OS-to-BMC Pass-through: A New Chapter in System Manageability

Similar documents
Dell idrac7 with Lifecycle Controller

Agent-free Inventory and Monitoring for Storage and Network Devices in Dell PowerEdge 12 th Generation Servers

What is VLAN Routing?

Enhancements to idrac7 Alert Notification

Efficient Video Distribution Networks with.multicast: IGMP Querier and PIM-DM

Exploring the Remote Access Configuration Utility

Building Microsoft Windows Server 2012 Clusters on the Dell PowerEdge VRTX

How to Setup and Configure ESXi 5.0 and ESXi 5.1 for OpenManage Essentials

CCT vs. CCENT Skill Set Comparison

Lifecycle Controller Platform Update/Firmware Update in Dell PowerEdge 12th Generation Servers

Role-Based Security and its Implementation

Dell PowerVault MD Series Storage Arrays: IP SAN Best Practices

Feature Comparison: idrac 7 & 8 and idrac8 License Chart

Dell FlexAddress for PowerEdge M-Series Blades

Systems Management Tools And Documentation Version 8.1 Installation Guide

Foglight Experience Monitor and Foglight Experience Viewer

Integrating idrac7 With Microsoft Active Directory

: Interconnecting Cisco Networking Devices Part 1 v2.0 (ICND1)

Dell EqualLogic Red Hat Enterprise Linux 6.2 Boot from SAN

Fiber Channel Over Ethernet (FCoE)

How To Manage A Data Center Remotely From A Computer Or Network Remotely

Crestron Electronics, Inc. AirMedia Deployment Guide

CCNA R&S: Introduction to Networks. Chapter 5: Ethernet

System Area Manager. Remote Management

Can PowerConnect Switches Be Used in IP Multicast Networks?

Private cloud computing advances

Cisco - Configure the 1721 Router for VLANs Using a Switch Module (WIC-4ESW)

Dell Server Management Pack Suite Version 6.0 for Microsoft System Center Operations Manager User's Guide

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

Microsoft Exchange 2010 on Dell Systems. Simple Distributed Configurations

Gigabyte Management Console User s Guide (For ASPEED AST 2400 Chipset)

Using Red Hat Network Satellite Server to Manage Dell PowerEdge Servers

User Manual. Page 2 of 38

Demartek June Broadcom FCoE/iSCSI and IP Networking Adapter Evaluation. Introduction. Evaluation Environment

DELL. Unified Server Configurator: IT and Systems Management Overview. A Dell Technical White Paper

Dell PowerEdge Blades Outperform Cisco UCS in East-West Network Performance

Integrating idrac 7 with Microsoft Active Directory

Server Management with Lenovo ThinkServer System Manager

IP SAN Best Practices

A Dell Technical White Paper Dell Storage Engineering

ADVANCED NETWORK CONFIGURATION GUIDE

IPMI overview. Power. I/O expansion. Peripheral UPS logging RAID. power control. recovery. inventory. Hugo CERN-FIO-DS

VMware ESX Server Q VLAN Solutions W H I T E P A P E R

Dell High Availability Solutions Guide for Microsoft Hyper-V

ALTIRIS Deployment Solution 6.8 PXE Overview

Manage Dell Hardware in a Virtual Environment Using OpenManage Integration for VMware vcenter

BASIC ANALYSIS OF TCP/IP NETWORKS

FSM73xx GSM73xx GMS72xxR Shared access to the Internet across Multiple routing VLANs using a Prosafe Firewall

L-Series LAN Provisioning Best Practices for Local Area Network Deployment. Introduction. L-Series Network Provisioning

Chapter 3 Management. Remote Management

Using Cisco UC320W with Windows Small Business Server

WAN Failover Scenarios Using Digi Wireless WAN Routers

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Gigabyte Content Management System Console User s Guide. Version: 0.1

Router and Routing Basics

Frequently Asked Questions: EMC UnityVSA

Active Fabric Manager (AFM) Plug-in for VMware vcenter Virtual Distributed Switch (VDS) CLI Guide

Discovery and Inventory of Dell Devices using OpenManage Essentials

VLANs. Application Note

Lab - Using IOS CLI with Switch MAC Address Tables

M2M Series Routers. Virtual Router Redundancy Protocol (VRRP) Configuration Whitepaper

Intel Ethernet Switch Load Balancing System Design Using Advanced Features in Intel Ethernet Switch Family

Lab Creating a Logical Network Diagram

IP SAN BEST PRACTICES

IP Addressing and Subnetting. 2002, Cisco Systems, Inc. All rights reserved.

