Hi Chris,
I've made similar chnages on v3.9 but not getting the new 'merged' config
based on yours.
Below are the panw code i added :
panw;script;rancid -t paloalto
panw;login;panlogin
panw;module;panos
panw;inloop;panos::inloop
panw;command;panos::ShowInfo;show system info
Fri, Jul 12, 2019 at 08:30:28PM +0100, Paul Thornton:
> Hi
>
> We had a patch to 2.3's xrancid which we were running at some stage in
> the past N years that did this already - but can't I find it, and we
> aren't running it on our current rancid system either. Thanks to Chris'
> E-mail at
Hi
We had a patch to 2.3's xrancid which we were running at some stage in
the past N years that did this already - but can't I find it, and we
aren't running it on our current rancid system either. Thanks to Chris'
E-mail at least I've been reminded of that.
It wasn't a hard thing to add.
Yes, you can export the different formats, but the restore expects XML, in my
experience. Also, for those using Panorama, Erik’s advice to rely on Panorama
is sound. Been there, done that, don’t want to restore again, but it worked!
--Chris
Chris Gauthier Senior Network Engineer | Comscore
We haven’t bothered with Panorama much because unlike the firewalls themselves
the Panorama interface is very poor with screen readers and other accessibility
technologies used.
In AWS we do a lot of exporting of configs and use S3 to bootstrap the virtual
appliances so there may be a
On 7/12/19 14:15 , Gauthier, Chris wrote:
Rancid configs for PAN can NOT be used to restore the config, unless you
cut and paste the configuration. This is because the native config files
are stored in XML format and that is the format the Palo Alto utilities
expect when performing
Tue, Jul 09, 2019 at 09:55:56PM +, Chris Davis:
> We've just gotten a few Extreme switches (model X440-G2) and I've gotten them
> set up in Rancid. But while I get the configs, I have a few policies as
> well. They're kept as .pol files on the switch. Is there a way to include
> the
Exported config files are in XML format. Here is a link to the documentation.
Nowhere in their documentation does it reference using JSON as the format for
import/export.
Also, Palo Alto has a "scheduled export" facility, especially if you are using
Panorama. We use RANCiD to track the
It’s not XML, it’s JSUN if I understand where you’re going with this.
From exec mode
Set cli config-output-format default
Also other variables here can be set for set form andother formats which you
can select and display with a ? In the config-output-format parameter field.
Thanks
> On Jul
Rancid configs for PAN can NOT be used to restore the config, unless you cut
and paste the configuration. This is because the native config files are
stored in XML format and that is the format the Palo Alto utilities expect when
performing restorations.
--Chris
Chris Gauthier Senior
So, if you look at my posting below, I made a rather dumb copy/paste error in
my ‘panw’ definition. The first line should read:
panw;script;rancid -t paloalto
not:
panw;script;rancid -t paloalto
Thanks to Heasley for pointing that out! I would have not seen that for a
while. Having
I have to admit, I wish the etc/ directory was part of a Git repo. I could do
it locally, but would be a nice feature enhancement.
Chris Gauthier Senior Network Engineer | Comscore
t +1 (503) 331-2704 |
cgauth...@comscore.com
comscore.com
This e-mail (including any attachments) may contain
I’m getting some interesting results in my testing.
Rancid Version: 3.7
I have a pair of PA-5050’s managed by Panorama that have been only getting the
‘show config running’ output (the limited output). I made a new device type in
etc/rancid.types.conf:
panw;script;rancid -t paloalto
13 matches
Mail list logo
