oxidized 0.29.1 → 0.30.0

data/examples/podman-compose/docker-compose.yml

@@ -0,0 +1,21 @@
+services:
+  oxidized:
+    # Choose the image that you want to test
+    # image: docker.io/oxidized/oxidized:0.29.1
+    image: docker.io/oxidized/oxidized:latest
+    ports:
+      - 127.0.0.1:8042:8888/tcp
+    environment:
+      # Reload hosts list once per day
+      CONFIG_RELOAD_INTERVAL: 86400
+      # Needed when you push to a remote git repository
+      OXIDIZED_SSH_PASSPHRASE: xxxxPassphasexxxx
+    volumes:
+       - ./oxidized-config:/home/oxidized/.config/oxidized
+       - ./oxidized-ssh:/home/oxidized/.ssh
+  # This is a simulated network device for the example to work out of the box
+  asternos-device:
+    image: localhost/local/model
+    volumes:
+      - ./model-simulation/asternos.sh:/home/oxidized/.profile
+      - ./model-simulation/asternos.sh:/home/admin/.profile

data/examples/podman-compose/model-simulation/Dockerfile-model

@@ -0,0 +1,13 @@
+FROM docker.io/phusion/baseimage:jammy-1.0.2
+
+# Use baseimage-docker's init system.
+CMD ["/sbin/my_init"]
+
+# enable ssh
+RUN rm -f /etc/service/sshd/down
+RUN /etc/my_init.d/00_regen_ssh_host_keys.sh
+
+# Add users to login. The password is "oxidized"
+RUN useradd -m oxidized -p '$y$j9T$UoDYxDiE.8iBGmoaD/acn1$kVvYvoEIJdKUmIKFVBRYKLIVzmEBP1RKrCM6Vfx.V55' -s /bin/bash
+RUN useradd -m admin -p '$y$j9T$UoDYxDiE.8iBGmoaD/acn1$kVvYvoEIJdKUmIKFVBRYKLIVzmEBP1RKrCM6Vfx.V55' -s /bin/bash
+

data/examples/podman-compose/model-simulation/asternos.sh

@@ -0,0 +1,34 @@
+# if running bash
+if [ -n "$BASH_VERSION" ]; then
+    # include .bashrc if it exists
+    if [ -f "$HOME/.bashrc" ]; then
+        . "$HOME/.bashrc"
+    fi
+fi
+
+# Display a MOTD
+cat << EOF
+This is the welcome message of this device
+it is muliline
+End of the MOTD
+EOF
+
+function show() {
+  if [ "$*" == "version" ]; then
+    echo "Version 1.2.3"
+  elif [ "$*" == "runningconfiguration all" ]; then
+          cat << EOF
+! begin of the configuration
+! this is the running config
+!
+I have no idea how a configuration in asternos looks like ;-)
+!
+! End of the Configuration
+EOF
+  else
+    echo "command 'show $*' not implemented"
+  fi
+}
+
+PS1="asternos$"
+

data/examples/podman-compose/oxidized-config/.gitignore

@@ -0,0 +1,8 @@
+# Ignore local configurations, which will override the git config
+config.local
+router.db.local
+
+# Ignore logs, retrieved configs...
+configs/
+crash
+logs/

data/examples/podman-compose/oxidized-config/config

@@ -0,0 +1,46 @@
+---
+username: oxidized
+password: oxidized
+resolve_dns: true
+interval: 3600
+use_syslog: false
+debug: false
+threads: 30
+use_max_threads: true
+timeout: 20
+retries: 3
+prompt: !ruby/regexp /^([\w.@-]+[#>]\s?)$/
+rest: 127.0.0.1:8888
+next_adds_job: false
+vars: {}
+groups: {}
+group_map: {}
+models: {}
+pid: "~/.config/oxidized/pid"
+crash:
+  directory: "~/.config/oxidized/crashes"
+  hostnames: false
+stats:
+  history_size: 10
+input:
+  default: ssh
+  debug: false
+  ssh:
+    secure: false
+  ftp:
+    passive: true
+  utf8_encoded: true
+output:
+  default: file
+  file:
+    directory: "~/.config/oxidized/configs/"
+source:
+  default: csv
+  csv:
+    file: "~/.config/oxidized/router.db"
+    delimiter: !ruby/regexp /:/
+    map:
+      name: 0
+      model: 1
+      ip: 2
+    gpg: false

