• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Configuring pfSense for RANCID

Scheduled Pinned Locked Moved General pfSense Questions
5 Posts 4 Posters 10.0k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • J
    jwright0115
    last edited by Sep 25, 2012, 4:45 PM

    Has anyone had success grabbing the config.xml with RANCID? I've found modified m0n0login and m0n0rancid and pflogin and pfrancid through my searches. Can get pflogin to access, but the ssh session halts on the pfrancid scripting. I can manually ssh in and get to the config.xml, but for some reason the pfrancid seems to just hang the ssh session until timeout. If anyone has any success with RANCID and pfSense let me know.

    1 Reply Last reply Reply Quote 0
    • B
      bware
      last edited by Feb 27, 2013, 3:56 PM

      Realizing I am opening up an old post, but this is one that keeps ending up high in the resultlist of google answers for rancid and pfsense…

      What worked for me is the following:

      • I created a new user on the pfsense boxes that will be used by rancid.
      • I logged in as that user and created a directory in its homedir named 'bin' (mkdir -p ~/bin)
      • In that directory I downloaded the rancid-compat file from http://blogs.freebsdish.org/thompsa/2012/08/31/rancid-compat-script-for-pfsense/ and made it executable for the user (chmod 750 rancid-compat)
      • I modified the .tcshrc file for the user to
      #set prompt="%{\033[0;1;33m%}[%{\033[0;1;37m%}`cat /etc/version`%{\033[0;1;33m%}]%{\033[0;1;33m%}%B[%{\033[0;1;37m%}%n%{\033[0;1;31m%}@%{\033[0;1;37m%}%M%{\033[0;1;33m%}]%{\033[0;1;32m%}%b%/%{\033[0;1;33m%}(%{\033[0;1;37m%}%h%{\033[0;1;33m%})%{\033[0;1;36m%}%{\033[0;1;31m%}:%{\033[0;40;37m%} "                                                                  
set prompt="pfsense# "
set autologout="0"
set autolist set color set colorcat
setenv CLICOLOR "true"
setenv LSCOLORS "exfxcxdxbxegedabagacad"
###
exec /home/rancid/bin/rancid-compat
exit 0[/code]
 * In the router.db file I modified the config for the pfsense box to: [code]pfsense2.x-box:cisco:up[/code]
 * In the .cloginrc I added the following: [code]add autoenable pfsense2* 1
add noenable pfsense2*
add method pfsense2* {ssh:222}
add cyphertype * {des}[/code]

And after waiting for the cronjob to kick off a new rancid-run... presto, the config appeared in the cvs :)

Hope that helps someone
      1 Reply Last reply Reply Quote 1
      • S
        stephenw10 Netgate Administrator
        last edited by Feb 28, 2013, 9:18 AM

        Nice.  :)

        Steve

        1 Reply Last reply Reply Quote 0
        • G
          grandmastermoo
          last edited by Apr 8, 2013, 5:48 AM

          Hi

          The website to the rancid-compat file is no longer available - any chance you could post this file - this is exactly what I'm looking for!

          Thanks very much

          1 Reply Last reply Reply Quote 0
          • S
            stephenw10 Netgate Administrator
            last edited by Apr 8, 2013, 9:04 AM

            The file appears to be here: http://people.freebsd.org/~thompsa/rancid-compat
            However since the blog is down I cannot compare it with the originally linked version. It is dated 30th Aug. 2012 though.
            Steve

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
              [[user:consent.lead]]
              [[user:consent.not_received]]