oxidized 0.20.0 → 0.28.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/.codeclimate.yml +4 -0
- data/.github/PULL_REQUEST_TEMPLATE.md +12 -0
- data/.github/no-response.yml +13 -0
- data/.github/workflows/publishdocker.yml +13 -0
- data/.gitignore +4 -0
- data/.rubocop.yml +73 -0
- data/.rubocop_todo.yml +120 -0
- data/.travis.yml +6 -1
- data/CHANGELOG.md +693 -243
- data/Dockerfile +27 -19
- data/LICENSE +201 -0
- data/README.md +234 -913
- data/Rakefile +48 -7
- data/TODO.md +29 -23
- data/bin/console +1 -1
- data/bin/oxidized +6 -5
- data/docs/Configuration.md +313 -0
- data/docs/Creating-Models.md +140 -0
- data/docs/Hooks.md +274 -0
- data/docs/Model-Notes/AireOS.md +11 -0
- data/docs/Model-Notes/ArbOS.md +11 -0
- data/docs/Model-Notes/Comware.md +13 -0
- data/docs/Model-Notes/Cumulus.md +40 -0
- data/docs/Model-Notes/EOS.md +12 -0
- data/docs/Model-Notes/IOS.md +29 -0
- data/docs/Model-Notes/JunOS.md +33 -0
- data/docs/Model-Notes/LinuxGeneric.md +24 -0
- data/docs/Model-Notes/Netgear.md +87 -0
- data/docs/Model-Notes/Nokia.md +9 -0
- data/docs/Model-Notes/README.md +24 -0
- data/docs/Model-Notes/SmartAX-Huawei.md +35 -0
- data/docs/Model-Notes/VRP-Huawei.md +34 -0
- data/docs/Model-Notes/Viptela.md +12 -0
- data/docs/Model-Notes/XGS4600-Zyxel.md +36 -0
- data/docs/Outputs.md +190 -0
- data/docs/Ruby-API.md +199 -0
- data/docs/Sources.md +171 -0
- data/docs/Supported-OS-Types.md +227 -0
- data/docs/Troubleshooting.md +66 -0
- data/extra/nagios_check_failing_nodes.rb +9 -2
- data/extra/oxidized-report-git-commits +21 -40
- data/extra/oxidized-ubuntu.haproxy +45 -0
- data/extra/oxidized.logrotate +7 -0
- data/extra/oxidized.service +13 -0
- data/extra/rest_client.rb +7 -10
- data/extra/syslog.rb +47 -42
- data/lib/oxidized/cli.rb +41 -31
- data/lib/oxidized/config/vars.rb +9 -14
- data/lib/oxidized/config.rb +20 -13
- data/lib/oxidized/core.rb +8 -10
- data/lib/oxidized/hook/awssns.rb +6 -7
- data/lib/oxidized/hook/ciscosparkdiff.rb +43 -0
- data/lib/oxidized/hook/exec.rb +19 -24
- data/lib/oxidized/hook/githubrepo.rb +17 -17
- data/lib/oxidized/hook/noophook.rb +1 -1
- data/lib/oxidized/hook/slackdiff.rb +32 -19
- data/lib/oxidized/hook/xmppdiff.rb +59 -0
- data/lib/oxidized/hook.rb +63 -64
- data/lib/oxidized/input/cli.rb +22 -12
- data/lib/oxidized/input/exec.rb +28 -0
- data/lib/oxidized/input/ftp.rb +16 -15
- data/lib/oxidized/input/http.rb +72 -0
- data/lib/oxidized/input/input.rb +6 -6
- data/lib/oxidized/input/ssh.rb +64 -56
- data/lib/oxidized/input/telnet.rb +59 -102
- data/lib/oxidized/input/tftp.rb +9 -10
- data/lib/oxidized/jobs.rb +9 -10
- data/lib/oxidized/manager.rb +42 -44
- data/lib/oxidized/model/acos.rb +19 -20
- data/lib/oxidized/model/acsw.rb +62 -0
- data/lib/oxidized/model/adtran.rb +26 -0
- data/lib/oxidized/model/aen.rb +19 -0
- data/lib/oxidized/model/aireos.rb +9 -10
- data/lib/oxidized/model/airfiber.rb +22 -0
- data/lib/oxidized/model/alteonos.rb +58 -0
- data/lib/oxidized/model/alvarion.rb +0 -4
- data/lib/oxidized/model/aos.rb +11 -5
- data/lib/oxidized/model/aos7.rb +6 -7
- data/lib/oxidized/model/aosw.rb +30 -27
- data/lib/oxidized/model/apc_aos.rb +2 -5
- data/lib/oxidized/model/arbos.rb +26 -0
- data/lib/oxidized/model/aricentiss.rb +49 -0
- data/lib/oxidized/model/asa.rb +61 -22
- data/lib/oxidized/model/asyncos.rb +46 -0
- data/lib/oxidized/model/audiocodes.rb +28 -0
- data/lib/oxidized/model/audiocodesmp.rb +28 -0
- data/lib/oxidized/model/awplus.rb +84 -0
- data/lib/oxidized/model/axos.rb +16 -0
- data/lib/oxidized/model/boss.rb +77 -0
- data/lib/oxidized/model/br6910.rb +42 -45
- data/lib/oxidized/model/c4cmts.rb +6 -10
- data/lib/oxidized/model/cambium.rb +23 -0
