Summary:
Some of Tyan's server boards have IPMI and integrated iKVM functionality. Securing access to these resources requires knowledge of specific TCP/UDP port traffic requirements.
The following ports are necessary:
- Web: TCP 80, TCP 443
- SSH: TCP 22
- IPMI: TCP/UDP 623
- KVM: TCP 7578, TCP 7582
- Virtual Media: TCP 5120, 5123, 5124, 5127
Discussion:
I have an S7012 board with iKVM functionality that I was trying to expose over VPN. My TMG VPN configuration has port access restricted to the DMZ - so I had to open specific ports to give myself access to the iKVM. Took a while to find. Board manual, AST2050 IPMI manual.
Source:
http://www.tyan.com/manuals/S7016_Pilot%202_UG_v100.pdf, page 34