nanog mailing list archives

Re: ipmi access

From: Andrew Latham <lathama () gmail com>
Date: Mon, 2 Jun 2014 07:19:07 -0500

I use OpenVPN to access an Admin/sandboxed network with insecure portals,
wiki, and ipmi.
On Jun 2, 2014 7:13 AM, "Randy Bush" <randy () psg com> wrote:

so how to folk protect yet access ipmi?  it is pretty vulnerable, so 99%
of the time i want it blocked off.  but that other 1%, i want kvm
console, remote media, and dim sum.

currently, i just block the ip address chunk into which i put ipmi at
the border of the rack.  when i want access, i reconfig the acl.  bit of
a pita.

anyone care to share better idea(s)?  thanks.

randy

Current thread:

ipmi access Randy Bush (Jun 02)
- Re: ipmi access Andrew Latham (Jun 02)
  - Re: ipmi access Paul S. (Jun 02)
    - Re: ipmi access Jeroen Massar (Jun 02)
    - Re: ipmi access Paul S. (Jun 02)
    - Re: ipmi access Brian Rak (Jun 02)
  - Re: ipmi access Randy Bush (Jun 02)
    - Re: ipmi access Andrew Latham (Jun 02)
    - Re: ipmi access coy . hile (Jun 02)
    - Re: ipmi access shawn wilson (Jun 02)
    - Re: ipmi access Chris Adams (Jun 02)
    - Re: ipmi access Jimmy Hess (Jun 02)

(Thread continues...)