From: Brian Dennis (bdennis@internetworkexpert.com)
Date: Mon Jun 14 2004 - 23:01:52 GMT-3
Art,
It looks like you are not sourcing the rsh connection off the
allowed interface. Use the "ip rcmd source-interface" command on the
rsh "server" to force rsh to source the connection of a particular
interface. This interface's IP address should be the one in the "ip
rcmd remote-host" command on the rsh "client". See below:
R1 is trying to remotely execute the "show version" command on
R3. R1's loopback 0 interface is 150.1.1.1 and R3's is 150.1.3.3. They
are connected over a serial connection using the 10.13.13.0/24 subnet.
Rack1R1#sho run | in rcmd
Rack1R1#
Rack1AS>3
[Resuming connection 3 to r3 ... ]
Rack1R3#sho run | in rcmd
ip rcmd rsh-enable
ip rcmd remote-host Rack1R1 150.1.1.1 Rack1R1
Rack1R3#
Rack1AS>1
[Resuming connection 1 to r1 ... ]
Rack1R1#rsh 150.1.3.3 sho ver
%Permission denied.
Rack1R1#
Rack1R1#conf t
Enter configuration commands, one per line. End with CNTL/Z.
Rack1R1(config)#ip rcmd source-interface lo 0
Rack1R1(config)#^Z
Rack1R1#rsh 150.1.3.3 sho ver
Cisco Internetwork Operating System Software
IOS (tm) C2600 Software (C2600-J1S3-M), Version 12.2(15)T7, RELEASE
SOFTWARE (fc2)
TAC Support: http://www.cisco.com/tac
Copyright (c) 1986-2003 by cisco Systems, Inc.
Compiled Sat 09-Aug-03 07:18 by ccai
Image text-base: 0x80008098, data-base: 0x8195144C
ROM: System Bootstrap, Version 11.3(2)XA4, RELEASE SOFTWARE (fc1)
Rack1R3 uptime is 1 hour, 21 minutes
System returned to ROM by reload
System image file is "flash:c2600-j1s3-mz.122-15.T7.bin"
cisco 2611 (MPC860) processor (revision 0x203) with 59392K/6144K bytes
of memory.
Processor board ID JAD041201UZ (461024359)
M860 processor: part number 0, mask 49
Bridging software.
X.25 software, Version 3.0.0.
TN3270 Emulation software.
2 Ethernet/IEEE 802.3 interface(s)
4 Low-speed serial(sync/async) network interface(s)
32K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)
Configuration register is 0x2102
Rack1R1#
An alternate solution would be to just change the "ip rcmd
remote-host" command on R3 to include R1's serial interface IP address.
Brian Dennis, CCIE #2210 (R&S/ISP-Dial/Security)
bdennis@internetworkexpert.com
Internetwork Expert, Inc.
http://www.InternetworkExpert.com
Toll Free: 877-224-8987
Direct: 775-745-6404 (Outside the US and Canada)
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Art Lee
Sent: Monday, June 14, 2004 1:47 PM
To: ccielab@groupstudy.com
Subject: Tclsh & Rsh........
When I try to run a tclsh script with a rsh variable...I get a
"permission denied" reply back from all routers. I am assuming that I
will need to send the telnet password with the rsh command. Has any one
acomplished the ip reachability scripts that are posted here on Group
Study? And if so could you, briefly explain how to set this up.
Thanx
This archive was generated by hypermail 2.1.4 : Sat Jul 03 2004 - 19:40:40 GMT-3