public
/
IPv6disklessVM
Vērot 1
Pievienot zvaigznīti 0
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Instructions how to make a diskless VM with iPXE and NFS using IPv6 only.
Nevar pievienot vairāk kā 25 tēmas Tēmai ir jāsākas ar burtu vai ciparu, tā var saturēt domu zīmes ('-') un var būt līdz 35 simboliem gara.
5 Revīzijas
1 Atzars
Koks: aa6d9f8098
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'aa6d9f8098'
${ noResults }
IPv6disklessVM/README.md

README.md 4.9KB
Neapstrādāts Parastais skats Vēsture

update
pirms 5 gadiem
debian/ubuntu iPXE patching instructions
pirms 5 gadiem
update
pirms 5 gadiem
debian/ubuntu iPXE patching instructions
pirms 5 gadiem
update
pirms 5 gadiem
corrected hooks
pirms 5 gadiem
update
pirms 5 gadiem
corrected hooks
pirms 5 gadiem
update
pirms 5 gadiem
corrected hooks
pirms 5 gadiem
update
pirms 5 gadiem
added notes
pirms 5 gadiem
update
pirms 5 gadiem
corrected hooks
pirms 5 gadiem
update
pirms 5 gadiem
corrected hooks
pirms 5 gadiem
added notes
pirms 5 gadiem
update
pirms 5 gadiem
added notes
pirms 5 gadiem
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 
  1. # How to boot a diskless VM with iPXE over NFS using only IPv6

  2. 

  3. I have encountered many issues and countless hours trying to figure this out, but I finally succeeded. Reading source code, strace'ing binaries trying to figure out what was wrong with them.

  4. 

  5. # iPXE

  6. iPXE will do IPv4 DHCP first and then IPv6 SLAAC/DHCP. This is not a problem, it's just annoying. IPv4 DHCP has a default timeout in iPXE of 10 seconds.

  7. 

  8. What you need to do in iPXE:

  9. * enable serial console -> `src/config/console.h` -> `#define CONSOLE_SERIAL`

  10. * enable IPv6 -> `src/config/general.h` -> `#define NET_PROTO_IPV6`

  11. * mangle IPv4 DHCP timeout -> `src/config/dhcp.h` -> `#define DHCP_DISC_END_TIMEOUT_SEC 1`

  12. 

  13. Debian/Ubuntu ipxe-qemu patching

  14. ```

  15. apt-get update

  16. apt-get source ipxe-qemu

  17. apt-get build-dep ipxe-qemu

  18. cd ipxe-1.0.0+git-20180124.fbe8c52d # or whatever your version is

  19. dch -n "add support for serial console / IPv6"

  20. # apply the modifications above

  21. debuild -b -uc -us

  22. cd ..

  23. dpkg -i ipxe-qemu_*.deb

  24. ```

  25. 

  26. # Kernel options

  27. 

  28. Make sure you pass the right kernel options for initramfs/initrd to know exactly what you want to do. (replace eth0 with the name of your PXE interface)

  29. * `ip=:::::eth0:off` (disable IPv4 on the PXE interface)

  30. * `ip6=eth0` (enable IPv6 on the PXE interface)

  31. * `nfsroot=<hostname>:<path>` (mounting IPv6 NFS shares using a literal IPv6 **WILL FAIL**, you **MUST** use a hostname)

  32. 

  33. Those options will tell the initrd script which interface and protocol is desired.

  34. 

  35. # Hooks in initramfs

  36. 

  37. NOTE: Be aware that this will increase the size of initrd. In my case it went to ~16MB which is still way less than on a physical host (~60MB).

  38. 

  39. A few files must be copied to the initramfs in order to make this work. First we need DNS to work and secondly we need to replace the busybox nfsmount with mount.nfs.

  40. 

  41. In `/etc/initramfs-tools/hooks/` create an executable script with the name of your choice. Here's the content:

  42. 

  43. ```

  44. #!/bin/bash

  45. . /usr/share/initramfs-tools/hook-functions

  46. 

  47. # copy all the name libraries (for DNS to work)

  48. cp -fpL /lib/x86_64-linux-gnu/libns* ${DESTDIR}/lib/x86_64-linux-gnu/

  49. 

  50. # copy helper files needed by mount.nfs

  51. for file in /etc/protocols /etc/netconfig

  52. do cp $file ${DESTDIR}${file}; done

  53. 

