How to disable ipmi over lan using ipmitool

command-line-interface ipmi ilo drac ipmitool
15,726

Solution 1

Here is another way to disable lan channel :

ipmitool lan set 1 access off

Solution 2

ipmitool raw 0x6 0x40 0x01 0x40 0x44
ipmitool raw 0x6 0x40 0x01 0x80 0x84

The above command is "Set Channel Access" IPMI . Here we disable the IPMI messaging payload for channel 1 (byte-3).

Second command will disable volatile settings (LAN access will be disabled till next BMC reboot) First command will disable non-volatile settings (LAN access will remain disabled across BMC reboots)

Share:
15,726

Related videos on Youtube

Benedikt Haug
Author by

Benedikt Haug

Updated on September 18, 2022

Comments

  • Benedikt Haug
    Benedikt Haug almost 2 years

    I would like to know if it is possible to disable ipmi over lan via ipmitool.

    Setting the IP to 0.0.0.0 as stated here http://support.unitrends.com/ikm/questions.php?questionid=642 did not do what I hoped for. In fact it did nothing.

    • ipmitool -I lanplus -H hostname -U user -a lan set 1 ipaddr 0.0.0.0

    Ipmitool is the only ipmi management utility available on that jumphost.

    I would alternatively be interested in ways to disable impi over lan via ssh on hp hosts.

    For those that came here from google, here is how to disable ipmi over lan via ssh on dell hosts: connect via ssh to the idrac, open racadm and use it to disable this service. Documentation can be found here: http://web.mit.edu/cron/documentation/dell-server-admin/en/idrac1/chap09.htm

    Feel free to post if you know something remotely connected :)

    Thank you!

    • Benedikt Haug
      Benedikt Haug over 9 years
      We don't need it. It is provided by the deployment scheme which we can't control, so we would like to disable it. Yes it uses a dedicated ILO port.
  • HBruijn
    HBruijn about 9 years
    Whilst this may theoretically answer the question, please provide context around the command so others will have some idea what it is and should do.
  • resultsway
    resultsway over 7 years
    How do you enable it back and if i try it on other channel it fails how do i disable other channel such as 0x7 ?
  • rajaganesh87
    rajaganesh87 over 7 years
    @resultsway I'm not sure which channel is associated with 0x07 in your server. The different physical channels can be numbered with different logical numbers. If you have atleast one channel with admin access, you can use that to enable all other channels. if you have OS with IPMI driver enabled, use KCS/System Interface to send IPMI commands

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Power management over IPMI and HP iLO2
Can't find IPMI mac address
Resetting password for admin using the management port remotly
SuperMicro BMC on OpenSuSE Linux --cannot access from LAN
Check if an iLO board installed on a Windows machine
Is it possible to restart a supermicro kvm with ipmitool? (the kvm not the server)
HP ProLiant DL360 G7 Server reconfigure iLO using ipmitool
Password setting for IPMI in Linux
Restrict IPMI access on Dell BMC and iDRAC to an allowed IP range
Fan Speeds on SuperMicro System via IPMI