| @ericmacdonald:matrix.org | First, controller-1 online state is driven by management network maintenance messaging between the mtcAgent and mtcClient. The OAM interface is not involved with the online state. Once controller-1 boots following the install its mtcClient process will begin sending mtcAlive messages to the active 'controller'. mtcAgent receipt of the mtcAlive messages drives controller-1 to online. | 13:48 |
|---|---|---|
| @ericmacdonald:matrix.org | Second, the kernel and initrd images MUST be in the /var/pxeboot directory for tftp to work. Linking them does not. This setting is specified in the /etc/dnsmasq.conf file. [sysadmin@controller-0 rel-24.03(keystone_admin)]$ pwd | 13:52 |
| /var/pxeboot/rel-24.03 | ||
| [sysadmin@controller-0 rel-24.03(keystone_admin)]$ ls -lrt | ||
| total 206576 | ||
| -rw-r--r-- 1 root root 179674774 Mar 21 01:00 initrd | ||
| -rw-r--r-- 1 root root 9738176 Mar 21 01:00 bzImage-rt | ||
| -rw-r--r-- 1 root root 11056992 Mar 21 01:00 bzImage | ||
| -rw-r--r-- 1 root root 11056992 Mar 21 01:00 bzImage-std | ||
| @ericmacdonald:matrix.org | From /etc/dnsmasq.conf in my system | 13:55 |
| # TFTP support | ||
| enable-tftp | ||
| tftp-max=200 | ||
| tftp-root=/var/pxeboot,bond0 | ||
| @ericmacdonald:matrix.org | Lastly, on system node installs, ostree and kickstarts are fetched remotely from controller-0 and that content MUST be under /var/www/pages/feed | 13:58 |
| Hwere is the rule from /etc/lighttpd/lighttpd.conf | ||
| # deny access to feed directories for external connections. | ||
| # Only enable access to dir listing for feed directory if on internal network | ||
| # (i.e. mgmt or pxeboot networks) | ||
| include "/etc/lighttpd/lighttpd-inc.conf" | ||
| $HTTP["remoteip"] != "127.0.0.1" { | ||
| $HTTP["url"] =~ "^/(rel-[^/]*|feed|updates|iso)/" { | ||
| dir-listing.activate = "enable" | ||
| } | ||
| $HTTP["remoteip"] != var.management_ip_network { | ||
| $HTTP["remoteip"] != var.pxeboot_ip_network { | ||
| $HTTP["url"] =~ "^/(rel-[^/]*|feed|updates)/" { | ||
| url.access-deny = ( "" ) | ||
| } | ||
| } | ||
| } | ||
| } | ||
| @ericmacdonald:matrix.org | Lastly, on system node installs, ostree and kickstarts are fetched remotely from controller-0 and that content MUST be under /var/www/pages/feed | 13:59 |
| Here is the rule from /etc/lighttpd/lighttpd.conf | ||
| ; deny access to feed directories for external connections. | ||
| ; Only enable access to dir listing for feed directory if on internal network | ||
| ; (i.e. mgmt or pxeboot networks) | ||
| include "/etc/lighttpd/lighttpd-inc.conf" | ||
| $HTTP["remoteip"] != "127.0.0.1" { | ||
| $HTTP["url"] =~ "^/(rel-[^/]*|feed|updates|iso)/" { | ||
| dir-listing.activate = "enable" | ||
| } | ||
| $HTTP["remoteip"] != var.management_ip_network { | ||
| $HTTP["remoteip"] != var.pxeboot_ip_network { | ||
| $HTTP["url"] =~ "^/(rel-[^/]*|feed|updates)/" { | ||
| url.access-deny = ( "" ) | ||
| } | ||
| } | ||
| } | ||
| } | ||
| @ericmacdonald:matrix.org | * From /etc/dnsmasq.conf in my system | 14:00 |
| ; TFTP support | ||
| enable-tftp | ||
| tftp-max=200 | ||
| tftp-root=/var/pxeboot,bond0 | ||
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!