Device

Cisco Management ASA-Alarm Auto-Save Catalyst-Serial-Num Cisco-Alarm Find-QOS-Drops Find-Unconf-Modules Find-Unsnooped-Vlans Inv-ROM Mod-Config Mod-Interface Red-Reboot Save-Config Show-CDP-Neighbors Show-Standby Show-Tunnels Switch Power Alarm Tunnel-Alarm UC-Version Upgrade-IOS Write-Mem Other Open Source Projects COSI Pancho

Cisco Management The Scripts These PERL scripts help us manage our flock of Cisco switches, routers, and VPN concentrators. ASA-Alarm takes a list of Cisco ASA appliances as arguments and scans various MIB variables for hardware problems, producing a report -- if it detects any problems, it notifies via e-mail. Auto-Save takes a list of devices as arguments and compares startup-config to the version saved on the tftp server. If they are different, updates the version saved on the tftp server and stores both 'before' and 'after' copies to a changetree. Catalyst-Serial-Num takes a list of Catalyst devices as arguments and produces a report listing chassis and module serial numbers. Cisco-Alarm takes a list of Cisco devices as arguments and scans various MIB variables for hardware problems, producing a report -- if it detects any, it notifies via e-mail. Find-QOS-Drops takes list of devices as arguments and looks for ports which have dropped QoS-tagged frames. Find-Unconf-Modules takes list of devices as arguments and looks for ports which belong to VLAN1 or which do not have 'portfast' enabled on them. Find-Unsnooped-VLans takes list of devices as arguments, looks for VLANS for which DHCP snooping has not been enabled, and e-mails interested parties if it finds any. Inv-ROM takes a list of devices as arguments, grabs the ROM version, and produces a report. Mod-Config takes a file name and a list of devices as arguments; it uploads the file to each target, merging it with running-config. Mod-Interface takes a file name and a list of devices as arguments, plus numerous command-line switches. It replaces wildcards in the file name with VLAN and port-specific parameters, and then uploads the result to each target, merging it with running-config. The goal is to allow one to apply policy to switch ports -- this is one of the most feature-rich scripts in the Netops collection. We run Red-Reboot from cron every month to test the redundant aspects of our packet infrastructure. This script reboots a list of devices in order, waiting to see that the rebooted device returns to life before continuing. While a device reboots, the script pings an address located *behind* the rebooting device, tracking how many pings are lost when the device goes down and how many are lost when the device comes back up again. The script logs the results and produces a report. The next day, a human analyzes the network management station's logs to see whether or not the redundant packet infrastructure performed as expected. Save-Config takes a list of devices as arguments and uses tftp to save their config files to a change tree. Show-CDP-Neighbors takes a list of devices as arguments and produces a report listing those devices CDP neighbors. Show-Standby takes a list of devices as arguments and produces a report listing information about the HSRP status of interfaces on these devices. Show-Tunnels takes a list of devices as arguments and produces a report listing information about the IPSec tunnels terminated on these devices. Switch-Power-Alarm watches power utilization on switches, warning if a switch exceeds a defined percentage of its power budget. Switches typically exceed their power budget if their power supplies are not sized appropriately to support their installed modules or attachedattached PoE devices. Tunnel-Alarm takes a list of devices as arguments and queries them for IPSec-tunnel specific parameters, producing a report and e-mailing interested parties if it detects problems. UC-Version takes a list of Communications Manager servers, and their hangers' on, and produces a report listing version numbers. Upgrade-IOS takes an image file name plus a list of devices as arguments and uses SNMP to upgrade the OS sitting on the devices' flash. The script has been tested on: MSFC1, MSFC2, C5KRSM, cat650x, cat450x, cisco2620, cisco3640, cisco7206VXR Write-Mem takes a list of devices as arguments and performs the SNMP equivalent of 'copy running-config startup-config'. Other Open Source Projects Here are links to other sites which are hosting scripts for managing Cisco devices. Cisco-centric Open Source Exchange Community (COSI) Pancho