I have a Dell PowerEdge T350 with an iDRAC9 Basic. The server is connected to a switch which is connected to a router upstream which is connected to the internet. Very simple. Both the server's NIC1 is connected to the switch and also the iDRAC's own UTP LAN card. I enabled the iDRAC and I can access the web GUI from another host connected to the same switch (a.k.a. intranet).
Both LAN interfaces of the server have static intranet IPs configured (on the 192.168.1.x range) and not DHCP-d, since the port translations on the router we better have a fixed IP. I configured the port translations on the router so two service could be accessed remotely: RDP and the iDRAC. The RDP is the server OS itself.
Here comes the interesting part:
- I can access the server OS with RDP via the intranet
- I can access the server OS with RDP remotely
- I can access the iDRAC web GUI via the intranet
- I CANNOT access the iDRAC web GUI remotely
I configured the iDRAC port redirection (or we can call it firewall pin hole) the same way as I did with the RDP. Although the RDP needs both TCP and UDP 3389 port redirection. The iDRAC only needs TCP 443 port redirect.
Questions:
- Is there any switch or configuration option on the iDRAC which prevents intranet access by default? (Although there an address translation / NAT going on by the router, so this question might not even make sense?)
- The router in question is an PACE 5268AC FXN. I cannot find anything in the manual which would indicate that it'd allow 3389 (or also 3390 because I also pin holed another machine's RDP) redirection but would fail with HTTPS. I don't see anything useful in the firewall log which would help. It seems that somehow the intranet 443 incoming packets don't even reach the router? I don't get it.
- I also tried a 33443 -> 443 and other type of redirections instead of 443 -> 443, but that didn't work either.
- I also add that the SSL cert of the iDRAC is a dud (not valid), but it seems that the thing fails at some earlier stage. The ISP is AT&T.
For the record my iDRAC Firmware version is 6.10.30.00 (Build 29), iDRAC Settings version 5.00.00.10