LAN boot - PXE-E32 TFTP open timeout

J

jenaniston

the PXE error message I get on the client laptop is

Code: 
PXE-E32 TFTP open timeout

results from snort
Code: 
# snort -veX
support the following interpretation of the error rather than some of the google search results
(i.e. - yes the tftp service status is running)

"The PXE client was able to get a DHCP address and a boot file name,
but timed out when attempting to download the boot file using TFTP . . ."
http://h18000.www1.hp.com/products/servers/management/rdp/knowledgebase/00000138.html

snort gives the message
Code: 
. . .
DESTINATION UNREACHABLE: ADMINSTRATIVELY PROHIBITED HOST FILTERED
 . . .
with a packet that contains the boot filename from the server IP to the client IP.

this is after packets from the client to the server that contain the boot filename are ok
which I presume are asking for the file.

Any ideas where in my config to look at carefully . . . ?

And would wireshark give me any other valuable info ?
(though it seems a bear to set up, I am starting on that install as well)

Thanks.
 
Is the etc/hosts_allow file really necessary if the client (and server) hostnames and IP addresses are already in the etc/hosts file?

Sorting through the man pages . . .
But any suggestions or criticism welcome as I experiment with trial and error method . . .
ok I'll emphasize the error part - so far.
 
it's the firewall . . .

better defined packet filtering rules are what is needed here . . .

the ipfilter in FreeBSD ipfilter

and the iptables with linux tftp server LAN boot file packets getting blocked.
iptables

There are definitely some packets and arping between the server and client that do make it through - confirmed by snort and tcpdump -
so I need to take a close look - filter is by length/size or something ?
 
You must log in or register to reply here.
Back
Top