- data/lib/oxidized/model/casa.rb +1 -1
- data/lib/oxidized/model/catos.rb +1 -3
- data/lib/oxidized/model/cisconga.rb +1 -3
- data/lib/oxidized/model/ciscosma.rb +42 -0
- data/lib/oxidized/model/ciscosmb.rb +30 -10
- data/lib/oxidized/model/ciscovpn3k.rb +11 -0
- data/lib/oxidized/model/cnos.rb +33 -0
- data/lib/oxidized/model/comnetms.rb +43 -0
- data/lib/oxidized/model/comtrol.rb +41 -0
- data/lib/oxidized/model/comware.rb +28 -16
- data/lib/oxidized/model/coriant8600.rb +3 -5
- data/lib/oxidized/model/coriantgroove.rb +26 -0
- data/lib/oxidized/model/corianttmos.rb +1 -3
- data/lib/oxidized/model/cumulus.rb +60 -49
- data/lib/oxidized/model/datacom.rb +1 -4
- data/lib/oxidized/model/dcnos.rb +46 -0
- data/lib/oxidized/model/dellx.rb +76 -0
- data/lib/oxidized/model/dlink.rb +5 -4
- data/lib/oxidized/model/dnos.rb +11 -5
- data/lib/oxidized/model/eciapollo.rb +34 -0
- data/lib/oxidized/model/edgecos.rb +49 -0
- data/lib/oxidized/model/edgeos.rb +12 -5
- data/lib/oxidized/model/edgeswitch.rb +2 -4
- data/lib/oxidized/model/enterasys.rb +28 -0
- data/lib/oxidized/model/eos.rb +8 -8
- data/lib/oxidized/model/fabricos.rb +4 -6
- data/lib/oxidized/model/fastiron.rb +66 -0
- data/lib/oxidized/model/fiberdriver.rb +2 -2
- data/lib/oxidized/model/firebrick.rb +31 -0
- data/lib/oxidized/model/firelinuxos.rb +41 -0
- data/lib/oxidized/model/firewareos.rb +3 -6
- data/lib/oxidized/model/fortios.rb +31 -19
- data/lib/oxidized/model/ftos.rb +8 -5
- data/lib/oxidized/model/fujitsupy.rb +5 -7
- data/lib/oxidized/model/gaiaos.rb +7 -11
- data/lib/oxidized/model/gcombnps.rb +84 -0
- data/lib/oxidized/model/grandstream.rb +9 -0
- data/lib/oxidized/model/hatteras.rb +9 -6
- data/lib/oxidized/model/hirschmann.rb +39 -0
- data/lib/oxidized/model/hpebladesystem.rb +20 -18
- data/lib/oxidized/model/hpemsa.rb +10 -0
- data/lib/oxidized/model/hpmsm.rb +84 -0
- data/lib/oxidized/model/ibos.rb +55 -0
- data/lib/oxidized/model/icotera.rb +27 -0
- data/lib/oxidized/model/ios.rb +63 -70
- data/lib/oxidized/model/iosxe.rb +5 -0
- data/lib/oxidized/model/iosxr.rb +2 -3
- data/lib/oxidized/model/ipos.rb +10 -6
- data/lib/oxidized/model/ironware.rb +20 -19
- data/lib/oxidized/model/isam.rb +5 -6
- data/lib/oxidized/model/junos.rb +9 -11
- data/lib/oxidized/model/linuxgeneric.rb +74 -0
- data/lib/oxidized/model/masteros.rb +3 -6
- data/lib/oxidized/model/mlnxos.rb +9 -10
- data/lib/oxidized/model/model.rb +72 -46
- data/lib/oxidized/model/mtrlrfs.rb +1 -4
- data/lib/oxidized/model/ndms.rb +23 -0
- data/lib/oxidized/model/netgear.rb +35 -15
- data/lib/oxidized/model/netonix.rb +2 -2
- data/lib/oxidized/model/netscaler.rb +6 -3
- data/lib/oxidized/model/nos.rb +5 -7
- data/lib/oxidized/model/nsxconfig.rb +22 -0
- data/lib/oxidized/model/nsxfirewall.rb +22 -0
- data/lib/oxidized/model/nxos.rb +13 -3
- data/lib/oxidized/model/oneos.rb +15 -9
- data/lib/oxidized/model/openbsd.rb +63 -0
- data/lib/oxidized/model/opengear.rb +3 -5
- data/lib/oxidized/model/openwrt.rb +78 -0
- data/lib/oxidized/model/opnsense.rb +19 -0
- data/lib/oxidized/model/os10.rb +46 -0
- data/lib/oxidized/model/outputs.rb +5 -7
- data/lib/oxidized/model/panos.rb +11 -12
- data/lib/oxidized/model/pfsense.rb +11 -6
- data/lib/oxidized/model/planet.rb +14 -17
- data/lib/oxidized/model/powerconnect.rb +24 -19
- data/lib/oxidized/model/procurve.rb +43 -11
- data/lib/oxidized/model/purityos.rb +12 -0
- data/lib/oxidized/model/qtech.rb +41 -0
- data/lib/oxidized/model/quantaos.rb +4 -6
- data/lib/oxidized/model/raisecom.rb +19 -0
- data/lib/oxidized/model/routeros.rb +26 -8
- data/lib/oxidized/model/saos.rb +1 -2
- data/lib/oxidized/model/screenos.rb +8 -11
