Marc Haber wrote:
On Thu, Dec 06, 2007 at 09:03:39PM +, Thorsten Dahm wrote:
Marc Haber wrote:
Which access privileges would RANCID need, and how far can the RANCID
account be restricted?
The same as any user who is able to to a sh run.
Which access privileges are needed to do a sh
Marc Haber wrote:
On Thu, Dec 06, 2007 at 09:03:39PM +, Thorsten Dahm wrote:
Marc Haber wrote:
Which access privileges would RANCID need, and how far can the RANCID
account be restricted?
The same as any user who is able to to a sh run.
Which access privileges are needed to do a sh
The only option I can think of here if for you to grant access to a
userid that is allowed to run 'copy running-config
tftp://aaa.bbb.ccc.ddd/upload/pix.cfg' where aaa.bbb.ccc.ddd is the IP
of the authorized TFTP server on a secured portion of your LAN. That
I think that you could also use
On Thu, Dec 06, 2007 at 09:03:39PM +, Thorsten Dahm wrote:
Marc Haber wrote:
Which access privileges would RANCID need, and how far can the RANCID
account be restricted?
The same as any user who is able to to a sh run.
Which access privileges are needed to do a sh run?
The
Justin Shore wrote on 7/12/2007 5:26 μμ:
Marc Haber wrote:
On Thu, Dec 06, 2007 at 09:03:39PM +, Thorsten Dahm wrote:
Marc Haber wrote:
Which access privileges would RANCID need, and how far can the RANCID
account be restricted?
The same as any user who is able to to a sh run.
Which
On Thu, Dec 06, 2007 at 12:48:19AM +, Thorsten Dahm wrote:
Marc Haber schrieb:
I am wondering what's the easiest way to pull the full configuration
(sans passwords/keys, if that makes things any easier) from a PIX or
ASA box.
Use RANCID over SSH. If necessary you can change the
Marc Haber wrote:
On Thu, Dec 06, 2007 at 12:48:19AM +, Thorsten Dahm wrote:
Marc Haber schrieb:
I am wondering what's the easiest way to pull the full configuration
(sans passwords/keys, if that makes things any easier) from a PIX or
ASA box.
Use RANCID over SSH. If necessary you
[Disclaimer: I haven't seriously touched Cisco gear in years, but
occasionally, people still ask me for advice]
Hi,
I am wondering what's the easiest way to pull the full configuration
(sans passwords/keys, if that makes things any easier) from a PIX or
ASA box.
On a Unix system, I'd write
Hi Marc,
Try sshing to the box and once you are enabled run 'more system:running-config'
This way you will see preshared keys for vpns which are normally
starred out when you do a wr t.
Does that help?
Cheers,
W
On 05/12/2007, Marc Haber [EMAIL PROTECTED] wrote:
[Disclaimer: I haven't
On Wed, Dec 05, 2007 at 03:14:01PM +, William wrote:
Try sshing to the box and once you are enabled run 'more
system:running-config'
This way you will see preshared keys for vpns which are normally
starred out when you do a wr t.
Actually, I do not care about seeing the keys, I care
Marc Haber schrieb:
I am wondering what's the easiest way to pull the full configuration
(sans passwords/keys, if that makes things any easier) from a PIX or
ASA box.
Use RANCID over SSH. If necessary you can change the RANCID scripts to
work as you want.
cheers,
Thorsten
11 matches
Mail list logo
