Ib�ve got a customer whob�s been asking about TCLb�ing a 6500 running
12.2(18)SXF17.
What the customer is trying to achieve is to be able to Tcl the 6500b�s to do
static mac blocking using the following command.
mac-address-table static XXXX.XXXX.XXXX VLAN X drop
Theyb�ve been doing this manually for years now and want an easier method to
blocking macb�s at the distribution pair. Ib�ve suggested a b�block dhcp
scopeb� based on Macb�s but because the network team does not manage/own the
DNS servers they need to keep this responsibility within the Network team so
that was out of the question.
Instead, they are curious about Tclb�ing the 6500b�s to be able to do a
database dip in essence to an Access Database that they plan on managing and
then applying the above command per adjacent user vlans. Ib�m not to familiar
with Tcl and not even sure if you can do a dip to a database with Ciscob�s Tcl
implementation. However, my thoughts would probably be to do it different to
make scripting easier and hopefully to lower the probability that the script
may hang by trying to do something too complex such as DB dip/query, etc.
Instead of a DB dip,
Ib�m thinking the following would be easier and probably better
1) Tcl script run nightly, pull down (tftp) text file of macb�s listed
line by line.
2) Do a sh run and pipe to file(flash) only configurations with the above
command.
3) Read in file from step 2 and delete the statements in the current
config
4) Then Read in new txt file of b�currentb� macb�s (from step 1) and
add the new statements to the config.
Even then, one other issue is that every user vlan per distribution pair is
b�globallyb� unique meaning every vlan is used only once on the campus. You
will have to either customize the script itself to either include the vlans per
distribution pair, or you could standardize the script across the distribution
pairs using a parsing method to gather the info for the User Vlans within each
distribution pair to which these commands should be applied to.
They have roughly about 30+ distribution Pairs of 6500s that they are looking
to deploy Tcl on. So, if you customized the script, you may have to test it on
each distribution pair and that would be more work.
Ib�ve asked the customer if they would ever consider standardizing vlanb�s
across the campus from a management perspective (make those vlanb�s locally
significant only and make them all the same) to ease mass deployment using
b�templatizedb� configurations but I donb�t think this is going to happen.
Customer has a for knowing the location based on vlans/subnets.
Regardless, has anyone done this type of work and does Tcl behave well for
reading files, parsing, etc in IOS?? Customer is running 12.2(18)SXF17. Or
does anyone have any better suggestions or different methodb�s to achieve
this?
Lastly, does Cisco implementation of Tcl support the Expect extensions?
Regards,
Cher
Blogs and organic groups at http://www.ccie.net
Received on Fri Mar 26 2010 - 11:10:49 ART