I'm backing up about 15 Cisco devices using Kiwi CatTools.  It's working perfectly for all of them except the two Firewall Services Modules (FWSM) and the two ASAs.  I get the warning "Failed to enter enable mode" in the Info Log.  I've verified, though, that I can login to the devices successfully from the server that runs CatTools.

I'm using the following settings:

Connect via: Direct connect

Method: SSH2

Port: 22

AAA Username

AAA Password

Initial login requires username/password

Enable mode uses AAA username/password fields

These settings work for the other devices but not the FWSM and ASA.  Any suggestions?

Thanks!

Whenever i try to run a Device.Backup.TFTP on any of my 5508 wireless LAN controllers i get the following error 'Did not receive expected response to command: transfer upload start' I suspect that this issue is caused by a timeout, as whenever i run this task manually it takes around 2 minutes to complete the TFTP transfer. To overcome this i used the following alternative list of commands:

config paging disable

transfer upload mode tftp

transfer upload datatype config

transfer upload serverip *.*.*.*

transfer upload path /

transfer upload filename %ctDeviceName.txt

%ctUM: Timeout 150

transfer upload start

These settings remove the error although cause another problem - it stops cattools from comparing the newly transferred file and the existing file on the disk. The ending result leaves the newly transferred file sitting in the TFTP directory. Does anyone know how to fix this?

Hi,

I'm new to using CAT tools Enterprise v. 3.7.  I have a Cisco 2960S switch that I need to backup the config on it via TFTP.  Curious, if I run the script "Device.Backup.RunningConfig", will it cause any interruption to service on the switch?  Also, once the config is backed up, how do I take that config and copy to another switch?

I have a question, I have 2 Cisco WiSM  (Cisco 6500 blade) that I am trying to use Cat tools to backup the config files on a regular schedule. I have run into the following error when trying to run the activity:  "Did not receive expected response to command: configshow" and then Cat tools disconnects from the switch. I used telnet to issue the show running-config command and what I noticed is right after the show running-config command is issued the switch prompts with: "Press Enter to continue or <CTRL-Z> to abort"  or "--More-- or (q)uit " and sits there until there is user intervension. How can I automate the CR to continue command so I can use Cattools to pull the configuration of these switches? Any help would be greatly appreciated.

Thanks

I am attempting to configure Cat Tools to backup some of our Dell PowerConnect 5548s running-configs over SSH, however I am running into problems when initiating the SSH session. Since the Dell SSH on the appliance is built on top of Telnet, it prompts for a useless field "Login as:" before asking for the local username and password. This first field has no effect on whether or not you can authenticate to the device.

I cannot find a way to put in a carriage return or line-feed command to make the session continue to the "Username: " prompt.

I apologize for my sentence structure on this post.

Cheers,

Stefan

Hello,

We have an HP Procurve J4903A Switch 2824 and it is integrated with RADIUS Server for authentication.
We are using Cat Tools 3.4 demo version and tried to configure the switch for configuraton backup using Method SSH2.
And using Device.Backup.Running Config  Type and SSH Username/Password are supplied. When Run the backup it shows the errors:
"Did not receive expected prompt when entering enable mode", and "Aborting: Unable to enter enable mode".

Do anybody faced this issue with SSH? Please help me to solve this problem.

Regards,

Achu

I'm trying to write a script to change password's for Hirschmann RS20 Switch.

Debug:

<W-16:03:06>users passwd user[13]

<R-16:03:06>u

<R-16:03:06>sers passwd user[13][10][13][10]Enter old password:

<W-16:03:06>public[13]

<R-16:03:06>*

<R-16:03:06>**[13][10][13][10]Incorrect Password![13][10][13][10](egvko1swvis6) (Config)#

.... but the password is right.

Script:

     ReDim rgMult(5)

    rgMult(1) = "Enter old password:"

    rgMult(2) = "Enter new password:"

    rgMult(3) = "Confirm new Password:"

    rgMult(4) = "... irgendwas"

    rgMult(5) = "Incorrect Password!"

    cl.Log 4, "SendData '" & sCmd & "'"

    cl.SendData sCmd & vbCr

    iRetValPWD = cl.WaitForMultData(rgMult, , COMMAND_TIMEOUT)

    cl.Log 4, "Buffer '" & cl.RxBuffer & "'"

    Select Case iRetValPWD

     Case 1, 2, 3, 4

           ' Password accepted - a valid device prompt was received back

           iNumSuccess = iNumSuccess + 1

           iChangePWD = iChangePWD + 1

           cl.Log 4, "SendData ok"

     Case 5

           cl.Log 4, "Incorrect Password!"