data/examples/podman-compose/oxidized-config/router.db

@@ -0,0 +1 @@
+asternos-device:asternos

data/examples/podman-compose/oxidized-ssh/README.md

@@ -0,0 +1,14 @@
+This is `~/.ssh/` of the user oxidized inside the oxidized container.
+
+## What you need here for the hook githubrepo
+You can store the SSH key needed to access a remote Git repository here. Here is
+an example how to generate this key.
+```shell
+ssh-keygen -q -t ed25519 -C "Oxidized Push Key@`hostname`" -N "YOURPASSPHRASE" -m PEM -f oxidized-key
+```
+
+You also need to store the public keys of the remote git server in known_hosts. If you do not,
+oxidized will refuse to push to the remote Git with the error `#<Rugged::SshError: invalid or unknown remote ssh hostkey>`, see Issue #2753.
+```shell
+ssh-keyscan git-server.example.com > known_hosts
+```

data/extra/rest_client.rb

@@ -14,8 +14,8 @@ module Oxidized
 
     begin
       CFGS.load
-    rescue StandardError => error
-      raise InvalidConfig, "Error loading config: #{error.message}"
+    rescue StandardError => e
+      raise InvalidConfig, "Error loading config: #{e.message}"
     end
 
     restcfg = CFGS.cfg.rest

data/extra/syslog.rb

@@ -43,8 +43,8 @@ module Oxidized
 
   begin
     CFGS.load
-  rescue StandardError => error
-    raise InvalidConfig, "Error loading config: #{error.message}"
+  rescue StandardError => e
+    raise InvalidConfig, "Error loading config: #{e.message}"
   ensure
     CFG = CFGS.cfg # convenienence, instead of Config.cfg.password, CFG.password
   end

data/lib/oxidized/cli.rb

@@ -11,8 +11,8 @@ module Oxidized
       begin
         Oxidized.logger.info "Oxidized starting, running as pid #{$PROCESS_ID}"
         Oxidized.new
-      rescue StandardError => error
-        crash error
+      rescue StandardError => e
+        crash e
         raise
       end
     end
@@ -29,8 +29,8 @@ module Oxidized
     end
 
     def crash(error)
-      Oxidized.logger.fatal "Oxidized crashed, crashfile written in #{Config::Crash}"
-      File.open Config::Crash, 'w' do |file|
+      Oxidized.logger.fatal "Oxidized crashed, crashfile written in #{Config::CRASH}"
+      File.open Config::CRASH, 'w' do |file|
         file.puts '-' * 50
         file.puts Time.now.utc
         file.puts error.message + ' [' + error.class.to_s + ']'
@@ -44,6 +44,8 @@ module Oxidized
       opts = Slop.parse do |opt|
         opt.on '-d', '--debug', 'turn on debugging'
         opt.on '--daemonize', 'Daemonize/fork the process'
+        opt.string '--home-dir', 'Oxidized home dir', default: nil
+        opt.string '--config-file', 'Oxidized config file', default: nil
         opt.on '-h', '--help', 'show usage' do
           puts opt
           exit

data/lib/oxidized/config.rb

@@ -4,18 +4,20 @@ module Oxidized
   class InvalidConfig < OxidizedError; end
 
   class Config
-    Root      = ENV['OXIDIZED_HOME'] || File.join(Dir.home, '.config', 'oxidized')
-    Crash     = File.join(ENV['OXIDIZED_LOGS'] || Root, 'crash')
-    Log       = File.join(ENV['OXIDIZED_LOGS'] || Root, 'logs')
-    InputDir  = File.join Directory, %w[lib oxidized input]
-    OutputDir = File.join Directory, %w[lib oxidized output]
-    ModelDir  = File.join Directory, %w[lib oxidized model]
-    SourceDir = File.join Directory, %w[lib oxidized source]
-    HookDir   = File.join Directory, %w[lib oxidized hook]
-    Sleep     = 1
+    ROOT       = ENV['OXIDIZED_HOME'] || File.join(Dir.home, '.config', 'oxidized')
+    CRASH      = File.join(ENV['OXIDIZED_LOGS'] || ROOT, 'crash')
+    LOG        = File.join(ENV['OXIDIZED_LOGS'] || ROOT, 'logs')
+    INPUT_DIR  = File.join Directory, %w[lib oxidized input]
+    OUTPUT_DIR = File.join Directory, %w[lib oxidized output]
+    MODEL_DIR  = File.join Directory, %w[lib oxidized model]
+    SOURCE_DIR = File.join Directory, %w[lib oxidized source]
+    HOOK_DIR   = File.join Directory, %w[lib oxidized hook]
+    SLEEP      = 1
 