Digi Connect WAN Application Guide Using the Digi Connect WAN and Digi Connect VPN with a Wireless Router/Access Point

How Much Broadcast and Multicast Traffic Should I Allow in My Network?

Upgrade to Microsoft Windows Server 2012 R2 on Dell PowerEdge Servers Abstract

Dell OpenManage Mobile Version 1.4 User s Guide (Android)

Interconnecting Cisco Network Devices 1 Course, Class Outline

Converged Networking Solution for Dell M-Series Blades. Spencer Wheelwright

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

Optimizing Dell server deployments with system build and update utility

802.1X Authentication, Link Layer Discovery Protocol (LLDP), and Avaya IP Telephones

ORACLE OPS CENTER: PROVISIONING AND PATCH AUTOMATION PACK

Cisco Certified Network Associate Exam. Operation of IP Data Networks. LAN Switching Technologies. IP addressing (IPv4 / IPv6)

How to Configure Intel Ethernet Converged Network Adapter-Enabled Virtual Functions on VMware* ESXi* 5.1

Layer 3 Network + Dedicated Internet Connectivity

> Technical Configuration Guide for Microsoft Network Load Balancing. Ethernet Switch and Ethernet Routing Switch Engineering

HP Virtual Connect Ethernet Cookbook: Single and Multi Enclosure Domain (Stacked) Scenarios

Procedure: You can find the problem sheet on Drive D: of the lab PCs. Part 1: Router & Switch

Vocia MS-1 Network Considerations for VoIP. Vocia MS-1 and Network Port Configuration. VoIP Network Switch. Control Network Switch

Power and Cooling Innovations in Dell PowerEdge Servers

Dell SupportAssist Version 2.0 for Dell OpenManage Essentials Quick Start Guide

Lenovo Partner Pack for System Center Operations Manager

1 Data information is sent onto the network cable using which of the following? A Communication protocol B Data packet

PFSENSE Load Balance with Fail Over From Version Beta3

Interconnecting Cisco Networking Devices, Part 1 (ICND1) v3.0

IP Addressing A Simplified Tutorial

Virtualizing the SAN with Software Defined Storage Networks

Guide to TCP/IP, Third Edition. Chapter 3: Data Link and Network Layer TCP/IP Protocols

ProSAFE 8-Port and 16-Port Gigabit Click Switch

QuickStart Guide vcenter Server Heartbeat 5.5 Update 2

Integrated Dell Remote Access Controller 6 (idrac6) Version 1.0. User Guide. support.dell.com

Link Aggregation Interoperability of the Dell PowerConnect 5316M with Cisco IOS or Cisco CatOS based Switches. By Bruce Holmes

Windows TCP Chimney: Network Protocol Offload for Optimal Application Scalability and Manageability

The All-in-One, Intelligent NXC Controller

Switch Web GUI Quick Configuration Guide for

Layer 3 Routing User s Manual

Transcription:

OS-to-BMC Pass-through: A New Chapter in System Manageability A Dell Technical White Paper Brian Doty Kalyani Khobragade Rich Hernandez Nick Harris Narayanan Subramaniam Pankaj Gupta

Contents Abstract... 3 The current paradigm... 3 The idrac7 solution... 4 Uses and benefits of the OS-to-BMC... 5 A deeper look at the Dell solution... 5 OS-initiated traffic... 6 idrac-originated traffic... 6 Network configuration... 6 How to use OS-BMC... 7 Conclusion... 7 This document is for informational purposes only and may contain typographical errors and technical inaccuracies. The content is provided as is, without express or implied warranties of any kind. 2012 Dell Inc. All rights reserved. Dell and its affiliates cannot be responsible for errors or omissions in typography or photography. Dell, the Dell logo, and PowerEdge are trademarks of Dell Inc. Intel and Xeon are registered trademarks of Intel Corporation in the U.S. and other countries. Microsoft and Windows are registered trademarks of Microsoft Corporation in the United States and/or other countries. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. Dell disclaims proprietary interest in the marks and names of others. February 2012 Rev 1.0 ii

