Remote Management Andras Horvath, CERN IT FIO Large-Scale Remote - - PowerPoint PPT Presentation

remote management
SMART_READER_LITE
LIVE PREVIEW

Remote Management Andras Horvath, CERN IT FIO Large-Scale Remote - - PowerPoint PPT Presentation

Jul 30, 2023 223 likes •349 views

Remote Management Andras Horvath, CERN IT FIO Large-Scale Remote Management via IPMI 1 HEPiX 2007 fall meeting IMAGE: trolley Andras Horvath, CERN IT FIO Large-Scale Remote Management via IPMI 2 HEPiX 2007 fall meeting IMAGE: racks Andras

slide-1
SLIDE 1

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 1 Large-Scale Remote Management via IPMI

Remote Management

slide-2
SLIDE 2

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 2 Large-Scale Remote Management via IPMI

IMAGE: trolley

slide-3
SLIDE 3

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 3 Large-Scale Remote Management via IPMI

IMAGE: racks

slide-4
SLIDE 4

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 4 Large-Scale Remote Management via IPMI

CERN History

2003

serial consoles with logging SLAC example and software remote restart SysRq affordable but cabling is an issue

slide-5
SLIDE 5

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 5 Large-Scale Remote Management via IPMI

IMAGE: serial cabling

slide-6
SLIDE 6

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 6 Large-Scale Remote Management via IPMI

CERN History (cont'd)

2007

serial console for ~5000 hosts IPMI power control for ~900 most future deliveries to use IPMI console, power (ACPI!), reset, SysRq

slide-7
SLIDE 7

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 7 Large-Scale Remote Management via IPMI

Free Extras?

Orderly (ACPI) emergency shutdown Switch off unneeded capacity Bootup in service order ...

slide-8
SLIDE 8

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 8 Large-Scale Remote Management via IPMI

Monitoring via IPMI

Available remotely...

...but we do this in-band

What we monitor:

thermal and voltage alarms failed PSUs (PSU support required) ECC errors, PCI parity errors

slide-9
SLIDE 9

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 9 Large-Scale Remote Management via IPMI

IPMI tips, tricks, magic

Add-on card (BMC): motherboard support req'd Don't believe the vendors: TEST

some blades have IPMI within the chassis only

What to look for:

IPMI 2.0 – encrypted authentication (no 1.5 please) RMCP+ – encrypted wire transfer (for console)

Physical interface

shared with host or separate?

Management

firmware, access control, own IP+MAC addresses...

slide-10
SLIDE 10

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 10 Large-Scale Remote Management via IPMI

Integration

iCow: wrapper for consoles

also integrates XEN VM consoles solves logging, keeps user interface

SysRq (Break) different

Password management

per-host generated random passwords user interface for power control

Power control:

could integrate with VM ”virtual power button”?

slide-11
SLIDE 11

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 11 Large-Scale Remote Management via IPMI

Future?

IPMI for several years Intel Active Management Technology?

too complex, security concerns

KVMs and/or HTTP in BMC?

too complex, no added functionality (for us)

Would like: authentication options in BMC

slide-12
SLIDE 12

Andras Horvath, CERN IT FIO HEPiX 2007 fall meeting 12 Large-Scale Remote Management via IPMI

Links

IPMI:

http://www.intel.com/design/servers/ipmi/ https://twiki.cern.ch/twiki/bin/view/FIOgroup/IpmiRef

ipmitool

http://ipmitool.sourceforge.net/

console over IPMI:

https://twiki.cern.ch/twiki/bin/view/FIOgroup/TsiConsoleIPMI