Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Refactor(anta.tests): Augment VerifySSHStatus inputs to support a different VRF and an expected state #875

Open
gmuloc opened this issue Oct 10, 2024 · 1 comment
Open

Refactor(anta.tests): Augment VerifySSHStatus inputs to support a different VRF and an expected state #875

gmuloc opened this issue Oct 10, 2024 · 1 comment
Assignees
@vitthalmagadum
Labels
network-tests on-hold Waiting for additional elements test-enhancement

Comments

@gmuloc
Copy link
Collaborator

gmuloc commented Oct 10, 2024 

          VerifySSHStatus test should be augmented to support a different VRF and an expected state in the future (with defaults being disabled / default to be backward compatib;e)

Originally posted by @gmuloc in #874 (comment)
@carl-baillargeon carl-baillargeon changed the title VerifySSHStatus test should be augmented to support a different VRF and an expected state in the future (with defaults being disabled / default to be backward compatib;e) VerifySSHStatus test should be augmented to support a different VRF and an expected state in the future (with defaults being disabled / default to be backward compatible) Oct 10, 2024
@gmuloc gmuloc changed the title VerifySSHStatus test should be augmented to support a different VRF and an expected state in the future (with defaults being disabled / default to be backward compatible) Refactor(anta.tests): Augment VerifySSHStatus inputs to support a different VRF and an expected state Jan 28, 2025
@gmuloc
Copy link
Collaborator Author

gmuloc commented Jan 28, 2025
edited
Loading

Discussed with @vitthalmagadum and @geetanjalimanegslab on a call:

The command fails with VRF default today

net-cloud(config-mgmt-ssh-vrf-BLAH)#show active
management ssh
   vrf BLAH
      no shutdown
      !
      tunnel BLAH
inet-cloud(config)#show management ssh vrf BLAH
User certificate authentication method: none (trusted CA not configured)
SSHD status for VRF BLAH is disabled
SSH connection limit is 50
SSH per host connection limit is 20
FIPS status: disabled

inet-cloud(config)#show management ssh
User certificate authentication method: none (trusted CA not configured)
SSHD status for Default VRF is enabled
SSH connection limit is 50
SSH per host connection limit is 20
FIPS status: disabled

inet-cloud(config)#show management ssh vrf default
% VRF default not found under SSH management  <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<

When vrf default is configured, the command is valid but the output seems wrong (as different than entering the command without VRF)

inet-cloud(config-mgmt-ssh)#show active
management ssh
   vrf BLAH
      no shutdown
      !
      tunnel BLAH
   !
   vrf default
      no shutdown
inet-cloud(config-mgmt-ssh)#
inet-cloud(config-mgmt-ssh)#
inet-cloud(config-mgmt-ssh)#
inet-cloud(config-mgmt-ssh)#
inet-cloud(config-mgmt-ssh)#
inet-cloud(config-mgmt-ssh)#exit
inet-cloud(config)#show management ssh vrf default
User certificate authentication method: none (trusted CA not configured)
SSHD status for VRF default is disabled <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< with vrf default
SSH connection limit is 50
SSH per host connection limit is 20
FIPS status: disabled

inet-cloud(config)#show management ssh
User certificate authentication method: none (trusted CA not configured)
SSHD status for Default VRF is enabled <<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<<< without vrf default
SSH connection limit is 50
SSH per host connection limit is 20
FIPS status: disabled

@gmuloc gmuloc added the on-hold Waiting for additional elements label Jan 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@vitthalmagadum vitthalmagadum

Labels
network-tests on-hold Waiting for additional elements test-enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@gmuloc @carl-baillargeon @vitthalmagadum