Date: Sat, 7 Feb 2004 14:18:59 -0500 From: Scott Lambert <lambert@lambertfam.org> To: freebsd-isp@freebsd.org Subject: Re: fbsd mgmt server, telnet through ssh tunnel to Cisco possible ? Message-ID: <20040207191859.GA79635@laptop.lambertfam.org> In-Reply-To: <20040207124507.GA20305@titan.klemm.apsfilter.org> References: <20040207124507.GA20305@titan.klemm.apsfilter.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sat, Feb 07, 2004 at 01:45:08PM +0100, Andreas Klemm wrote: > Hi, > > I have a FreeBSD 5.2.1 monitoring system up and running. > It uses shellscripts with netcat to login to the ciscos > get some data out of it, writes results to files etc ... > For these mechanism to work I need to be able to telnet to the > ciscos. > > Unluckily I have now a bunch of Ciscos, where only ssh login > is possible and where no rsh server functionality is allowed. > > Is it somehow possible to telnet to the ciscos via a ssh tunnel ? > And without the Cisco prompting for a password ? > > Is there something other available than netcat to make > batched data collection scripts to ciscos possible on a > ssh basis ??? > > Any recommendations that could work ? > > Currently I use something like this > > for cisco in $* > do > nc [options] $cisco > /some/path/sh-run/$cisco-confg <<!EOS > password > ena > password > sh runn > quit > !EOS > done > > How can I get this via ssh ??? Don't reinvent the wheel. /usr/ports/net/rancid clogin will connect, via ssh or telnet, to the cisco, or one of several other network gear manufaturer's devices, login and enable based on the .clogin settings. # cat /usr/ports/net/rancid/pkg-descr Rancid monitors a router's (or device's) configuration, including software and hardware (cards, serial numbers, etc), using CVS. Rancid currently supports Bay routers, Cisco routers, Juniper routers, Catalyst switches, Foundry switches, Redback NASs, ADC EZT3 muxes, MRTd (and thus likely IRRd), Alteon switches, HP procurve switches, Hitachi routers. Rancid logs into each of the devices in a router table file, runs various commands, chomps the output, and emails any differences ( sample) from the previous collection to a mail list. A looking glass is also included with rancid, based on Ed Kern's in use on http://nitrous.digex.net/. Rancid version has added functions, supports cisco, juniper, and foundry and uses the login scripts that come with rancid; so it can use rsh, telnet, or ssh to connect to your router(s). WWW: http://www.shrubbery.net/rancid/ Give it a whirl. It really works well. -- Scott Lambert KC5MLE Unix SysAdmin lambert@lambertfam.org
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040207191859.GA79635>