[f-nsp] How to hide crypto hashes?

Emmanuel Muncal graemann at gmail.com
Thu Aug 12 07:37:03 EDT 2010


Thanks Frankie!

Regards,

Emmanuel

On 8/12/10, Frankie John-Lewis <fjohn-lewis at odlsecurities.com> wrote:
> Emmanuel
>
> Use the following command from privileged mode:
>
> ssh no-show-host-keys
>
> Regards
>
> Frankie John-Lewis
> Network Engineer
>
>
>
> -----Original Message-----
> From: foundry-nsp-bounces at puck.nether.net
> [mailto:foundry-nsp-bounces at puck.nether.net] On Behalf Of Emmanuel
> Muncal
> Sent: 12 August 2010 03:36
> To: foundry-nsp at puck.nether.net
> Subject: [f-nsp] How to hide crypto hashes?
>
> Hi,
>
> I have done this before. But can't seem to remember how I did it.
> Anyone remember the command to hide those dsa or rsa certificates and
> also the ssl certificates?
>
> I searched the manual but in vain.
>
> Thanks in advance.
>
> Regards,
>
> Eman
>
> On 8/8/10, foundry-nsp-request at puck.nether.net
> <foundry-nsp-request at puck.nether.net> wrote:
>> Send foundry-nsp mailing list submissions to
>> 	foundry-nsp at puck.nether.net
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>> 	http://puck.nether.net/mailman/listinfo/foundry-nsp
>> or, via email, send a message with subject or body 'help' to
>> 	foundry-nsp-request at puck.nether.net
>>
>> You can reach the person managing the list at
>> 	foundry-nsp-owner at puck.nether.net
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of foundry-nsp digest..."
>>
>>
>> Today's Topics:
>>
>>    1. NI-MLX MP/LP not booting from flash (Chuck Ufarley)
>>    2. Re: NI-MLX MP/LP not booting from flash (Niels Bakker)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Fri, 6 Aug 2010 09:11:36 -0700
>> From: Chuck Ufarley <markentime at gmail.com>
>> To: foundry-nsp at puck.nether.net
>> Subject: [f-nsp] NI-MLX MP/LP not booting from flash
>> Message-ID:
>> 	<AANLkTikjBXWG+e-DjRgO_U5LvnTzxe10OEUCViVcZhfQ at mail.gmail.com>
>> Content-Type: text/plain; charset="iso-8859-1"
>>
>> Hey all--
>>
>> I'm having trouble upgrading to the late 4.1xxx code and the 5.xxx
>> code on the NI-MLX.  Anyone else getting this error on attempting to
> reboot?
>>
>> NetIron MLX-4 Router#reload
>> Checking for coherence...
>>
>> Image coherence check: Can't open startup config file.
>> Warning: Image coherence check skipped due to insufficient info: MP/LP
>
>> not booting from flash.
>> Are you sure? (enter 'y' or 'n'):
>>
>> **********************
>>
>> It's odd, because if I enter the boot system flash primary command and
>
>> save the config, the problem goes away, but I've never had to do that
>> before.  Is it now a requirement to perform a coherence check before
> reloading?
>>
>> Here's the basic rundown of the box.  I hope one of you might know
>> what I may be doing wrong:
>>
>> NetIron MLX-4 Router#sho run
>> Current configuration:
>> !
>> ver V4.1.0dT163
>> module 1 ni-mlx-20-port-1g-100fx
>> !
>> !
>> no spanning-tree
>> !
>> !
>> vlan 1 name DEFAULT-VLAN
>> !
>> !
>> boot sys fl pri
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> interface management 1
>>  enable
>> !
>> !
>> !
>> !
>> !
>> !
>> !
>> end
>>
>> NetIron MLX-4 Router#sho ver
>> HW: NetIron MLX 4K Router
>> Chassis (Serial #: SA08075129,  Part #: 35550-000B) NI-X-SF Switch
>> Fabric Module 1 (Serial #: SA13070756,  Part #: 35548-100B) FE 1: Type
>
>> fe200,  Version 2 NI-X-SF Switch Fabric Module 2 (Serial #:
>> SA13070789,  Part #: 35548-100B) FE 1: Type fe200,  Version 2
>> ======================================================================
>> ==== SL M2: NI-MLX-MR Management Module Active (Serial #: SA18070467,
>> Part #:
>> 35524-1
>> 01C):
>> Boot     : Version 3.5.0T165 Copyright (c) 1996-2009 Brocade
> Communications
>> Syst
>> ems, Inc.
>> Compiled on Jul 10 2007 at 19:13:56 labeled as xmprm03500
>>  (424484 bytes) from boot flash
>> Monitor  : Version 4.1.0bT165 Copyright (c) 1996-2009 Brocade
>> Communications Sys tems, Inc.
>> Compiled on Feb 26 2010 at 18:33:34 labeled as xmb04100b
>>  (464413 bytes) from code flash
>> IronWare : Version 4.1.0dT163 Copyright (c) 1996-2009 Brocade
>> Communications Sys tems, Inc.
