I am a new user to CatTools and in setting up my installation I am trying get the email alerts working, however we use a hosted exchange solution which requires the SMTP be set to use SSL. I don't see an option for this, and assume it is not possible in CatTools. Is there a work around?
The error I get is when trying test the email. I get an error saying "Error sending test message via primary server: connection to the server closed unexpectedly."
I have some connection problems with some of my devices in my network. I have about 50 Riverbed 250L cashe boxes that I routinely back up each night with a kiwi script.
Lately I have been getting errors such as:
Connect failed:(30044) No available encryption algorithms match with the server.
I am sure I have my encryption set up right, as I have only about a 15% failure and they are all set up the same.
Any suggestion I could check into?
JT
We are looking to backup the configurations of a bunch of Vyatta type routers, same as we do for our Cisco routers. We went plowing through the custom scripts and device documentation and aren't getting very far. Since the Device.Backup.Running Config activity can backup different types of devices using different commands, it would appear that in the device would where the "show config" commands would be set up. However, the Custom.Device.Template.txt.custom "script" has a lot more info that we are looking for and then it appears you have to bind together a main and client activity to the custom device? We are just looking to have something exactly the same as Device.Backup.Running Config activity that will issue a "show configuration commands" for Vyatta instead of "show running-config" for Cisco. We don't want to learn a new language to write scripts with and if we did, we wouldn't be paying over $200 per year for maintenance as we would then be writing our own software.
Is there a simple way to modify the backup running config activity to be able to work with Vyatta routers?
Thanks much
---RWR
Running ERS 4900 swtich stacks with CatTools. Everything was working great for awhile until we needed to upgrade one of our stacks from version 7.2.0.009 to 7.6.0.007 due to an unrelated issue. Now when the backup is being performed in CatTools I get this error: Failed to connect. Reason: (30044) No Available encryption algorithms match with the sever..
Here is the full error log:
<NEWSESSION CatTools 3.6.0 10/22/2018 12:35:51 PM>
<PROTOCOL=SSH2>
<DEVICE TYPE=Cisco.Router.General>
<ACTIVITY TYPE=Device.CLI.Send commands>
<ACTIVITY SCRIPT=C:\Program Files (x86)\CatTools3\Scripts\Client.Device.CLI.Send commands.txt>
<USERS NAME FOR DEVICE=m4900sc129>
<C Err=No available encryption algorithms match with the server. 12:35:51 PM><D 12:35:51 PM>
<SCRIPT VALUES>
<HOSTNAME="m4900dc2">
<PROMPT VTY="m4900dc2>">
<PROMPT ENABLE="m4900dc2#">
<PROMPT CONFIG="m4900dc2(">
The switch is definitely running SSH. I did notice that connecting directly with the 'Telnet/SSH' button from the devices menu did not work and had a similar error. To resolve this, I had to update PuTTY to the newest version. Now that PuTTY is updated, this option now works however, i am still getting the same error with CatTools.
Any help is appreciated! Thanks!
Hello to the group!
Please forgive me if this is a basic thing that a netadmin should know; I have no formal training on this so much of my knowledge is from bits and blurps from the Internet searches I've been doing combined with trial-and-error.
TL;DNR Version: What is the PROPER way to get CatTools past the "Press ENTER to continue" screen that follows the "Press CTRL-Y to continue" splash screen when using SSH on an Avaya ERS4850? I rigged a way through, but I don't think it's right.
Edit: And I meant to say, I've already seen Wiki Cattools with Avaya ERS switches and the link it provides to variations...
Long Version:
Our organization uses CatTools for taking the running-config of our network gear, mostly Avaya/Nortel/BayStack equipment. For the vast majority, it's been working fine, as we were using Telnet. However, we're slowly moving to SSH and I have one switch I'm trying to get into a little more cleanly than the method I've found.
I've spent the better part of two days trying to figure this out, searching Thwack and the Internet in general, to no avail. It was by studying the debug output that I finally figured out what was happening and came up with a workaround. But I don't like my method.
