ipmi access

shawn wilson ag4ve.us at gmail.com
Mon Jun 2 13:21:46 UTC 2014

On Mon, Jun 2, 2014 at 8:26 AM, Randy Bush <randy at psg.com> wrote:
>> I use OpenVPN to access an Admin/sandboxed network with insecure portals,
>> wiki, and ipmi.
> hmmmm.  'cept when it is the openvpn server's ipmi.  but good hack.  i
> may use it, as i already do openvpn.  thanks.

So, kinda the same idea - just put IPMI on another network and use ssh
forwards to it. You can have multiple boxes connected in this fashion
but the point is to keep it simple and as secure as possible (and IPMI
security doesn't really count here :) ).

Kinda funny though - I've all of the findings have been for newer
IPMI. So, I had (have) an HP DL380g5 and didn't feel like resetting
the iLo2 password manually. Well, everything I could find for dumping
info from iLo was for iLo3... go figure. (I still wouldn't put it on
the net)

More information about the NANOG mailing list