- data/lib/oxidized/model/sgos.rb +45 -0
- data/lib/oxidized/model/siklu.rb +1 -3
- data/lib/oxidized/model/slxos.rb +59 -0
- data/lib/oxidized/model/smartax.rb +25 -0
- data/lib/oxidized/model/sonicos.rb +51 -0
- data/lib/oxidized/model/speedtouch.rb +34 -0
- data/lib/oxidized/model/sros.rb +96 -0
- data/lib/oxidized/model/stoneos.rb +32 -0
- data/lib/oxidized/model/supermicro.rb +6 -41
- data/lib/oxidized/model/tdre.rb +30 -0
- data/lib/oxidized/model/telco.rb +24 -0
- data/lib/oxidized/model/timos.rb +6 -114
- data/lib/oxidized/model/tmos.rb +6 -3
- data/lib/oxidized/model/tplink.rb +11 -11
- data/lib/oxidized/model/trango.rb +21 -42
- data/lib/oxidized/model/ucs.rb +30 -0
- data/lib/oxidized/model/viptela.rb +29 -0
- data/lib/oxidized/model/voltaire.rb +9 -12
- data/lib/oxidized/model/voss.rb +17 -6
- data/lib/oxidized/model/vrp.rb +11 -6
- data/lib/oxidized/model/vyatta.rb +8 -6
- data/lib/oxidized/model/weos.rb +20 -0
- data/lib/oxidized/model/xos.rb +20 -8
- data/lib/oxidized/model/zhoneolt.rb +2 -2
- data/lib/oxidized/model/zynos.rb +1 -3
- data/lib/oxidized/model/zynoscli.rb +36 -0
- data/lib/oxidized/model/zynosgs.rb +38 -0
- data/lib/oxidized/node/stats.rb +33 -8
- data/lib/oxidized/node.rb +86 -95
- data/lib/oxidized/nodes.rb +48 -44
- data/lib/oxidized/output/file.rb +32 -37
- data/lib/oxidized/output/git.rb +138 -153
- data/lib/oxidized/output/gitcrypt.rb +228 -242
- data/lib/oxidized/output/http.rb +35 -34
- data/lib/oxidized/output/output.rb +2 -3
- data/lib/oxidized/source/csv.rb +50 -44
- data/lib/oxidized/source/http.rb +58 -58
- data/lib/oxidized/source/source.rb +9 -10
- data/lib/oxidized/source/sql.rb +47 -45
- data/lib/oxidized/string.rb +18 -14
- data/lib/oxidized/version.rb +17 -1
- data/lib/oxidized/worker.rb +72 -33
- data/oxidized.gemspec +20 -19
- metadata +180 -36
- data/.ruby-version +0 -1
- data/Gemfile.lock +0 -44
@@ -0,0 +1,78 @@
|
|
1
|
+
class OpenWrt < Oxidized::Model
|
2
|
+
prompt /^[^#]+#/
|
3
|
+
comment '#'
|
4
|
+
|
5
|
+
cmd 'cat /etc/banner' do |cfg|
|
6
|
+
comment "#### Info: /etc/banner #####\n#{cfg}"
|
7
|
+
end
|
8
|
+
|
9
|
+
cmd 'cat /proc/cpuinfo' do |cfg|
|
10
|
+
comment "#### Info: /proc/cpuinfo #####\n#{cfg}"
|
11
|
+
end
|
12
|
+
|
13
|
+
cmd 'cat /etc/openwrt_release' do |cfg|
|
14
|
+
comment "#### Info: /etc/openwrt_release #####\n#{cfg}"
|
15
|
+
end
|
16
|
+
|
17
|
+
cmd 'sysupgrade -l' do |cfg|
|
18
|
+
@sysupgradefiles = cfg
|
19
|
+
comment "#### Info: sysupgrade -l #####\n#{cfg}"
|
20
|
+
end
|
21
|
+
|
22
|
+
cmd 'cat /proc/mtd' do |cfg|
|
23
|
+
@mtdpartitions = cfg
|
24
|
+
comment "#### Info: /proc/mtd #####\n#{cfg}"
|
25
|
+
end
|
26
|
+
|
27
|
+
post do
|
28
|
+
cfg = []
|
29
|
+
binary_files = vars(:openwrt_binary_files) || %w[/etc/dropbear/dropbear_rsa_host_key]
|
30
|
+
non_sensitive_files = vars(:openwrt_non_sensitive_files) || %w[rpcd uhttpd]
|
31
|
+
partitions_to_backup = vars(:openwrt_partitions_to_backup) || %w[art devinfo u_env config caldata]
|
32
|
+
@sysupgradefiles.lines.each do |sysupgradefile|
|
33
|
+
sysupgradefile = sysupgradefile.strip
|
34
|
+
if sysupgradefile.start_with?('/etc/config/')
|
35
|
+
unless sysupgradefile.end_with?('-opkg')
|
36
|
+
filename = sysupgradefile.split('/')[-1]
|
37
|
+
cfg << comment("#### File: #{sysupgradefile} #####")
|
38
|
+
uciexport = cmd("uci export #{filename}")
|
39
|
+
Oxidized.logger.debug "Exporting uci config - #{filename}"
|
40
|
+
if vars(:remove_secret) && !(non_sensitive_files.include? filename)
|
41
|
+
Oxidized.logger.debug "Scrubbing uci config - #{filename}"
|
42
|
+
uciexport.gsub!(/^(\s+option\s+(password|key)\s+')[^']+'/, '\\1<secret hidden>\'')
