Here's the "capture startup" I'm using (it's a rip off of the SSH one from the
DACHSUG WIKI)
Just change "sh startup" to "sh run" for the "capture running config" script.
#!/opt/SPECTRUM/bin/perl -w
# This script will capture the startup configuration of a
# Cisco IOS OS SSH device and print it to STDOUT.
#
# Error Codes:
# 0 = Success
# 255 = Usage error
# 254 = Invalid timeout value
# 252 = Connection error
# 251 = Login error
# 249 = Enable error
# 244 = Error retrieving configuration
# 253 = Unexpected output
#
use strict;
use warnings;
use Net::SSH::Expect;
$ENV{'PATH'} = "/usr/bin:". $ENV{'PATH'};
### Main ###
if( $#ARGV != 4 && $#ARGV != 5 )
{
print "Usage: capture_startup.pl <device IP> <user> <pass> <enable_pass>
<login_timeout_in_seconds> <capture_timeout_in_seconds>\n";
print STDERR "Usage: capture_startup.pl <deviceIP> <user> <pass>
<enable_pass> <login_timeout_in_seconds> <capture_timeout_in_seconds>\n";
exit 255;
}
elsif( $ARGV[4] < 1 || $ARGV[4] > 600 )
{
print "$ARGV[4] is the login timeout and must be an int between 1 and 600
seconds\n";
print STDERR "$ARGV[4] is the login timeout and must be an int between 1
and 600 seconds\n";
exit 254;
}
elsif( $#ARGV == 5 && ( $ARGV[5] < 1 || $ARGV[5] > 600 ) )
{
print "$ARGV[5] is the capture timeout and must be an int between 1 and 600
seconds\n";
print STDERR "$ARGV[5] is the capture timeout and must be an int between 1
and 600 seconds\n";
exit 254;
}
else
{
my $capture_timeout = $ARGV[4];
if( $ARGV[5] )
{
$capture_timeout = $ARGV[5];
}
my $errorCode = 1;
my @data;
my $errorString = "\nHost $ARGV[0]: \n";
($errorCode, @data) = GetConfig( $ARGV[0], $ARGV[1], $ARGV[2], $ARGV[3],
$ARGV[4], $capture_timeout );
if( $errorCode == 0 )
{
# Success. The startup configuration
# content is in the data variable
foreach ( @data ) { print "$_\n" }; # print the configuration to STDOUT
exit 0;
}
else
{
print STDERR $errorString;
if( $errorCode == 253 )
{
print STDERR join " ", @data, "\nEnable password may be invalid\n";
}
else
{
print STDERR join " ", @data, "\n";
}
exit $errorCode;
}
}
exit 0;
sub GetConfig
{
my $deviceIP=shift;
my $user=shift;
my $pass=shift;
my $epass=shift;
my $login_timeout=shift;
my $capture_timeout=shift;
my @config;
my $msg;
my $ssh = Net::SSH::Expect->new ( host => $deviceIP,
user => $user,
password=> $pass,
raw_pty => 1,
no_terminal => 1,
timeout => $login_timeout
);
my $login_output;
eval { $login_output = $ssh->login(); };
if( $@ )
{
$msg = "Login has failed. Output: $login_output";
return( 252, $msg );
}
#first try login without username and just password
if( $login_output !~ /[\#\>]\s*\z/ )
{
$msg = "Login has failed. Didn't see device prompt as expected.";
$ssh->close();
return( 252, $msg );
}
if( $login_output !~ /\#\s*\z/ )
{
my $enable = $ssh->exec( "enable" );
# if we have a password prompt after enable, send the password
if( $enable =~ /[Pp]assword:/ )
{
my $enablepass = $ssh->exec( $epass );
# did the enable password fail?
if( $enablepass !~ /\#\s*\z/ )
{
$msg = "Enable password failed.";
$ssh->close( );
return( 249, $msg );
}
}
# we didn't require a password, but did we get the enable prompt?
elsif( $enable !~ /\#\s*\z/ )
{
$msg = "Enable mode prompt not found.";
$ssh->close();
return( 249, $msg );
}
}
# disable paging
# different commands for different devices, if they don't
# work then we will get messages about problems later
# specifically the "No prompt after 'sh run'" error
# errmsg doesn't get set when these error and if we use print
# and getlines to read for errors it causes problems with print "sh run"
# later.
$ssh->exec( "term pager 0" );
$ssh->send( "sh start" );
$ssh->timeout( $capture_timeout );
$ssh->peek(0);
while( my $line = $ssh->read_line() )
{
# get configuration content
if( $line !~
/sh start|Building configuration|Current configuration|^\s*$/ )
{
push @config, $line;
}
}
if( @config <= 0 )
{
$msg = "No data retrieved, the capture timeout may be too low.";
$ssh->close();
return( 244, $msg );
}
if( scalar grep { $_ =~ /^%/ } @config )
{
# Ensure show start actually returned the config and not an error
message containing '%'
return( 253, @config );
}
return( 0, @config ); # everything was okay, return the captured data
}
David K. Game
Consultant – Managed Services
Logicalis UK Ltd
110 Buckingham Avenue
Slough, Berkshire, SL1 4PF
www.uk.logicalis.com
_________________________________________________
Business and technology working as one
-----Original Message-----
From: [email protected] [mailto:[email protected]]
Sent: 21 February 2013 18:06
To: spectrum
Subject: [spectrum] Host Configuration Manager
Hi
I like capture the configuration to Cisco PIX by ssh or tftp, the question is,
any one have the script for that????
Thanks
Maynard Suarez
Especialista Junior.
Data Center Hatillo.
“Con la finalidad de brindarle un mejor servicio, hemos dispuesto el
alias: <[email protected]>, para el procesamiento de sus sugerencias,
agradecimientos o reclamos.”
---
To unsubscribe from spectrum, send email to [email protected] with the body:
unsubscribe spectrum [email protected]
Please be aware that Logicalis UK Ltd may monitor email traffic data and also
email content for security purposes.
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________
This email communication does not create or vary any contractual relationship
between Logicalis and you. Internet communications are not secure and
accordingly Logicalis does not accept any legal liability for the contents of
this message. The contents of this email are confidential to the intended
recipient at the email address to which it has been addressed. It may not be
disclosed to or used by anyone other than this addressee, nor may it be copied
in any way. If received in error, please contact Logicalis on the above
switchboard number quoting the name of the sender and the addressee and then
delete it from your system. Please note that neither Logicalis nor the sender
accepts any responsibility for viruses and it is your responsibility to scan
the email and attachments (if any).
Please be aware that Logicalis UK Ltd may monitor email traffic data and also
email content for security purposes.
Logicalis UK Ltd, Registered in England and Wales No: 3732397, Registered
Office: 110 Buckingham Avenue, Slough. Berkshire, SL1 4PF
______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________
---
To unsubscribe from spectrum, send email to [email protected] with the body:
unsubscribe spectrum [email protected]
