This post is more than 5 years old
13 Posts
0
7726
Access via iDRAC
Hi there,
this is a question concerned with the first steps
using iDRAC (in a special setup). I think I have to dig through
the stuff but my hope is you can give me basic info to let
me carry on a little bit more targeted….
in a remote LAN we run a poweredge 730. The IT service
configured an iDRAC with an internal IP. Parallelly we can access
a root server within the same remote LAN. So logged into the iDRAC via ssh
and changed the password. Unfortunately we
don’t have access to their vpn. So my questions is what could
be the best solution in order to access it:
1.) let them configure an external IP
2.) on the shell I can see that the IDRAC interface opens 4 ports:
22/tcp open ssh
80/tcp open http
443/tcp open https
5900/tcp open vnc
Could it be a more or less good solution to make a port forwarding e.g. with iptables
from that root server in the remote LAN in order to enable access to the iDRAC from remote ?
Sorry for this beginner questions. The main thing I’d like ask is how the
client is look like, i.e. do we have a web based solution here or do I have
to download client program similar to the graphical client that let allows people
to administer an ESXi Host.
Looking forward to you answers. Some short info , link etc. would be great.
Cheers,
Matti
Anonymous
5 Practitioner
5 Practitioner
•
274.2K Posts
0
April 22nd, 2016 08:00
Here is all the information you need to know about iDRAC8 setup: www.dell.com/.../Other-Documents-You-May-Need;lang=en-us
Besides launching iDRAC Virtual Console to manage a remote server, you can also make use of VNC client for the same purpose. However, you can only have either VNC session or Virtual Console session at any given time but only one VNC session is allowed at any given time. See link: http://bit.ly/1MN01mJ
Anonymous
5 Practitioner
5 Practitioner
•
274.2K Posts
0
April 21st, 2016 15:00
Hello.
Good security practices require that iDRAC be set up on a dedicated management network/subnet or VLAN separate from other technologies. Allowing iDRAC to be accessible on external network exposes the connected system to security risks.
rautiainen
13 Posts
0
April 22nd, 2016 01:00
Hi Robert,
ok ... thx a lot!
Can you give a link for first step information
esp. concerned with the install of an iDRAC - client
webbased or as application ? I just need a starting point.
E.g. I wondered why they open the vnc port.
Happy weekend to you all!
Best,
Matti
rautiainen
13 Posts
0
June 28th, 2016 04:00
Hi Robert,
thanks for your hints!
for the time being, we want mails from
the server say on a day-to-day basis concerned
with the state of the server as well as alert mails
e.g. in case of a broken RAID-disk. Once again,
the mail interface works. Now we want to configure
the alerts etc. .. I will dig through the stuff you gave me...
Also I had a look on the paper concerned with
access via vnc. In a nutshell, that would provide
a LINUX/UNIX-based graphical Desktop of the server
on „iDRAC“-Level? With VNC it would be possible
to control it via bash (monitoring, log parsing etc.)
… I ask this „stupid“ questions, because it is a little
bit tricky to access the server for us, i.e. we make
an ssh-tunnel on another computer within the LAN
of the iDRAC-server in order to acces it via the servers
internal IP. If similar things are possible with vmc… please
let me know.
Best,
Matti