Here's the debug before I figured it out:
[code]
<NEWSESSION CatTools 3.11.3 3/15/2018 1:05:07 PM>
<PROTOCOL=SSH2>
<DEVICE TYPE=Nortel.Switch.Ethernet>
<ACTIVITY TYPE=Device.Backup.Running Config>
<ACTIVITY SCRIPT=C:\Program Files (x86)\CatTools3\Scripts\Client.Device.Backup.Running Config.txt>
<USERS NAME FOR DEVICE=SomeSwitch>
<C OK 1:05:08 PM>
<R-1:05:08 PM>[13][10]
<R-1:05:08 PM> ### ### ### ### ### ### ### ##### ### ### ##### ### ### ##### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ########## ### ###### ########## ### ###### ########## ### ############ ### #### ############ ### #### ############ ### ### ### ## ### ### ### ### ### ### ###Enter Ctrl-Y to begin.****************************************************************** Ethernet Routing Switch 4850GTS-PWR+ ****** Avaya ****** Copyright (c) 1996-2017, All Rights Reserved ************ HW:15 FW:5.8.0.3 SW:v5.10.1.039******************************************************************
<W-1:05:09 PM>[25]
<R-1:05:09 PM>Last login: --[13][10]Failed retries since last login: 0[13][10]Press ENTER to continue[13][10]
================================================================================
WFMDRetVal=1 Waiting for: "Logout"
WFMDRetVal=2 Waiting for: "Enter Username:"
WFMDRetVal=3 Waiting for: "Enter Password:"
WFMDRetVal=4 Waiting for: ">"
WFMDRetVal=5 Waiting for: "#"
WFMDBuffer="last login: --[13][10]failed retries since last login: 0[13][10]press enter to continue[13][10]"
================================================================================
[/code]
I see the [##] codes, which I figured early on are ASCII. [13] is <CR>, [10] is <LF>, and [25] is <EM>. I know <CR> is <CTRL-M>, so it would follow that <EM> would be <CTRL-Y> (which we would expect with an Avaya/Nortel switch).
So the last few lines appear to show we R (Read, receive) the Avaya splash screen (all the ### ## ####) and then W (Write, send) [25] (<CTRL-Y>) and we then read from the device a quick banner showing the number of failed retries, etc., at which point we must hit <CR>.
It appears to me, however, by the five "Waiting for" lines, that CatTools doesn't think it's logged in yet. Were this Telnet, CatTools would be correct: It is AFTER the CTRL-Y where we enter login information -- in TELNET. But in SSH, we won't see the splash screen nor the "Press ENTER to continue" line without a successful (SSH) login.
So this is where I kept getting stuck. We're logged in, but CatTools doesn't seem to think so. To work around this, I set up a variation to use CTRL-Y followed by CTRL-M as a *PRE* login keystroke. The reason I don't think it's right is because (1) it should be *POST* login but CatTools doesn't seem to think it's logged in; and (2) after doing this, CatTools receives a command prompt from the device, but just sits there for about 20 seconds before continuing, claiming to be waiting for a known device prompt.
The output of the debug after the workaround is in place is as follows:
[code]
<NEWSESSION CatTools 3.11.3 3/15/2018 2:51:33 PM>
<PROTOCOL=SSH2>
<DEVICE TYPE=Nortel.Switch.Ethernet>
<ACTIVITY TYPE=Device.Backup.Running Config>
<ACTIVITY SCRIPT=C:\Program Files (x86)\CatTools3\Scripts\Client.Device.Backup.Running Config.txt>
<USERS NAME FOR DEVICE=SomeSwitch>
<C OK 2:51:34 PM>
<R-2:51:34 PM>[13][10]
<R-2:51:34 PM> ### ### ### ### ### ### ### ##### ### ### ##### ### ### ##### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ### ########## ### ###### ########## ### ###### ########## ### ############ ### #### ############ ### #### ############ ### ### ### ## ### ### ### ### ### ### ###Enter Ctrl-Y to begin.****************************************************************** Ethernet Routing Switch 4850GTS-PWR+ ****** Avaya ****** Copyright (c) 1996-2017, All Rights Reserved ************ HW:15 FW:5.8.0.3 SW:v5.10.1.039******************************************************************
<W-2:51:35 PM>[25]
<W-2:51:35 PM>[13]
<R-2:51:35 PM>Last login: --[13][10]Failed retries since last login: 0[13][10]Press ENTER to continue[13][10][13][13][10]<Device Hostname Here>#
================================================================================
WFDRetVal=0. Waiting for: "ctrl-ytobegin"
WFDBuffer="lastlogin:--failedretriessincelastlogin:0pressentertocontinue<DeviceHostnameHere>#"
================================================================================
<W-2:52:05 PM>[13]
<W-2:52:05 PM>[13]
<R-2:52:05 PM>[13][13][10]
.......and the debug continues, to show the running-config as one would expect, etc......
[/code]
The main reason I don't think this is right is because the output states it's waiting for the "Press CTRL-Y to continue" prompt after it's already been given, and the "Info Log" pane shows "Waiting for a known device prompt".
Is there a better way to use SSH via CatTools with an ERS 4850GTS?
Many thanks in advance. I'd love to clean / speed this process up.
