IPMI(Intelligent Platform Management Interface)¶õ Áö´ÉÇü Ç÷§Æû°ü¸® ÀÎÅÍÆäÀ̽ºÀÌ´Ù.
ÀÌ´Â Ç÷§Æû¿¡ ´ëÇÑ °ü¸® ÀÎÅÍÆäÀ̽º·Î OS ÀÌÀü âġµé¿¡ ´ëÇÑ °ü·Á ÀÎÅÍÆäÀ̽º¸¦ ³ªÅ¸³½´Ù.
OpenIPMI´Â ·¹µåÇòÀ» ºñ·ÔÇÏ¿© µ¥ºñ¾È µîÀÇ °ÅÀÇ ´ëºÎºÐÀÇ ¹èÆ÷ÆÇ ¸®´ª½º¿¡¼ ±âº»ÀûÀ¸·Î ¼³Ä¡µÇ´Â ¸®´ª½º ÆÐÅ°Áö ÁßÀÇ ÇϳªÀÌ´Ù.
·ÎÄýýºÅÛ»Ó¸¸ ¾Æ´Ï¶ó ¿ø°ÝÁöÀÇ Àåºñ¿¡ ´ëÇؼµµ »óÅÂÈ®ÀÎ ¹× µ¿ÀÛÀÌ °¡´ÉÇÏ´Ù.
¼Ò½ºÄÄÆÄÀϷεµ ¼³Ä¡°¡ °¡´ÉÇÏ¸ç ¼Õ½±°Ô yum ÆÐÅ°Áö¸¦ ÅëÇؼ °¡´ÉÇÏ´Ù.
|
[root@chonnom ~]# yum -y install OpenIPMI-tools
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* addons: centos.mirror.cdnetworks.com
* base: centos.mirror.cdnetworks.com
* extras: centos.mirror.cdnetworks.com
* updates: centos.mirror.cdnetworks.com
Setting up Install Process
Resolving Dependencies
There are unfinished transactions remaining. You might consider running yum-complete-transaction first to finish them.
The program yum-complete-transaction is found in the yum-utils package.
--> Running transaction check
---> Package OpenIPMI-tools.i386 0:2.0.16-7.el5 set to be updated
--> Finished Dependency Resolution
Dependencies Resolved
=================================================================================================
Package Arch Version Repository Size
=================================================================================================
Installing:
OpenIPMI-tools i386 2.0.16-7.el5 base 402 k
Transaction Summary
=================================================================================================
Install 1 Package(s)
Upgrade 0 Package(s)
Total download size: 402 k
Downloading Packages:
OpenIPMI-tools-2.0.16-7.el5.i386.rpm | 402 kB 00:00
Running rpm_check_debug
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing : OpenIPMI 1/1
Installed:
OpenIPMI-tools.i386 0:2.0.16-7.el5
Complete! |
¡Ø Ä¿³ÎÀ» ÄÄÆÄÀÏÀ» Çؼ »ç¿ëÇÏ´Â °æ¿ì¿¡´Â config ¿É¼ÇÈ®ÀÎ
|
*
* IPMI top-level message handler
*
IPMI top-level message handler (IPMI_HANDLER) [M/n/y/?] m
Generate a panic event to all BMCs on a panic (IPMI_PANIC_EVENT) [N/y/?] (NEW) y
Generate OEM events containing the panic string (IPMI_PANIC_STRING) [N/y/?] (NEW) y
Device interface for IPMI (IPMI_DEVICE_INTERFACE) [N/m/?] (NEW) m
IPMI System Interface handler (IPMI_SI) [N/m/?] (NEW) m
IPMI Watchdog Timer (IPMI_WATCHDOG) [N/m/?] (NEW) m
IPMI Poweroff (IPMI_POWEROFF) [N/m/?] (NEW) m |
ÇÊ¿äÁ¶°Ç
IPMI over LANÀ» »ç¿ëÇϱâ À§Çؼ´Â ¾Æ·¡ÀÇ ¸î °¡Áö Á¶°ÇÀ» ¸¸Á·ÇÏ¿©¾ß ÇÑ´Ù.
¼¹ö¿ë º¸µå°¡ ¾Æ´Ñ ÀϹݺ¸µå¿¡´Â ¾ÆÁ÷µµ Áö¿øµÇÁö ¾Ê´Â°Ô ¸¹´Ù.
