[rancid] Need to pull certain info from configs
on at LEFerguson.com
on at LEFerguson.com
Tue Dec 6 00:14:59 UTC 2016
>I want to run a command to search all of our devices, report back which
>firewalls and devices have ssh opened to the outside world. Example: ssh 0.0.0.0 0.0.0.0
If you have an NMS that can be a good hook if this is something you want to do on an automated, e.g. recurring basis. I use Zabbix, and I wrote some fairly simple minder parsing routines to find the config from the name (pretty easy given the directory structure in rancid) and then parse out what IPSec tunnels were defined. Then with SNMP polling I get which SNMP tunnels are up, and can compare the two to see if any are failing, turned down, never started, etc.
But you could parse for most anything and tie to an NMS data collection.
But for one-time needs, grep is perfect -- it's quite nice having them all pulled as text files as they are in Rancid.
Linwood
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20161206/0a1a0b30/attachment.html>
More information about the Rancid-discuss
mailing list