[rancid] Re: Problem getting config from Cisco ASA firewalls

Ronni Jensen ronnij at gmail.com
Thu Dec 17 10:00:55 UTC 2009


Hi,

I tried with the example you wrote, but it didn't change anything.. I still
get the "clogin error: Error: TIMEOUT reached" errors in the logfile.

Any other suggestions how I can fix the error?

Best regards,
Ronni

On Thu, Dec 17, 2009 at 9:10 AM, William <willay at gmail.com> wrote:

> Ronni,
>
> According to your email when accessing the firewall manually there is
> no autoenable, so I would try the following config for your device:
>
> add userprompt 10.10.1.2      pix
> add method 10.10.1.2          telnet
> add password 10.10.1.2        {exec_pass} {enable_pass}
>
>
> hope this helps.
>
> Cheers,
>
> Will
>
> 2009/12/17 Ronni Jensen <ronnij at gmail.com>:
>  > Hi,
> >
> > My rancid installation works perfectly for Cisco Catalyst switches and
> other
> > stuff too.. but for the Cisco ASA firewalls it fails.. In the logs, I get
> > the "clogin error: Error: TIMEOUT reached" error.
> >
> > .cloginrc for a particular FW looks like:
> >
> > add password 10.10.1.2        {exec_pass} {enable_pass}
> > add method 10.10.1.2          telnet
> > add autoenable 10.10.1.2      {1}
> >
> > I've also tried replacing IP-address with DNS hostname or just using a
> > wildcard star... no difference. When I telnet directly from the server to
> > the firewall, the sequence looks like:
> >
> >
> > [me at LinuxSrv ~]$ telnet 192.168.1.2
> > Trying 10.10.1.2...
> > Connected to 10.10.1.2.
> > Escape character is '^]'.
> > User Access Verification
> > Password: <TYPING PASSWD>
> > Type help or '?' for a list of available commands.
> > UMUSASA01> <TYPING "ENABLE">
> > Password: *******
> > UMUSASA01#
> >
> > Any ideas?
> > _______________________________________________
> > Rancid-discuss mailing list
> > Rancid-discuss at shrubbery.net
> > http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss
> >
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20091217/7b438fa0/attachment.html 


More information about the Rancid-discuss mailing list