Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. RANCID>
  3. Users
Fortiweb 400C 5.82
gmourani at gmail
Feb 16, 2018, 6:19 AM
Post #1 of 5 (545 views)
Permalink
Hello,

I've a problem again backing up Fortiweb configuration.
Rancid 3.7
FortiWeb-400C 5.82,build1375,170622

Debug output:

su - rancid -c "fnlogin -d 172.16.207.10"
172.16.207.10
spawn ssh -p 22 -x -l blesk9 172.16.207.10
parent: waiting for sync byte
parent: telling child to go ahead
parent: now unsynchronized from child
spawn: returns {132428}
Gate keeper glob pattern for '(Connection refused|Secure connection [^
]+ refused)' is ''. Not usable, disabling the performance booster.
Gate keeper glob pattern for '(Connection closed by|Connection to [^
]+ closed)' is ''. Not usable, disabling the performance booster.
Gate keeper glob pattern for '(Host key not found |The authenticity of host .* be established)' is ''. Not usable, disabling the performance booster.
Gate keeper glob pattern for 'HOST IDENTIFICATION HAS CHANGED' is 'HOST IDENTIFICATION HAS CHANGED'. Activating booster.
Gate keeper glob pattern for 'Offending key for ' is 'Offending key for '. Activating booster.
Gate keeper glob pattern for '^warning: remote host denied authentication agent forwarding.' is 'warning: remote host denied authentication agent forwarding?'. Activating booster.
Gate keeper glob pattern for '(denied|Sorry)' is ''. Not usable, disabling the performance booster.
Gate keeper glob pattern for '([Ll]ogin):' is '?ogin:'. Activating booster.
Gate keeper glob pattern for '@[^
]+[Pp]assword:' is '@*assword:'. Activating booster.
Gate keeper glob pattern for '([Pp]assword|passwd|Enter password for [^ :]+):' is ''. Not usable, disabling the performance booster.

expect: does "" (spawn_id exp3) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no
"(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no

expect: does "" (spawn_id exp3) match glob pattern "unknown host\r"? no

expect: does "" (spawn_id exp3) match glob pattern "Host is unreachable"? no
"No address associated with name"? no
"(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no
"HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no
"Offending key for "? Gate "Offending key for "? gate=no

expect: does "" (spawn_id exp3) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no

expect: does "" (spawn_id exp3) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no
"Login failed"? no
"([Ll]ogin):"? Gate "?ogin:"? gate=no
"@[^\r\n]+[Pp]assword:"? Gate "@*assword:"? gate=no
"([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no
"[#\$] "? no
please input passwd:
expect: does "please input passwd:" (spawn_id exp3) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no
"(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no

expect: does "please input passwd:" (spawn_id exp3) match glob pattern "unknown host\r"? no

expect: does "please input passwd:" (spawn_id exp3) match glob pattern "Host is unreachable"? no
"No address associated with name"? no
"(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no
"HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no
"Offending key for "? Gate "Offending key for "? gate=no

expect: does "please input passwd:" (spawn_id exp3) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no

expect: does "please input passwd:" (spawn_id exp3) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no
"Login failed"? no
"([Ll]ogin):"? Gate "?ogin:"? gate=no
"@[^\r\n]+[Pp]assword:"? Gate "@*assword:"? gate=no
"([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=yes
expect: set expect_out(0,string) "passwd:"
expect: set expect_out(1,string) "passwd"
expect: set expect_out(spawn_id) "exp3"
expect: set expect_out(buffer) "please input passwd:"
send: sending "M0n1toR1ng$\r" to { exp3 }
expect: continuing expect

expect: does "" (spawn_id exp3) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no
"(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no

expect: does "" (spawn_id exp3) match glob pattern "unknown host\r"? no

expect: does "" (spawn_id exp3) match glob pattern "Host is unreachable"? no
"No address associated with name"? no
"(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no
"HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no
"Offending key for "? Gate "Offending key for "? gate=no

expect: does "" (spawn_id exp3) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no

expect: does "" (spawn_id exp3) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no
"Login failed"? no
"([Ll]ogin):"? Gate "?ogin:"? gate=no
"@[^\r\n]+[Pp]assword:"? Gate "@*assword:"? gate=no
"([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no
"[#\$] "? no