     def self.load(cmd_opts = {})
-      asetus = Asetus.new(name: 'oxidized', load: false, key_to_s: true, usrdir: Oxidized::Config::Root)
+      usrdir = File.expand_path(cmd_opts[:home_dir] || Oxidized::Config::ROOT)
+      cfgfile = cmd_opts[:config_file] || 'config'
+      asetus = Asetus.new(name: 'oxidized', load: false, key_to_s: true, usrdir: usrdir, cfgfile: cfgfile)
       Oxidized.asetus = asetus
 
       asetus.default.username      = 'username'
@@ -25,6 +27,7 @@ module Oxidized
       asetus.default.interval      = 3600
       asetus.default.use_syslog    = false
       asetus.default.debug         = false
+      asetus.default.run_once      = false
       asetus.default.threads       = 30
       asetus.default.use_max_threads = false
       asetus.default.timeout       = 20
@@ -36,9 +39,9 @@ module Oxidized
       asetus.default.groups        = {}               # group level configuration
       asetus.default.group_map     = {}               # map aliases of groups to names
       asetus.default.models        = {}               # model level configuration
-      asetus.default.pid           = File.join(Oxidized::Config::Root, 'pid')
+      asetus.default.pid           = File.join(Oxidized::Config::ROOT, 'pid')
 
-      asetus.default.crash.directory = File.join(Oxidized::Config::Root, 'crashes')
+      asetus.default.crash.directory = File.join(Oxidized::Config::ROOT, 'crashes')
       asetus.default.crash.hostnames = false
 
       asetus.default.stats.history_size = 10
@@ -58,8 +61,8 @@ module Oxidized
 
       begin
         asetus.load # load system+user configs, merge to Config.cfg
-      rescue StandardError => error
-        raise InvalidConfig, "Error loading config: #{error.message}"
+      rescue StandardError => e
+        raise InvalidConfig, "Error loading config: #{e.message}"
       end
 
       raise NoConfig, 'edit ~/.config/oxidized/config' if asetus.create

data/lib/oxidized/core.rb

@@ -12,10 +12,18 @@ module Oxidized
       Oxidized.mgr = Manager.new
       Oxidized.hooks = HookManager.from_config(Oxidized.config)
       nodes = Nodes.new
-      raise NoNodesFound, 'source returns no usable nodes' if nodes.size.zero?
+      raise NoNodesFound, 'source returns no usable nodes' if nodes.empty?
 
       @worker = Worker.new nodes
-      trap('HUP') { nodes.load }
+      @need_reload = false
+
+      # If we receive a SIGHUP, queue a reload of the state
+      reload_proc = proc do
+        @need_reload = true
+      end
+      Signals.register_signal('HUP', reload_proc)
+
+      # Initialize REST API and webUI if requested
       if Oxidized.config.rest?
         begin
           require 'oxidized/web'
@@ -31,9 +39,20 @@ module Oxidized
 
     private
 
+    def reload
+      Oxidized.logger.info("Reloading node list and log files")
+      @worker.reload
+      Oxidized.logger.reopen
+      @need_reload = false
+    end
+
     def run
       Oxidized.logger.debug "lib/oxidized/core.rb: Starting the worker..."
-      @worker.work while sleep Config::Sleep
+      loop do
+        reload if @need_reload
+        @worker.work
+        sleep Config::SLEEP
+      end
     end
   end
 end

data/lib/oxidized/hook.rb

@@ -19,7 +19,7 @@ module Oxidized
     # RegisteredHook is a container for a Hook instance
     RegisteredHook = Struct.new(:name, :hook)
 
