[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Freeipmi-users] bmc-config - disable channels.
|
From: |
Albert Chu |
|
Subject: |
Re: [Freeipmi-users] bmc-config - disable channels. |
|
Date: |
Mon, 23 Jan 2017 15:42:33 -0800 |
On Mon, 2017-01-23 at 15:06 -0800, VJ wrote:
> want to disable it for security purposes.
I'll add this as an issue in github to consider for adding into
bmc-device. It's an advanced purpose I had not considered, as most
people will happily leave KCS open.
Out of my curiosity, is it a typical server setup? Or is it one
involving VMs or something that leads to the security concern?
Al
>
> Do you know how to do it using ipmitool 's raw command ?
>
>
> ipmitool -I lan -H 10.0.0.1 -p 623 -b 0 -t 0xb2 -U "admin" -P "admin" -l 0
> raw ? ?
>
> Thanks.
>
>
> On Mon, Jan 23, 2017 at 2:49 PM, Albert Chu <address@hidden> wrote:
> Hi,
>
> Since you're trying to disable things like KCS, it wouldn't be
> done via
> bmc-config, since that tool is more of an average-user
> interfacing tool.
> Perhaps it'd be via the tool bmc-device, which has options for
> more
> advanced needs.
>
> May I ask what the need is to disable things like KCS? It's
> quite an
> advanced need.
>
> Al
>
> On Mon, 2017-01-23 at 14:32 -0800, VJ wrote:
> > bmc-config -v checkout
> >
> >
> > .....
> > Section Serial_Channel
> > EndSection
> > #
> > # Section Serial_Conf Comments
> > #
> > # In the Serial_Conf section, typical serial communication
> > configuration is
> > # setup. Most users will only be interested in IPMI over
> LAN,
> > therefore this
> > # section can generally be ignored.
> > #
> > Section Serial_Conf
> > EndSection
> >
> >
> >
> >
> >
> >
> > Lan_Conf seems fine.
> >
> >
> >
> >
> > How do i disable channel 0,6 and 7
> >
> >
> > Thanks.
> >
> > On Mon, Jan 23, 2017 at 2:29 PM, VJ <address@hidden>
> wrote:
> > Device ID : 36
> > Device Revision : 1
> > Device SDRs : unsupported
> > Firmware Revision : 1.17
> > Device Available : yes (normal operation)
> > IPMI Version : 2.0
> > Sensor Device : supported
> > SDR Repository Device : supported
> > SEL Device : supported
> > FRU Inventory Device : supported
> > IPMB Event Receiver : supported
> > IPMB Event Generator : supported
> > Bridge : unsupported
> > Chassis Device : supported
> > Manufacturer ID : INVENTEC CORPORATION (6569)
> > Product ID : 54
> > Auxiliary Firmware Revision Information : 00000000h
> >
> >
> > GUID : 00000000-0000-0000-0000-000000000000
> >
> >
> > System Firmware Version : rsion1.0
> > System Name : Manager
> > Primary Operating System Name : SE Server 1.0
> > Operating System Name :
> >
> >
> > Channel Information
> >
> >
> > Channel Number : 0
> > Medium Type : IPMB (I2C)
> > Protocol Type : IPMB-1.0
> > Active Session Count : 0
> > Session Support : session-less
> > Vendor ID : Intelligent Platform
> Management
> > Interface forum (7154)
> >
> >
> > Channel Number : 1
> > Medium Type : 802.3 LAN
> > Protocol Type : IPMB-1.0
> > Active Session Count : 0
> > Session Support : multi-session
> > Vendor ID : Intelligent Platform
> Management
> > Interface forum (7154)
> >
> >
> > Channel Number : 6
> > Medium Type : IPMB (I2C)
> > Protocol Type : IPMB-1.0
> > Active Session Count : 0
> > Session Support : session-less
> > Vendor ID : Intelligent Platform
> Management
> > Interface forum (7154)
> >
> >
> > Channel Number : 7
> > Medium Type : System Interface (KCS, SMIC,
> or BT)
> > Protocol Type : KCS
> > Active Session Count : 0
> > Session Support : session-less
> > Vendor ID : Intelligent Platform
> Management
> > Interface forum (7154)
> >
> > On Mon, Jan 23, 2017 at 1:30 PM, Albert Chu
> <address@hidden>
> > wrote:
> > Hi,
> >
> > What are the other channel numbers (could
> you show via
> > the output of
> > bmc-info)?