|
43
|
+
end
|
44
|
+
cfg << uciexport
|
45
|
+
end
|
46
|
+
elsif binary_files.include? sysupgradefile
|
47
|
+
Oxidized.logger.debug "Exporting binary file - #{sysupgradefile}"
|
48
|
+
cfg << comment("#### Binary file: #{sysupgradefile} #####")
|
49
|
+
cfg << comment("Decode using 'echo -en <data> | gzip -dc > #{sysupgradefile}'")
|
50
|
+
cfg << cmd("gzip -c #{sysupgradefile} | hexdump -ve '1/1 \"_x%.2x\"' | tr _ \\")
|
51
|
+
elsif vars(:remove_secret) && sysupgradefile == '/etc/shadow'
|
52
|
+
Oxidized.logger.debug 'Exporting and scrubbing /etc/shadow'
|
53
|
+
cfg << comment("#### File: #{sysupgradefile} #####")
|
54
|
+
shadow = cmd("cat #{sysupgradefile}")
|
55
|
+
shadow.gsub!(/^([^:]+:)[^:]*(:[^:]*:[^:]*:[^:]*:[^:]*:[^:]*:[^:]*:)/, '\\1\\2')
|
56
|
+
cfg << shadow
|
57
|
+
else
|
58
|
+
Oxidized.logger.debug "Exporting file - #{sysupgradefile}"
|
59
|
+
cfg << comment("#### File: #{sysupgradefile} #####")
|
60
|
+
cfg << cmd("cat #{sysupgradefile}")
|
61
|
+
end
|
62
|
+
end
|
63
|
+
@mtdpartitions.scan(/(\w+):\s+\w+\s+\w+\s+"(.*)"/).each do |partition, name|
|
64
|
+
next unless vars(:openwrt_backup_partitions) && partitions_to_backup.include?(name)
|
65
|
+
|
66
|
+
Oxidized.logger.debug "Exporting partition - #{name}(#{partition})"
|
67
|
+
cfg << comment("#### Partition: #{name} /dev/#{partition} #####")
|
68
|
+
cfg << comment("Decode using 'echo -en <data> | gzip -dc > #{name}'")
|
69
|
+
cfg << cmd("dd if=/dev/#{partition} 2>/dev/null | gzip -c | hexdump -ve '1/1 \"%.2x\"'")
|
70
|
+
end
|
71
|
+
cfg.join "\n"
|
72
|
+
end
|
73
|
+
|
74
|
+
cfg :ssh do
|
75
|
+
exec true
|
76
|
+
pre_logout 'exit'
|
77
|
+
end
|
78
|
+
end
|
@@ -0,0 +1,19 @@
|
|
1
|
+
class OpnSense < Oxidized::Model
|
2
|
+
# minimum required permissions: "System: Shell account access"
|
3
|
+
# must enable SSH and password-based SSH access
|
4
|
+
|
5
|
+
cmd :all do |cfg|
|
6
|
+
cfg.cut_head
|
7
|
+
end
|
8
|
+
|
9
|
+
cmd 'cat /conf/config.xml' do |cfg|
|
10
|
+
cfg.gsub! /\s<revision>\s*<time>\d*<\/time>\s*.*\s*.*\s*<\/revision>/, ''
|
11
|
+
cfg.gsub! /\s<last_rule_upd_time>\d*<\/last_rule_upd_time>/, ''
|
12
|
+
cfg
|
13
|
+
end
|
14
|
+
|
15
|
+
cfg :ssh do
|
16
|
+
exec true
|
17
|
+
pre_logout 'exit'
|
18
|
+
end
|
19
|
+
end
|
@@ -0,0 +1,46 @@
|
|
1
|
+
class OS10 < Oxidized::Model
|
2
|
+
# For switches running Dell EMC Networking OS10 #
|
3
|
+
#
|
4
|
+
# Tested with : Dell PowerSwitch S4148U-ON
|
5
|
+
|
6
|
+
comment '! '
|
7
|
+
|
8
|
+
cmd :all do |cfg|
|
9
|
+
cfg.gsub! /^% Invalid input detected at '\^' marker\.$|^\s+\^$/, ''
|
10
|
+
cfg.each_line.to_a[2..-2].join
|
11
|
+
end
|
12
|
+
|
13
|
+
cmd :secret do |cfg|
|
14
|
+
cfg.gsub! /(password )(\S+)/, '\1<secret hidden>'
|
15
|
+
cfg
|
16
|
+
end
|
17
|
+
|
18
|
+
cmd 'show inventory' do |cfg|
|
19
|
+
comment cfg
|
20
|
+
end
|
21
|
+
|
22
|
+
cmd 'show inventory media' do |cfg|
|
23
|
+
comment cfg
|
24
|
+
end
|
25
|
+
|
26
|
+
cmd 'show running-configuration' do |cfg|
|
27
|
+
cfg.each_line.to_a[3..-1].join
|
28
|
+
end
|
29
|
+
|
30
|
+
cfg :telnet do
|
31
|
+
username /^Login:/
|
32
|
+
password /^Password:/
|
33
|
+
end
|
34
|
+
|
35
|
+
cfg :telnet, :ssh do
|
36
|
+
if vars :enable
|
37
|
+
post_login do
|
38
|
+
send "enable\n"
|
39
|
+
cmd vars(:enable)
|
40
|
+
end
|
41
|
+
end
|
42
|
+
post_login 'terminal length 0'
|
43
|
+
pre_logout 'exit'
|
44
|
+
pre_logout 'exit'
|
45
|
+
end
|
46
|
+
end
|
@@ -1,20 +1,19 @@
|
|
1
1
|
module Oxidized
|
2
2
|
class Model
|
3
3
|
class Outputs
|
4
|
-
|
5
4
|
def to_cfg
|
6
5
|
type_to_str(nil)
|
7
6
|
end
|
8
7
|
|
9
|
-
def type_to_str
|
8
|
+
def type_to_str(want_type)