1. IPMI version 1.5 ÀÌ»óÀ» Áö¿øÇÏ´Â Hardware Platform(¸ÞÀκ¸µå)
2. Serial Over LAN ±â´ÉÀ» »ç¿ëÇϱâ À§ÇÑ RMCP+ protocolÀÌ Áö¿øµÇ´Â Hardware Platform.
3. SMBUS¸¦ ÅëÇØ BMC¿Í Åë½ÅÇϱâ À§ÇÑ UDP 623 portÀÇ °³¹æ.
¡Ø BMC : Baseboard Management Controllers. IPMI compliant micro controllers that handle system event management. These are usually available as cPCI cards.
¸ÞÀκ¸µå Áö¿ø¿©ºÎÈ®ÀÎ
|
[root@chonnom linux]# dmidecode |more
.........................................................
.........................................................
.........................................................
Handle 0x001A, DMI type 38, 18 bytes
IPMI Device Information
Interface Type: Unknown
Specification Version: 1.5
I2C Slave Address: 0x00
NV Storage Device: Not Present
Base Address: 0x0000000000000CA8 (I/O)
Register Spacing: Successive Byte Boundaries
Handle 0x001B, DMI type 127, 4 bytes
End Of Table |
¿ø°ÝÁö ³×Æ®¿öÅ© ¼³Á¤
·ÎÄÿ¡¼ ·ÎÄÃÀåºñ¸¦ ÄÁÆ®·ÑÇÏ´Â°Ç º°·Î ¹«ÀǹÌÇÑ°Å °°°í ¿ø°ÝÁö ¼¹ö¸¦ ÄÁÆ®·Ñ ÇϱâÀ§ÇÑ Á¶°ÇÀ» »ìÆ캻´Ù.
¿ø°ÝÁö¸¦ Á¢¼ÓÇϱâ ÀÌÀü¿¡ ¿ø°ÝÁö ¼¹ö ¸ÞÀκ¸µå¿¡ ¾ÆÀÌÇǸ¦ ¼³Á¤Çϴµ¥ ½ÇÁ¦ ¼¹öÇÏ°í´Â º°µµ·Î »ý¼ºÇÑ´Ù.
¾Æ·¡ »¡°£»ö ºÎºÐÀ» º¸¸é ¾ÆÁ÷ ³×Æ®¿öÅ©°¡ ¹Ì¼³Á¤µÇ¾îÀÖ´Â »óÅÂÀÌ´Ù.
|
[root@chonnom ]# ipmitool lan print 1
Set in Progress : Set Complete
Auth Type Support : NONE MD2 MD5 OEM
Auth Type Enable : Callback : NONE MD2 MD5 OEM
: User : NONE MD2 MD5 OEM
: Operator : NONE MD2 MD5 OEM
: Admin : NONE MD2 MD5 OEM
: OEM :
IP Address Source : DHCP Address
IP Address : 0.0.0.0
Subnet Mask : 0.0.0.0
MAC Address : 00:e0:81:b9:18:c3
SNMP Community String : AMI
IP Header : TTL=0x00 Flags=0x00 Precedence=0x00 TOS=0x00
BMC ARP Control : ARP Responses Disabled, Gratuitous ARP Disabled
Gratituous ARP Intrvl : 0.0 seconds
Default Gateway IP : 0.0.0.0
Default Gateway MAC : 00:00:00:00:00:00
Backup Gateway IP : 0.0.0.0
Backup Gateway MAC : 00:00:00:00:00:00
802.1q VLAN ID : Disabled
802.1q VLAN Priority : 0
RMCP+ Cipher Suites : 1,2,3,6,7,8,11,12,0,0,0,0,0,0,0,0
Cipher Suite Priv Max : aaaaXXaaaXXaaXX
: X=Cipher Suite Unused
: c=CALLBACK
: u=USER
: o=OPERATOR
: a=ADMIN
: O=OEM
# dhcp ¼³Á¤À» static À¸·Î º¯°æ
[root@waf ~]# ipmitool lan set 1 ipsrc static
# ipaddress ¼³Á¤
[root@waf ~]# ipmitool lan set 1 ipaddr 192.168.39.15
Setting LAN IP Address to 192.168.39.15
# netmask ¼³Á¤
[root@waf ~]# ipmitool lan set 1 netmask 255.255.255.224
# default gateway ¼³Á¤
[root@waf ~]# ipmitool lan set 1 defgw ipaddr 192.168.39.1
Setting LAN Default Gateway IP to 192.168.39.1
# ¼³Á¤°ª È®ÀÎ
[root@waf ~]# ipmitool lan print 1