           SendCommandsMultiple = False

           Exit Do

     Case Else

           ' Unexpected response received back from device

           cl.Log 4, "Did not receive expected response after sending password"

           iNumErrors = iNumErrors + 1

    End Select

    cl.FlushRxBuffer

I am in evaluation mode and cannot find that Cattools that support Arista Switches IOS and SeaMicro SMOS on Vendor lists

Any one know ? ARISTA and SEAMICRO will support on vendor list ?

Hello Team,

I´m looking for Cattools basic support for IBM Switches (formely BNT). Those have a quite similar CLI to the Cisco IOS Devices, however some prompts are different.

IBM System Networking: Switches

Any chance to get those as a supported device or any other way to work with them a generic device.

best regards

Alfred

Hello,

I have been trying forever to automate a backup of our Cisco 2504 Controller with Kiwi Cattools.  Unfortunately, we have version 3.2.1 and there is no specific WLC device to pick in the drop-down device list.  However, I should be able to configure custom prompts to at least login and run some tests. 

I was wondering if there is any way to put wildcards or carriage returns in any of the prompts box?  When you telnet/SSH to this WLC, there is a carriage return, the name of the controller, another carriage return then a User prompt.  I ran a debug and this happens over and over:

<NEWSESSION Kiwi CatTools 3.2.1 1/13/2014 4:41:23 PM>

<PROTOCOL=SSH2>

<DEVICENAME=controller name>

<SCRIPT=C:\Program Files\CatTools3\Scripts\Client.Device.CLI.Send commands.txt>

<C OK 4:41:23 PM><R-4:41:24 PM>[13][10](controller name) [13][10]User:

================================================================================

WFMDRetVal=1 Waiting for: "[13][10](controller name) [13][10]user: "

WFMDRetVal=2 Waiting for: "Password required, but none set"

WFMDRetVal=3 Waiting for: "[13][10](controller name) [13][10]user: "

WFMDBuffer="[13][10](controller name) [13][10]user: "

Tried with Telnet too:

<NEWSESSION Kiwi CatTools 3.2.1 1/13/2014 4:20:31 PM>

<PROTOCOL=Telnet>

<DEVICENAME=controller name>

<SCRIPT=C:\Program Files\CatTools3\Scripts\Client.Device.CLI.Send commands.txt>

<C OK 4:20:31 PM><R-4:20:31 PM>[13][10](controller name) [13][10]User:

================================================================================

WFMDRetVal=1 Waiting for: "[13][10](controller name) [13][10]User: "

WFMDRetVal=2 Waiting for: "Password required, but none set"

WFMDRetVal=3 Waiting for: "[13][10](controller name) [13][10]User: "

WFMDBuffer="[13][10](controller name) [13][10]user: "

You can see the Kiwi sees this "[13][10](controller name) [13][10]User: " but it doesn't like it when its in the prompts box cuz of the carriage return.

I'm at wit's end with this thing.  We can't upgrade KCT right now due to budget, but I would love to get this automated backup working.  Any help would be appreciated.

Thanks,

Hi!

I updated some Cisco 2960 switches to IOS Version 12.2(52)SE. Since then the CatTools Activity Device.Update.Banner (Login) fails. After the command banner login `*** I get the error "%Invalid input detected at ...". Anyone with the same problem?

I am trying to backup this switch using the Device.CLI.Send activity.  Here is what I am trying to send:

Login authentication　

Please input password:******
Warning: Now you enter an all-command mode for developer's testing, some commands may affect operation by wrong use, please carefully use it with our engineer's direction.
<Raben Tire IT Switch>backup startup-configuration to 10.21.1.13
Backup next startup-configuration file to 10.21.1.13, please wait...
finished!
<Raben Tire IT Switch>quit

I get to the input of the password and get a syntax error.  Since I get a syntax error there, the rest of the script never runs, it also gets a syntax error.  How do I input a password at that point?

Thanks,
Jeff

I am currently trying to set up KiwiCatTools to take a Device.Backup.Running Config of my current Microwave Links which are NanoBridge M5, I have CatTools working for Dell /Cisco and HP Switches.

Following the advice in this discussion Re: Automate backup of config from Ubiquiti NanoBridge M5 (DD-WRT) , I set the devices as Linux.RedHat.Bash and have double checked all usernames and passwords are correct and have also added the prompt fields that appear when using SSH to access the links.

Can ping all devices from CatTools but Device.ConnectivityTest.Login always fails.

Firmware on nanobridges is XM.v5.6.7.

Cattools 3.11 (enterprise)

Any help would be appreciated. Thanks in advance.

Hello.

I have problem with mass expired password update in cattools database. I have about 1500 devices and different credentials in about 20% of them.