|
10
9
|
type(want_type).map { |out| out }.join
|
11
10
|
end
|
12
11
|
|
13
|
-
def <<
|
12
|
+
def <<(output)
|
14
13
|
@outputs << output
|
15
14
|
end
|
16
15
|
|
17
|
-
def unshift
|
16
|
+
def unshift(output)
|
18
17
|
@outputs.unshift output
|
19
18
|
end
|
20
19
|
|
@@ -22,8 +21,8 @@ module Oxidized
|
|
22
21
|
@outputs
|
23
22
|
end
|
24
23
|
|
25
|
-
def type
|
26
|
-
@outputs.select { |out| out.type==type }
|
24
|
+
def type(type)
|
25
|
+
@outputs.select { |out| out.type == type }
|
27
26
|
end
|
28
27
|
|
29
28
|
def types
|
@@ -35,7 +34,6 @@ module Oxidized
|
|
35
34
|
def initialize
|
36
35
|
@outputs = []
|
37
36
|
end
|
38
|
-
|
39
37
|
end
|
40
38
|
end
|
41
39
|
end
|
data/lib/oxidized/model/panos.rb
CHANGED
@@ -1,24 +1,23 @@
|
|
1
1
|
class PanOS < Oxidized::Model
|
2
|
-
|
3
2
|
# PaloAlto PAN-OS model #
|
4
3
|
|
5
|
-
comment
|
4
|
+
comment '! '
|
6
5
|
|
7
|
-
prompt /^[\w
|
6
|
+
prompt /^[\w.@:()-]+>\s?$/
|
8
7
|
|
9
8
|
cmd :all do |cfg|
|
10
9
|
cfg.each_line.to_a[2..-3].join
|
11
10
|
end
|
12
11
|
|
13
12
|
cmd 'show system info' do |cfg|
|
14
|
-
cfg.gsub! /^(up)?time
|
15
|
-
cfg.gsub! /^app
|
16
|
-
cfg.gsub! /^av
|
17
|
-
cfg.gsub! /^threat
|
18
|
-
cfg.gsub! /^wildfire
|
19
|
-
cfg.gsub! /^wf-private
|
20
|
-
cfg.gsub! /^url-filtering
|
21
|
-
cfg.gsub! /^global
|
13
|
+
cfg.gsub! /^(up)?time: .*$/, ''
|
14
|
+
cfg.gsub! /^app-.*?: .*$/, ''
|
15
|
+
cfg.gsub! /^av-.*?: .*$/, ''
|
16
|
+
cfg.gsub! /^threat-.*?: .*$/, ''
|
17
|
+
cfg.gsub! /^wildfire-.*?: .*$/, ''
|
18
|
+
cfg.gsub! /^wf-private.*?: .*$/, ''
|
19
|
+
cfg.gsub! /^url-filtering.*?: .*$/, ''
|
20
|
+
cfg.gsub! /^global-.*?: .*$/, ''
|
22
21
|
comment cfg
|
23
22
|
end
|
24
23
|
|
@@ -28,6 +27,6 @@ class PanOS < Oxidized::Model
|
|
28
27
|
|
29
28
|
cfg :ssh do
|
30
29
|
post_login 'set cli pager off'
|
31
|
-
pre_logout '
|
30
|
+
pre_logout 'quit'
|
32
31
|
end
|
33
32
|
end
|
@@ -1,20 +1,25 @@
|
|
1
1
|
class PfSense < Oxidized::Model
|
2
|
-
|
3
2
|
# use other use than 'admin' user, 'admin' user cannot get ssh/exec. See issue #535
|
4
|
-
|
3
|
+
|
5
4
|
cmd :all do |cfg|
|
6
|
-
cfg.
|
5
|
+
cfg.cut_head
|
7
6
|
end
|
8
|
-
|
7
|
+
|
8
|
+
cmd :secret do |cfg|
|
9
|
+
cfg.gsub! /(\s+<bcrypt-hash>)[^<]+(<\/bcrypt-hash>)/, '\\1<secret hidden>\\2'
|
10
|
+
cfg.gsub! /(\s+<password>)[^<]+(<\/password>)/, '\\1<secret hidden>\\2'
|
11
|
+
cfg.gsub! /(\s+<lighttpd_ls_password>)[^<]+(<\/lighttpd_ls_password>)/, '\\1<secret hidden>\\2'
|
12
|
+
cfg
|
13
|
+
end
|
14
|
+
|
9
15
|
cmd 'cat /cf/conf/config.xml' do |cfg|
|
10
16
|
cfg.gsub! /\s<revision>\s*<time>\d*<\/time>\s*.*\s*.*\s*<\/revision>/, ''
|
11
17
|
cfg.gsub! /\s<last_rule_upd_time>\d*<\/last_rule_upd_time>/, ''
|
12
18
|
cfg
|
13
19
|
end
|
14
|
-
|
20
|
+
|
15
21
|
cfg :ssh do
|
16
22
|
exec true
|
17
23
|
pre_logout 'exit'
|
18
24
|
end
|
19
|
-
|
20
25
|
end
|
@@ -1,25 +1,24 @@
|
|
1
1
|
class Planet < Oxidized::Model
|
2
|
-
|
3
2
|
prompt /^\r?([\w.@()-]+[#>]\s?)$/
|
4
3
|
comment '! '
|
5
4
|
|
6
5
|
# example how to handle pager
|
7
|
-
#expect /^\s--More--\s+.*$/ do |data, re|
|
6
|
+
# expect /^\s--More--\s+.*$/ do |data, re|
|
8
7
|
# send ' '
|
9
8
|
# data.sub re, ''
|
10
|
-
#end
|
9
|
+
# end
|
11
10
|
|
12
11
|
# non-preferred way to handle additional PW prompt
|
13
|
-
#expect /^[\w.]+>$/ do |data|
|
12
|
+
# expect /^[\w.]+>$/ do |data|
|
14
13
|
# send "enable\n"
|
15
14
|
# send vars(:enable) + "\n"
|
16
15
|
# data
|
17
|
-
#end
|
16
|
+
# end
|
18
17
|
|
19
18
|
cmd :all do |cfg|
|
20
|
-
#cfg.gsub! /\cH+\s{8}/, '' # example how to handle pager
|
21
|
-
#cfg.gsub! /\cH+/, '' # example how to handle pager
|
22
|
-
cfg.