Set in Progress : Set Complete
Auth Type Support : NONE MD2 MD5 OEM
Auth Type Enable : Callback : NONE MD2 MD5 OEM
: User : NONE MD2 MD5 OEM
: Operator : NONE MD2 MD5 OEM
: Admin : NONE MD2 MD5 OEM
: OEM :
IP Address Source : Static Address
IP Address : 192.168.39.15
Subnet Mask : 255.255.255.224
MAC Address : 00:e0:81:b9:18:c3
SNMP Community String : AMI
IP Header : TTL=0x00 Flags=0x00 Precedence=0x00 TOS=0x00
BMC ARP Control : ARP Responses Disabled, Gratuitous ARP Disabled
Gratituous ARP Intrvl : 0.0 seconds
Default Gateway IP : 192.168.39.1
Default Gateway MAC : 00:00:00:00:00:00
Backup Gateway IP : 0.0.0.0
Backup Gateway MAC : 00:00:00:00:00:00
802.1q VLAN ID : Disabled
802.1q VLAN Priority : 0
RMCP+ Cipher Suites : 1,2,3,6,7,8,11,12,0,0,0,0,0,0,0,0
Cipher Suite Priv Max : aaaaXXaaaXXaaXX
: X=Cipher Suite Unused
: c=CALLBACK
: u=USER
: o=OPERATOR
: a=ADMIN
: O=OEM |
ÀÌ·Î½á ³×Æ®¿öÅ© ¼³Á¤Àº ³¡À̳µ´Ù.
ping À¸·Î ³×Æ®¿öÅ© ¿©ºÎ¸¦ È®ÀÎÇغ¸¸é µÈ´Ù.
¿ø°Ý¿¡¼ Á¢¼ÓÇϱâ À§ÇÑ À¯Àú»ý¼º
|
# default À¯Àú¸®½ºÆ®
[root@waf ~]# ipmitool user list 1
ID Name Enabled Callin Link Auth IPMI Msg Channel Priv Limit
1 true false false true ADMINISTRATOR
2 root true false false true ADMINISTRATOR
# À¯Àú»ý¼º (ID 3À¸·Î smileserv À¯Àú»ý¼º) set name <user id> <username>
[root@waf ~]# ipmitool user set name 3 smileserv
# ID 3 À¯Àú¿¡ Æнº¿öµå »ý¼º set password <user id> [<password>]
[root@waf ~]# ipmitool user set password 3 xxxxxxxxxx
# Ãß°¡ÇÑ À¯ÀúÈ®ÀÎ
[root@waf ~]# ipmitool user list 1
ID Name Enabled Callin Link Auth IPMI Msg Channel Priv Limit
1 true false false true ADMINISTRATOR
2 root true false false true ADMINISTRATOR
3 smileserv false true false false NO ACCESS
# ±ÇÇÑ »ý¼º ipmitool user priv <user id> <privilege level> [<channel number>]
[root@waf ~]# ipmitool user priv 3 4 1
[root@waf ~]# ipmitool user list 1
ID Name Enabled Callin Link Auth IPMI Msg Channel Priv Limit
1 true false false true ADMINISTRATOR
2 root true false false true ADMINISTRATOR
3 smileserv true true false true ADMINISTRATOR |
Privilege Level |
Description |
| 3 |
Operator: can manage the server but not add or delete new users (¼¹ö¸¦ °ü¸®ÇÒ¼ö´Â ÀÖÁö¸¸ »ç¿ëÀÚ¸¦ Ãß°¡Çϰųª »èÁ¦ÇÒ¼ö ¾øÀ½) |
| 4 |
Administrator: has full IPMI privileges (¸ðµç±ÇÇÑ) |
¿ø°Ý¿¡¼ Á¦¾îÇϱâ
|
[root@chonnom_remote ]# ipmitool -I lan -H 192.168.39.15 -U smileserv power status
Password:
Chassis Power is on
[root@Bridge kernel]# ipmitool -I lan -H 192.168.39.15 -U smileserv power off
Password:
Chassis Power Control: Down/Off |