expect: does "\r\n" (spawn_id exp3) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no
"(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no

expect: does "\r\n" (spawn_id exp3) match glob pattern "unknown host\r"? no

expect: does "\r\n" (spawn_id exp3) match glob pattern "Host is unreachable"? no
"No address associated with name"? no
"(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no
"HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no
"Offending key for "? Gate "Offending key for "? gate=no

expect: does "\r\n" (spawn_id exp3) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no

expect: does "\r\n" (spawn_id exp3) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no
"Login failed"? no
"([Ll]ogin):"? Gate "?ogin:"? gate=no
"@[^\r\n]+[Pp]assword:"? Gate "@*assword:"? gate=no
"([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no
"[#\$] "? no
Fortiweb01 $
expect: does "\r\nFortiweb01 $ " (spawn_id exp3) match regular expression "(Connection refused|Secure connection [^\n\r]+ refused)"? (No Gate, RE only) gate=yes re=no
"(Connection closed by|Connection to [^\n\r]+ closed)"? (No Gate, RE only) gate=yes re=no

expect: does "\r\nFortiweb01 $ " (spawn_id exp3) match glob pattern "unknown host\r"? no

expect: does "\r\nFortiweb01 $ " (spawn_id exp3) match glob pattern "Host is unreachable"? no
"No address associated with name"? no
"(Host key not found |The authenticity of host .* be established)"? (No Gate, RE only) gate=yes re=no
"HOST IDENTIFICATION HAS CHANGED"? Gate "HOST IDENTIFICATION HAS CHANGED"? gate=no
"Offending key for "? Gate "Offending key for "? gate=no

expect: does "\r\nFortiweb01 $ " (spawn_id exp3) match regular expression "^warning: remote host denied authentication agent forwarding."? Gate "warning: remote host denied authentication agent forwarding?"? gate=no

expect: does "\r\nFortiweb01 $ " (spawn_id exp3) match regular expression "(denied|Sorry)"? (No Gate, RE only) gate=yes re=no
"Login failed"? no
"([Ll]ogin):"? Gate "?ogin:"? gate=no
"@[^\r\n]+[Pp]assword:"? Gate "@*assword:"? gate=no
"([Pp]assword|passwd|Enter password for [^ :]+):"? (No Gate, RE only) gate=yes re=no
"[#\$] "? yes
expect: set expect_out(0,string) "$ "
expect: set expect_out(spawn_id) "exp3"
expect: set expect_out(buffer) "\r\nFortiweb01 $ "
send: sending "\r" to { exp3 }
Gate keeper glob pattern for '[
]+' is ''. Not usable, disabling the performance booster.
Gate keeper glob pattern for '^(.+[#\$] )' is '* '. Activating booster.

expect: does "" (spawn_id exp3) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no
"^(.+[#\$] )"? Gate "* "? gate=no

Fortiweb01 $
expect: does "\r\r\nFortiweb01 $ " (spawn_id exp3) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=yes
expect: set expect_out(0,string) "\r\r\n"
expect: set expect_out(spawn_id) "exp3"
expect: set expect_out(buffer) "\r\r\n"
expect: continuing expect

expect: does "Fortiweb01 $ " (spawn_id exp3) match regular expression "[\r\n]+"? (No Gate, RE only) gate=yes re=no
"^(.+[#\$] )"? Gate "* "? gate=yes re=yes
expect: set expect_out(0,string) "Fortiweb01 $ "
expect: set expect_out(1,string) "Fortiweb01 $ "
expect: set expect_out(spawn_id) "exp3"
expect: set expect_out(buffer) "Fortiweb01 $ "

Regards,
Re: Fortiweb 400C 5.82 [ In reply to ]
heas at shrubbery
Feb 20, 2018, 2:30 PM
Post #2 of 5 (538 views)
Permalink
Fri, Feb 16, 2018 at 09:19:10AM -0500, Gerhard Mourani:
> Hello,
>
> I've a problem again backing up Fortiweb configuration.
> Rancid 3.7
> FortiWeb-400C 5.82,build1375,170622

and the problem is?

