Back

How to set up L2TP over IPsec for iDRAC on Mac OS X

Table of contents

The integrated out-of-band management platform on Dell servers is called iDRAC. By default, access to the iDRAC interface is provided via a VPN.

If necessary, you can also allow access without a VPN by enabling temporary public access to the iDRAC interface. This can be activated in the customer portal on the server details page under the OOB section. Simply select Enable public access for 24 hours.

Once activated, public access remains enabled for the next 24 hours but can be manually disabled at any time.

For security reasons, VPN access remains the preferred method and should be used whenever possible. This guide explains how to access iDRAC using a VPN.

Finding VPN credentials

Credentials and instructions for setting up a VPN connection to the OOB network are available in the customer portal. To access them:

  1. Navigate to NetworksVPN accessVPN to DRAC

  2. Select the location and click Credentials

  3. In the opened window, you will find the credentials:

VPN access credentials to DRAC

Configure VPN connection

  1. Go to System SettingsNetwork

  2. Click Add VPN ConfigurationL2TP over IPSec

Add VPN configuration

  1. In the opened window, enter the following details:

enter the credentials

    • Connection name (e.g. `iDRAC VPN`)

    • Login credentials obtained from the customer portal:

      • VPN server: server address

      • Login: account name

      • Password: password

      • Shared Secret: shared secret

  1. Click Create

  2. Enable the toggle switch to connect to the newly created VPN:

connect to newly created VPN

  1. Once the VPN connection is established, add the necessary routes by executing the following command in the Terminal:

    sudo route -n add 198.18.0.0/15 -interface ppp0 && sudo route -n add 100.64.0.0/15 -interface ppp0

    Note: this command must be executed each time you connect to the VPN.

  2. To simplify this process, you can create a bash alias. To add a bash alias:

    • Add the following line at the end of the ~/.bash_profile file:

      alias drac='sudo route -n add 198.18.0.0/15 -interface ppp0 && sudo route -n add 100.64.0.0/15 -interface ppp0'

    • Apply the changes:

      source ~/.bash_profile

Now, you can simply run the drac command to add the required route.

After adding the route, you can access iDRAC using the IP address specified on the server's page in the customer portal.

Finding iDRAC credentials

The IP address and credentials for an individual server's iDRAC interface can be found in the customer portal:

  1. Navigate to Dedicated ServersManageYour serverDetails

  2. Scroll to the OOB section and click Credentials