Regards,
Wirefly
Hi, I want to backup an Aruba switchstack and received this error message.
I created the device as Generic.Device and tried a lot of different combinations of Prompts and variations but I always get "Did not receive command prompt after connecting via SSH".
What are the correct settings to backup an Aruba Switch?
Here the message I get, depending on the configuration it slightly changes:
<NEWSESSION CatTools 3.11.4 06.09.2018 15:27:10>
<PROTOCOL=SSH2>
<DEVICE TYPE=Generic.Device>
<ACTIVITY TYPE=Device.Backup.Running Config>
<ACTIVITY SCRIPT=D:\Kiwi\CatTools3\Scripts\Client.Device.Backup.Running Config.txt>
<USERS NAME FOR DEVICE=myswitch>
<C OK 15:27:11>
<R-15:27:11>We'd like to keep you up to date about:[10] * Software feature updates[10] * New product announcements[10] * Special events[10]Please register your products now at: www.hpe.com/networking/register[10][10][10]
<R-15:27:11>Aruba JL075A 3810M-16SFP+-2-slot Switch[13][13][10]Software revision KB.16.06.0006[13][13][10][13][13][10] (C) Copyright 2018 Hewlett Packard Enterprise Development LP[13][10][13][10] RESTRICTED RIGHTS LEGEND[13][10] Confidential computer software. Valid license from Hewlett Packard Enterprise[13][10] Development LP required for possession, use or copying. Consistent with FAR[13][10] 12.211 and 12.212, Commercial Computer Software, Computer Software[13][10] Documentation, and Technical Data for Commercial Items are licensed to the[13][10] U.S. Government under vendor's standard commercial license.[13][10][13][10][27][1;13r[27][1;1H
<R-15:27:11>[27][24;1HPress any key to continue[27][13;1H[27][?25h[27][24;27H
================================================================================
WFMDRetVal=1 Waiting for: ">"
WFMDRetVal=2 Waiting for: "#"
WFMDRetVal=3 Waiting for: "Username:"
WFMDRetVal=4 Waiting for: "Password"
WFMDBuffer="we'd like to keep you up to date about:[10] * software feature updates[10] * new product announcements[10] * special events[10]please register your products now at: www.hpe.com/networking/register[10][10][10]aruba jl075a 3810m-16sfp+-2-slot switch[13][13][10]software revision kb.16.06.0006[13][13][10][13][13][10] (c) copyright 2018 hewlett packard enterprise development lp[13][10][13][10] restricted rights legend[13][10] confidential computer software. valid license from hewlett packard enterprise[13][10] development lp required for possession, use or copying. consistent with far[13][10] 12.211 and 12.212, commercial computer software, computer software[13][10] documentation, and technical data for commercial items are licensed to the[13][10] u.s. government under vendor's standard commercial license.[13][10][13][10][27][1;13r[27][1;1h[27][24;1hpress any key to continue[27][13;1h[27][?25h[27][24;27h"
================================================================================
Best regards
Patrick
Im trying to connect a stand alone laptop to Juniper SRX345 cluster.
From the PC, I have full connectivity to the SRX but unable to connect.
Has anyone had any issues with this?
TIA
Jim
We are trying to use UDP spoofing to forward unaltered syslog events to a SIEM collector. We tried using the RFC 3164 headers first, but there still seems to be some extraneous information added to the messages.
The Kiwi Syslog server is running as a VM on a VMWare ESX server. When using the Kiwi syslog server dialog box, the default adapter is some VPN dialup adapter, the secondary choice is actually the VMWare adapter. The Kiwi server has been running successfully with the current configuration for a while, collecting events from Windows servers via SNARE and Cisco ASA FW and FWSMs.
When we try to check the box for UDP spoofing and select the VMWare adapter, we receive an error message stating that the default GW MAC could not be resolved. The test also fails, of course.
This seems confusing since we were successfully sending UDP on port 514 earlier in the day with no problems.
What is different with the UDP spoffing packets that could confuse the virtual switch? Can someone describe the actual packet format, and what MAC and IP address are used? I would assume the MAC address would be the MAC of the switch port that the Kiwi host would use to get to the original source host, and the IP address would be "spoofed" to look like the original source host. IS this a correct assumption?
If so, wouldnt the host IP address be associated with two separate switch ports in the bridging table? 1 for the upstream port to the actual location, and 1 for the port that is spoofing the address?
Does anybody know if there is a way to backup the UCS archive on the BIGIP's, I think the current template in CatTools only backs up the config file. You really need the UCS archive to be able to restore devices properly.
