[rancid] Sonicwall: clogin sends password after first login?

Kevin Geil KGeil at orda.org
Fri Mar 2 15:55:23 UTC 2018


Thanks so much.  Hopefully I have some success to share in the next couple of months.

Kevin

From: doug.hughes at keystonenap.com [mailto:doug.hughes at keystonenap.com]
Sent: Friday, March 2, 2018 9:26 AM
To: heasley <heas at shrubbery.net>; Kevin Geil <KGeil at orda.org>
Cc: rancid-discuss at shrubbery.net
Subject: RE: [rancid] Sonicwall: clogin sends password after first login?

you'll probably have to (or want to) for clogin into something like soniclogin so that it can do what is necessary to get the login prompt determination right. (see also the paloalto login script)
And you'll want a forked rancid from one of the other examples like urancid that sends the right sets of commands. Urancid for ubiquiti devices is a pretty simple and good one to copy, or the fortinet one.


Sent from my android device.

-----Original Message-----
From: Kevin Geil <KGeil at orda.org<mailto:KGeil at orda.org>>
To: heasley <heas at shrubbery.net<mailto:heas at shrubbery.net>>, "doug.hughes at keystonenap.com<mailto:doug.hughes at keystonenap.com>" <doug.hughes at keystonenap.com<mailto:doug.hughes at keystonenap.com>>
Cc: "rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>" <rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>>
Sent: Fri, 02 Mar 2018 9:11
Subject: RE: [rancid] Sonicwall: clogin sends password after first login?
Thanks, I figured it was something like that.  Is  it recommended to use a custom version of clogin, or do I just discard the error text when I write the script that retrieves the configuration?

Thanks again,

Kevin
-----Original Message-----
From: heasley [mailto:heas at shrubbery.net<mailto:heas at shrubbery.net>]
Sent: Thursday, March 1, 2018 6:38 PM
To: doug.hughes at keystonenap.com<mailto:doug.hughes at keystonenap.com>
Cc: rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>; Kevin Geil <KGeil at orda.org<mailto:KGeil at orda.org>>
Subject: Re: [rancid] Sonicwall: clogin sends password after first login?

Thu, Mar 01, 2018 at 05:23:20PM -0500, doug.hughes at keystonenap.com<mailto:doug.hughes at keystonenap.com>:
> most likely it's having a problem recognizing your prompt. That's a pretty complex one and embedded spaces are bound to complicate things.
>
>
> Sent from my android device.
>
> -----Original Message-----
> From: Kevin Geil <KGeil at orda.org<mailto:KGeil at orda.org>>
> To: "rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>" <rancid-discuss at shrubbery.net<mailto:rancid-discuss at shrubbery.net>>
> Sent: Thu, 01 Mar 2018 16:06
> Subject: [rancid] Sonicwall: clogin sends password after first login?
>
> Hi, I hope someone can point me in<geo:0,0?q=one+can+point+me+in> the right direction here:  I'm trying to monitor a sonicwall device with Rancid, and am having a hiccup at the first step.   I can get clogin to authenticate to the device, but it immediately sends the password a second time after login, so the sonicwall sees it as a command, and returns an error.  I'm guessing it's my lack of understanding of Clogin, but after reading documentation, I still can't figure it out.  Thanks in advance to anyone who can help. I have tried adding a timeout value, and playing with the -noenable option, but to no avail.

There is no support for Sonic.  So, I do not know if clogin would work with it.  you will need to add support yourself.

> Thanks again,
>
> Kevin
>
>
> My .cloginrc file looks like this:
>
> add noenable sonic {1}
> add method sonic ssh
> add cyphertype sonic aes128-ctr
> add user sonic ReadOnlyAdmin
> add password sonic {mypassword}
>
> And the output looks like this:
> root at ubuntu:/var/lib/rancid/bin# ./clogin -f /var/lib/rancid/.cloginrc
> -noenable sonic
>
> ReadOnlyAdmin at sonic's password:
>
> Copyright (c) 2016 Dell | SonicWALL, Inc.
> Using username 'ReadOnlyAdmin'.
> Password:
> ReadOnlyAdmin at MY NSA4600_Primary> mypassword % Error encountered at
> '^' marker:
>     mypassword
>     ^
> % Error: No matching command found.
> ReadOnlyAdmin at MY NSA4600_Primary>
>
>

> _______________________________________________
> Rancid-discuss mailing list
> Rancid-discuss at shrubbery.net<mailto:Rancid-discuss at shrubbery.net>
> http://www.shrubbery.net/mailman/listinfo/rancid-discuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20180302/73b9b31e/attachment.html>


More information about the Rancid-discuss mailing list