|
19
|
+
# cfg.gsub! /\cH+\s{8}/, '' # example how to handle pager
|
20
|
+
# cfg.gsub! /\cH+/, '' # example how to handle pager
|
21
|
+
cfg.cut_both
|
23
22
|
end
|
24
23
|
|
25
24
|
cmd :secret do |cfg|
|
@@ -34,34 +33,33 @@ class Planet < Oxidized::Model
|
|
34
33
|
|
35
34
|
cmd 'show version' do |cfg|
|
36
35
|
cfg.gsub! "\n\r", "\n"
|
37
|
-
@planetgs = true if cfg
|
38
|
-
@planetsgs = true if cfg
|
36
|
+
@planetgs = true if cfg =~ /^System Name\w*:\w*GS-.*$/
|
37
|
+
@planetsgs = true if cfg =~ /SGS-(.*) Device, Compiled on .*$/
|
39
38
|
|
40
39
|
cfg = cfg.each_line.to_a[0...-2]
|
41
40
|
|
42
|
-
|
41
|
+
# Strip system (up)time and temperature
|
43
42
|
cfg = cfg.reject { |line| line.match /System Time\s*:.*/ }
|
44
43
|
cfg = cfg.reject { |line| line.match /System Uptime\s*:.*/ }
|
44
|
+
cfg = cfg.reject { |line| line.match /Temperature\s*:.*/ }
|
45
45
|
|
46
46
|
comment cfg.join
|
47
47
|
end
|
48
48
|
|
49
|
-
|
50
49
|
cmd 'show running-config' do |cfg|
|
51
50
|
cfg.gsub! "\n\r", "\n"
|
52
51
|
cfg = cfg.each_line.to_a
|
53
52
|
|
54
53
|
cfg = cfg.reject { |line| line.match "Building configuration..." }
|
55
|
-
|
54
|
+
|
56
55
|
if @planetsgs
|
57
|
-
cfg << cmd('show transceiver detail | include transceiver detail information|found|Type|length|Nominal|wavelength|Base information') do |
|
58
|
-
comment
|
56
|
+
cfg << cmd('show transceiver detail | include transceiver detail information|found|Type|length|Nominal|wavelength|Base information') do |cfg_optic|
|
57
|
+
comment cfg_optic
|
59
58
|
end
|
60
59
|
end
|
61
60
|
|
62
61
|
cfg.join
|
63
62
|
end
|
64
|
-
|
65
63
|
|
66
64
|
cfg :telnet do
|
67
65
|
username /^Username:/
|
@@ -79,5 +77,4 @@ class Planet < Oxidized::Model
|
|
79
77
|
end
|
80
78
|
pre_logout 'exit'
|
81
79
|
end
|
82
|
-
|
83
80
|
end
|
@@ -1,28 +1,33 @@
|
|
1
1
|
class PowerConnect < Oxidized::Model
|
2
|
+
prompt /^([\w\s.@-]+(\(\S*\))?[#>]\s?)$/ # allow spaces in hostname..dell does not limit it.. #
|
2
3
|
|
3
|
-
|
4
|
-
|
5
|
-
comment '! '
|
4
|
+
comment '! '
|
6
5
|
|
7
6
|
expect /^\s*--More--\s+.*$/ do |data, re|
|
8
|
-
|
9
|
-
|
7
|
+
send ' '
|
8
|
+
data.sub re, ''
|
10
9
|
end
|
11
10
|
|
12
11
|
cmd :all do |cfg|
|
13
12
|
cfg.each_line.to_a[1..-3].join
|
14
13
|
end
|
15
14
|
|
15
|
+
cmd :secret do |cfg|
|
16
|
+
cfg.gsub! /^(username \S+ password (?:encrypted )?)\S+(.*)/, '\1<hidden>\2'
|
17
|
+
cfg.gsub! /^(tacacs-server key) \S+/, '\\1 <secret hidden>'
|
18
|
+
cfg
|
19
|
+
end
|
20
|
+
|
16
21
|
cmd 'show version' do |cfg|
|
17
|
-
if
|
18
|
-
@stackable = true if cfg
|
22
|
+
if @stackable.nil?
|
23
|
+
@stackable = true if cfg =~ /(U|u)nit\s/
|
19
24
|
end
|
20
|
-
cfg = cfg.split("\n").
|
25
|
+
cfg = cfg.split("\n").reject { |line| line[/Up\sTime/] }
|
21
26
|
comment cfg.join("\n") + "\n"
|
22
27
|
end
|
23
28
|
|
24
29
|
cmd 'show system' do |cfg|
|
25
|
-
@model =
|
30
|
+
@model = Regexp.last_match(1) if cfg =~ /Power[C|c]onnect (\d{4})[P|F]?/
|
26
31
|
clean cfg
|
27
32
|
end
|
28
33
|
|
@@ -36,9 +41,11 @@ class PowerConnect < Oxidized::Model
|
|
36
41
|
end
|
37
42
|
|
38
43
|
cfg :telnet, :ssh do
|
39
|
-
|
40
|
-
|
41
|
-
|
44
|
+
post_login do
|
45
|
+
if vars(:enable) == true
|
46
|
+
cmd "enable"
|
47
|
+
elsif vars(:enable)
|
48
|
+
cmd "enable", /[pP]assword:/
|
42
49
|
cmd vars(:enable)
|
43
50
|
end
|
44
51
|
end
|
@@ -47,29 +54,27 @@ class PowerConnect < Oxidized::Model
|
|
47
54
|
post_login "terminal length 0"
|
48
55
|
pre_logout "logout"
|
49
56
|
pre_logout "exit"
|
50
|
-
|
51
57
|
end
|
52
58
|
|
53
|
-
def clean
|
59
|
+
def clean(cfg)
|
54
60
|
out = []
|
55
61
|
skip_blocks = 0
|
56
62
|
cfg.each_line do |line|
|
57
63
|
# If this is a stackable switch we should skip this block of information
|
58
|
-
if
|
64
|
+
if line.match(/Up\sTime|Temperature|Power Suppl(ies|y)|Fans/i) && (@stackable == true)
|
59
65
|
skip_blocks = 1
|
60
66
|
# Some switches have another empty line. This is identified by this line having a colon
|
61
|
-
skip_blocks = 2 if line
|
67
|
+
skip_blocks = 2 if line =~ /:/
|
62
68
|
end
|
63
69
|
# If we have lines to skip do this until we reach and empty line
|
64
|
-
if skip_blocks
|
70
|
+
if skip_blocks.positive?
|
65
71
|
skip_blocks -= 1 if /\S/ !~ line
|
66
72
|
next
|
67
73
|
end
|
68
74
|
out << line.strip
|
69
75
|
end
|
70
|
-
out = out.
