Comments (4)
Sorry I know this issue has been closed for over a year but just commenting for the benefit of anyone who googles this (like I did).
Netmiko can connect to Checkpoint Gaia r77.30 just fine if you:
- Make sure the account you're logging in with is set to go directly to bash (expert mode) in the config
- Make sure you set your netmiko script to 'device_type': 'linux'
from netmiko.
@irom77 Can you provide a capture of an SSH session from one of these checkpoint devices including the logging in process (I don't need to see your username/password just the prompts that Checkpoint uses).
Also execute one 'show' command on the device.
from netmiko.
Sure , see attached. I gave three examples. First one from legacy Edge UTM-1 which is not Linux based
The other two examples are Checkpoint Gaia appliances , small CP1100 and large VSX. Practically same thing for ssh. Both have two options:1. ssh as clish user and then switch to expert mode with 'expert' (in fact both are de facto write modes;)2. ssh as bash user and go directly to bash
I think you can refer to these examples as 'Checkpoint Edge', and then just 'Checkpoint Gaia' Let me know if you have questions. I will look for older Checkpoint SPLAT (SecurePlatform, predecessor of Checkpoint Gaia), it's also Linux based
Thnx From: Kirk Byers [email protected]
To: ktbyers/netmiko [email protected]
Cc: Irek Romaniuk [email protected]
Sent: Tuesday, March 17, 2015 7:29 PM
Subject: Re: [netmiko] Checkpoint device_type ? (#80)
@irom77 Can you provide a capture of an SSH session from one of these checkpoint devices including the logging in process (I don't need to see your username/password just the prompts that Checkpoint uses). Also execute one 'show' command on the device.—
Reply to this email directly or view it on GitHub.
###1. UTM-1 Edge
[me@nms02 ~]$ ssh -l admin a.b.c.d
[email protected]'s password:
Welcome to EdgeW, 32 nodes 8.1.37x 00:08:da:73:8b:5e
YYY >info device
[700000] Device Information for YYY:
Hardware:
Appliance Type: SBox-200
Version: 1.2G
General:
Name: YYY
Uptime: 14 days, 21:41:08
CPU Usage: 26%
Flash Usage: 14%
License:
Product Name: EdgeW, 32 nodes
Firmware:
Running: 8.1.37x
Primary: 8.1.37x
Backup: 8.0.39x
Bootcode: 37
Debug Firmware: No
Total Memory:
Main: 50MB
Free Memory:
User: 779K
Kernel: 1393K
Firewall: 231K
VStream Database:
Main: Not installed
Daily: Not installed
YYY >quitReceived disconnect from a.b.c.d: 11: Logged out.
###2. CP1100, VSX (all newer, Linux/Gaia based appliances)
##a. with bash shell
[me@nms02 ~]$ ssh -l admin 1.2.3.4
[email protected]'s password:
[Expert@MyCP1100]# cat /etc/passwd | grep admin
admin:x:0:0:Linux User,,,:/:/bin/bash
[Expert@MyCP1100]# clish -c 'show software-version'
This is Check Point 1100 Appliance R75.20.60 - Build 984
[Expert@MyCP1100]# exit
logout
Connection to 1.2.3.4 closed.
##b. with clish shell
[me@nms02 ~]$ ssh -l admin 10.196.123.1
[email protected]'s password:
A001C7F26CF2A> expert
Enter expert password:
You are in expert mode now.
[Expert@A001C7F26CF2A]# cat /etc/passwd | grep admin
admin:x:0:0:Linux User,,,:/:/bin/clish
##c. another example with clish (VSX)
[me@nms02 ~]$ ssh -l admin x.y.z.v
This system is for authorized use only.
[email protected]'s password:
Product version Check Point Gaia R77.20
Permission denied, please try again.
[email protected]'s password:
Last login: Wed Mar 18 06:01:12 2015 from nms02.xxx.com
VSX-1:0> show version product
Product version Check Point Gaia R77.20
VSX-1:0> expert
Enter expert password:
Warning! All configuration should be done through clish
You are in expert mode now.
[Expert@VSX-1:0]#
from netmiko.
I am going to close this issue.
I would need access to the platform so that I can add in the support (or someone with access to the platform to add in the support and to submit a PR).
from netmiko.
Related Issues (20)
- how to set value "self._test_channel_read(pattern=r"[>#]")" HOT 4
- Create a general pagination method for devices that do not allow any disabling of output paging.
- Mikrotik regexp HOT 4
- Nemiko and Foritgate with Split-task VDOM mode HOT 1
- Python SSH network devices HOT 2
- A10 long command have horizontal scroll, for some models HOT 1
- Extreme ERS - 4950GTS - CTRL-Y - Netmiko sends only \n to the switch, not CTRL+Y HOT 6
- unable to send commands to sophos ssh through netmiko due to readtimeout error. HOT 28
- "send_config_from_file" method send commands but errors "Pattern not detected" HOT 4
- After upgrading to v.4.3.0 some ERS switches stopped working HOT 6
- fiberstore_fsos authentication failure HOT 6
- Mrv ConnectHandler enable passwrd Error
- Create a better error message for this: expected OPENSSH key
- send_config_set Issue HOT 2
- Netmiko Cisco_Ftd pattern/timeout issue HOT 3
- Juniper junos syntax error in automatic command "set cli screen-width" HOT 4
- Session log file is empty for fortinet type devices while the remote connection is still active
- BaseConnection.find_prompt() logic appears to be incorrect HOT 3
- Incompatible ssh peer (no acceptable host key)
- FortiOS with VDOM Admin only netmiko error HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from netmiko.