Missing optional BMC/IPMI ports for H410C and H615C
Closed this issue · 13 comments
Page: Network port requirements
For H610S there's a KB but I think that info should be in public facing docs because it is required for pre-deployment planning.
The same should apply to H615C and H610C (I suppose), so if all three share unique requirements, those could be put in a separate, smaller table.
The H410C is missing ports required for "mount image" as well as KVM (5900), maybe some other too (this info is available in h/w vendor IPMI/BMC documentation). Ports that are common (with H600 series) could be added to the existing large table, and if H410S and H410C have unique ports, those could be added in a new, small table.
Thanks, @scaleoutsean for your careful review and feedback. We will work resolving this and let you know.
This issue will be closed on tues 30 aug 2022 due to lack of activity within the last 30 days. @scaleoutsean - If you believe that the original problem persists, please comment in this issue to keep it open for further review.
@scaleoutsean - Apologies for the delay in responding to this issue. I've created DOC-4471 to track this request so I can close this issue. I'll keep you updated via the doc ticket. Thanks!
@scaleoutsean - I've reached out to our SME for feedback on how best to update the documentation. To get a better understanding, could you provide a more specific list of the ports that you used or know about, or more detail about what you would like to see listed in the documentation? Thanks!
See at the very top, the KB link contains a list of all the services, protocols and ports that may be required to connect to IPMI - SSH, Remote Console, etc.
In many cases people don't have strong firewalls on internal management networks, but sometimes they do, and if ports aren't open then various operations (including firmware upgrades) may fail.
@scaleoutsean - Thank you. To help narrow down the list, could you provide a specific list of commonly used ports and also specify the platform. For example, for H410C nodes:
- Port 623 (UDP) for BMC IPMI
- Port 5900 (TCP) for remote console
Thanks again!
I'd say let's just mention two that most users open:
- IPMI (TCP/UDP) 623
- HTTPS (TCP) 443
For the rest we could say "Please check the NetApp KB for other, less frequently used services."
@scaleoutsean - Looks good, thank you. Are these ports used on both H410C and H615C?
@scaleoutsean - Looks good, thank you. Are these ports used on both H410C and H615C?
HTTPS is for sure used (to access Web management interface of BMC), and IPMI UDP 623 (find 623 in https://www.supermicro.com/manuals/other/IPMIView20.pdf).
The H600 models list TCP/623 as well, I don't know if TCP/623 is also supported on H410 and Gen 1 HCI nodes. It seems they are not (https://www.supermicro.com/support/faqs/faq.cfm?faq=9806). I think these should apply to all compute and storage nodes from Gen 1 and Gen 2 and H600 Series.
- IPMI (UDP/623)
- HTTPS (TCP/443)
@scaleoutsean - Thanks for providing this detail. I'll work with the engineer to get the documentation updated as soon as possible.
@scaleoutsean - Could you please verify if the following table contains the correct information, thanks:
Great, thanks @scaleoutsean. I'll update you here when the updates are published.
@scaleoutsean - The 443 and 623 UDP port information for the H410 and H600 series has been add to the "Network port requirements" page in the NetApp HCI and Element software documentation:
https://docs.netapp.com/us-en/hci/docs/hci_prereqs_required_network_ports.html
https://docs.netapp.com/us-en/element-software/storage/reference_prereq_network_port_requirements.html
Thanks again for your feedback and apologies again for the delay with getting this update documented.
Closing this issue.