|
76
|
+
out = out.reject { |line| line[/Up\sTime/] }
|
71
77
|
out = comment out.join "\n"
|
72
78
|
out << "\n"
|
73
79
|
end
|
74
|
-
|
75
80
|
end
|
@@ -1,10 +1,11 @@
|
|
1
1
|
class Procurve < Oxidized::Model
|
2
|
-
|
3
|
-
# some models start lines with \r
|
4
2
|
# previous command is repeated followed by "\eE", which sometimes ends up on last line
|
5
|
-
prompt
|
3
|
+
# ssh switches prompt may start with \r, followed by the prompt itself, regex ([\w\s.-]+[#>] ), which ends the line
|
4
|
+
# telnet switchs may start with various vt100 control characters, regex (\e\[24;[0-9][hH]), follwed by the prompt, followed
|
5
|
+
# by at least 3 other vt100 characters
|
6
|
+
prompt /(^\r|\e\[24;[0-9][hH])?([\w\s.-]+[#>] )($|(\e\[24;[0-9][0-9]?[hH]){3})/
|
6
7
|
|
7
|
-
comment
|
8
|
+
comment '! '
|
8
9
|
|
9
10
|
# replace next line control sequence with a new line
|
10
11
|
expect /(\e\[1M\e\[\??\d+(;\d+)*[A-Za-z]\e\[1L)|(\eE)/ do |data, re|
|
@@ -21,15 +22,28 @@ class Procurve < Oxidized::Model
|
|
21
22
|
""
|
22
23
|
end
|
23
24
|
|
25
|
+
expect /Enter switch number/ do
|
26
|
+
send "\n"
|
27
|
+
""
|
28
|
+
end
|
29
|
+
|
24
30
|
cmd :all do |cfg|
|
25
|
-
cfg = cfg.
|
31
|
+
cfg = cfg.cut_both
|
26
32
|
cfg = cfg.gsub /^\r/, ''
|
33
|
+
# Additional filtering for elder switches sending vt100 control chars via telnet
|
34
|
+
cfg.gsub! /\e\[\??\d+(;\d+)*[A-Za-z]/, ''
|
35
|
+
# Additional filtering for power usage reporting which obviously changes over time
|
36
|
+
cfg.gsub! /^(.*AC [0-9]{3}V\/?([0-9]{3}V)?) *([0-9]{1,3}) (.*)/, '\\1 <removed> \\4'
|
37
|
+
cfg
|
27
38
|
end
|
28
39
|
|
29
40
|
cmd :secret do |cfg|
|
30
|
-
cfg.gsub! /^(snmp-server community)
|
31
|
-
cfg.gsub! /^(snmp-server host)
|
32
|
-
cfg.gsub! /^(radius-server host)
|
41
|
+
cfg.gsub! /^(snmp-server community) \S+(.*)/, '\\1 <secret hidden> \\2'
|
42
|
+
cfg.gsub! /^(snmp-server host \S+) \S+(.*)/, '\\1 <secret hidden> \\2'
|
43
|
+
cfg.gsub! /^(radius-server host \S+ key) \S+(.*)/, '\\1 <secret hidden> \\2'
|
44
|
+
cfg.gsub! /^(radius-server key).*/, '\\1 <configuration removed>'
|
45
|
+
cfg.gsub! /^(tacacs-server host \S+ key) \S+(.*)/, '\\1 <secret hidden> \\2'
|
46
|
+
cfg.gsub! /^(tacacs-server key).*/, '\\1 <secret hidden>'
|
33
47
|
cfg
|
34
48
|
end
|
35
49
|
|
@@ -37,6 +51,18 @@ class Procurve < Oxidized::Model
|
|
37
51
|
comment cfg
|
38
52
|
end
|
39
53
|
|
54
|
+
cmd 'show modules' do |cfg|
|
55
|
+
comment cfg
|
56
|
+
end
|
57
|
+
|
58
|
+
cmd 'show interfaces transceiver' do |cfg|
|
59
|
+
comment cfg
|
60
|
+
end
|
61
|
+
|
62
|
+
cmd 'show flash' do |cfg|
|
63
|
+
comment cfg
|
64
|
+
end
|
65
|
+
|
40
66
|
# not supported on all models
|
41
67
|
cmd 'show system-information' do |cfg|
|
42
68
|
cfg = cfg.split("\n")[0..-8].join("\n")
|
@@ -45,7 +71,7 @@ class Procurve < Oxidized::Model
|
|
45
71
|
|
46
72
|
# not supported on all models
|
47
73
|
cmd 'show system information' do |cfg|
|
48
|
-
cfg = cfg.each_line.
