[rancid] Re: Cisco Pix "Configuration last modified" random time stamp

john heasley heas at shrubbery.net
Fri Feb 6 20:53:23 UTC 2009


Fri, Feb 06, 2009 at 07:56:36AM -0500, LITTLEFIELD James:
> > -----Original Message-----
> > From: rancid-discuss-bounces at shrubbery.net [mailto:rancid-discuss-
> > bounces at shrubbery.net] On Behalf Of Jason Ellison
> > Sent: Friday, February 06, 2009 1:00 AM
> > To: rancid-discuss at shrubbery.net
> > Subject: [rancid] Cisco Pix "Configuration last modified" random time
> > stamp
> > 
> > List,
> > 
> >  While using RANCID I have noticed that the pix "Configuration last
> > modified"
> > keeps changing even though the device has not been modified.  This
> > creates
> > an email every time RANCID is run.
> > 
> >  I know this is not a RANCID problem, but I thought someone on this list
> > has
> > likely seen and maybe even solved this issue.
> > 
> >  I thought it may bee related to ntp drift being applied against the
> > "last modified" time... but disabling the ntp server did not change
> > this behavior.
> 
> I have the same problem here and I'm sure it isn't an NTP issue. Time to start poking around the code...

I think this change, not in 2.3.2a9, will fix this problem.

Index: rancid.in
===================================================================
RCS file: /home/rancid/.CVS/rancid/bin/rancid.in,v
retrieving revision 1.251
retrieving revision 1.253
diff -d -u -r1.251 -r1.253
--- rancid.in	26 Nov 2008 17:43:41 -0000	1.251
+++ rancid.in	2 Feb 2009 21:40:14 -0000	1.253
@@ -1,6 +1,6 @@
 #! @PERLV_PATH@
 ##
-## $Id: rancid.in,v 1.251 2008/11/26 17:43:41 heas Exp $
+## $Id: rancid.in,v 1.253 2009/02/02 21:40:14 heas Exp $
 ##
 ## @PACKAGE@ @VERSION@
 ## Copyright (c) 1997-2008 by Terrapin Communications, Inc.
@@ -1522,6 +1522,7 @@
 	last if (/^$prompt/);
 	return(1) if /Line has invalid autocommand /;
 	return(1) if (/(Invalid input detected|Type help or )/i);
+	return(1) if /\%Error: No such file or directory/;
 	return(0) if ($found_end);		# Only do this routine once
 	return(-1) if (/command authorization failed/i);
 	# the pager can not be disabled per-session on the PIX
@@ -1550,6 +1551,8 @@
 	# some versions have other crap mixed in with the bits in the
 	# block above
 	/^! (Last configuration|NVRAM config last)/ && next;
+	# and for the ASA
+	/^: (Written by \w+ at|Saved)/ && next;
 
 	# skip consecutive comment lines to avoid oscillating extra comment
 	# line on some access servers.  grrr.
@@ -1823,7 +1826,7 @@
 	    next;
 	}
 
-	/^Cryptochecksum:/ && next;
+	/^ *Cryptochecksum:/ && next;
 
 	# catch anything that wasnt matched above.
 	ProcessHistory("","","","$_");


More information about the Rancid-discuss mailing list