>> Compiled on Jul  1 2010 at 21:51:20 labeled as xmr04100d
>>  (5363454 bytes) from Primary
>> Board ID : 00 MBRIDGE Revision : 21
>> 916 MHz Power PC processor 7447A (version 8003/0101) 166 MHz bus
>> 512 KB Boot Flash (AM29LV040B), 32 MB Code Flash (MT28F128J3)
>> 1024 MB DRAM
>> Active Management uptime is 2 minutes 59 seconds
>> ======================================================================
>> ==== SL 1: NI-MLX-1Gx20-SFP 20-port 1GbE-100FX Module (Serial #:
>> SA16070395, Part
>> #:
>> 35604-100B)
>> Boot     : Version 3.2.1cT175 Copyright (c) 1996-2009 Brocade
> Communications
>> Sys
>> tems, Inc.
>> Compiled on Feb 28 2007 at 20:04:00 labeled as xmlprm03201c
>>  (334645 bytes) from boot flash
>> Monitor  : Version 4.1.0bT175 Copyright (c) 1996-2009 Brocade
>> Communications Sys tems, Inc.
>> Compiled on Feb 26 2010 at 18:34:18 labeled as xmlb04100b
>>  (422399 bytes) from code flash
>> IronWare : Version 4.1.0dT177 Copyright (c) 1996-2009 Brocade
>> Communications Sys tems, Inc.
>> Compiled on Jul  1 2010 at 21:55:36 labeled as xmlp04100d
>>  (3681796 bytes) from Primary
>> FPGA versions:
>> Valid PBIF Version = 3.14, Build Time = 12/17/2008 14:32:00
>>
>> Valid XPP Version = 5.22, Build Time = 8/6/2009 19:10:00
>>
>> BCM5695GMAC 0
>> BCM5695GMAC 1
>> 666 MHz MPC 8541 (version 8020/0020) 333 MHz bus
>> 512 KB Boot Flash (AM29LV040B), 16 MB Code Flash (MT28F640J3)
>> 512 MB DRAM, 8 KB SRAM, 286331153 Bytes BRAM
>> PPCR0: 768K entries CAM, 8192K PRAM, 2048K AGE RAM LP Slot 1 uptime is
>
>> 2 minutes 36 seconds
>> ======================================================================
>> ====
>> All show version done
>> NetIron MLX-4 Router#sho fla
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> Active Management Module (Right Slot)
>> Code Flash - Type MT28F128J3, Size 32 MB
>>   o IronWare Image (Primary)
>>     Version 4.1.0dT163, Size 5363454 bytes, Check Sum 4eb9
>>     Compiled on Jul  1 2010 at 21:51:20 labeled as xmr04100d
>>   o IronWare Image (Secondary)
>>     Version 3.2.1cT163, Size 7468247 bytes, Check Sum c107
>>     Compiled on Feb 28 2007 at 20:00:40 labeled as xmr03201c
>>   o LP Kernel Image (Monitor for LP Image Type 0)
>>     Version 4.1.0bT175, Size 422399 bytes, Check Sum e57e
>>     Compiled on Feb 26 2010 at 18:34:18 labeled as xmlb04100b
>>   o LP IronWare Image (Primary for LP Image Type 0)
>>     Version 4.1.0dT177, Size 3681796 bytes, Check Sum 6c67
>>     Compiled on Jul  1 2010 at 21:55:36 labeled as xmlp04100d
>>   o LP IronWare Image (Secondary for LP Image Type 0)
>>     Version 3.2.1cT177, Size 2310700 bytes, Check Sum 4531
>>     Compiled on Feb 28 2007 at 20:23:56 labeled as xmlp03201c
>>   o Monitor Image
>>     Version 4.1.0bT165, Size 464413 bytes, Check Sum 894a
>>     Compiled on Feb 26 2010 at 18:33:34 labeled as xmb04100b Boot
>> Flash - Type AM29LV040B, Size 512 KB
>>   o Boot Image
>>     Version 3.5.0T165, Size 424484 bytes, Check Sum b751
>>     Compiled on Jul 10 2007 at 19:13:56 labeled as xmprm03500
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> Line Card Slot 1
>> Code Flash: Type MT28F640J3, Size 16 MB
>>   o IronWare Image (Primary)
>>     Version 4.1.0dT177, Size 3681796 bytes, Check Sum 6c67
>>     Compiled on Jul  1 2010 at 21:55:36 labeled as xmlp04100d
>>   o IronWare Image (Secondary)
>>     Version 3.2.1cT177, Size 2310700 bytes, Check Sum 4531
>>     Compiled on Feb 28 2007 at 20:23:56 labeled as xmlp03201c
>>   o Monitor Image
>>     Version 4.1.0bT175, Size 422399 bytes, Check Sum e57e
>>     Compiled on Feb 26 2010 at 18:34:18 labeled as xmlb04100b Boot
>> Flash: Type AM29LV040B, Size 512 KB
>>   o Boot Image
>>     Version 3.2.1cT175, Size 334645 bytes, Check Sum 510c
>>     Compiled on Feb 28 2007 at 20:04:00 labeled as xmlprm03201c FPGA
>> Version (Stored In Flash):
>>  PBIF Version = 3.14, Build Time = 12/17/2008 14:32:00
>>
>>  XPP Version = 5.22, Build Time = 8/6/2009 19:10:00
>>
>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>> All show flash done
>> NetIron MLX-4 Router#
>>
>>
>> Thanks everyone.
>>
>> --Chuck
>> -------------- next part -------------- An HTML attachment was