How to do mass password update only for specific user?

Only thing that comes to my mind is select by hand devices where is that user with expired pasword, but this is not elegant solution (in addition I have to do it every 30 days of password expiration).

Hi

Has anyone been able to get an automated backup of the 200 series small business switches. I noted that there seems to be scripts for the SG300 but not the SG200.

Is there a reason that the SG200's don't work with Cattools?

Thanks

Matt

I have 140 location specific Juniper SRX 220 routers to load newly generated configurations to.  What is the best approach for this?  Previously, I was dealing with Netscreen 5GT - I would just run a modify config and add the necessary changes because of limitations with those devices.

Now I just want to delete the config and reload it entirely - I haven't done this with CatTools but I think there has to be a way.

Thanks for any direction

sb

Hi

I have managed to get a full back of a Fortigate firewall working using TFTP and I thought I would share how I did it with the community.

We have a pair of Fortigates 3600C and we run multiple VDOMs on these, this meant the default script withing Cattools didn't work for us. We also require a keystroke before logging in as well. All this meant I had to use a combination of variations and also the TFTP backup method.

Variations configuration

• Add your devices using the "Generic.Device" type, this will allow you to use "Variations"
• Give them a group name - it is well worth using the same group name for all Fortinets as this will allow you to apply the same variations to all devices within that "Group"
• Fill in the rest of the device info and passwords as you would do normally
• Go to the "variations" tab and click "use variations"
• Go to the "prompts" tab and fill in the information as shown in the "qoutes":-

DEVICE_USERNAMEPROMPT = "login as:"

DEVICE_PASSWORDPROMPT = "password:"

DEVICE_STANDARDPROMPT = "#"

DEVICE_PRIVILEGEDPROMPT = "#"

DEVICE_CONFIGPROMPT = "(global) #"

• Go to the "additional commands" tab and fill in the information as shown in the "qoutes":-

COMMAND_ENTERCONFIG = "configure global"

COMMAND_EXITCONFIG = "end"

• Go to the "pre/post login" tab and fill in the information as shown in the "qoutes":-
• NOTE: you may not need to do this if you aren't asking for a pre login key stroke.

PRE_LOGIN_MESSAGE = "(Press 'a' to accept):"

PRE_LOGIN_KEYSTROKE = "a"

• Then click on the "group save" button as this will then save the changes to the group you specified. This will allow you to add more devices to this group and it will pre-populate the variations for you. This saves a lot of work in the future.

TFTP activity configuration

• Go to activities and click add
• Set Type to "Device.Backup.TFTP"
• Fill in name and description
• Set schedule under the time tab
• Add your devices
• Go to "Options" tab
• Untick the "file to write to tftp server"
• Untick the "enter commands in enable mode"
• In the "optional alternative list of commands" section input the following:-

%ctUM: Timeout 100

%ctUM: EchoOff

config global

%ctUM: EchoOff

execute backup config tftp %ctDeviceName-Running-Config <input your IP Address>

%ctUM: EchoOff

• If your not using the default file locations don't forget to change them, I got caught out on this. Mine look like:-

F:\CatTools2\Configs\%GroupName%\Config.Current.Running.%BaseFile%.txt

F:\CatTools2\Configs\Archives\%GroupName%\Config.Dated.Running.%BaseFile%.%DateISO%-%TimeHHMM%.txt

• Click ok to save

Now run the activity to check it all works. What you will find is there is about a 5 minute delay where it shows as a busy task. Be patient as it will finish. I would recommend running this task outside of any other backups as it does take a bit longer than others.

Hope this helps others getting this working.

EDIT

I have updated this to change from using the command "execute backup full-config" to use "execute backup config". This is because we had an issue recently where we were unable to restore the backup taking using the "execute backup full-config" command.

Fortinet recommend using the "execute backup config" command as this just restores the configuration that has been changed.

I have now tested this on our lab device and I was able to restore the configuration successfully.

Cheers

Jay

Message was edited by: Jaybed --

We are trying to use UDP spoofing to forward unaltered syslog events to a SIEM collector. We tried using the RFC 3164 headers first, but there still seems to be some extraneous information added to the messages.

The Kiwi Syslog server is running as a VM on a VMWare ESX server. When using the Kiwi syslog server dialog box, the default adapter is some VPN dialup adapter, the secondary choice is actually the VMWare adapter. The Kiwi server has been running successfully with the current configuration for a while, collecting events from Windows servers via SNARE and Cisco ASA FW and FWSMs.

When we try to check the box for UDP spoofing and select the VMWare adapter, we receive an error message stating that the default GW MAC could not be resolved. The test also fails, of course.

