Mailing List Archive: Rancid and Cisco ASA

Rancid and Cisco ASA

Feb 28, 2022, 11:40 AM

Post #1 of 3 (426 views)

Hello everyone,

I have been seeing this happen every time rancid runs on one ASA only. It is a Cisco FPR running ASA image 9.14(2)15. Has anyone ran into this and is there a patch?

!Flash: disk0: 805306526 drwx 4096 00:57:32 Nov 13 2021 .private
- !Flash: disk0: 228 drwx 4096 15:25:01 Feb 27 2022 log
+ !Flash: disk0: 228 drwx 4096 16:02:37 Feb 28 2022 log
!Flash: disk0: 537568801 -rw- 35741420 04:59:48 Apr 16 2021 asdm.bin

Best,

-Troy
_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@www.shrubbery.net
https://www.shrubbery.net/mailman/listinfo/rancid-discuss

Re: Rancid and Cisco ASA [ In reply to ]

heas at shrubbery

Feb 28, 2022, 11:59 AM

Post #2 of 3 (426 views)

Permalink

Mon, Feb 28, 2022 at 11:40:06AM -0800, Troy Beisigl:
> Hello everyone,
>
> I have been seeing this happen every time rancid runs on one ASA only. It is a Cisco FPR running ASA image 9.14(2)15. Has anyone ran into this and is there a patch?
>
> !Flash: disk0: 805306526 drwx 4096 00:57:32 Nov 13 2021 .private
> - !Flash: disk0: 228 drwx 4096 15:25:01 Feb 27 2022 log
> + !Flash: disk0: 228 drwx 4096 16:02:37 Feb 28 2022 log
> !Flash: disk0: 537568801 -rw- 35741420 04:59:48 Apr 16 2021 asdm.bin
>

hi. please try this patch
https://github.com/haussli/rancid/commit/3e7126770dcdcc417a23b3dd0024977183abc1c1

_______________________________________________
Rancid-discuss mailing list
Rancid-discuss@www.shrubbery.net
https://www.shrubbery.net/mailman/listinfo/rancid-discuss

Re: Rancid and Cisco ASA [ In reply to ]

troy at i2bnetworks

Mar 3, 2022, 11:07 AM

Post #3 of 3 (426 views)

Permalink

Looks like the ios.pm I have is patched with some of that already but some of the items it is looking for are not there. I just patched it manually to filter “log” for the files in disk0 as that is a folder where the log files are going and it is the directory that is triggering the config change match. Since before it was looking for *.txt and vlan*.dat, adding the log as an exclude in comparison resolved the issue. Below is the line changed both the original and how it looks after the change.

Original:
if (/(dhcp_[^. ]*\.txt|vlan\.dat|sflog|snooping)/ ||
/(smart-log\/agentlog|syslog)\s*$/) {

Patched:
if (/(dhcp_[^. ]*\.txt|vlan\.dat|log|sflog|snooping)/ ||
/(smart-log\/agentlog|syslog)\s*$/) {

Best,

-Troy

> On Feb 28, 2022, at 11:59 AM, heasley <heas@shrubbery.net> wrote:
>
> Mon, Feb 28, 2022 at 11:40:06AM -0800, Troy Beisigl:
>> Hello everyone,
>>
>> I have been seeing this happen every time rancid runs on one ASA only. It is a Cisco FPR running ASA image 9.14(2)15. Has anyone ran into this and is there a patch?
>>
>> !Flash: disk0: 805306526 drwx 4096 00:57:32 Nov 13 2021 .private
>> - !Flash: disk0: 228 drwx 4096 15:25:01 Feb 27 2022 log
>> + !Flash: disk0: 228 drwx 4096 16:02:37 Feb 28 2022 log
>> !Flash: disk0: 537568801 -rw- 35741420 04:59:48 Apr 16 2021 asdm.bin
>>
>
> hi. please try this patch
> https://github.com/haussli/rancid/commit/3e7126770dcdcc417a23b3dd0024977183abc1c1