> >
> > Also, could you elaborate on your use case
> scenario?
> >
> > Thanks,
> >
> > Al
> >
> > On Mon, 2017-01-23 at 13:18 -0800, VJ wrote:
> > > I only see
> > > 1) Lan_Channel
> > > 2) Serial_Channel
> > >
> > >
> > > there are 16 channels and they are not
> displayed
> > even with -v
> > >
> > > On Thu, Jan 19, 2017 at 11:51 AM, Albert
> Chu
> > <address@hidden> wrote:
> > > Hi,
> > >
> > > Do you wish to disable a very
> specific
> > channel number, so you
> > > wish to be
> > > able to enable/disable based on
> the input of
> > a number? At the
> > > moment
> > > that isn't supported. Could you
> elaborate
> > on your use case
> > > scenario?
> > >
> > > Other channels are configurable in
> > bmc-config if you specify
> > > --verbose
> > > when you checkout. If there are
> multiple
> > lan channels you can
> > > configure
> > > both, other less common channels
> like serial
> > are also output
> > > for
> > > configuration.
> > >
> > > Al
> > >
> > > On Thu, 2017-01-19 at 11:37 -0800,
> VJ wrote:
> > > > Hi
> > > >
> > > > Can I disable a channel using
> bmc-config
> > configuration ?
> > > > I dont see the sections
> disabling or
> > enabling other than lan
> > > channel.
> > > > I looked at bmc-config man page
> and it
> > doesnt mention it.
> > > >
> > > > Thanks.
> > >
> > > >
> >
> _______________________________________________
> > > > Freeipmi-users mailing list
> > > > address@hidden
> > > >
> >
> https://lists.gnu.org/mailman/listinfo/freeipmi-users
> > >
> > > --
> > > Albert Chu
> > > address@hidden
> > > Computer Scientist
> > > High Performance Systems Division
> > > Lawrence Livermore National
> Laboratory
> > >
> > >
> > >
> > >
> > >
> > >
> > > --
> > >
> >
>
> ---------------------------------------------------------------------------------------
> > > ** Believe in : Hardwork Science God**
> > >
> ============================================
> > >
> >
> > --
> > Albert Chu
> > address@hidden
> > Computer Scientist
> > High Performance Systems Division
> > Lawrence Livermore National Laboratory
> >
> >
> >
> >
> >
> >
> >
> > --
> >
>
> ---------------------------------------------------------------------------------------
> > ** Believe in : Hardwork Science God**
> > ============================================
> >
> >
> >
> >
> >
> > --
> >
>
> ---------------------------------------------------------------------------------------
> > ** Believe in : Hardwork Science God**
> > ============================================
> >
>
> --
> Albert Chu
> address@hidden
> Computer Scientist
> High Performance Systems Division
> Lawrence Livermore National Laboratory
>
>
>
>
>
>
>
> --
> ---------------------------------------------------------------------------------------
> ** Believe in : Hardwork Science God**
> ============================================
>
--
Albert Chu
address@hidden
Computer Scientist
High Performance Systems Division
Lawrence Livermore National Laboratory
- [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/19
- Re: [Freeipmi-users] bmc-config - disable channels., Albert Chu, 2017/01/19
- Re: [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., Albert Chu, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., Albert Chu, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., VJ, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels., Albert Chu, 2017/01/23
- Re: [Freeipmi-users] bmc-config - disable channels.,
Albert Chu <=