Netgate 8300: BMC FW Health - Sensor Failure
-
@stephenw10 said in Netgate 8300: BMC FW Health - Sensor Failure:
I'm not involved in the effort directly. Let me see if I can get anything further...
Any Update on this? I have to unpack them tomorrow unless they need to be RMA’ed
-
Let me see....
-
Ok, we don't expect an RMA to be required here. The issue can be resolved with a BMC firmware update which can be applied in the field.
We have been testing it and will let you know as soon as we're sure it's good.
-
@keyser
now you can unpack the cool new hardware! :) -
Yup and just to be clear this is not actually any sort of hardware issue. It's an incorrectly flagged value.
-
@stephenw10
Hi there:
Any updates on this issue?
Thx -
Let me check. Last I heard the update was good.
-
@stephenw10
Ok thanks. Is there an available update that I may apply then? -
Checking now. Might be tomorrow before I can find out from out guys in Austin who were testing it.
-
Ok the update looks good in our testing and should be available very soon.
-
@stephenw10
Ok then thank you.
Do you have any timeline? -
I'll let you know as soon as I have one.
-
Netgate sent me back the unit. I unpacked it Friday and began setting it up again. The sensor in question was now green. I installed a certificate on the BMC, which it restarted with and worked fine.
Then I noticed that chassis intrusion was tripped, which was odd as I had not opened it. I reset it using this guide:
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-8300/intrusion-switch.htmlI then proceeded to shutdown pfSense, pulled power, and booted it back up. After which, the BMC fails to respond to web requests. I can ping it. I can even connect to it via ipmitool and SSH over the network from WSL and access the serial console. Though it no longer serves a website, it's not responding to TCP connection at 80 nor 443 at all. Pulling power does not help.
The BMC complained about a wrong extension for the certificate in my first attempts to upload it, as it was crt instead of pem. Once I renamed it to pem, it accepted it, both certificate and key are PEM encoded. It did serve the correct certificate after, and the browser warnings went away.
The other changes I made to the BMC as far as I can remember:
- Changed Hostname
- Changed password
- Disabled SNMP
- Setup our SMTP server for alerts
There is no issue with pfSense itself on the unit, it still works fine. However, the BMC firmware appears to be flaky. If pfSense does have issues in the future, one will need the BMC to fix it. One could also use the included serial cable, assuming one hasn't lost it.
I had asked Netgate if it's possible to factory reset the BMC. In reply, we were was asked to ship it back to them for evaluation once more.
-
Hmm, that's.... painful!
Unfortunately I don't have direct access to an 8300 to offer much insight here.
-
Update on this can be found here: https://www.netgate.com/8300-bmc-firmware-update
You should be able to upgrade this in the field though.
-
@ltctech I just had this happen on my 8300. The unit came with the most recent BMC firmware. After a reboot (installed a full sine vs. stepped-ups), I can't access the web port of my BMC. I had set up my own certificate and smtp settings. PFSense shows that an IP was assigned. I can ping it but can't get a webpage portal.
I followed the steps here to reset the BMC to Factory settings via the PFSense command line and it took the settings, the Fans went to 100% and then readjusted once the BMC rebooted.
https://docs.netgate.com/pfsense/en/latest/solutions/netgate-8300/ipmi-access.html#reset-ipmi-network-configuration
Now, it will get an assigned IP address from PFSense, it will show the connection is Up in dchp lease for ~30 seconds then the lease screen shows it down. I still can not access the web portal via the dedicated port or shared port. I can ping the Ip address. Just cant access the interface. Did you ever get any additional information related to this?
-
Hmm, that was after updating it to the new firmware version as described above? Edit: Or it was supplied with that already as you said?
You should open a TAC ticket for this if you have not already: https://www.netgate.com/tac-support-request
-
@kilthro
It seems the BMC had an issue with our certificate, which caused the web portal to stop working.Despite our request, Netgate didn’t provide a factory reset command for the BMC. After two months of frustration, we decided to return the unit for a refund, as it didn’t feel ready for primetime.
So, even with the two factory reset commands now documented, the BMC’s web portal still doesn’t come back?
