cancel
Showing results for 
Search instead for 
Did you mean: 
Create Post
Level 7

NCM config download is not working with banner on fortigate

Hello everybody,

we encouter a problem on NCM version 8.0. The config download on our Fortigates in NCM isn't working if a banner ist activated.

Since the banner is mandatory we can't just disable it.

It seems that the prompt after the banner is not recognized.

If i disable it the download works without any issues.

Here is the trace of the SSH session.

[1a16b609] [09.24.2019 13:17:19.074] -----------------Net. SWTelnet v7.10.0.166-------------------

[1a16b609] [09.24.2019 13:17:19.074] UseCustomMorePromptBehaviour: False

[1a16b609] [09.24.2019 13:17:19.074] MorePromptKey:  

[1a16b609] [09.24.2019 13:17:19.074] Custom MorePrompt Pattern: 

[1a16b609] [09.24.2019 13:17:19.074] Login Attempts: 1

[1a16b609] [09.24.2019 13:17:19.074] Enable Identifier: #$

[1a16b609] [09.24.2019 13:17:19.074] Device Template: Fortigate 240D  Connection Profile: NCM

[1a16b609] [09.24.2019 13:17:19.074] UseExactPromptMatch=False

[1a16b609] [09.24.2019 13:17:19.074] Menu-based mode=False

[1a16b609] [09.24.2019 13:17:19.074] FreezeLoginForPreCommands mode= False

[1a16b609] [09.24.2019 13:17:19.074] CommandCharKey = Default

[1a16b609] [09.24.2019 13:17:19.089] FISP mode= False

[1a16b609] [09.24.2019 13:17:19.089] EncryptionAlgorithm= Auto

[1a16b609] [09.24.2019 13:17:19.089] WODSSH Version: 2.7.2.180

[1a16b609] [09.24.2019 13:17:19.089] UseVirtualPromptForCommands False

[1a16b609] [09.24.2019 13:17:19.089] VirtualPrompt: \$

[1a16b609] [09.24.2019 13:17:19.089] Responce Timeout in seconds: 15

[1a16b609] [09.24.2019 13:17:19.089] Connection Timeout in seconds: 45

[1a16b609] [09.24.2019 13:17:19.089] StateChange: Connecting

[1a16b609] [09.24.2019 13:17:19.496] Got HostFingerPrint: System.Byte[]

[1a16b609] [09.24.2019 13:17:19.886] SWTelnet9 Crypto Information Begin 

[1a16b609] [09.24.2019 13:17:19.886] Protocol = SSH2

[1a16b609] [09.24.2019 13:17:19.886] RemoteName = 10.132.15.253

[1a16b609] [09.24.2019 13:17:19.886] SCcipher = AES128ctr

[1a16b609] [09.24.2019 13:17:19.886] CSCipher = AES128ctr

[1a16b609] [09.24.2019 13:17:19.886] Keys = ssh-rsa

[1a16b609] [09.24.2019 13:17:19.886] SWTelnet9 Crypto Information End

[1a16b609] [09.24.2019 13:17:20.089] StateChange: Connected

[1a16b609] [09.24.2019 13:17:20.089] Connected!

[1a16b609] [09.24.2019 13:17:20.089] -->**************************************************************************                                                                       **    This firewall is the property of comdirect bank AG.                * *    Unauthorized access to this system is prohibited                   **    and may be prosecuted under civil and / or criminal law.           * *    The use of the system may be logged or monitored without notice    **    and the resulting logs may be used as evidence in court.           **                                                                       **************************************************************************

[1a16b609] [09.24.2019 13:17:20.089] ProcessLogin State: Banner

[1a16b609] [09.24.2019 13:17:20.089] -->CDFWROP01 $ 

[1a16b609] [09.24.2019 13:17:20.089] ProcessLogin State: Banner

[1a16b609] [09.24.2019 13:17:20.089] no credentials needed - Command mode prompt detected

[1a16b609] [09.24.2019 13:17:20.089] Prompt being set to: **************************************************************************                                                                       **    This firewall is the property of comdirect bank AG.                * *    Unauthorized access to this system is prohibited                   **    and may be prosecuted under civil and / or criminal law.           * *    The use of the system may be logged or monitored without notice    **    and the resulting logs may be used as evidence in court.           **                                                                       **************************************************************************CDFWROP01 $ 

[1a16b609] [09.24.2019 13:17:20.089] Logged into device

[1a16b609] [09.24.2019 13:17:20.089] <--

[1a16b609] [09.24.2019 13:17:20.105] -->

[1a16b609] [09.24.2019 13:17:20.105] -->

[1a16b609] [09.24.2019 13:17:20.105] -->

[1a16b609] [09.24.2019 13:17:20.105] Start check prompt for menu-based device

[1a16b609] [09.24.2019 13:17:20.105] Process line = <>

[1a16b609] [09.24.2019 13:17:20.105] Process line = <>

[1a16b609] [09.24.2019 13:17:20.105] Process line = <>

[1a16b609] [09.24.2019 13:17:20.105] -->CDFWROP01 $ 

[1a16b609] [09.24.2019 13:17:20.105] Start check prompt for menu-based device

[1a16b609] [09.24.2019 13:17:20.121] Process line = <CDFWROP01 $ >

[1a16b609] [09.24.2019 13:17:20.121] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:20.121] Pushing back: <CDFWROP01 $ >

