This looks identical to a script I was able to acquire from one of the CA/Spectrum engineers (after badgering them constantly at DevEx about how silly it was to claim that they support pulling PIX configs and only supporting telnet for it). I was only able to get it after being told repeatedly that it was for sample/documentation purposes only, not supported, probably wouldn't work, and shouldn't be used in production, etc.
However, I was able to make it work with a few minor changes. For example, I had to add: $ssh->exec( "no pager" ); To the list of pager disabling comments, or I got only the first page of the config for some devices. I'm working on testing it against additional PIX/FWSM/ASA devices right now to see what additional tweaks are required. Eventually I'd love to add support for multiple contexts, but that's gonna take a good bit of additional effort. These (and others like them) would definitely good to have on the Wiki. I think if we could get a couple of scripts going up there, we could build up some momentum and get additional people involved with improving them and contributing new scripts. -- Christopher -----Original Message----- From: Brett Davis [mailto:[email protected]] Sent: Friday, November 13, 2009 10:04 AM To: spectrum Subject: [spectrum] Followup: Configuration Manager (Cisco ASAs) Spectrum users, I know I have a seen a lot of requests for Perl scripts to allow the use of SSH to pull down the configs from ASA and Pix's. I'm not done yet, but I have a functional module for capture startup configs. I've attached that to this email for everyone to see how I went about it.. Me and a few of the other students here are working on getting the other scripts working using SSH and making sure they fail gracefully and give the right error codes etc. I'll provide those as we have them working. This script may also receive revisions, but hopefully it's enough to get some people started on config captures for these devices. Let me know if anyone has any questions for the time being. I'm sure once we have these done that Christian will throw them up on the Wiki too. -- Brett Davis, CCNA, GSEC IT Security Engineer Purdue University YONG 602 Phone (765) 49-62304 [email protected] --- To unsubscribe from spectrum, send email to [email protected] with the body: unsubscribe spectrum [email protected]
