<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <meta content="text/html; charset=ISO-8859-1" http-equiv="Content-Type"> </head> <body bgcolor="#ffffff" text="#000000"> On 04/19/2011 02:59 PM, Tom Brown wrote: <blockquote cite="mid:BANLkTini+osufxVM7GL2GVwpOMAXd=Tphg@mail.gmail.com" type="cite"> <blockquote type="cite"> <pre wrap="">My organization is investigating the use of Spacewalk to provision around 6 functionally different types of appliances in a multi tier, geographically spread spacewalk master / spacewalk proxy setup. We will be targeting many servers in tens to hundreds of different datacenters in various locations in and outside the U.S., with dozens to hundreds of servers per datacenter. Investigations and tests so far have confirmed Spacewalk is very well suited for this task. What questions we have left for the most part revolve around PXE booting and kickstart selection: 1. Though services to support PXE booting (TFTP server, cobbler, etc) are an integral part of Spacewalk, they appear not to be part of Spacewalk Proxy (as installed following the installation guidelines). In our case, it is exactly those Spacewalk Proxy installations that we want to bootstrap from, as they are on site and we want to keep the target systems themselves off the wider internet. a) Is my understanding correct that, in order to get this work, I should "manually" install tftpd and pxelinux/* on the Spacewalk Proxy servers? b) How do I then tie in to cobbler, etc, which I can see from the config files is proxied from the master? c) Are there any guidelines/recommendations/best practices documented that I can follow to make sure I get the best out of this configuration? 2. Potentially closely related (depending on the answer) to #1: As much as possible from a central location, we would like to tie IP or MAC addresses to kickstart profiles. I.e.: we would like to centrally pre-define which one of the 6 functionally different appliance types should be provisioned on a specific piece of hardware. In Spacewalk, I understand this can be achieved by specifying IP address ranges with kickstart profiles. a) what is the recommended way of tying hardware to one of several kickstart profiles? (is that indeed ip address ranges?) b) how does this feature still apply if a proxy is involved? c) Does this feature still apply if NAT translation is used? 3. I cannot seem to get the pxe_just_once flag to work to prevent PXE boot loops when PXE booting is configured top most in the BIOS boot order. Not even when taking Spacewalk Proxy out of the loop. a) Is this known to work? What would be factors that would cause it not to work? Any pointers or suggestions? b) How does this work with Spacewalk proxy as apparently this is part of cobbler? (ties in to question 1b) As a final general comment: am I missing something, conceptually, that I thought this whole PXE booting functionality should be part of Spacewalk Proxy (maybe even more than of Spacewalk)? How do other people use this? Is this is feature we can expect somewhere in the future? Thanks in advance for your answers and suggestions, even if they are covering just part of my many questions. </pre> </blockquote> <pre wrap=""> Hi We do something similar in that we have a logical single spacewalk master, its actually a HA pair, and then we have proxies in each of our DC's. These proxies also appear logically as one but again are a HA pair. >From our POV even though the installer trees are served locally via the proxy ALL dhcp and PXE comes from the logical master no matter where they are physically located. To us having a single place the DHCP is handled actually makes it more secure for us to control which mac's get which OS. We use this to manage many thousands of systems in greater than 5 DC's spread out over many thousand miles and for us its fine. Yes in some of the more remote DC's TFTP can take a bit of time but thats only the initial bare metal as rebuilds are fine using koan. HTH _______________________________________________ Spacewalk-list mailing list <a class="moz-txt-link-abbreviated" href="mailto:Spacewalk-list@redhat.com">Spacewalk-list@redhat.com</a> <a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/spacewalk-list">https://www.redhat.com/mailman/listinfo/spacewalk-list</a> </pre> </blockquote> Tom, Thanks for replying. Suppose we can do the same, and have our DHCP server(s) point the bare metal to the universally central Spacewalk master, how can we then instruct the specific target to go through the proxy for its packages? I so far have not seen such a feature in the UI. Andre <div class="moz-signature">-- <title></title> <div class="moz-signature"> André Blum Sr. Integration Engineer ActiveVideo Networks Mediacentrum 3588, Sumatralaan 45 1217 GP Hilversum The Netherlands +31 (0)35 677 41 31<o:p></o:p> <a class="moz-txt-link-abbreviated" href="http://www.activevideo.com">www.activevideo.com</a> <o:p></o:p> ATTENTION:<o:p></o:p> The information contained in this message may be legally privileged and confidential. It is intended to be read only by the individual or entity to whom it is addressed or by their designee. If the reader of this message is not the intended recipient, you are on notice that any distribution of this message, in any form, is strictly prohibited.<o:p></o:p> If you have received this message in error, please immediately notify the sender and/or ActiveVideo Networks Inc by telephone at +31 (0)35 677 41 31 and delete or destroy any copy of this message.<o:p></o:p> <o:p></o:p> <o:p> </o:p> </div> </div> </body> </html>