|
74
|
+
cfg = cfg.each_line.reject { |line| line.match /(.*CPU.*)|(.*Up Time.*)|(.*Total.*)|(.*Free.*)|(.*Lowest.*)|(.*Missed.*)/ }
|
49
75
|
cfg = cfg.join
|
50
76
|
comment cfg
|
51
77
|
end
|
@@ -58,12 +84,18 @@ class Procurve < Oxidized::Model
|
|
58
84
|
end
|
59
85
|
|
60
86
|
cfg :telnet, :ssh do
|
87
|
+
# preferred way to handle additional passwords
|
88
|
+
if vars :enable
|
89
|
+
post_login do
|
90
|
+
send "enable\n"
|
91
|
+
cmd vars(:enable)
|
92
|
+
end
|
93
|
+
end
|
61
94
|
post_login 'no page'
|
62
95
|
pre_logout "logout\ny\nn"
|
63
96
|
end
|
64
97
|
|
65
98
|
cfg :ssh do
|
66
|
-
pty_options(
|
99
|
+
pty_options(chars_wide: 1000)
|
67
100
|
end
|
68
|
-
|
69
101
|
end
|
@@ -0,0 +1,41 @@
|
|
1
|
+
class QTECH < Oxidized::Model
|
2
|
+
comment '! '
|
3
|
+
|
4
|
+
cmd :all do |cfg|
|
5
|
+
cfg.cut_both
|
6
|
+
end
|
7
|
+
|
8
|
+
cmd :secret do |cfg|
|
9
|
+
cfg.gsub! /^(snmp-server community(?: r[ow])?(?: \d)?) .+/, '\\1 <secret hidden>'
|
10
|
+
cfg.gsub! /^(snmp-server user .+ auth \S+) .+/, '\\1 <secret hidden>'
|
11
|
+
cfg.gsub! /^(username .+ password \d) .+/, '\\1 <secret hidden>'
|
12
|
+
cfg.gsub! /^(enable password(?: level \d+)? \d) .+/, '\\1 <secret hidden>'
|
13
|
+
cfg
|
14
|
+
end
|
15
|
+
|
16
|
+
cmd 'show version' do |cfg|
|
17
|
+
comment cfg.each_line.reject { |line| line.match /^ (Copyright |All rights reserved$|Uptime is |Last reboot is )/ }.join
|
18
|
+
end
|
19
|
+
|
20
|
+
cmd 'show running-config' do |cfg|
|
21
|
+
cfg
|
22
|
+
end
|
23
|
+
|
24
|
+
cfg :telnet do
|
25
|
+
username /^login:/
|
26
|
+
password /^Password:/
|
27
|
+
end
|
28
|
+
|
29
|
+
cfg :telnet, :ssh do
|
30
|
+
post_login do
|
31
|
+
if vars(:enable) == true
|
32
|
+
cmd "enable"
|
33
|
+
elsif vars(:enable)
|
34
|
+
cmd "enable", /^[pP]assword:/
|
35
|
+
cmd vars(:enable)
|
36
|
+
end
|
37
|
+
cmd 'terminal length 0'
|
38
|
+
end
|
39
|
+
pre_logout 'exit'
|
40
|
+
end
|
41
|
+
end
|
@@ -1,13 +1,12 @@
|
|
1
1
|
class QuantaOS < Oxidized::Model
|
2
|
-
|
3
2
|
prompt /^\((\w|\S)+\) (>|#)$/
|
4
3
|
comment '! '
|
5
|
-
|
4
|
+
|
6
5
|
cmd 'show run' do |cfg|
|
7
6
|
cfg.each_line.select do |line|
|
8
|
-
not line.match /^!.*$/
|
9
|
-
|
10
|
-
|
7
|
+
(not line.match /^!.*$/) &&
|
8
|
+
(not line.match /^\((\w|\S)+\) (>|#)$/) &&
|
9
|
+
(not line.match /^show run$/)
|
11
10
|
end.join
|
12
11
|
end
|
13
12
|
|
@@ -31,5 +30,4 @@ class QuantaOS < Oxidized::Model
|
|
31
30
|
send "n\n"
|
32
31
|
end
|
33
32
|
end
|
34
|
-
|
35
33
|
end
|
@@ -0,0 +1,19 @@
|
|
1
|
+
class RAISECOM < Oxidized::Model
|
2
|
+
comment '! '
|
3
|
+
prompt /([\w.@-]+[#>]\s?)$/
|
4
|
+
|
5
|
+
cmd 'show version' do |cfg|
|
6
|
+
cfg.gsub! /\s(System uptime is ).*/, ' \\1 <removed>'
|
7
|
+
comment cfg
|
8
|
+
end
|
9
|
+
|
10
|
+
cmd 'show running-config' do |cfg|
|
11
|
+
cfg.gsub! /\s(^radius-encrypt-key ).*/, ' \\1 <removed>'
|
12
|
+
cfg
|
13
|
+
end
|
14
|
+
|
15
|
+
cfg :ssh do
|
16
|
+
post_login 'terminal page-break disable'
|
17
|
+
pre_logout 'exit'
|
18
|
+
end
|
19
|
+
end
|
@@ -1,20 +1,38 @@
|
|
1
1
|
class RouterOS < Oxidized::Model
|
2
|
-
prompt /\[\w+@\S+(\s
|
2
|
+
prompt /\[\w+@\S+(\s+\S+)*\]\s?>\s?$/
|
3
3
|
comment "# "
|
4
4
|
|
5
|
-
cmd
|
5
|
+
cmd :all do |cfg|
|
6
|
+
cfg.gsub! /\x1B\[([0-9]{1,3}(;[0-9]{1,3})*)?[m|K]/, '' # strip ANSI colours
|
7
|
+
if screenscrape
|
8
|
+
cfg = cfg.cut_both
|
9
|
+
cfg.gsub! /^\r+(.+)/, '\1'
|
10
|
+
cfg.gsub! /([^\r]*)\r+$/, '\1'
|
11
|
+
end
|
12
|
+
cfg
|
13
|
+
end
|
14
|
+
|
15
|
+
cmd '/system routerboard print without-paging' do |cfg|
|
16
|
+
comment cfg
|
17
|
+
end
|
18
|
+
|
19
|
+
cmd '/system package update print without-paging' do |cfg|
|
6
20
|
comment cfg
|
7
21
|
end
|
8
22
|
|
9
|
-
cmd '/system
|
23
|
+
cmd '/system history print without-paging' do |cfg|
|
10
24
|
comment cfg
|
11
25
|
end
|
12
26
|
|
13
|
-
|
14
|
-
|
15
|
-
|
16
|
-
|
17
|
-
|
27
|
+
post do
|
28
|
+
run_cmd = vars(:remove_secret) ? '/export hide-sensitive' : '/export'
|
29
|
+
cmd run_cmd do |cfg|
|
30
|
+
cfg.gsub! /\\\r?\n\s+/, '' # strip new line
|
31
|
+
cfg.gsub! /# inactive time\r\n/, '' # Remove time based system comment
|
32
|
+
cfg.gsub! /# received packet from \S+ bad format\r\n/, '' # Remove intermittent VRRP/CARP collision comment
|
33
|
+
cfg = cfg.split("\n").reject { |line| line[/^#\s\w{3}\/\d{2}\/\d{4}.*$/] }
|
34
|
+
cfg.join("\n") + "\n"
|
35
|
+
end
|
18
36
|
end
|
19
37
|
|
20
38
|
cfg :telnet do
|