Difference between revisions of "Diskless netboot"
| Line 7: | Line 7: | ||
* Logs will be centralized on the common NFS server - so we don't loose data on each reboot. | * Logs will be centralized on the common NFS server - so we don't loose data on each reboot. | ||
| + | You must have a working DHCP server + NetBoot before starting this part. | ||
| − | |||
Requirements: | Requirements: | ||
* [[DHCP server]] | * [[DHCP server]] | ||
* [[NetBoot server]] | * [[NetBoot server]] | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| Line 65: | Line 60: | ||
Adjust "192.168.2.xxx" to your own network address | Adjust "192.168.2.xxx" to your own network address | ||
| + | |||
| + | |||
| + | ==Security== | ||
| + | |||
| + | Like TFTP, this part is insecure ! | ||
| + | |||
| + | You must restrict the access to your NFS server by a firewall script and filtering BEFORE reaching the LAN ! | ||
Revision as of 15:06, 22 May 2014
Diskless server / workstation using netboot
NFS is a technology that allow you to share some files and folders over the network. So:
- All the clients will share the installation, configuration files and so on.
- Each client will run a dedicated instance of the operating system
- Logs will be centralized on the common NFS server - so we don't loose data on each reboot.
You must have a working DHCP server + NetBoot before starting this part.
Requirements:
Installation
NFS support
apt-get install nfs-kernel-server nfs-commonDebootstrap (manage netboot image)
apt-get install debootstrap
NFS server setup
Preparation
You have to create a dedicated folder on your server where you will host the client image.
mkdir -p /srv/nfsroot
Configuration
The NFS configuration is done in the /etc/exports file
vim /etc/exports
Add something like that:
/srv/nfsroot 192.168.2.xxx(rw,no_root_squash,async,insecure)
Adjust "192.168.2.xxx" to your own network address
Security
Like TFTP, this part is insecure !
You must restrict the access to your NFS server by a firewall script and filtering BEFORE reaching the LAN !