-    Events = %i[
+    EVENTS = %i[
       node_success
       node_fail
       post_store
@@ -32,9 +32,9 @@ module Oxidized
     end
 
     def register(event, name, hook_type, cfg)
-      unless Events.include? event
+      unless EVENTS.include? event
         raise ArgumentError,
-              "unknown event #{event}, available: #{Events.join ','}"
+              "unknown event #{event}, available: #{EVENTS.join ','}"
       end
 
       Oxidized.mgr.add_hook(hook_type) || raise("cannot load hook '#{hook_type}', not found")

data/lib/oxidized/input/exec.rb

@@ -6,7 +6,7 @@ module Oxidized
 
     def connect(node)
       @node = node
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-exec", "w") if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-exec", "w") if Oxidized.config.input.debug?
       @node.model.cfg["exec"].each { |cb| instance_exec(&cb) }
     end
 

data/lib/oxidized/input/ftp.rb

@@ -4,7 +4,7 @@ module Oxidized
   require_relative 'cli'
 
   class FTP < Input
-    RescueFail = {
+    RESCUE_FAIL = {
       debug: [
         # Net::SSH::Disconnect,
       ],
@@ -18,7 +18,7 @@ module Oxidized
     def connect(node)
       @node = node
       @node.model.cfg['ftp'].each { |cb| instance_exec(&cb) }
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-ftp", 'w') if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-ftp", 'w') if Oxidized.config.input.debug?
       @ftp = Net::FTP.new(@node.ip)
       @ftp.passive = Oxidized.config.input.ftp.passive
       @ftp.login @node.auth[:username], @node.auth[:password]

data/lib/oxidized/input/http.rb

@@ -12,7 +12,7 @@ module Oxidized
       @username = nil
       @password = nil
       @headers = {}
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-http", "w") if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-http", "w") if Oxidized.config.input.debug?
       @node.model.cfg["http"].each { |cb| instance_exec(&cb) }
 
       return true unless @main_page && defined?(login)
@@ -49,18 +49,42 @@ module Oxidized
     def get_http(path)
       schema = @secure ? "https://" : "http://"
       uri = URI("#{schema}#{@node.ip}#{path}")
-      req = Net::HTTP::Get.new(uri)
-      req.basic_auth @username, @password unless @username.nil?
-      @headers.each do |header, value|
-        req.add_field(header, value)
-      end
+
+      Oxidized.logger.debug "Making request to: #{uri}"
+
       ssl_verify = Oxidized.config.input.http.ssl_verify? ? OpenSSL::SSL::VERIFY_PEER : OpenSSL::SSL::VERIFY_NONE
-      res = Net::HTTP.start(uri.hostname, uri.port, use_ssl: uri.scheme == "https", verify_mode: ssl_verify) do |http|
-        http.request(req)
+
+      res = make_request(uri, ssl_verify)
+
+      if res.code == '401' && res['www-authenticate']&.include?('Digest')
+        uri.user = @username
+        uri.password = @password
+        Oxidized.logger.debug "Server requires Digest authentication"
+        auth = Net::HTTP::DigestAuth.new.auth_header(uri, res['www-authenticate'], 'GET')
+
+        res = make_request(uri, ssl_verify, 'Authorization' => auth)
+      elsif @username && @password
+        Oxidized.logger.debug "Falling back to Basic authentication"
+        res = make_request(uri, ssl_verify, 'Authorization' => basic_auth_header)
       end
+
+      Oxidized.logger.debug "Response code: #{res.code}"
       res.body
     end
 
+    def make_request(uri, ssl_verify, extra_headers = {})
+      Net::HTTP.start(uri.hostname, uri.port, use_ssl: uri.scheme == "https", verify_mode: ssl_verify) do |http|
+        req = Net::HTTP::Get.new(uri)
+        @headers.merge(extra_headers).each { |header, value| req.add_field(header, value) }
+        Oxidized.logger.debug "Sending request with headers: #{@headers.merge(extra_headers)}"
+        http.request(req)
+      end
+    end
+
+    def basic_auth_header
+      "Basic " + ["#{@username}:#{@password}"].pack('m').delete("\r\n")
+    end
+
     def log(str)
       @log&.write(str)
     end

data/lib/oxidized/input/input.rb

@@ -4,7 +4,7 @@ module Oxidized
   class Input
     include Oxidized::Config::Vars
 
