• Recent
    • Unsolved
    • Tags
    • Popular
    • Users
    • Groups
    • Search
    • Register
    • Login

    Trouble with Fog and PFSense

    Scheduled Pinned Locked Moved
    FOG Problems
    2
    14
    3.2k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • george1421G
      george1421 Moderator @GrumpyRobot
      last edited by

      @grumpyrobot well, I think here I might start with wireshark running on a witness computer (3rd computer on same subnet).

      Start up wireshark with the capture filter of port 67 or port 68 Then pxe boot the target computer. Keep recording until you get the error on the target computer.

      Now look at your wireshark screen. You should see a standard DORA sequence.

      First you will see a DISCOVER from the target computer.
      The second packet (OFFER) will be from your dhcp server (should be your pfsense server). You will want to inspect this packet. In the ethernet header there are 2 fields of interest. {next server ip address} and {boot file name}. The next server field should have the IP address of the FOG server. The boot file name should be undionly,kpxe for bios or ipxe.efi for uefi.
      pxe1.png
      If those are set then the bootp part is set correctly. Next scroll down until you see the dhcp options then expand dhcp option 66 and 67. Those values should match the ethernet header values.
      pxe2.png

      My bet something here is wrong.

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

      G 1 Reply Last reply Reply Quote 0
      • G
        GrumpyRobot @george1421
        last edited by

        @george1421 I tried running Wireshark and don’t see option 66 or 67 listed in my Discover request. Maybe I’m looking at the wrong portion (not super familiar with Wireshark). Here are the images I took of my boot screen (which shows my FOG ip) and of Wireshark (which doesn’t). Hopefully this helps.

        WireShark
        wireshark.jpg

        Computer booting
        bootscreen.jpg

        george1421G 1 Reply Last reply Reply Quote 0
        • george1421G
          george1421 Moderator @GrumpyRobot
          last edited by

          @grumpyrobot You want the OFFER not DISCOVER. DISCOVER comes from the pxe booting computer, OFFER comes from dhcp server.

          So from the screen shot is 192.168.1.49 your FOG sever?

          If so we need to look into why either the tftp server isn’t running or you have a the linux firewall enabled on the FOG server. What you are looking using wireshark is displayed in the screen shot. Not all pxe boot roms are that helpful.

          Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

          G 1 Reply Last reply Reply Quote 0
          • G
            GrumpyRobot @george1421
            last edited by

            @george1421 I’m going to guess I am doing something wrong on my end. I do not see OFFER on Wireshark, only DISCOVER and REQUEST. Should I be running Wireshark on the FOG computer, or on another computer in my network?

            george1421G 1 Reply Last reply Reply Quote 0
            • george1421G
              george1421 Moderator @GrumpyRobot
              last edited by

              @grumpyrobot Well dhcp uses broadcast messages to communicate, every once and a while you will find that a dhcp server will use unicast messages for replying. This is rare but it happens. Unicast messaging can’t be detected with a witness computer unless you have port mirroring enabled.

              But from what we see in the bios screen, I want to focus on the fog server, specifically two points.

              1. Is 192.168.1.49 your fog server IP address? If so can you connect to it using putty or ssh from another computer on the 192.168.1.x subnet?
              2. Can you reach the tftp server from a computer on the 192.168.1.x subnet. If you have a windows 10 computer you can add the tftp client feature. Once installed you will make sure you disable the windows firewall (for testing) and then use the tftp client from a command window to see if you can download the ipxe boot loader with the command tftp -i 192.168.1.49 GET undionly.kpxe . I’m only interested to see if the download works.

              The bios screen error indicates either the pxe booting computer can’t reach the FOG server or the tftp service is not passing the boot loader to the pxe booting computer.

              Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

              G 1 Reply Last reply Reply Quote 0
              • G
                GrumpyRobot @george1421
                last edited by

                @george1421 I can SSH into it just fine from other machines. The TFTP, however, gives me the “Connect Request Failed” error message. Is there a port or something I need to enable on my Linux machine for TFTP on Ubuntu 20.04?

                G george1421G 2 Replies Last reply Reply Quote 0
                • G
                  GrumpyRobot @GrumpyRobot
                  last edited by

                  @george1421 Also it looks like TFTP is running, just not reachable

                  6dc5078f-5183-4d64-b4a4-1ca771954c79-image.png

                  1 Reply Last reply Reply Quote 0
                  • george1421G
                    george1421 Moderator @GrumpyRobot
                    last edited by

                    @grumpyrobot ok since you have a ubuntu system key in this command sudo ufw status confirm that the firewall is disabled.

                    If its enabled use this command sudo ufw disable to turn it off. Then try to tftp again.

                    Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

                    G 1 Reply Last reply Reply Quote 0
                    • G
                      GrumpyRobot @george1421
                      last edited by

                      @george1421 Status shows inactive

                      george1421G 1 Reply Last reply Reply Quote 0
                      • george1421G
                        george1421 Moderator @GrumpyRobot
                        last edited by

                        @grumpyrobot said in Trouble with Fog and PFSense:

                        @george1421 Status shows inactive

                        Well this should not be then.

                        From the 192.168.1.x subnet you can ping the fog server, you can connect to the web ui, you can ssh to it. The tftp service is running. The ubuntu firewall is disabled.

                        In short it has to be working, can the fog server connect to its self using the tftp program and command line?

                        Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

                        G 1 Reply Last reply Reply Quote 0
                        • G
                          GrumpyRobot @george1421
                          last edited by

                          @george1421 I think I found the root of the issue. I installed it originally with https, but it looks like the cert was not validated. I resintalled without https and it seems to work just fine now. Is there a way to validate the cert with https? The wiki mentions system time can cause an issue, but that was all correct, so my guess is something else may have broke the cert.

                          1 Reply Last reply Reply Quote 0
                          • 1 / 1
                          • First post
                            Last post

                          148

                          Online

                          12.0k

                          Users

                          17.3k

                          Topics

                          155.2k

                          Posts
                          Copyright © 2012-2024 FOG Project