I use the raw module on most of my devices if I just want to issue a single command to one device. I could run a playbook. But find this easier. I use playbooks if I need to pull multiple devices.
On Wednesday, May 12, 2021 at 2:37:05 AM UTC-4 sjai...@redhat.com wrote: > Hi, > > Is there any specific requirement for using Ansible raw modules instead of > available Ansible ASA collections modules which are specifically built for > Cisco ASA and you can use any of the available ASA modules to configure > your Cisco ASA device. > For getting the show version to run over your ASA box you can use the > following play: > ``` > - name: Show the ASA version > cisco.asa.asa_command: > commands: > - show version > ``` > ref: asa_command module: > https://github.com/ansible-collections/cisco.asa/blob/main/plugins/modules/asa_command.py > > *Regards,* > Sumit > > On Tuesday, May 11, 2021 at 7:16:30 PM UTC+5:30 ajn...@gmail.com wrote: > >> >> Good Morning, >> >> I have been trying for months to get Ansible raw module and playbooks to >> work with Cisco ASAs. Finally after burning down my Ansible platforms and >> building new linux platforms I made some progress. I had to rebuild >> everything several times as it gets trashed with all the changes I try to >> make searching forums for no success. >> >> Finally this build of Ubuntu, I am able to get my playbooks to run on >> ASAs but still with the -m RAW module any command issued just hangs. I hit >> control c after letting it sit for as long as 30 minutes and it end with >> execution interrupted. >> >> Any help or advise would be appreciated. I been trying to resolve this >> for months. >> >> (base) ajn@lab-lnx-wks1:~$ ansible asa -m raw -a "show ver" -u netadmin -k >> SSH password: >> ^C [ERROR]: User interrupted execution >> (base) ajn@lab-lnx-wks1:~$ >> >> >> >> User netadmin logged in to devnet-asa1 >> Logins over the last 1 days: 1. >> Failed logins since the last login: 0. >> Type help or '?' for a list of available commands. >> devnet-asa1# debug ssh 16 >> debug ssh enabled at level 16 >> devnet-asa1# Device ssh opened successfully. >> SSH1: SSH client: IP = '192.168.1.39' interface # = 4 >> SSH: host key initialised >> SSH1: starting SSH control process >> SSH1: Exchanging versions - SSH-2.0-Cisco-1.25 >> >> SSH1: send SSH message: outdata is NULL >> >> server version string:SSH-2.0-Cisco-1.25 >> SSH1: receive SSH message: 83 (83) >> SSH1: client version is - SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2 >> >> client version string:SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.2 >> >> SSH2 1: SSH2_MSG_KEXINIT sent >> SSH2 1: SSH2_MSG_KEXINIT received >> SSH2: kex: client->server aes128-ctr hmac-sha2-256 none >> SSH2: kex: server->client aes128-ctr hmac-sha2-256 none >> SSH2: chose kex: diffie-hellman-group14-sha1. >> SSH2 1: expecting SSH2_MSG_KEXDH_INIT >> SSH2 1: SSH2_MSG_KEXDH_INIT received >> SSH2 1: signature length 143 dh_len 256 >> SSH2: kex_derive_keys complete >> SSH2 1: newkeys: mode 1 >> SSH2 1: SSH2_MSG_NEWKEYS sent >> SSH2 1: waiting for SSH2_MSG_NEWKEYS >> SSH2 1: newkeys: mode 0 >> SSH2 1: SSH2_MSG_NEWKEYS receivedSSH(netadmin): user authen method is >> 'use AAA', aaa server group ID = 1 >> SSH(netadmin): user authen method is 'use AAA', aaa server group ID = 1 >> >> SSH2 1: authentication successful for netadmin >> SSH2 1: channel open request >> SSH2 1: pty-req request >> SSH2 1: requested tty: xterm-256color, height 0, width 0 >> >> SSH2 1: env request >> SSH2 1: exec request >> SSH2 1: exec message received >> ci_cons_shell: thread->name: ssh, tid: 0x00007efca69f57c0 thread vcid : 0 >> ci_vcid : 507 >> >> SSH2 1: ssh_send unsuccessfulSSH1: Session disconnected by SSH server - >> error 0x00 "Internal error" >> >> >> -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/4c599647-f32a-4c0b-ba8c-c0b0feb3cbf7n%40googlegroups.com.