-    RescueFail = {
+    RESCUE_FAIL = {
       debug: [
         Errno::ECONNREFUSED
       ],

data/lib/oxidized/input/scp.rb

@@ -0,0 +1,52 @@
+module Oxidized
+  require 'net/ssh'
+  require 'net/scp'
+  require 'timeout'
+  require_relative 'cli'
+
+  class SCP < Input
+    RESCUE_FAIL = {
+      debug: [
+        # Net::SSH::Disconnect,
+      ],
+      warn:  [
+        # RuntimeError,
+        # Net::SSH::AuthenticationFailed,
+      ]
+    }.freeze
+    include Input::CLI
+
+    def connect(node)
+      @node = node
+      @node.model.cfg['scp'].each { |cb| instance_exec(&cb) }
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-scp", 'w') if Oxidized.config.input.debug?
+      @ssh = Net::SSH.start(@node.ip, @node.auth[:username], password: @node.auth[:password])
+      connected?
+    end
+
+    def connected?
+      @ssh && (not @ssh.closed?)
+    end
+
+    def cmd(file)
+      Oxidized.logger.debug "SCP: #{file} @ #{@node.name}"
+      @ssh.scp.download!(file)
+    end
+
+    def send(my_proc)
+      my_proc.call
+    end
+
+    def output
+      ""
+    end
+
+    private
+
+    def disconnect
+      @ssh.close
+    ensure
+      @log.close if Oxidized.config.input.debug?
+    end
+  end
+end

data/lib/oxidized/input/ssh.rb

@@ -4,7 +4,7 @@ module Oxidized
   require 'timeout'
   require 'oxidized/input/cli'
   class SSH < Input
-    RescueFail = {
+    RESCUE_FAIL = {
       debug: [
         Net::SSH::Disconnect
       ],
@@ -21,7 +21,7 @@ module Oxidized
       @output      = ''
       @pty_options = { term: "vt100" }
       @node.model.cfg['ssh'].each { |cb| instance_exec(&cb) }
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-ssh", 'w') if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-ssh", 'w') if Oxidized.config.input.debug?
 
       Oxidized.logger.debug "lib/oxidized/input/ssh.rb: Connecting to #{@node.name}"
       @ssh = Net::SSH.start(@node.ip, @node.auth[:username], make_ssh_opts)
@@ -42,11 +42,13 @@ module Oxidized
 
     def cmd(cmd, expect = node.prompt)
       Oxidized.logger.debug "lib/oxidized/input/ssh.rb #{cmd} @ #{node.name} with expect: #{expect.inspect}"
-      if @exec
-        @ssh.exec! cmd
-      else
-        cmd_shell(cmd, expect).gsub(/\r\n/, "\n")
-      end
+      cmd_output = if @exec
+                     @ssh.exec! cmd
+                   else
+                     cmd_shell(cmd, expect).gsub("\r\n", "\n")
+                   end
+      # Make sure we return a String
+      cmd_output.to_s
     end
 
     def send(data)
@@ -66,6 +68,7 @@ module Oxidized
       # if disconnect does not disconnect us, give up after timeout
       Timeout.timeout(Oxidized.config.timeout) { @ssh.loop }
     rescue Errno::ECONNRESET, Net::SSH::Disconnect, IOError
+      # These exceptions are intented and therefore not handled here
     ensure
       @log.close if Oxidized.config.input.debug?
       (@ssh.close rescue true) unless @ssh.closed?

data/lib/oxidized/input/telnet.rb

@@ -2,7 +2,7 @@ module Oxidized
   require 'net/telnet'
   require 'oxidized/input/cli'
   class Telnet < Input
-    RescueFail = {}.freeze
+    RESCUE_FAIL = {}.freeze
     include Input::CLI
     attr_reader :telnet
 
@@ -10,7 +10,7 @@ module Oxidized
       @node    = node
       @timeout = Oxidized.config.timeout
       @node.model.cfg['telnet'].each { |cb| instance_exec(&cb) }
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-telnet", 'w') if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-telnet", 'w') if Oxidized.config.input.debug?
       port = vars(:telnet_port) || 23
 
       telnet_opts = {
@@ -64,6 +64,7 @@ module Oxidized
       disconnect_cli
       @telnet.close
     rescue Errno::ECONNRESET
+      # This exception is intented and therefore not handled here
     ensure
       @log.close if Oxidized.config.input.debug?
       (@telnet.close rescue true) unless @telnet.sock.closed?

