IPMI console [Re: Chicken and egg, encrypted root FS on remote server]
Vincent Hoffman
vince at unsane.co.uk
Wed Feb 20 21:34:01 UTC 2013
On 20/02/2013 20:31, Paul Schenkeveld wrote:
> Hi Daniel,
>
> On Wed, Feb 20, 2013 at 10:55:47PM +1030, Daniel O'Connor wrote:
>> On 20/02/2013, at 21:43, Paul Schenkeveld <freebsd at psconsult.nl> wrote:
>>>> What about getting a remote console like HP's ILO or Dell's DRAC ?
>>>>
>>>> You get to login remotely, you can use some degree of access control... you can even remote boot.
>>> For new hardware I could indeed use this, the current hardware does not
>>> support remote console.
>>>
>>> I don't have experience with ILO nor DRAC but I do have experience with
>>> SuperMicro's KVM over LAN which does need a java client to run. If I can
>>> enter the passphrase over ssh that would be better as I can use any device
>>> including a smartphone to dial in and enter the passphrase.
>>
>> If you setup a serial console you don't need Java if you use ipmitool, eg
>> ipmitool -H remoteip -U ADMIN -I lanplus sol activate
> Tried that with some Supermicro servers, the serial console allows me to
> get into BIOS config and shows boot messages up to starting the kernel,
> once the kernel starts output stops.
>
> In the BIOS setup, console redirect defaults to com2 port which explains
> why output stops after the loader passes control to the kernel.
>
> BTW, ipmitool always gives me "Info: cannot activate SOL payload with
> encryption" but ipmi-console (sysutils/freeipmi) works.
>
> If I change the console redirect to com1, my screen stays blank. Would
> you perhaps know how to use com1 for redirect and connect to it using
> ipmi-console (or ipmi-tool)?
I have a supermicro using ipmi sol running happily using com2
my notes were ahem,less than through however hopefully they are enough?
(FreeBSD 9.1-RELEASE)
For Serial over lan (ipmi)
edit /boot.config to contain
-Dh
edit /boot/loader.conf to add
ipmi_load="YES"
hint.uart.0.flags=""
hint.uart.1.flags="0x10"
console="comconsole vidconsole"
comconsole_speed="19200"
boot_multicons="yes"
edit /etc/ttys
change line for ttyu1
ttyu1 "/usr/libexec/getty std.19200" vt100 on secure
--
root at kyanite london]# ipmitool -I lanplus -U admin -E -H 192.168.22.118
sol activate
Unable to read password from environment
Password:
[SOL Session operational. Use ~? for help]
FreeBSD/amd64 (copia.namesco.net) (ttyu1)
login:
Hope thats helpful
Vince
> Thanks,
>
> Paul Schenkeveld
> _______________________________________________
> freebsd-hackers at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-hackers
> To unsubscribe, send any mail to "freebsd-hackers-unsubscribe at freebsd.org"
More information about the freebsd-hackers
mailing list