Project

General

Profile

Bug #26626

FreeNAS Mini XL - UNABLE TO DISABLE IPMI

Added by Chase Turner almost 3 years ago. Updated over 1 year ago.

Status:
Closed
Priority:
Nice to have
Assignee:
William Grzybowski
Category:
Middleware
Target version:
Seen in:
Severity:
Low
Reason for Closing:
Not Applicable
Reason for Blocked:
Needs QA:
Yes
Needs Doc:
Yes
Needs Merging:
Yes
Needs Automation:
No
Support Suite Ticket:
n/a
Hardware Configuration:
ChangeLog Required:
No

Description

Host : freeNAS Mini XL
ASRock RACK Firmware Revision : 0.30.0

Issue : IPMI refuses to leave igb0. And, IPMI refuses to allow configuration of remote syslog answering on non-syslog TCP port

Description :

Recently, IPMI interfaces have proven to be a security risk. I want to ensure that the IPMI on my freeNAS Mini XL answers on the dedicated IPMI interface, not on igb0. Problem : there is no freeNAS MiniXL documentation detailing how to configure the freeNAS Mini XL to use the IPMI interface only. And, per the forum thread (see link below), community based solutions are not delivering a solution.

ALSO, I would very much desire that the syslog from the IPMI be directed to a remote service on a non-standard service port of 33683 (e.g., 169.46.82.180:33683. How can I configure the IPMI and freeNAS server to use those non-standard syslog ports?

Related:
https://forums.freenas.org/index.php?threads/freenas-11-0-on-freenas-mini-xl-how-to-disable-ipmi.59082/#post-417923

example.jpg (78.7 KB) example.jpg Dru Lavigne, 02/21/2019 01:06 PM
55425

History

#1 Updated by Chase Turner almost 3 years ago

  • File debug-freenas-20171113105730.txz added

#2 Updated by Dru Lavigne almost 3 years ago

  • Category changed from Documentation to 2
  • Assignee changed from Release Council to William Grzybowski

William: it looks like a few more IPMI fields would be useful here. Please pass to Lola if this is more suited to the new UI.

#3 Updated by Dru Lavigne almost 3 years ago

  • Seen in changed from Unspecified to 11.0-U4

#4 Updated by Sean Fagan almost 3 years ago

This may not be doabe in the UI at all, but rather in the BMC, and possibly in the BIOS configuration page.

The last time I tried this, the firmware had a bug, and I ended up locked out of the BMC until I managed to completely reflash the firmware.

#5 Updated by William Grzybowski almost 3 years ago

  • Status changed from Unscreened to Screened
  • Priority changed from No priority to Nice to have
  • Target version set to 11.3

#6 Avatar?id=14398&size=24x24 Updated by Kris Moore over 2 years ago

  • Status changed from Screened to Not Started

#7 Avatar?id=13649&size=24x24 Updated by Ben Gadd over 2 years ago

  • Target version changed from 11.3 to Backlog

#8 Updated by William Grzybowski over 2 years ago

  • Category changed from GUI (new) to Middleware

#9 Updated by William Grzybowski over 2 years ago

  • Severity set to Low

#10 Updated by Dru Lavigne over 1 year ago

  • File deleted (debug-freenas-20171113105730.txz)

#11 Updated by Dru Lavigne over 1 year ago

  • File example.jpg example.jpg added
  • Status changed from Not Started to Closed
  • Target version changed from Backlog to N/A
  • Private changed from Yes to No
  • Reason for Closing set to Not Applicable
55425

Chase: it turns out this is possible, just not intuitive. In the screen shown in the screenshot, use IP:port for the Server Address.

Also available in: Atom PDF