data/lib/oxidized/input/tftp.rb

@@ -16,7 +16,7 @@ module Oxidized
       @node = node
 
       @node.model.cfg['tftp'].each { |cb| instance_exec(&cb) }
-      @log = File.open(Oxidized::Config::Log + "/#{@node.ip}-tftp", 'w') if Oxidized.config.input.debug?
+      @log = File.open(Oxidized::Config::LOG + "/#{@node.ip}-tftp", 'w') if Oxidized.config.input.debug?
       @tftp = Net::TFTP.new @node.ip
     end
 

data/lib/oxidized/jobs.rb

@@ -44,6 +44,14 @@ module Oxidized
       @want = @max if @want > @max
     end
 
+    def increment
+      # Increments the job count if safe to do so, which means:
+      # a) less threads running than the total amount of nodes
+      # b) we want less than the max specified number of threads
+
+      @want = [(@want + 1), @nodes.size, @max].min
+    end
+
     def work
       # if   a) we want less or same amount of threads as we now running
       # and  b) we want less threads running than the total amount of nodes
@@ -51,7 +59,9 @@ module Oxidized
       # then we want one more thread (rationale is to fix hanging thread causing HOLB)
       return unless @want <= size && @want < @nodes.size
 
-      @want += 1 if (Time.now.utc - @last) > MAX_INTER_JOB_GAP
+      return unless @want <= size
+
+      increment if (Time.now.utc - @last) > MAX_INTER_JOB_GAP
     end
   end
 end

data/lib/oxidized/manager.rb

@@ -33,30 +33,30 @@ module Oxidized
     end
 
     def add_input(name)
-      loader @input, Config::InputDir, "input", name
+      loader @input, Config::INPUT_DIR, "input", name
     end
 
     def add_output(name)
-      loader @output, Config::OutputDir, "output", name
+      loader @output, Config::OUTPUT_DIR, "output", name
     end
 
     def add_source(name)
-      loader @source, Config::SourceDir, "source", name
+      loader @source, Config::SOURCE_DIR, "source", name
     end
 
     def add_model(name)
-      loader @model, Config::ModelDir, "model", name
+      loader @model, Config::MODEL_DIR, "model", name
     end
 
     def add_hook(name)
-      loader @hook, Config::HookDir, "hook", name
+      loader @hook, Config::HOOK_DIR, "hook", name
     end
 
     private
 
     # if local version of file exists, load it, else load global - return falsy value if nothing loaded
     def loader(hash, global_dir, local_dir, name)
-      dir   = File.join(Config::Root, local_dir)
+      dir   = File.join(Config::ROOT, local_dir)
       map   = Manager.load(dir, name) if File.exist? File.join(dir, name + ".rb")
       map ||= Manager.load(global_dir, name)
       hash.merge!(map) if map

data/lib/oxidized/model/acos.rb

@@ -72,7 +72,7 @@ class ACOS < Oxidized::Model
         out << "! partition: #{partition}"
         arules.each do |name|
           cmd("show aflex #{name} partition #{partition}") do |cfg|
-            content = cfg.split(/Content:/).last.strip
+            content = cfg.split("Content:").last.strip
             out << "aflex create #{name}"
             out << content
             out << ".\n"

data/lib/oxidized/model/addpack.rb

@@ -0,0 +1,26 @@
+class AddPack < Oxidized::Model
+  # Used in AddPack Voip, such as AP100B, AP100_G2, AP700, AP1000, AP1100F
+
+  using Refinements
+  PROMPT = /^.*[>#]\s?$/
+
+  expect /-- [Mm]ore --/ do |data, re|
+    send ' '
+    data.sub re, ''
+  end
+
+  prompt PROMPT
+  cmd 'enable'
+
+  cmd 'show running-config' do |cfg|
+    cfg.gsub! /^Building configuration.../, ''
+    cfg.gsub! /^*show running-config/, ''
+    cfg.gsub! PROMPT, ''
+    cfg
+  end
+
+  cfg :telnet do
+    username /[Ll]ogin:\s?/
+    password /[Pp]assword:\s?/
+  end
+end