Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Configuring pfSense for RANCID

    General pfSense Questions
    4
    5
    10.0k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jwright0115
      last edited by

      Has anyone had success grabbing the config.xml with RANCID? I've found modified m0n0login and m0n0rancid and pflogin and pfrancid through my searches. Can get pflogin to access, but the ssh session halts on the pfrancid scripting. I can manually ssh in and get to the config.xml, but for some reason the pfrancid seems to just hang the ssh session until timeout. If anyone has any success with RANCID and pfSense let me know.

      1 Reply Last reply Reply Quote 0
      • B
        bware
        last edited by

        Realizing I am opening up an old post, but this is one that keeps ending up high in the resultlist of google answers for rancid and pfsense…

        What worked for me is the following:

        • I created a new user on the pfsense boxes that will be used by rancid.
        • I logged in as that user and created a directory in its homedir named 'bin' (mkdir -p ~/bin)
        • In that directory I downloaded the rancid-compat file from http://blogs.freebsdish.org/thompsa/2012/08/31/rancid-compat-script-for-pfsense/ and made it executable for the user (chmod 750 rancid-compat)
        • I modified the .tcshrc file for the user to
        #set prompt="%{\033[0;1;33m%}[%{\033[0;1;37m%}`cat /etc/version`%{\033[0;1;33m%}]%{\033[0;1;33m%}%B[%{\033[0;1;37m%}%n%{\033[0;1;31m%}@%{\033[0;1;37m%}%M%{\033[0;1;33m%}]%{\033[0;1;32m%}%b%/%{\033[0;1;33m%}(%{\033[0;1;37m%}%h%{\033[0;1;33m%})%{\033[0;1;36m%}%{\033[0;1;31m%}:%{\033[0;40;37m%} "                                                                  
set prompt="pfsense# "
set autologout="0"
set autolist set color set colorcat
setenv CLICOLOR "true"
setenv LSCOLORS "exfxcxdxbxegedabagacad"
###
exec /home/rancid/bin/rancid-compat
exit 0[/code]
 * In the router.db file I modified the config for the pfsense box to: [code]pfsense2.x-box:cisco:up[/code]
 * In the .cloginrc I added the following: [code]add autoenable pfsense2* 1
add noenable pfsense2*
add method pfsense2* {ssh:222}
add cyphertype * {des}[/code]

And after waiting for the cronjob to kick off a new rancid-run... presto, the config appeared in the cvs :)

Hope that helps someone
        1 Reply Last reply Reply Quote 1
        • stephenw10S
          stephenw10 Netgate Administrator
          last edited by

          Nice.  :)

          Steve

          1 Reply Last reply Reply Quote 0
          • G
            grandmastermoo
            last edited by

            Hi

            The website to the rancid-compat file is no longer available - any chance you could post this file - this is exactly what I'm looking for!

            Thanks very much

            1 Reply Last reply Reply Quote 0
            • stephenw10S
              stephenw10 Netgate Administrator
              last edited by

              The file appears to be here: http://people.freebsd.org/~thompsa/rancid-compat
              However since the blog is down I cannot compare it with the originally linked version. It is dated 30th Aug. 2012 though.
              Steve

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.