Abstract This document describes the rationale and operation of the OS-BMC communication link available on the latest generation of Dell PowerEdge servers. The baseboard management controller (BMC) is a specialized service processor that monitors the physical state of a server. The BMC, running specialized firmware, is responsible for monitoring the health of server components, maintaining thermal characteristics, and aiding in remote access and recovery. Dell s BMC has evolved through several generations, expanding its monitoring capabilities and remote access and adding comprehensive remote management through the Lifecycle Controller. Dell s current generation of BMC is known as the Integrated Dell Remote Access Controller 7 (idrac7). The idrac s duties do not end at managing direct server management; the Dell OpenManage portfolio and other management consoles use idrac and Lifecycle Controller to simplify monitoring, deployment and updates. The OS-to-BMC pass-through is another example of Dell s investment in idrac s management capabilities, and in this case, fabric convergence. Dell supports network I/O convergence in numerous ways, such as FCoE and iscsi. In addition, OS-to-BMC is another way to converge idrac traffic over the Ethernet network controller by leveraging the LOM/NDC NC-SI communication channel. This provides many powerful capabilities for idrac and the management consoles that build on it. The current paradigm With the idrac7, the chipset is located on the server mainboard but is logically separate from the server platform and powered even when the server is off. Because of this, idrac7 is able to interrogate the network interface card (NIC) for configuration information, display it to an operator, and accept changes, all while in a pre-boot environment. These changes are subsequently stored in non-volatile memory until a boot is initiated and it is loaded into the NIC. There are two connectivity paths to the idrac. The first path is a remote connection over the LAN, where security protocols such as SSL are in place. The LAN interface allows a user to access idrac remotely, even over WAN links, directly accessing the idrac IP address. The OS interface uses the IPMI protocol over the in-band KCS channel. The second connectivity path is the KCS interface. The KCS OS-to-iDRAC link is based on an industry standard interface called Intelligent Platform Management Interface (IPMI 1 ). The Dell version of IPMI supports two interfaces, one connected via LAN (IPMI over LAN) and one connected to the host server operating system via the Keyboard Controller Style (KCS) interface. The KCS interface provides unauthenticated local access to idrac but requires third-party software agents running on the active OS system. The problem with this arrangement is two-fold: one being the presence of third party agents running on the OS and two, the KCS channel is not very robust. KCS is a relatively slow interface, using dual byte-aligned I/O ports, and is suitable for simple functions such as temperature monitoring, fan speed, or power status. The idrac uses this interface to gather information about the operating system and its current state. However, more advanced functions require greater bandwidth and programmatic flexibility than currently offered by KCS. For example KCS does not have the bandwidth to access the idrac Web GUI directly on the host. 1 http://www.intel.com/design/servers/ipmi 3

The idrac7 solution Dell saw opportunity in this problem paradigm and drove a solution to provide a robust link between the OS and idrac7. This was done by replacing the KCS channel with a secure and high-speed management network using the onboard network adapter. Since the eighth-generation of Dell PowerEdge servers, idrac has been able to use the embedded NIC for network access. This configuration is called shared mode. This mode allows you to minimize network cabling by providing a path for idrac to share bandwidth with the onboard embedded NIC. The OS-to-BMC pass-through builds on this interface. In this mode, the normal data path between OS and LOM/NDC is configured to redirect management frames to the idrac. This technology takes advantage of the high-bandwidth standard network stack in the OS and provides a much more robust and standardized link for management traffic. Also, the hardware design supports selecting any of the LOM/NDCs ports that have a path to idrac. For those systems with more than one LOM, the solution provides maximum flexibility by supporting any of the LOMs as an OS-to-iDRAC communications channel. Only one LOM can be configured as the OS-to-BMC channel at a time, unless the LOMs are teamed. In this case the passthrough capability is enabled on all ports. All teamed ports must support OS-to-iDRAC pass-through and shared for idrac connectivity to be enabled. The communication channel between the LOM and idrac is the same NC-SI channel used for network to idrac communication. This is illustrated in Figure 1. Figure 1. Dell server communication diagram 4

