Back

How to set up L2TP over IPsec for iDRAC on Linux Ubuntu 22.04

Table of contents

The integrated out-of-band management platform on Dell servers is called iDRAC. By default, access to the iDRAC interface of your servers is provided via VPN.

If necessary, you can also allow access without VPN by enabling temporary public access to the iDRAC interface. This can be activated in the customer portal on the server details page under the OOB section. Simply select Enable public access for 24 hours.

Once activated, public access remains enabled for the next 24 hours but can be manually disabled at any time.

For security reasons, VPN access remains the preferred method and should be used whenever possible.

Finding VPN credentials

Credentials and instructions for setting up a VPN connection to the OOB network are available in the customer portal. To access them:

  1. Navigate to NetworksVPN accessVPN to DRAC
  2. Select the location and click Credentials
  3. In the opened window, you will find the credentials:
finding VPN credentials

Installing required packages

  1. Update the package information to retrieve the latest versions and dependencies: 
    sudo apt update
  2. Install the L2TP plugin for NetworkManager: 
    sudo apt install -y network-manager-l2tp network-manager-l2tp-gnome
  3. Restart your system: 
    sudo reboot

Setting up a new VPN connection

  1. Click the Settings button in the shortcuts menu and navigate to Network
  2. Click the + button next to the VPN label to add a new VPN connection and select Layer 2 Tunneling Protocol (L2TP)
under settings select L2TP
  1. In the VPN connection settings, go to the Identity tab and enter the following details:
    • Name (e.g. VPN2iDRAC)
    • Login credentials obtained from the customer portal:
      • Gateway: VPN server
      • User name: login
      • Password: password
    • Click the user symbol in the password input field and select Store the password only for this user
select store password only for this user
  1. In the same tab, click IPsec Settings
    • Tick Enable IPsec tunnel to L2TP host
    • Enter the Shared key obtained from the customer portal in the Pre-shared key input box
    • Click OK
update IPsec settings
  • Click Advanced (optional)
    • Leave the Phase1 Algorithms and Phase2 Algorithms fields blank or manually enter the specific encryption methods using this list of our supported tunnel options for reference
      Example configuration:
      • Set Phase1 Algorithms to aes128-sha1-modp2048
      • Set Phase2 Algorithms to aes128-sha1
    • Click Add to save the settings
  1. Go to the IPv4 tab and scroll down to the Routes section, then:
    • Disable automatic route detection by toggling the Automatic switch
    • Add the following routes:
      198.18.0.0/15
      100.64.0.0/15
    • Click Add
Go to IPv4 tab and update routes
  1. Turn on your newly created VPN connection:
turn on new VPN connection

Finding iDRAC credentials

The IP address and credentials for an individual server's iDRAC interface can be found in the customer portal:

  1. Navigate to Dedicated ServersManageYour serverDetails
  2. Scroll to the OOB section and click Credentials

Suggested Articles

  • Dedicated servers

    How to set up L2TP over IPsec for iDRAC on Linux Ubuntu 20.04

    Read more
  • Dedicated servers

    How to set up L2TP over IPsec for iDRAC on Linux Ubuntu 18.04

    Read more