[1a16b609] [09.24.2019 13:17:20.121] mPrompt is : <**************************************************************************                                                                       **    This firewall is the property of comdirect bank AG.                * *    Unauthorized access to this system is prohibited                   **    and may be prosecuted under civil and / or criminal law.           * *    The use of the system may be logged or monitored without notice    **    and the resulting logs may be used as evidence in court.           **                                                                       **************************************************************************CDFWROP01 $ >

[1a16b609] [09.24.2019 13:17:21.089] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:21.089] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:23.105] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:23.105] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:23.105] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:23.105] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:23.105] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:25.121] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:25.121] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:25.121] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:25.121] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:25.121] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:27.136] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:27.136] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:27.136] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:27.136] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:27.136] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:29.152] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:29.152] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:29.152] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:29.152] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:29.152] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:31.168] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:31.168] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:31.168] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:31.168] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:31.168] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:33.168] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:33.168] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:33.168] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:33.168] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:33.168] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:35.183] TimerTick: mstrData=<CDFWROP01 $ > State=Connected

[1a16b609] [09.24.2019 13:17:35.183] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:35.183] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:35.183] Fuzzy match detector start detecting prompt. String1=cdfwrop01$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:35.183] TimerTick: Timeout

[1a16b609] [09.24.2019 13:17:35.183] SendNextCommand Running: config global

[1a16b609] [09.24.2019 13:17:35.183] <-- config global

[1a16b609] [09.24.2019 13:17:35.199] -->config global

[1a16b609] [09.24.2019 13:17:35.199] -->

[1a16b609] [09.24.2019 13:17:35.199] -->

[1a16b609] [09.24.2019 13:17:35.199] -->CDFWROP01 (global) $ 

[1a16b609] [09.24.2019 13:17:35.199] Echo not detected yet. Push back data to echo buffer, EchoBuffer = <<<CDFWROP01 $ config global

>>>

[1a16b609] [09.24.2019 13:17:35.199] Start detecting command echo in echo buffer...

[1a16b609] [09.24.2019 13:17:35.199] Echo is detected, EchoBuffer = <<<CDFWROP01 $ config global

>>>

[1a16b609] [09.24.2019 13:17:35.199] RemovePrompt = prompt not found via Regex

[1a16b609] [09.24.2019 13:17:35.199] Echo and prompt are removed if they exist, out buffer = <<<CDFWROP01 $ CDFWROP01 (global) $ >>>

[1a16b609] [09.24.2019 13:17:35.199] Start check prompt for menu-based device

[1a16b609] [09.24.2019 13:17:35.199] Process line = <CDFWROP01 $ CDFWROP01 (global) $ >

[1a16b609] [09.24.2019 13:17:35.199] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:35.199] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:35.199] Pushing back: <CDFWROP01 $ CDFWROP01 (global) $ >

[1a16b609] [09.24.2019 13:17:35.199] mPrompt is : <**************************************************************************                                                                       **    This firewall is the property of comdirect bank AG.                * *    Unauthorized access to this system is prohibited                   **    and may be prosecuted under civil and / or criminal law.           * *    The use of the system may be logged or monitored without notice    **    and the resulting logs may be used as evidence in court.           **                                                                       **************************************************************************CDFWROP01 $ >

[1a16b609] [09.24.2019 13:17:37.199] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:37.199] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:37.199] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:37.199] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:37.199] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:39.215] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:39.215] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:39.215] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:39.215] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:39.215] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:39.215] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:41.230] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:41.230] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:41.230] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:41.230] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:41.230] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:41.230] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:43.246] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:43.246] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:43.246] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:43.246] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:43.246] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:43.246] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:45.262] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:45.262] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:45.262] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:45.262] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:45.262] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:45.262] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:47.277] TimerTick: mstrData=<CDFWROP01 $ CDFWROP01 (global) $ > State=Connected

[1a16b609] [09.24.2019 13:17:47.277] Pending Disconnect = False

[1a16b609] [09.24.2019 13:17:47.277] Pre-Commands: Waiting more than 3 seconds for response start sending pre-command if any...

[1a16b609] [09.24.2019 13:17:47.277] Fuzzy match detector start detecting prompt. String1=cdfwrop01$cdfwrop01(global)$ String2=****************************************************************************thisfirewallisthepropertyofcomdirectbankag.* *unauthorizedaccesstothissystemisprohibited**andmaybeprosecutedunderciviland/orcriminallaw.* *theuseofthesystemmaybeloggedormonitoredwithoutnotice**andtheresultinglogsmaybeusedasevidenceincourt.****************************************************************************cdfwrop01$

[1a16b609] [09.24.2019 13:17:47.277] Removed data in (...) Output= cdfwrop01$cdfwrop01$

[1a16b609] [09.24.2019 13:17:47.277] TimerTick: Just tick-tockin away ...

[1a16b609] [09.24.2019 13:17:49.090] Disconnecting

maybe somebody has an idea on this?

Regards,

skipp

0 Kudos
0 Replies