<div dir="ltr">Hi all,<div class="gmail_quote"><div dir="ltr"><div><br></div><div>Our company does PXE over HTTPS, and every time the server tries to PXE boot while having a bad time; things fail because of the SSL handshake (of course). I have to mount a rescue image, adjust the time, and only then would the PXE process flow normally. I would like to automate this.<br></div><div><br></div><div>What I understand is that I can add <span style="font-family:monospace">ntp-servers</span> to the configuration. I've tried that but didn't get anything useful out of it. I tried <span style="font-family:monospace">time-servers</span> as well since I didn't really understand the difference between both (now I do). We do have internal NTP servers in the company.</div><div><br></div><div>Any advice to what I am missing? Or is my understanding wrong and this can't be automated?<br></div><div><br></div><div>Here is the first part of our configuration file, important parts are highlighted:</div><div><br></div><div><span style="font-family:monospace">{<br> "Dhcp4": {<br> "loggers": [<br> { <br> "name": "kea-dhcp4",<br> "output_options": [<br> {<br> "output": "/var/log/kea-dhcp4.log",<br> "maxsize": 536870912,<br> "maxver": 2<br> }<br> ],<br> "severity": "INFO",<br> "debuglevel": 0<br> }, <br> { <br> "name": "kea-dhcp4.bad-packets",<br> "output_options": [<br> {<br> "output": "/var/log/kea-dhcp4.bad-packets.log",<br> "maxsize": 536870912,<br> "maxver": 2<br> },<br> {<br> "output": "syslog"<br> }<br> ],<br> "severity": "DEBUG",<br> "debuglevel": 50<br> } <br> ], <br> "match-client-id": false,<br> "reservation-mode": "disabled",<br> "hooks-libraries": [<br> { <br> "library": "/usr/share/something.so",<br> "parameters": {<br> "something_socket": "/run/something/something.sock"<br> }<br> } <br> ], <br> "next-server": "SECRET_IP",<br> "control-socket": {<br> "socket-type": "unix",<br> "socket-name": "/var/run/kea/kea-dhcp4.socket"<br> }, <br> "dhcp-queue-control": {<br> "enable-queue": true, <br> "queue-type": "kea-ring4",<br> "capacity": 500<br> }, <br> "client-classes": [<br> { <br> "name": "HTTPClient",<br> "test": "option[93].hex == 0x0010",<br> "option-data": [<br> {<br> "name": "vendor-class-identifier",<br> "data": "HTTPClient"<br> }<br> ],<br><span style="background-color:rgb(255,255,0)"> "boot-file-name": "<a href="https://fqdn/filename" target="_blank">https://fqdn/filename</a>"</span><br> }, <br> { <br> "name": "UEFI",<br> "test": "option[93].hex == 0x0007",<br> "boot-file-name": "filename"<br> }, <br> { <br> "name": "Legacy",<br> "test": "option[93].hex == 0x0000",<br> "boot-file-name": "ipxe.pxe"<br> }, <br> { <br> "name": "iPXE",<br> "test": "substring(option[77].hex,0,4) == 'iPXE'",<br> "boot-file-name": "<a href="https://anotherfqdn/iPXE" target="_blank">https://anotherfqdn/iPXE</a>"<br> } <br> ], <br> "option-data": [<br> { <br> "name": "domain-name-servers",<br> "data": "SECRET_IP, SECRET_IP"<br> }, <br><span style="background-color:rgb(0,255,255)"> { <br> "name": "ntp-servers",<br> "data": "SECRET_IP, SECRET_IP, SECRET_IP, SECRET_IP"<br> }, <br> { <br> "name": "time-servers",<br> "data": "SECRET_IP, SECRET_IP, SECRET_IP, SECRET_IP"<br> }, </span><br> { <br> "name": "domain-search",<br> "data": "fqdn, fqdn"<br> }, <br> { <br> "name": "domain-name",<br> "data": "fqdn"<br> } <br> ], <br> "interfaces-config": {<br> "interfaces": [</span></div>-- <br></div></div><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div><font face="georgia,serif" color="#6666cc">Best Regards,</font></div>
<div><font face="georgia,serif" color="#6666cc"><b></b></font> </div>
<div><font face="georgia,serif" color="#6666cc"><b>Omar Othman</b></font></div></div></div></div>