Uses and benefits of the OS-to-BMC OS-to-BMC pass-through operation requires an active link on the network side of the shared LAN controller. This allows the network OS stack to use the LAN controller interface for communications. The simplest advantage that this provides is to allow a user administrator seated at the server to bring up a Web browser session to interface with the idrac in that server. There are several other use cases described as follows: The OS-to-BMC pass-through operation allows in-band WSMAN access to the idrac CIMOM and other web services as defined by DMTF. It provides in-band OS access to idrac web browser for all system management functions. This allows customers to avoid using a remote management client for local tasks. The tools used for in-band and out-of-band operation are consistent, as there is no need to invest in special tools that depend on the slow KCS interface. It supports Dell s goals of an agent-free environment by providing access to standard operating system management protocols. It provides a fast and reliable communication path for the idrac to communicate status about server health and operation to the host operating system. It is not possible, for example, to use KCS to communicate complex power consumption statistics to the host OS. The standard LAN interface to the idrac includes security not present when using KCS. Using the OS-to-BMC technology, even a local user will be required to provide the appropriate authentication and security to communicate with the idrac. A deeper look at the Dell solution As mentioned earlier, idrac supports a shared mode in the LOM that serves as the basis for the OS-to- BMC technology. When the LOM is configured in shared mode, it provides L2 filters for the following traffic flows based on destination MAC Address and optionally VLAN ID: OS-to-iDRAC idrac-to-os Network-to-iDRAC idrac-to-network All forwarding decisions are based on L2 filtering (destination MAC and VLAN). NC-SI automatically filters ARP, DHCP client, DHCP server, and NetBIOS broadcast packets. It also has specific filters for neighbor discovery and router discovery multicasts. For the outbound host traffic, NC-SI filter settings are used for broadcast and multicast traffic. The same set of multicast and broadcast filters can be used for both in-bound network and out-bound host traffic to determine whether the packet gets forwarded to the BMC or not. 5

For each of the packet-filtering rules, the NIC management firmware independently configures whether the traffic is forwarded to the idrac or not. The execution of the following NC-SI commands by the NIC management firmware results in forwarding the packet to idrac for the packet-filtering rules: Enable VLAN and set VLAN filter Set MAC address Enable broadcast filter Enable global multicast filter OS-initiated traffic Network I/O traffic from the host OS handled by an interface enabled for OS-to-BMC pass-through is treated as follows: The shared LOM will filter traffic coming from the host. If the destination MAC address matches the idrac MAC address, it will forward the packet to the NC-SI side band interface for idrac processing. Otherwise, it would send it out on the wire to the external network. VLAN ID check can also be performed if provisioned Broadcast and multicast packets should be sent on the side-band NC-SI channel and on the wire. idrac-originated traffic Network I/O traffic from the idrac handled by an interface enabled for OS-to-BMC pass-through is treated as follows: The shared LOM will filter traffic coming from the idrac. If the destination MAC address matches the OS side host MAC address known to the management firmware, it will forward the packet to the host OS. Otherwise, it would send it out on the wire. Broadcast packets are sent to the host OS and on the wire. If the shared LOM is configured in the promiscuous mode, then all outbound BMC traffic shall be forwarded to the host. Network configuration The host and idrac can be on the same subnet, and therefore routing is not required. This supports a dedicated (static or DHCP) idrac IP address for the OS-BMC channel interface unique per system and user configured to be on the same subnet as the host IP address. Alternatively, the host and idrac can be on separate subnets where routing will be required thorough the configuration of a default gateway. In this case, the host OS and idrac can communicate even if they are on separate VLANs or subnets because packets would go all the way to the router and then 6

back. Since, idrac and the host are on separate VLANs, they would be on separate IP subnets, and the OS routing table would guide the IP layer to use default gateway to route OS-to-iDRAC packets. As with standard L3 routing, the destination MAC address used in these packets originating from host would be router or default gateway MAC and not the idrac MAC. Similarly, packets originating from idrac would have the router MAC and not the host MAC address. These packets would go all the way to a router and get routed to the idrac OS-BMC VLAN/subnet. In both cases, the network interface link must be up since the OS-iDRAC channel is down when the Ethernet link is down. How to use OS-BMC You can enable OS-BMC PT through the remote access controller admin (RACADM) CLI, WSMAN, or IPMI command, and it can be enabled at the idrac, which will automatically enable the LOM as well. The OS-BMC is not yet available with idrac s dedicated NIC mode. Once enabled, you can simply launch a browser in the host OS (or guest OS) and connect to the idrac GUI. Conclusion The latest generation of Dell PowerEdge server and adapter technology is based on the foundation of making server operation and management easier and more effective. The transition from 1 Gb to 10 Gb and beyond is symbiotic with the Dell s current focus on consolidation and convergence. The OS-to-BMC pass-through feature in Dell LOMs and NDCs is an example of these themes in action, which provides you with higher performance and enhanced usability. 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information