[K12OSN] Using existing DHCP server

James P. Kinney III jkinney at localnetsolutions.com
Mon Jul 23 16:58:02 UTC 2007

On Mon, 2007-07-23 at 11:50 -0500, Jon Harder wrote:
> Now that I have my clients working well on on the private side of
> my ltsp server, there are a few clients living on the existing network
> that I would like to add.
> I tried following various hints for setting up my existing DHCP server so
> that it will point the client in the right direction. So far I have
> had no success, so I'm turning to the list for advice.
> This is what I added to my existing DHCP config, inside a subnet section
> (X.X.X.X and Y.Y.Y.Y filled with the appropriate addresses):
>   host iMac1 {
>     hardware ethernet 00:30:65:77:25:a6;
>     fixed-address X.X.X.X;
>     ddns-hostname iMac1;
>     filename "yaboot";
>     next-server Y.Y.Y.Y;
>     option root-path "/opt/ltsp/ppc";
>     # OR:
>     # option root-path "Y.Y.Y.Y:/opt/ltsp/ppc";
>   }
> This hands out an address to the client, but it doesn't seem to go
> to the "next-server" and access the yaboot file. I can access tftp
> from the network, so that is working. The server does not log any
> tftp activity from the client.
> On the ltsp server, I updated hosts.allow to allow connections from
> the 66.172.167.x side of the network:
> bootpd:
> in.tftpd:  192.168. 66.172.167.
> portmap:   192.168. 66.172.167.
> What now?

I'll bet if you run nmap against the server on the "upstream" side (away
from the working ltsp clients - i.e. from the network interface you
can't see working) you will find iptables has blocked access to the
tftpboot service (port 69 - UDP) (and most likely NFS as well which is
also needed).

Fast - and totally insecure test - turn off iptables and rerun the new
client boot-up. If it works, you will need to tweak iptables, if it
doesn't the dhcp server is not sending out the "next-server" right or
the client doesn't support it, i.e. brain-dead network boot.
> --
> Jon Harder
> Mountain Lake Public Schools
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
James P. Kinney III          
CEO & Director of Engineering 
Local Net Solutions,LLC        

GPG ID: 829C6CA7 James P. Kinney III (M.S. Physics)
<jkinney at localnetsolutions.com>
Fingerprint = 3C9E 6366 54FC A3FE BA4D 0659 6190 ADC3 829C 6CA7
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/k12osn/attachments/20070723/9e0fd292/attachment.sig>

More information about the K12OSN mailing list