From owner-freebsd-isp@FreeBSD.ORG Sat Feb 7 06:07:37 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AF06F16A4CE for ; Sat, 7 Feb 2004 06:07:37 -0800 (PST) Received: from enterprise.ecore.net (enterprise.ecore.net [212.223.99.1]) by mx1.FreeBSD.org (Postfix) with SMTP id 0410543D1F for ; Sat, 7 Feb 2004 06:07:37 -0800 (PST) (envelope-from cs@cheasy.de) Received: (qmail 2054 invoked from network); 7 Feb 2004 14:07:31 -0000 Received: from p50840be8.dip0.t-ipconnect.de (HELO kiste) (80.132.11.232) by cheasy.de with SMTP; 7 Feb 2004 14:07:31 -0000 From: Christoph Sold To: Andreas Klemm , freebsd-isp@freebsd.org Date: Sat, 7 Feb 2004 15:07:23 +0100 User-Agent: KMail/1.5.4 References: <20040207124507.GA20305@titan.klemm.apsfilter.org> In-Reply-To: <20040207124507.GA20305@titan.klemm.apsfilter.org> MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Description: clearsigned data Content-Disposition: inline Message-Id: <200402071507.27156.cs@cheasy.de> Subject: Re: fbsd mgmt server, telnet through ssh tunnel to Cisco possible ? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 07 Feb 2004 14:07:37 -0000 =2D----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi Andreas, ich schreib mal auf Deutsch und lass die Liste weg. On Saturday 07 February 2004 13:45, Andreas Klemm wrote: > Hi, > > I have a FreeBSD 5.2.1 monitoring system up and running. > [snip] > > Unluckily I have now a bunch of Ciscos, where only ssh login > is possible and where no rsh server functionality is allowed. > > Is it somehow possible to telnet to the ciscos via a ssh tunnel ? Nein. > And without the Cisco prompting for a password ? Ja. > Is there something other available than netcat to make > batched data collection scripts to ciscos possible on a > ssh basis ??? Ja. > Any recommendations that could work ? ssh-keygen f=FCr den User, der sich auf der Cisco einloggen soll. Den=20 Public Key auf die Cisco{,s} schieben -- als authorized_key. Ab sofort sollte f=FCr diesen User Login ohne Passwort per ssh m=F6glich=20 sein. danach den script nach folgendem Muster ab=E4ndern: for cisco in $* do ssh [user@]$cisco < [localinput] > [localoutput] done d.h. man kann jeden Befehl einzeln per ssh auf die Cisco schicken, dabei=20 wird In- und Output auf die eigene Maschine umgeleitet. > Currently I use something like this > > for cisco in $* > do > nc [options] $cisco > /some/path/sh-run/$cisco-confg < password > ena > password > sh runn > quit > !EOS > done > > How can I get this via ssh ??? > > And best without having to enter a password, so that it can > be executed via cron on a regulary basis .... ?! > > Andreas /// HTH =2D -Christoph Sold =2D --=20 Christoph Sold, D=F6rrhorst-Str. 23, D-67059 Ludwigshafen (Rhein) cheasy@web.de, Phone: +49-621-5723206, Handy: +49-174-5862882 =2D----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (FreeBSD) iD8DBQFAJPEcjGVuYEZ1RPYRArVjAJ9r74CIKS2KpdgRqjulZGlpb5AgmwCgtIJk +4gaoISTNCHrLeT7YuDtf3o=3D =3DR3RQ =2D----END PGP SIGNATURE-----