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss
Re: Fortiweb 400C 5.82 [ In reply to ]
gmourani at gmail
Feb 20, 2018, 3:16 PM
Post #3 of 5 (538 views)
Permalink
Connection to the FortiWeb doesn’t complete and make a timeout. In the past, It was related to password prompt that has been changed by Fortinet on this model. Here past discussion on the subject -> https://lists.gt.net/rancid/users/9793 <https://lists.gt.net/rancid/users/9793>

Regards,

> On Feb 20, 2018, at 5:30 PM, heasley <heas@shrubbery.net> wrote:
>
> Fri, Feb 16, 2018 at 09:19:10AM -0500, Gerhard Mourani:
>> Hello,
>>
>> I've a problem again backing up Fortiweb configuration.
>> Rancid 3.7
>> FortiWeb-400C 5.82,build1375,170622
>
> and the problem is?
>
Re: Fortiweb 400C 5.82 [ In reply to ]
heas at shrubbery
Feb 20, 2018, 3:48 PM
Post #4 of 5 (538 views)
Permalink
Tue, Feb 20, 2018 at 06:16:52PM -0500, Gerhard Mourani:
> Connection to the FortiWeb doesn’t complete and make a timeout. In the past, It was related to password prompt that has been changed by Fortinet on this model. Here past discussion on the subject -> https://lists.gt.net/rancid/users/9793 <https://lists.gt.net/rancid/users/9793>
>
> Regards,

The output appears to present a successful login.

expect: does "Fortiweb01 $ " (spawn_id exp3) match regular expression "[\r\n]+"?
(No Gate, RE only) gate=yes re=no
"^(.+[#\$] )"? Gate "* "? gate=yes re=yes
expect: set expect_out(0,string) "Fortiweb01 $ "
expect: set expect_out(1,string) "Fortiweb01 $ "
expect: set expect_out(spawn_id) "exp3"
expect: set expect_out(buffer) "Fortiweb01 $ "

so, what is timing-out?

> > On Feb 20, 2018, at 5:30 PM, heasley <heas@shrubbery.net> wrote:
> >
> > Fri, Feb 16, 2018 at 09:19:10AM -0500, Gerhard Mourani:
> >> Hello,
> >>
> >> I've a problem again backing up Fortiweb configuration.
> >> Rancid 3.7
> >> FortiWeb-400C 5.82,build1375,170622
> >
> > and the problem is?
> >
>

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@shrubbery.net
http://www.shrubbery.net/mailman/listinfo/rancid-discuss
Re: Fortiweb 400C 5.82 [ In reply to ]
gmourani at gmail
Feb 21, 2018, 7:22 AM
Post #5 of 5 (538 views)
Permalink
You're right, login works but logout timeout.

su - rancid -c "clogin 172.16.207.10"
172.16.207.10
spawn ssh -p 22 -x -l admin 172.16.207.10
please input passwd:
Fortiweb01 $ exit

Error: TIMEOUT reached

Regards,

> On Feb 20, 2018, at 6:48 PM, heasley <heas@shrubbery.net> wrote:
>
> Tue, Feb 20, 2018 at 06:16:52PM -0500, Gerhard Mourani:
>> Connection to the FortiWeb doesn’t complete and make a timeout. In the past, It was related to password prompt that has been changed by Fortinet on this model. Here past discussion on the subject -> https://lists.gt.net/rancid/users/9793 <https://lists.gt.net/rancid/users/9793>
>>
>> Regards,
>
> The output appears to present a successful login.
>
> expect: does "Fortiweb01 $ " (spawn_id exp3) match regular expression "[\r\n]+"?
> (No Gate, RE only) gate=yes re=no
> "^(.+[#\$] )"? Gate "* "? gate=yes re=yes
> expect: set expect_out(0,string) "Fortiweb01 $ "
> expect: set expect_out(1,string) "Fortiweb01 $ "
> expect: set expect_out(spawn_id) "exp3"
> expect: set expect_out(buffer) "Fortiweb01 $ "
>
> so, what is timing-out?
>
>>> On Feb 20, 2018, at 5:30 PM, heasley <heas@shrubbery.net> wrote:
>>>
>>> Fri, Feb 16, 2018 at 09:19:10AM -0500, Gerhard Mourani:
>>>> Hello,
>>>>
>>>> I've a problem again backing up Fortiweb configuration.
>>>> Rancid 3.7
>>>> FortiWeb-400C 5.82,build1375,170622
>>>
>>> and the problem is?
>>>
>>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal