limweichiang / arubaos-tools Goto Github PK
View Code? Open in Web Editor NEWAruba Networks ArubaOS 8 tools. This is not an official repository.
License: Apache License 2.0
Aruba Networks ArubaOS 8 tools. This is not an official repository.
License: Apache License 2.0
Description: Controller clusters must be able to exchange cluster heartbeat across non-excluded VLANs. If heartbeats are not received correctly on non-excluded VLANs, the cluster degrades to L3 state, meaning there is not client state/seamless failover.
Requested Enhancement: Check if cluster is operating on L3 state (show lc-cluster group-membership) and VLANs with issues (show lc-cluster vlan-probe status)
As in title, current unhandled exception looks like this if the "--insecure" or "-i" option is not used.
arubaos-tools % python3 cluster-healthcheck.py -m 192.168.1.30 -u USER
Password for USER:
Traceback (most recent call last):
File "/Library/Python/3.7/site-packages/urllib3/connectionpool.py", line 672, in urlopen
chunked=chunked,
File "/Library/Python/3.7/site-packages/urllib3/connectionpool.py", line 376, in _make_request
self._validate_conn(conn)
File "/Library/Python/3.7/site-packages/urllib3/connectionpool.py", line 994, in _validate_conn
conn.connect()
File "/Library/Python/3.7/site-packages/urllib3/connection.py", line 394, in connect
ssl_context=context,
File "/Library/Python/3.7/site-packages/urllib3/util/ssl_.py", line 383, in ssl_wrap_socket
return context.wrap_socket(sock)
File "/Applications/Xcode.app/Contents/Developer/Library/Frameworks/Python3.framework/Versions/3.7/lib/python3.7/ssl.py", line 412, in wrap_socket
session=session
File "/Applications/Xcode.app/Contents/Developer/Library/Frameworks/Python3.framework/Versions/3.7/lib/python3.7/ssl.py", line 853, in _create
self.do_handshake()
File "/Applications/Xcode.app/Contents/Developer/Library/Frameworks/Python3.framework/Versions/3.7/lib/python3.7/ssl.py", line 1117, in do_handshake
self._sslobj.do_handshake()
ssl.SSLCertVerificationError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1056)
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/Library/Python/3.7/site-packages/requests/adapters.py", line 449, in send
timeout=timeout
File "/Library/Python/3.7/site-packages/urllib3/connectionpool.py", line 720, in urlopen
method, url, error=e, _pool=self, _stacktrace=sys.exc_info()[2]
File "/Library/Python/3.7/site-packages/urllib3/util/retry.py", line 436, in increment
raise MaxRetryError(_pool, url, error or ResponseError(cause))
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='192.168.1.30', port=4343): Max retries exceeded with url: /v1/api/login?username=USER&password=PASSWORDSTR (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1056)')))
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "cluster-healthcheck.py", line 209, in <module>
mm_login_response = http_session.get(mm_login_url, params={'username': mm_user, 'password': mm_passwd})
File "/Library/Python/3.7/site-packages/requests/sessions.py", line 546, in get
return self.request('GET', url, **kwargs)
File "/Library/Python/3.7/site-packages/requests/sessions.py", line 533, in request
resp = self.send(prep, **send_kwargs)
File "/Library/Python/3.7/site-packages/requests/sessions.py", line 646, in send
r = adapter.send(request, **kwargs)
File "/Library/Python/3.7/site-packages/requests/adapters.py", line 514, in send
raise SSLError(e, request=request)
requests.exceptions.SSLError: HTTPSConnectionPool(host='192.168.1.30', port=4343): Max retries exceeded with url: /v1/api/login?username=USER&password=PASSWORDSTR (Caused by SSLError(SSLCertVerificationError(1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1056)')))
Description: CCM sync issues occur between MM and controllers. This could prevent accurate configuration sync, and may require "ccm-debug full-config-sync" to resolve. Such issues are not obvious from MM "show switches".
Recommendation: SSH into controllers to verify for such errors, using "show configuration failure", and display issues if found.
Description: Invalid configuration can prevent controller from sync'ing configuration from the MM correctly.
Recommendation: SSH into controllers to verify for such errors, using "show profile-errors", and display issues if found.
"--insecure" option should skip security checks on MM HTTPS SSL cert and against SSH CLI keys against mobility controllers. No further user action to confirm this should be required, other than an initial warning when option is first checked. Current behavior is inconsistent, since a confirmation prompt will still appear when SSH checks begin.
For mobility controller SSH checks, without using "--insecure", a warning should indicate that the SSH checks will skip the controller.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.