)uit
> >
> >
> >
> >
> >
> > On 7/26/18, 6:43 PM, "heasley" <heas@shrubbery.net> wrote:
> >
> > Thu, Jul 26, 2018 at 09:20:42PM +0000, Piegorsch, Weylin William:
> > > I should note that using the NOPIPE=yes thing causes the "controller wlogin error: Error: Connection closed (ssh): controller" message that I show below. If I omit the NOPIPE environment variable on the CLI, I get the output I showed in the other email, where it hangs in the middle of output.
> > >
> > > weylin
> >
> > i dont see the problem in what you've provided; you'll have to share more
> > output with me.
> >
> > eval `rancid -t cisco-wlc8 -C hostname` &> output
> >
> >
> >
> >
>
>
>
>
>
>

Fri, Oct 12, 2018 at 03:36:20PM +0000, Piegorsch, Weylin William:
> send -h "exit\r"
>
> I changed that line to ' send -h "logout\r" ', and now I'm getting a clean logout. Wlogin from 3.8 seems to fix this from reading through wlogin.in (I couldn't fudge things to get wlogin-3.8 to work and still use the rest of the 3.4.1 files).

that is right. if you installed 3.4.1 from source, you can probably just
copy wlogin.in from 3.8 over that of 3.4.1, build and install.

> In addition to catching these two -re match blocks in run_commands (I actually need both, it wouldn't work at all when I tried to combine them), that seems to have cleared up all the issues I have....
>
> -re "^--More or .*" { send " "
> exp_continue
> }
> -re "^--More-- .*" { send " "
> exp_continue
> }

3.8 has versions of these; it is not clear to me if you are saying that
you added these to 3.8, or if you needed them in addition to what is in
3.8.

> ...with the exception of “if (!$clean_run || !$found_end)”. For some reason I don’t understand, I keep getting “End of run not found”. I’ve attached .raw and .new files following an execution of “NOPIPE=YES rancid -d -t cisco-wlc5 <device>”. I’m guessing it’s somehow related to how the session closes, but that’s a 100% guess. Any idea how I can resolve?
>

i'll look.

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Fri, Oct 12, 2018 at 03:36:20PM +0000, Piegorsch, Weylin William:
> ...with the exception of “if (!$clean_run || !$found_end)”. For some reason I don’t understand, I keep getting “End of run not found”. I’ve attached .raw and .new files following an execution of “NOPIPE=YES rancid -d -t cisco-wlc5 <device>”. I’m guessing it’s somehow related to how the session closes, but that’s a 100% guess. Any idea how I can resolve?

the device isnt echoing the \r\n at the logout. i think this will fix it:

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3875)
+++ lib/ciscowlc.pm.in (working copy)
@@ -42,10 +42,6 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(\s*Connection.*closed.*)?$/) {
- $clean_run = 1;
- last;
- }
if (/^Error:/) {
print STDOUT ("$host wlogin error: $_");
print STDERR ("$host wlogin error: $_") if ($debug);
@@ -78,6 +74,10 @@
last TOP;
}
}
+ if (/^.*logout(\s*connection.*closed.*)?$/i) {
+ $clean_run = 1;
+ last;
+ }
}
}

@@ -91,6 +91,7 @@
while (<$INPUT>) {
tr/\015//d;
tr/\020//d;
+ last if (/^$prompt/);

next if (/^\s*rogue ap classify/);
next if (/^\s*rogue (adhoc|client) (alert|unknown)/i);
@@ -118,7 +119,6 @@
ProcessHistory("","","","!$1 <removed>\n"); next;
}

- last if (/^$prompt/);
next if (/^(\s*|\s*$cmd\s*)$/);

$linecnt++;

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

I added those lines to 3.4.1. I didn't dig too deeply into the 3.8 code, so if it's already fixed there then no worries.
weylin

?-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Friday, October 12, 2018 at 7:44 PM
To: Weylin Piegorsch <weylin@bu.edu>
Cc: heasley <heas@shrubbery.net>, "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Fri, Oct 12, 2018 at 03:36:20PM +0000, Piegorsch, Weylin William:
> send -h "exit\r"
>
> I changed that line to ' send -h "logout\r" ', and now I'm getting a clean logout. Wlogin from 3.8 seems to fix this from reading through wlogin.in (I couldn't fudge things to get wlogin-3.8 to work and still use the rest of the 3.4.1 files).

that is right. if you installed 3.4.1 from source, you can probably just
copy wlogin.in from 3.8 over that of 3.4.1, build and install.

> In addition to catching these two -re match blocks in run_commands (I actually need both, it wouldn't work at all when I tried to combine them), that seems to have cleared up all the issues I have....
>
> -re "^--More or .*" { send " "
> exp_continue
> }
> -re "^--More-- .*" { send " "
> exp_continue
> }

3.8 has versions of these; it is not clear to me if you are saying that
you added these to 3.8, or if you needed them in addition to what is in
3.8.