>> scrubbed...
>> URL:
>> <https://puck.nether.net/pipermail/foundry-nsp/attachments/20100806/78
>> 0e19e3/attachment-0001.html>
>>
>> ------------------------------
>>
>> Message: 2
>> Date: Fri, 6 Aug 2010 19:12:30 +0200
>> From: Niels Bakker <niels=foundry-nsp at bakker.net>
>> To: foundry-nsp at puck.nether.net
>> Subject: Re: [f-nsp] NI-MLX MP/LP not booting from flash
>> Message-ID: <20100806171230.GP50223 at burnout.tpb.net>
>> Content-Type: text/plain; charset=us-ascii; format=flowed
>>
>> * markentime at gmail.com (Chuck Ufarley) [Fri 06 Aug 2010, 18:58 CEST]:
>>>I'm having trouble upgrading to the late 4.1xxx code and the 5.xxx
>>>code on the NI-MLX.  Anyone else getting this error on attempting to
>>>reboot?
>>>
>>>NetIron MLX-4 Router#reload
>>>Checking for coherence...
>>>
>>>Image coherence check: Can't open startup config file. Warning:
>>>Image coherence check skipped due to insufficient info: MP/LP not
>>>booting from flash.
>>>Are you sure? (enter 'y' or 'n'):
>>>
>>>**********************
>>>
>>>It's odd, because if I enter the boot system flash primary command and
>
>>>save the config, the problem goes away, but I've never had to do that
>>>before.  Is it now a requirement to perform a coherence check before
>>>reloading?
>>
>> Yes, it got introduced a while ago.  I guess I wasn't the only one who
>
>> kept forgetting to upgrade/downgrade FPGA code when inserting a new
>> module or an RMA'd one into a switch and have things not work in weird
>
>> ways.  Saving the config should be enough, though, I don't have any
>> boot commands on my MLXen.  And you can actually ignore the warning if
>
>> you want to, it's not necessarily an error, otherwise you wouldn't be
>> able to do "erase startup-config"/"reload".
>>
>>
>> 	-- Niels.
>>
>> --
>>
>>
>> ------------------------------
>>
>> _______________________________________________
>> foundry-nsp mailing list
>> foundry-nsp at puck.nether.net
>> http://puck.nether.net/mailman/listinfo/foundry-nsp
>>
>> End of foundry-nsp Digest, Vol 91, Issue 5
>> ******************************************
>>
>
> --
> Sent from my mobile device
>
> Regards,
>
> Emmanuel Muncal, ECE
> http://framesofanemn.blogspot.com
>
>
> -----BEGIN GEEK CODE BLOCK-----
> Version: 3.12
> GE d- s: a28- C++++ UL++ P L++ E--- W++
> N+ o-- K- w O+ M- V-- PS+ PE+ Y PGP- t 5+
> X+ R* tv+ b+ DI++ D- G e++ h---- r+++ y+++
> ------END GEEK CODE BLOCK------
> _______________________________________________
> foundry-nsp mailing list
> foundry-nsp at puck.nether.net
> http://puck.nether.net/mailman/listinfo/foundry-nsp
> --------------------------------------------------------------------------------
>
> This message is for information purposes only and is not intended as an
> offer, recommendation or solicitation to buy or sell, nor is it an official
> confirmation of terms. No representation or warranty is made that this
> information is complete or accurate. Any views or opinions expressed do not
> necessarily represent those of ODL Securities Limited. This email and the
> information it contains may be confidential, proprietary or legally
> privileged.
> If you receive this message in error, please notify the sender and delete it
> from your system. You must not, directly or indirectly, use, disclose,
> distribute, copy or store this message or any part of it if you are not the
> intended recipient. Unless otherwise stated, any pricing information given
> in
> this email is indicative only, is subject to changes and does not constitute
> an offer to deal at any price quoted.
>
> ODL Securities Limited is authorised and regulated by the Financial Services
> Authority.
>
> --------------------------------------------------------------------------------
>
>

-- 
Sent from my mobile device

Regards,

Emmanuel Muncal, ECE
http://framesofanemn.blogspot.com


-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GE d- s: a28- C++++ UL++ P L++ E--- W++
N+ o-- K- w O+ M- V-- PS+ PE+ Y PGP- t 5+
X+ R* tv+ b+ DI++ D- G e++ h---- r+++ y+++
------END GEEK CODE BLOCK------


More information about the foundry-nsp mailing list