Many thanks
Mark
Hi,
We have several cisco small business switches that we would like to get backed up. The error we are seeing after adding the first switch and running a config back up
"did not receive command prompt after connecting via SSH"
Any recommendations on what we are missing are greatly appreciated.
When connecting via SSH we are seeing the following prompts
Thanks
When I try to run a job on my Cisco WLC's using Device.Backup.TFTP I receive no error, but when I go to the directory where the backups should be I find no files.
I tried running a Device.CLI.Send.Commands and I received the following error: "Aborting command entry due to command error". The command i tried running was "show run".
Also this process used to work, but now all of a sudden it stopped working.
KiwiCat tools version 3.4
WLC IOS 7.0.230.0
Thanks for your help in advance.
Paul
I'm looking for a way to read the packet drops on the interfaces of cisco switches.
There is an report-error info table job type, and it contains a lot of port variables. But no packet drops or discards.
We have a Cisco 6500 chassis with 6148 48-port 10/100/1000 blades, but since these ports are 1:8 overbooked, we really need to monitor the packet drops to see what the impact of the overbooking is.
Thanks,
Joop
Hello:
I would like to know if it possible to backup a running configuration of a Cisco Device ( ex cisco 3750) without the enable password..
Ex: read only + the privilege to execute show running.
Will not be able to write to the flash locally.
As we do the show run, I want the running config to be uploaded to the Solarwinds Cattools automatically.
Thanks
Can you backup a running config on a cisco switch without write access?. If you dont have privilage 15 on the switch you just get blank config backups.
This post says that it works but I have not been able to get it to work.
backing up running config without write access on the device
I have been using CatTools successfully with Cisco and HP Procurve switches for some time now, but I can't get the software to successfully talk to a new Comware switch. Looking at the debug logs it looks like it isn't coping with the default Comware prompt format e.g. <sysname> or [sysname] for user or system view respectively. Any idea what I need to do to get it to work?
Thanks
iain
ps I have logged a call with SolarWinds but this is proving to be a soul destroying process. The case is flagged as not started after two days, I've left answer phone messages to no avail and listened to muzak for far too long.
Hi, We have just installed some extreme switches and currently
it is backing up using model X450-24X running the show configuration command.
We are wanting to run the following below command and wondered whether this
would be possible if we had a variations file and running a TFTP server on
server where cat tools is installed.
tftp put x.x.x.x vr "VR-Default"primary.cfg **Saved file name***.cfg
The above command makes it easier to restore configs if we were to have issues.
We tried running Device.Backup.TFTP activity but it currently only supports Cisco Devices.
Thanks
Hello.
I have problem with mass expired password update in cattools database. I have about 1500 devices and different credentials in about 20% of them.
How to do mass password update only for specific user?
Only thing that comes to my mind is select by hand devices where is that user with expired pasword, but this is not elegant solution (in addition I have to do it every 30 days of password expiration).
Hello,
I have been hooking up Cattools with all our routers, switches, load balancers, etc. No issues with our Nexus 7010's, Cisco Nexus MDS 9148's and regular catalyst switches and IOS based routers. The one that is kicking me in the bxxl's is the Nexus 5548 switch. Like the 7010's and the 9148's, I am setting this up accordingly:
CATTOOLS VER: 3.9.1
Connect via: Direct Connect
Method: SSH2
Port:22
SSH Username: correct one
SSH Password: correct one
The end result is the following: ca
Login to xxxxxxx failed
Username failed - will retry
FROM NEXUS 5548 LOG:
2013 Jul 16 17:49:14 DEVICE NAME %DAEMON-3-SYSTEM_MSG: error: PAM: Authentication failure for USERNAME from X.X.X.X - sshd[2061]
Any advice would be great. Putty connects from the Cattools servers just fine with identical credentials.
I have a Cisco 6500 that someone changed the enable password on it and don't remember. I am running Cat tools 3.11 that still backs up the configuration of that device everyday. How can I reset or recover the enable password by using Cat tools?
I have a problem with a device in configuration mode.
I try to apply 2 commands and one is applied ok, the 2nd one does not seem to work.
Here's the sequence:
Waiting for command prompt
Waiting for an echo of system-view command
Waiting for an echo of super command
Waiting for an echo of acl number 2003
[Then a 33 second pause]
Stopping Activity.
Here are the 2 commands
acl number 2003
rule 110 permit source 10.209.127.174 0
Here's what it looks like when I paste it into the device
[sysname-1]acl number 2003
Info: When the ACL that is referenced by SACL is modified, the SACL will be dynamically updated. During the update, these SACL will become invalid temporarily.
[sysname-1]rule 110 permit source 10.209.127.174 0
Thanks for your help