This seems confusing since we were successfully sending UDP on port 514 earlier in the day with no problems.

What is different with the UDP spoffing packets that could confuse the virtual switch? Can someone describe the actual packet format, and what MAC and IP address are used? I would assume the MAC address would be the MAC of the switch port that the Kiwi host would use to get to the original source host, and the IP address would be "spoofed" to look like the original source host. IS this a correct assumption?

If so, wouldnt the host IP address be associated with two separate switch ports in the bridging table? 1 for the upstream port to the actual location, and 1 for the port that is spoofing the address?

Hi,

since we upgraded to FortiOS 5.2.5 or 5.4 Cattools gives us the error message "Failed to connect to XXX. Reason: No respone from remote host. Will try again."

If we connect to it with Putty we get a session.

Have debugged the SSH from FortiOS but no error messages is shown.

The debug in Cattools doesn´t give any errors either:

<NEWSESSION CatTools 3.10.0 2016-01-15 08:41:31>

<PROTOCOL=SSH2>

<DEVICE TYPE=Fortinet.FortiOS.General>

<ACTIVITY TYPE=Device.Backup.Running Config>

<ACTIVITY SCRIPT=D:\Program Files (x86)\CatTools3\Scripts\Client.Device.Backup.Running Config.txt>

<USERS NAME FOR DEVICE=nbo-osd2fw01>

<D 13:48:31>

<SCRIPT VALUES>

<HOSTNAME="">

<PROMPT VTY="">

<PROMPT ENABLE="">

<PROMPT CONFIG="">

We have tried all different SSH ciphers but with the same result. When we save the ciphers we can see that it sends it to the FortiOS and that it accept it.

Any ideas?

Robin

Hi

I am new to Cattools

I am trying to backup configuration on my HP ProCurve switchs (mainly 2510 and 2626)

I got "Did not receive VTY entry prompt from HP" when trying to do Device.Backup.Running.Config.

The switch is default configured with no password.

Debug log

--------------------

<NEWSESSION CatTools 3.5.0 10-11-2010 13:39:14>
<PROTOCOL=Telnet>
<DEVICE TYPE=HP.Switch.2500>
<ACTIVITY TYPE=Device.Backup.Running Config>
<ACTIVITY SCRIPT=C:\Program Files (x86)\CatTools3\Scripts\Client.Device.Backup.Running Config.txt>
<USERS NAME FOR DEVICE=SW12>
<C OK 13:39:14><R-13:39:14>[27][2J[27][?7l[27][3;23r[27][?6l[27][1;1H[27][?25l[27][1;1HProCurve J9279A Switch 2510G-24[13][10][13]Software revision Y.11.16[13][10][13][13][10][13]Copyright (C) 1991-2009 Hewlett-Packard Co.  All Rights Reserved.[10][13][10][13]                           RESTRICTED RIGHTS LEGEND[10][13][10][13] Use, duplication, or disclosure by the Government is subject to restrictions[10][13] as set forth in subdivision (b) (3) (ii) of the Rights in Technical Data and[10][13] Computer Software clause at 52.227-7013.[10][13][10][13]         HEWLETT-PACKARD COMPANY, 3000 Hanover St., Palo Alto, CA 94303[10][13][10][13]We'd like to keep you up to date about:[10][13]  * Software feature updates[10][13]  * New product announcements[10][13]  * Special events[10][13][10][13]Please register your products now at:  www.ProCurve.com[10][13][10][13][10][13][27][1;24r[27][1;1H
================================================================================
WFMDRetVal=1 Waiting for: "ress any key to continue"
WFMDRetVal=2 Waiting for: "Password required, but none set"
WFMDRetVal=3 Waiting for: "Password:"
WFMDRetVal=4 Waiting for: "Username:"
WFMDBuffer="[27][2j[27][?7l[27][3;23r[27][?6l[27][1;1h[27][?25l[27][1;1hprocurve j9279a switch 2510g-24[13][10][13]software revision y.11.16[13][10][13][13][10][13]copyright (c) 1991-2009 hewlett-packard co.  all rights reserved.[10][13][10][13]                           restricted rights legend[10][13][10][13] use, duplication, or disclosure by the government is subject to restrictions[10][13] as set forth in subdivision (b) (3) (ii) of the rights in technical data and[10][13] computer software clause at 52.227-7013.[10][13][10][13]         hewlett-packard company, 3000 hanover st., palo alto, ca 94303[10][13][10][13]we'd like to keep you up to date about:[10][13]  * software feature updates[10][13]  * new product announcements[10][13]  * special events[10][13][10][13]please register your products now at:  www.procurve.com[10][13][10][13][10][13][27][1;24r[27][1;1h"
================================================================================