On Wed, 18 Aug 1999, Colin Bradford wrote:
> On Wed, 18 Aug 1999, root wrote:
>
> > Lars Marowsky-Bree wrote:
> > > On 1999-08-18T11:01:10,
> > > root <[EMAIL PROTECTED]> said:
[snip]
> > > > I could emulate IOS with LRP, but WTF in their right mind would want to?
> > > Because it works. And has the best CLI in existance.
> > It doesn't come near the power, flexablity, and widely known bourne
> > shell.
> > When you can access a cisco via ssh, and can do for loops from IOS let
> > me know.
> > : >A
> B
> The CLI for IOS is designed to enable you to configure a Cisco(tm)
> router. Why do I want to do loops? SSH would be useful, but that's a
> daemon problem, not a CLI one. Note that to backup the entire
> configuration of a router, I type:
>
> write net
>
> at the enable prompt. That's powerful. That's what I need to do _to
> configure a router_.
Oh I hate to jump in - But... Running and configuring Cisco's every day
makes me agree strongly with both points. SSH or some alternative
encrypted access would be excellent. Cisco does not even support
SNMPv2-encrypt extensions. Also I have several KSH scripts with loops to
add/remove/modify access control lists. The excruciating alternative is
typing them in. How DOS....
Oh - write net is cute and only works IF you have a tftp server with
appropriate permissions etcetc. BTW - I use the SNMP version of this
command as well as the counterpart - telling the Cisco to load its config
from the tftp server. I do this for a particular purpose:
Back before the dawn of IOS 11.0.... I had several access control lists
that I only wanted running from 7am-6pm Tue,Wed,Thu every week except for
Xmas week and a couple of others. To do this without requiring me to be
around to enable/disable the access control lists I wrote a cron job that
would snmp tell the cisco to load a config file delta (not the whole
config file just the 'net' part) that would upload the ACL and apply it to
the interface in question in the morning and another config delta that
would remove it in the evening only on those specific days. In between the
ACL was a deny all. BTW - You still cannot do this function even today (no
- 12.x really only does that on 75xx and will not let you change the ACL
list only the apply times).
> If I'm smart, I actually execute this by doing a few SNMP Set
> operations, from a cron job.
>
> Key point: A router is not a workstation. The software on a router is
> not designed to run a workstation. It's designed to run a router. And it
> does (IMHO) a damn fine job of it.
Very True. Now if only Cisco would listen to actual users needs....
> Colin. (who's now going to try and get back on topic........)
--------------------------------------------------
Matthew G. Marsh, President
Paktronix Systems LLC
1506 North 59th Street
Omaha NE 68104
Phone: (402) 932-7250
Email: [EMAIL PROTECTED]
WWW: http://www.paktronix.com
--------------------------------------------------
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