  54. # uncomment to embed in your setup, can be useful for debugging

  55. # copy_exec /sbin/dhclient /sbin

  56. # copy_exec /bin/ping /bin

  57. # copy_exec /usr/bin/strace /bin

  58. 

  59. # replace the busybox nfsmount with mount.nfs (this way we don't need to modify the included nfs script which calls nfsmount)

  60. cp /sbin/mount.nfs ${DESTDIR}/bin/nfsmount

  61. 

  62. # this little hack will find all libraries needed by mount.nfs, locate them and copy them.

  63. for lib in `ldd /sbin/mount.nfs | awk '{print $1}'`

  64. do

  65.     found=0

  66.     for path in /lib /lib/x86_64-linux-gnu /usr/lib /usr/lib/x86_64-linux-gnu

  67.     do

  68.         if [ -r "${path}/${lib}" ]

  69.         then

  70.             cp -L ${path}/${lib} ${DESTDIR}/${path}/${lib}

  71.             found=1

  72.         fi

  73.     done

  74. 

  75.     if [ ! $found ]

  76.     then

  77.         echo "ERROR: Cannot find ${lib}"

  78.         exit 1;

  79.     fi

  80. done

  81. ```

  82. 

  83. After that you'll need to `update-initramfs -u`

  84. 

  85. # Boot

  86. **Boot and it should just work! Happy IPv6!**

  87. 

  88. # Final notes

  89. 

  90. ## iPXE & NFS

  91. 

  92. Due to incompatible limiting requirements of iPXE and initramfs, both must be run on separate subnets. You will need one interface for iPXE and one for NFS.

  93. 

  94. ### radvd.conf

  95. ```

  96. # iPXE needs SLAAC and DHCPv6 options

  97. interface bridge0 {

  98.     IgnoreIfMissing on;

  99.     AdvSendAdvert on;

  100.     AdvOtherConfigFlag on;

  101.     AdvDefaultLifetime 0;

  102.     AdvLinkMTU 9000;

  103.     AdvCurHopLimit 64;

  104.     AdvReachableTime 0;

  105.     MaxRtrAdvInterval 600;

  106.     MinRtrAdvInterval 198;

  107.     AdvDefaultPreference low;

  108.     AdvRetransTimer 0;

  109.     AdvManagedFlag off;

  110.     prefix <your PXE /64>::/64 { };

  111.     RDNSS <your dnsmasq server (yourself) IP, must be in the same subnet>:: { };

  112. };

  113. 

  114. # busybox/initramfs needs DHCPv6

  115. interface bridge2 {

  116.     IgnoreIfMissing on;

  117.     AdvSendAdvert on;

  118.     AdvOtherConfigFlag off;

  119.     AdvDefaultLifetime 0;

  120.     AdvLinkMTU 9000;

  121.     AdvCurHopLimit 64;

  122.     AdvReachableTime 0;

  123.     MaxRtrAdvInterval 600;

  124.     MinRtrAdvInterval 198;

  125.     AdvDefaultPreference low;

  126.     AdvRetransTimer 0;

  127.     AdvManagedFlag off;

  128.     prefix <your NFS /64>::/64 {

  129.         AdvAutonomous off;

  130.     };

  131. };

  132. ```

  133. ### isc-dhcp-server6 dhcpd6.conf

  134. ```

  135. # PXE

  136. subnet6 <your PXE /64>::/64 {

  137. 	option dhcp6.bootfile-url "http://<pxe server hostname>?uuid=${uuid}&op=ipxe";

  138. }

  139. # NFS

  140. subnet6 <your NFS /64>::/64 {

  141. 	range6 <your NFS /64>::1 <your NFS /64>::ffff;

  142. 	option dhcp6.name-servers <your NFS server>::;

  143. }

  144. ```

  145. 

  146. ### dnsmasq

  147. ```

  148. # leave everything to defaults except

  149. interface=bridge1

  150. interface=bridge2

  151. no-dhcp-interface=bridge1

  152. no-dhcp-interface=bridge2

  153. ```

  154. 

  155. ### /etc/hosts

  156. DO NOT MAKE YOUR VMs depend on VMs to boot !!!

  157. If your DNS server is a VM, make sure that the hostnames used to boot (pxe server hostname, nfs server hostname) can be resolved by dnsmasq, the easiest way to ensure this is to add them to /etc/hosts which dnsmasq will use by default.