This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Nas
Contributor
‎2020-09-20 08:20 AM
Jump to solution

LOM setup Configuration guide

Hello, I need to setup lom on my appliances and i want to know if there is a document which to follow for setup.

 

Thank you for help

0 Kudos
3 Solutions

Accepted Solutions
funkylicious
Advisor
‎2020-09-20 11:41 AM
In response to Nas
Jump to solution

Considering that the 16k appliances are fairly new and the SK isn't updated with the latest models, I would expect to be on channel 8.

Whatever commad returns a result, that's the channel no 

ipmitool lan print 1|8

 

View solution in original post

0 Kudos
15 Replies
PhoneBoy
Admin
Admin
‎2020-09-20 09:21 AM
Jump to solution

What precise appliance?

0 Kudos
Nas
Contributor
‎2020-09-20 09:27 AM
In response to PhoneBoy
Jump to solution

16200 and 26000

0 Kudos
PhoneBoy
Admin
Admin
‎2020-09-20 09:30 AM
In response to Nas
Jump to solution

Start with the the LOM Admin Guide (applies to both appliances): http://downloads.checkpoint.com/dc/download.htm?ID=32414

0 Kudos
Nas
Contributor
‎2020-09-20 09:58 AM
In response to PhoneBoy
Jump to solution

The guides provide steps post ip setup on appliance. For me i need setup ip from console from ipmitool. You have steps for that?

0 Kudos
Nas
Contributor
‎2020-09-20 11:23 AM
In response to funkylicious
Jump to solution

[Expert@HostName:0]# ipmitool lan set <Number_of_Channel> ipaddr <IP_ADDRESS>

 

Channel number? How to get that in my case?

0 Kudos
Nas
Contributor
‎2020-09-20 11:31 AM
In response to Nas
Jump to solution

Guide does not mention channel

number for 16000

0 Kudos
funkylicious
Advisor
‎2020-09-20 11:41 AM
In response to Nas
Jump to solution

Considering that the 16k appliances are fairly new and the SK isn't updated with the latest models, I would expect to be on channel 8.

Whatever commad returns a result, that's the channel no 

ipmitool lan print 1|8

 

0 Kudos
Matlu
Advisor
a month ago
In response to PhoneBoy
Jump to solution

Hello,

I have a doubt with the LOM interface.
I have an appliance model 9700 that has been put into production.
The LOM interface is in the same segment as the MGMT interface.

My question is, can the LOM interface be accessed by SSH?

I have tested the availability of the LOM port, but only doing a PING test or a Telnet to port 443 of the IP configured in the LOM (10.123.119.47), but when I have tried to launch a SSH connection to the same interface, it does not work.

Is this normal?

Thanks for your comments.

0 Kudos
genisis__
Mentor Mentor
Mentor
a month ago
In response to Matlu
Jump to solution

I don't believe so,  LOM generally is accessed via https (together with KVM-ports), you would then launch  a console session to access the console (which would use the KVM-ports).

 

Matlu
Advisor
a month ago
In response to genisis__
Jump to solution

Uhmm, it makes more sense then, because definitely by SSH you can't access the LOM port. 🤓

It only allows me to “test” by a simple ping, and/or by telnetting to 443 of the LOM IP.

A question, the command “ethtool” does not work to validate this interface?

Because I thought that with this command I could see, if the port detects the patchcord connected, but I can't find any documentation to tell me if it works or not.

Greetings.

0 Kudos
PhoneBoy
Admin
Admin
a month ago
In response to Matlu
Jump to solution

The LOM NIC is not installed on the appliance's PCI bus, therefore ethtool won't see it.

0 Kudos
genisis__
Mentor Mentor
Mentor
4 weeks ago
In response to Matlu
Jump to solution

The only way I know of is to run "show asset all" in clish to see the installed LOM and then to use IPMI tool, but I'm not sure that's going to give you the information you required.

 

0 Kudos
Bob_Zimmerman
Authority
Authority
a month ago
In response to genisis__
Jump to solution

Incidentally, Check Point's LOMs are the only ones I have which don't work over SSH, serial-over-LAN, IPMI, and Redfish. They're extremely limited.

I really like my old Sun LOMs. It's a shame Oracle bought them and killed off their amd64 hardware.

0 Kudos
the_rock
Legend
Legend
4 weeks ago
In response to Matlu
Jump to solution

Hey bro,

Definitely cant access it via ssh. You can via https, like regular Gaia portal, but if any issues, I would check below for LOM firmware.

Andy

https://support.checkpoint.com/results/sk/sk88064

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top