Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Classic ios syntax missing #33

Open
r0b86 opened this issue Feb 26, 2020 · 2 comments
Open

Classic ios syntax missing #33

r0b86 opened this issue Feb 26, 2020 · 2 comments

Comments

@r0b86
Copy link

r0b86 commented Feb 26, 2020

Which Syntax?:

I missing alot of security features for switches and routers.

Like interface syntax such as

int Gix/x
 switchport nonegotiate
 load-interval 30
 ip dhcp snooping trust
 storm-control broadcast level 50.00
 storm-control multicast level 50.00
 storm-control action trap
 storm-control action shutdown

also in the global errordisable features are not recognized

errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause link-flap
errdisable recovery cause psecure-violation
errdisable recovery cause mac-limit
errdisable recovery cause storm-control
errdisable recovery cause loopback
errdisable recovery cause loopdetect

ip dhcp snooping syntax are not working in global.

ip dhcp snooping
ip dhcp snooping vlan 1-4094

some logging syntaxes

logging host <HIDDEN_IP>
! C2960X
logging discriminator MAB facility drops DOT1X|MAB 
logging buffered discriminator MAB 20000

! C9300
logging discriminator MAB facility drops DOT1X|SESSION_MGR 
logging buffered discriminator MAB 20000

Also archive are not working

archive
 log config
  logging enable
  logging size 200
  notify syslog contenttype plaintext
  hidekeys
 path scp://<CREDS>@<HIDDEN_IP>//HIDDEN/PATH/$h_$t.confg
 write-memory

Kron jobs are not recognized

kron occurrence BACKUP_CONFIG at 22:00 recurring
 policy-list BACKUP
!
kron policy-list BACKUP
 cli archive log config add comment ----RUNNING_BACKUP----
 cli wr
!

Under LINE config transport none not working

line aux 0
 transport input none
 transport output none 
!

Banner login are not working

banner login ^C
*********************************************************
LOGIN MESSAGE REMOVED
*********************************************************
^C

tacacs syntax are not recognized

tacacs server HIDDENSERVER
 address ipv4 HIDDENIP
 key 7 025A1758190F1F35124F051C17035A4C1417396B2D3B732727616C27293C2F7363726970743E
 timeout 7
!
tacacs server HIDDENSERVER
 address ipv4 HIDDENIP
 key 7 025A1758190F1F35124F051C17035A4C1417396B2D3B732727616C27293C2F7363726970743E
 timeout 7
!
aaa group server tacacs+ TACACS_GROUP
 server name HIDDENSERVER
 server name HIDDENSERVER
!         
aaa authentication enable default group TACACS_GROUP enable 
aaa authorization exec default group TACACS_GROUP local if-authenticated 
aaa authorization commands 1 default group TACACS_GROUP local if-authenticated 
aaa authorization commands 15 default group TACACS_GROUP local if-authenticated 
aaa accounting exec default start-stop group TACACS_GROUP
aaa accounting commands 1 default start-stop group TACACS_GROUP
aaa accounting commands 15 default start-stop group TACACS_GROUP
aaa accounting send stop-record authentication failure
aaa authorization config-commands

Link to command reference

Here is the book for all command referance
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/mcl/allreleasemcl/all-book.html

Also links to specific sections

@heyglen
Copy link
Owner

heyglen commented Apr 12, 2020

Pushed v2.37.0 with some of these added.

Thanks for reporting. Happy Easter.

@heyglen
Copy link
Owner

heyglen commented May 16, 2020

Banner login added in 2.38.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants