{"id":255198,"date":"2015-02-14T00:04:27","date_gmt":"2015-02-13T16:04:27","guid":{"rendered":"http:\/\/blog.zhenglei.net\/?p=255198"},"modified":"2016-09-28T21:52:21","modified_gmt":"2016-09-28T13:52:21","slug":"how-to-remotely-access-the-ilo4-of-home-hp-microserver-gen8-behind-a-corporation-firewall","status":"publish","type":"post","link":"https:\/\/blog.zhenglei.net\/?p=255198","title":{"rendered":"How to Remotely access the iLO4 of Home HP MicroServer Gen8 behind a corporation firewall"},"content":{"rendered":"<p>By ssh local port forward, we can access the iLO4 and Remote console of Home from the corporation network which protected by firewall,\u00a0 with only 80 and 433 ports opened via proxy.<\/p>\n<p>&nbsp;<\/p>\n<p><strong><span style=\"color: #ff6600\">HOME<\/span><\/strong><\/p>\n<p>HP Proliant MicroServer Gen8<br \/>\niLO4 Advance License installed<br \/>\niLO4\u00a0 IP=HOME_ILO4_IP\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ( Local IP of iLO4 port,\u00a0\u00a0 172.24.0.xxx )<\/p>\n<p><strong>WAN Router<\/strong><br \/>\nWNR2000 V3<br \/>\nDD-WRT build 24160,<br \/>\nRemote ssh login enabled<br \/>\nWAN IP=HOME_WAN_IP\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 ( 220.234.xxx.xxx, public IP )<\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"color: #ff6600\"><strong>OFFICE<\/strong><\/span><\/p>\n<p><strong>Network:<\/strong><\/p>\n<p>Only out going 89\/443 allowed via HTTP Proxy:<br \/>\nOFFICE_PROXY_IP : OFFICE_PROXY_PORT<\/p>\n<p><strong>Linux workstation:<\/strong><br \/>\nUbuntu 10.10<br \/>\nOpen JDK v7.0\u00a0\u00a0 \u00a0\u00a0 Installed<br \/>\nCorkScrew \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 Installed<\/p>\n<p>&nbsp;<\/p>\n<p>Windows workstation:<\/p>\n<p>Windows 7<br \/>\nputty 0.63 \u00a0 Installed<\/p>\n<h1><span style=\"color: #008080\">How to Accesss ILO4 and Remote Console<\/span><\/h1>\n<p>by using SSH local port forward,\u00a0 From Office Workstation to Home SSH Server (Router),\u00a0 we can assess iLO4 and Remote Console in Office.<\/p>\n<p>&nbsp;<\/p>\n<h2><span style=\"color: #ff6600\">Linux<\/span>:<\/h2>\n<p><span style=\"color: #0000ff\"><em><strong>#!\/bin\/sh<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong># Http proxy of Corp<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>HTTP_PROXY_HOST=<\/strong><\/em><\/span><span style=\"text-decoration: underline\">OFFICE_PROXY_IP<\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>HTTP_PROXY_PORT=<\/strong><span style=\"text-decoration: underline\"><span style=\"color: #000000;text-decoration: underline\">OFFICE_PROXY_PROXY<\/span><\/span><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>#\u00a0 Home ssh server<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>SSH_HOST=<\/strong><\/em><\/span><span style=\"text-decoration: underline\">HOME_WAN_IP<\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>SSH_PORT=443<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>SSH_USER=xxxx<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>#\u00a0 Home ILO4 Host<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>REMOTE_ILO_HOST=<\/strong><\/em><\/span>HOME_ILO4_IP<br \/>\n<span style=\"color: #0000ff\"><em><strong>REMOTE_ILO_PORT=&#8221;22 23 17990 80 443 17988 161 162 623&#8243;<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong># Office Workstation\u00a0 ILO4 IP <\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>BIND_ILO_HOST=127.0.0.1<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>#BIND_ILO_HOST=192.168.127.8<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>#Generate proxy config file<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>ILO_SSH_PROXY_CONFIG=\/tmp\/ilo_ssh_config<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>echo &#8220;Host ${DDWRT_SSH_HOST}&#8221; &gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>echo &#8220;ProxyCommand corkscrew ${HTTP_PROXY_HOST} ${HTTP_PROXY_PORT} %h %p&#8221; &gt;&gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>echo &#8220;port ${DDWRT_SSH_PORT}&#8221; &gt;&gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>echo &#8220;Host ${LINUX_SSH_HOST}&#8221; &gt;&gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>echo &#8220;ProxyCommand corkscrew ${HTTP_PROXY_HOST} ${HTTP_PROXY_PORT} %h %p&#8221; &gt;&gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>echo &#8220;port ${LINUX_SSH_PORT}&#8221; &gt;&gt; ${ILO_SSH_PROXY_CONFIG}<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>ILO_OPT_LIST=&#8221;&#8221;<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>for p in ${REMOTE_ILO_PORT}; do<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong> ILO_OPT_LIST=&#8221;${ILO_OPT_LIST} -L ${BIND_ILO_HOST}:${p}:${REMOTE_ILO_HOST}:${p}&#8221;<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong> done<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong># Stop local services already bind to the local ILO4 Ports<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>sudo \/etc\/init.d\/ssh stop<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>sudo \/etc\/init.d\/lighttpd stop<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong># Setup SSH local forward link from Office to Home<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>echo &#8220;sudo ssh -N -f -F ${ILO_SSH_PROXY_CONFIG} ${ILO_OPT_LIST} ${SSH_USER}@${SSH_HOST}&#8221;<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>sudo ssh -N -f -F ${ILO_SSH_PROXY_CONFIG} ${ILO_OPT_LIST} ${SSH_USER}@${SSH_HOST}<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong>SSH_PID=`pgrep -f &#8220;${ILO_OPT_LIST}&#8221;`<\/strong><\/em><\/span><\/p>\n<p><span style=\"color: #0000ff\"><em><strong># Access the iLO4 via firefox browser<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>firefox https:\/\/${BIND_ILO_HOST}\/<\/strong><\/em><\/span><\/p>\n<p># Launch the Java remote console from iLO4<\/p>\n<p><span style=\"color: #0000ff\"><em><strong># cleanup,\u00a0 stop the ssh local forward<\/strong><\/em><\/span><br \/>\n<span style=\"color: #0000ff\"><em><strong>sudo kill -9 ${SSH_PID}<\/strong><\/em><\/span><\/p>\n<p>&nbsp;<\/p>\n<h2><span style=\"color: #ff6600\">Windows 7:<\/span><\/h2>\n<p>Config putty iLO4 session as following:<\/p>\n<p>Config\u00a0 Connection\/Proxy\/HTTP proxy<\/p>\n<p>Config\u00a0 Connection\/SSH\/Tunnels,\u00a0 by add follow local port forwarding:<\/p>\n<p>(BIND_ILO_HOST -&gt; HOME_ILO4_IP)<\/p>\n<p><span style=\"color: #0000ff\"><em><strong>22 23 17990 80 443 17988 161 162 623<\/strong><\/em><\/span><\/p>\n<p>Launch firefox,\u00a0 and\u00a0\u00a0 goto https:\/\/ BIND_ILO_HOST\u00a0 =&gt; iLO4 Panel Access<\/p>\n<p>Launch\u00a0 remote console\/ <strong>.iNET.IRC<\/strong> from iLO4 panel<\/p>\n<p><span style=\"color: #ff0000\">\u00a0<\/span><\/p>\n<p><span style=\"color: #00ccff\">\u00a0Note:<\/span><\/p>\n<p>Note:<\/p>\n<p>If the PC support Intel AMT technology, you may meet the error 10013 when try to forward 623 port,<br \/>\nbecause the port 623 have been taken by the LMS.exe service:<\/p>\n<p>Solution: Disable the LMS service<\/p>\n<p>Launch the terminal with admin permission, and run:<\/p>\n<p>sc stop &#8220;UNS&#8221;<br \/>\nsc stop &#8220;LMS&#8221;<br \/>\nOr disable it forever:<\/p>\n<p>sc config &#8220;UNS&#8221; start= disabled<br \/>\nsc config &#8220;LMS&#8221; start= disabled<\/p>\n<p>&nbsp;<\/p>\n<p>*********************************************<\/p>\n<p><span id=\"wan_ipaddr\"><\/span>iLO 2 Advanced License Keys:<br \/>\n35DPH-SVSXJ-HGBJN-C7N5R-2SS4W<br \/>\n35SCR-RYLML-CBK7N-TD3B9-GGBW2<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>By ssh local port forward, we can access &hellip; <a href=\"https:\/\/blog.zhenglei.net\/?p=255198\">\u7ee7\u7eed\u9605\u8bfb <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,2,192],"tags":[120,218,303,217,216],"class_list":["post-255198","post","type-post","status-publish","format-standard","hentry","category-internet","category-linux","category-windows7","tag-ddwrt","tag-hp-microserver-gen8","tag-ilo","tag-ilo4","tag-ssh-local-port-forward"],"_links":{"self":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255198","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=255198"}],"version-history":[{"count":12,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255198\/revisions"}],"predecessor-version":[{"id":255609,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=\/wp\/v2\/posts\/255198\/revisions\/255609"}],"wp:attachment":[{"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=255198"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=255198"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.zhenglei.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=255198"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}