it's the firewall . . .
better defined packet filtering rules are what is needed here . . .
the ipfilter in FreeBSD ipfilter
and the iptables with linux tftp server LAN boot file packets getting blocked.
iptables
There are definitely some packets and arping between the server and...
Is the etc/hosts_allow file really necessary if the client (and server) hostnames and IP addresses are already in the etc/hosts file?
Sorting through the man pages . . .
But any suggestions or criticism welcome as I experiment with trial and error method . . .
ok I'll emphasize the error...
With tcpdump, this packet generates the following error message . . .
ICMP host unreachable - admin prohibited
http://en.wikipedia.org/wiki/ICMP_Destination_Unreachable
Maybe same as the listed error 10 in the above link ?
the PXE error message I get on the client laptop is
PXE-E32 TFTP open timeout
results from snort # snort -veX support the following interpretation of the error rather than some of the google search results
(i.e. - yes the tftp service status is running)
"The PXE client was able to get a DHCP...
Dank U
While my posting was hard to follow while I struggled with this - and I applaud you for trying -
this was not the case.
If I disconnected from the university system, then booted up by USB or DVD iso,
the dhcp servers were on/in the unix or linux filesystems - and the server was...
Dank U zeer . . . I was google searching under server_args.
This could be my missing option :
-u user
Switch credentials to user (default ``nobody'') when the -s option is used.
The user must be specified by name, not a numeric UID.
This could be easy for an expert . . .
Now that I have client MAC and can declare a fixed IP address,
from snort and tcpdump I can tell diskless laptop client is asking for the boot file . . .
although not getting it yet (? if gateway IP is not set right yet)
but is there a way to log...
Thanks for all the encouragement.
Although I first cut the power - then plug the ethernet cable into the laptop for a direct point-to-point LAN -
then boot up the Dell (or an HP if here at engineering library [here MAC is 00:17:A4:------], these two points I'll make . . .
(1) these computers...
I was expecting that . . .
I still want to but I spent a good week trying to get everything together -
the FreeBSD version I have is on DVDiso and I can't upload /install the tftp server - it comes with a 3.1.1 dhcp server though.
Yes, I would rather be doing this that way - there are...
You were right I did miss your post -
as I have understood similar links - and I'll read those you posted more - I should try for some sort of a zero configuration / unicast type of dhcp server dhcpd.conf
It is a Sharp AL27 laptop with a MobileAthlon 64 cpu - internal network card is a 3COM...
Here's the first two packets of the port 67 and 68 tcpdump -
these are not reaching the laptop as far as I can tell.
[root@localhost ~]# tcpdump -ni eth1 -tvveX port 67 or port 68
tcpdump: listening on eth1, link-type EN10MB (Ethernet), capture size 65535 bytes
00:1a:a0:46:98:4d > Broadcast...
Well those multicast MAC only come with laptop connected by ethernet cable . . .
First here was more tcpdump before I read your last post.
This is before the dhcp server was started . . . address for dell is as I assigned by ifconfig (10.0.0.1)
There are two destination MAC addresses - with...
Thanks J65nko . . . an excerpt from that link . . .
"the network interface is calculating the checksum on send, BPF will
see a version of the packet before the checksum is calculated. If tcpdump
later attempts to verify the checksum, it still won't be calculated in the
copy it sees, and...
I need to set up unicast . . . like you said
# ifconfig -a
. . .
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
You are right . . . I didn't realize the server side is involved in doing this . . . I DO want to set to a unicast . . .
I had been following LAN boot instructions that I...
The client laptop BIOS is pretty simple and I have been through it many times . . .
MAC address is not able to be set in that client laptop BIOS -
I didn't think it was something that even could be set, a usually permanent physical layer of the NIC card.
However . . . one thing does...
I - as the dhcp server and tftp server - are not doing anything special - yet. It is the MAC layer that is "multicast" -
The client laptop's single 3com NIC has a multicast MAC address (01:00:5E xxxx:FB) or (01:00:5E xxxx:16) -
this was found by snort (and maybe even more if different ports...
dhcpd.conf addresses need changing . . . ?
multicast IP addresses are in a different range so that is where I'm at now
. . .and I haven't found any subnet calculators that work for these addresses either . . .
http://www.iana.org/assignments/multicast-addresses/...
address problem probably?
I need to do a LAN "thin" client / diskless type of boot - or a.k.a. PXE boot - to an unbootable laptop -
the laptop bios supports LAN boot.
Another forum said that the multicast MAC address shouldn't be a problem.
I now think I will clean up to a bare bones...
snort has helped me get packet info and the MAC address for a LAN diskless boot client
which turns out as both 01:00:5E:--:--:FB and 01:00:5E:--:--:16
So far the dhcp server only communicates to port 5353 of this diskless client,
while the tftp server sends packets for boot file from port...
We may also get obsessive from having the non-human FreeBSD unix, linux, or FORTRAN IV monsters scrutinizing our commands and .confg files . . .
it must be a thousand times I have forgot a semicolon at the end of a /etc/dhcpd.conf dhcp server declaration.
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.