Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Alan, For energywise, I found CSCte69094 which should fix the issue in 12.2(53)SE1... Arie -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Alan Buxey Sent: Monday, July 05, 2010 20:49 To: David Freedman Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid Hi, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. I've had this issue with several devices and its been fixed by cisco. recently, however, have had the same with the level 7 password for energywise. the 'fix' is to not have it encrypted in the config and save it as plain text (level 0) - thats not acceptable. you'll have to do what i did - reconfigure rancid to ignore that value. alan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Hi John, My piece of l2tp config: l2tp-class class-name authentication more config lines password 7 level-7-encrypted-pass more config lines Martin cisco-nsp-boun...@puck.nether.net wrote on 07/07/2010 07:14: Mon, Jul 05, 2010 at 06:49:04PM +0100, Alan Buxey: Hi, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. I've had this issue with several devices and its been fixed by cisco. recently, however, have had the same with the level 7 password for energywise. the 'fix' is to not have it encrypted in the config and save it as plain text (level 0) - thats not acceptable. you'll have to do what i did - reconfigure rancid to ignore that value. if you provide examples of these config lines, l2tp and energywise, i'll provide a hack to filter them within rancid. they should, however, not change in the config and you should complain to cisco to get it fixed so that you can have them archived by rancid without the oscillating. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Thanks guys... I was afraid I would hear your solutions I think I will try to persuade Cisco to solve this issue, and in the mean time have Rancid ignore the level 7's :-( Martin -Original Message- From: cisco-nsp-boun...@puck.nether.net [mailto:cisco-nsp-boun...@puck.nether.net] On Behalf Of Alan Buxey Sent: 05/07/2010 19:49 To: David Freedman Cc: cisco-nsp@puck.nether.net Subject: Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid Hi, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. I've had this issue with several devices and its been fixed by cisco. recently, however, have had the same with the level 7 password for energywise. the 'fix' is to not have it encrypted in the config and save it as plain text (level 0) - thats not acceptable. you'll have to do what i did - reconfigure rancid to ignore that value. alan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/ ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Mon, Jul 05, 2010 at 06:49:04PM +0100, Alan Buxey: Hi, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. I've had this issue with several devices and its been fixed by cisco. recently, however, have had the same with the level 7 password for energywise. the 'fix' is to not have it encrypted in the config and save it as plain text (level 0) - thats not acceptable. you'll have to do what i did - reconfigure rancid to ignore that value. if you provide examples of these config lines, l2tp and energywise, i'll provide a hack to filter them within rancid. they should, however, not change in the config and you should complain to cisco to get it fixed so that you can have them archived by rancid without the oscillating. ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Martin Moens wrote: Hi lists, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. According to Cisco's TAC this is expected behavior Apart from the option to not-encrypt passwords any ideas how to solve this? Make rancid ignore it and instead place the password with its original level7 in an ACL remark? (sad, I know) Dave. -- David Freedman Group Network Engineering Claranet Group ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
Re: [c-nsp] [rancid] Cisco L2tp class with password and rancid
Hi, I have an issue when I configure a l2tp-class with a password in it, every time I do a sho run the level 7 encrypted password is shown differently. When using Rancid for config backups, every time Rancid runs I receive a complaint my config has changed. I've had this issue with several devices and its been fixed by cisco. recently, however, have had the same with the level 7 password for energywise. the 'fix' is to not have it encrypted in the config and save it as plain text (level 0) - thats not acceptable. you'll have to do what i did - reconfigure rancid to ignore that value. alan ___ cisco-nsp mailing list cisco-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/