> ...with the exception of “if (!$clean_run || !$found_end)”. For some reason I don’t understand, I keep getting “End of run not found”. I’ve attached .raw and .new files following an execution of “NOPIPE=YES rancid -d -t cisco-wlc5 <device>”. I’m guessing it’s somehow related to how the session closes, but that’s a 100% guess. Any idea how I can resolve?
>

i'll look.




_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss

Thanks. I just tried, and got the same "end of run not found." Then I realized I wasn’t merely cutting/pasting from one location to another, but also the specific logout text test changed; once I updated to what you showed, it worked perfectly. Also - the lines I had were at different indexes, and different offsets between old/new locations where the commands moved. For reference, diff below not to my .in file (I don’t have the original install makefiles), but against the production library file.

Lest I forget – Muchos mahalo for the help on this the past few months working through things.

Weylin

[rancid@nsgv-prod-59 ~]$ diff -u lib/rancid/ciscowlc.pm-original-3.4.1 lib/rancid/ciscowlc.pm
--- lib/rancid/ciscowlc.pm-original-3.4.1 2016-08-01 22:57:39.636366474 -0400
+++ lib/rancid/ciscowlc.pm 2018-10-15 02:12:48.334651972 -0400
@@ -90,10 +90,6 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout$/) {
- $clean_run = 1;
- last;
- }
if (/^Error:/) {
print STDOUT ("$host wlogin error: $_");
print STDERR ("$host wlogin error: $_") if ($debug);
@@ -126,6 +122,10 @@
last TOP;
}
}
+ if (/^.*logout(\s*connection.*closed.*)?$/i) {
+ $clean_run = 1;
+ last;
+ }
}
}

@@ -140,6 +140,7 @@
tr/\015//d;
tr/\020//d;

+ last if (/^$prompt/);
next if (/^\s*rogue ap classify/);
next if (/^\s*rogue adhoc alert/);

@@ -165,7 +166,6 @@
ProcessHistory("","","","!$1 <removed>\n"); next;
}

- last if (/^$prompt/);
next if (/^(\s*|\s*$cmd\s*)$/);

$linecnt++;
[rancid@nsgv-prod-59 ~]$


-----Original Message-----
From: heasley <heas@shrubbery.net>
Date: Friday, October 12, 2018 at 8:38 PM
To: Weylin Piegorsch <weylin@bu.edu>
Cc: "rancid-discuss@shrubbery.net" <rancid-discuss@shrubbery.net>
Subject: Re: [rancid] Unable to Conduct Cisco Wireless Controller Backup

Fri, Oct 12, 2018 at 03:36:20PM +0000, Piegorsch, Weylin William:
> ...with the exception of “if (!$clean_run || !$found_end)”. For some reason I don’t understand, I keep getting “End of run not found”. I’ve attached .raw and .new files following an execution of “NOPIPE=YES rancid -d -t cisco-wlc5 <device>”. I’m guessing it’s somehow related to how the session closes, but that’s a 100% guess. Any idea how I can resolve?

the device isnt echoing the \r\n at the logout. i think this will fix it:

Index: lib/ciscowlc.pm.in
===================================================================
--- lib/ciscowlc.pm.in (revision 3875)
+++ lib/ciscowlc.pm.in (working copy)
@@ -42,10 +42,6 @@

TOP: while(<$INPUT>) {
tr/\015//d;
- if (/^.*logout(\s*Connection.*closed.*)?$/) {
- $clean_run = 1;
- last;
- }
if (/^Error:/) {
print STDOUT ("$host wlogin error: $_");
print STDERR ("$host wlogin error: $_") if ($debug);
@@ -78,6 +74,10 @@
last TOP;
}
}
+ if (/^.*logout(\s*connection.*closed.*)?$/i) {
+ $clean_run = 1;
+ last;
+ }
}
}

@@ -91,6 +91,7 @@
while (<$INPUT>) {
tr/\015//d;
tr/\020//d;
+ last if (/^$prompt/);

next if (/^\s*rogue ap classify/);
next if (/^\s*rogue (adhoc|client) (alert|unknown)/i);
@@ -118,7 +119,6 @@
ProcessHistory("","","","!$1 <removed>\n"); next;
}

- last if (/^$prompt/);
next if (/^(\s*|\s*$cmd\s*)$/);

$linecnt++;

Thu, Oct 18, 2018 at 03:17:56AM +0000, Piegorsch, Weylin William:
> Thanks. I just tried, and got the same "end of run not found." Then I realized I wasn’t merely cutting/pasting from one location to another, but also the specific logout text test changed; once I updated to what you showed, it worked perfectly. Also - the lines I had were at different indexes, and different offsets between old/new locations where the commands moved. For reference, diff below not to my .in file (I don’t have the original install makefiles), but against the production library file.

super. these changes have been committed, so you can have the full file
from the alpha tarball or the svn repo at http://rancid.shrubbery.net/rancid/svn/rancid/trunk/rancid .

> Lest I forget – Muchos mahalo for the help on this the past few months working through things.

thank you! for being responsive & helping.

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss