• Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login
  • Recent
  • Unsolved
  • Tags
  • Popular
  • Users
  • Groups
  • Search
  • Register
  • Login

HTTPS booting getting access denied

Scheduled Pinned Locked Moved
FOG Problems
3
3
922
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • L
    lucycle
    last edited by Sep 18, 2021, 4:27 PM

    Fog version: 1.5.9
    OS: Ubuntu 18.04.6 LTS

    Hello all,

    I have netboot.xyz as an option in the advanced menu of fog. The install was migrated to current version from an old version of fog where this was working. It’s been a few years but I believe I used ipxe.org’s git repo to compile a version w/ DOWNLOAD_PROTO_HTTPS uncommented to make it work back then. However, now when selecting the option it gives an access denied error as if the current ipxe.efi/undionly binary was compiled w/o DOWNLOAD_PROTO_HTTPS in general.h .

    I’ve searched through the forums for this specific error. Appears that this issue has been solved since 2017. Just to be sure I doublechecked in fogproject/src(-efi)/ipxe/config/ and it is uncommented.

    What could be causing this error to pop on the following addition to my advanced.ipxe

    :xyz
    chain --autofree https://boot.netboot.xyz
    goto MENU

    Would really appreciate some help.

    Thanks!

    G 1 Reply Last reply Sep 18, 2021, 7:29 PM Reply Quote 0
    • G
      george1421 Moderator @lucycle
      last edited by george1421 Sep 18, 2021, 1:30 PM Sep 18, 2021, 7:29 PM

      @lucycle I’m not 100% on using non-fog issues kernels, but you need to include the fog server’s certificate when compiling the ipxe boot loader. I’ve seen similar error when the fog issued ipxe is not compiled with the ssl certificate that matches the http server’s ssl certificate.

      What was your rational for creating your own ipxe boot loader.

      Not relevant to the issue: but you could also send this file via tftp by changing the chain command to this:

      chain --autofree tftp://boot.netboot.xyz
      

      and placing that file in the /tftpboot directory

      Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!

      1 Reply Last reply Reply Quote 0
      • S
        Sebastian Roth Moderator
        last edited by Sep 18, 2021, 9:13 PM

        @lucycle Take a look at the first couple of lines of this script: https://github.com/FOGProject/fogproject/blob/master/utils/FOGiPXE/buildipxe.sh

        Web GUI issue? Please check apache error (debian/ubuntu: /var/log/apache2/error.log, centos/fedora/rhel: /var/log/httpd/error_log) and php-fpm log (/var/log/php*-fpm.log)

        Please support FOG if you like it: https://wiki.fogproject.org/wiki/index.php/Support_FOG

        1 Reply Last reply Reply Quote 0
        • 1 / 1
        1 / 1
        • First post
          2/3
          Last post

        177

        Online

        12.1k

        Users

        17.3k

        Topics

        155.4k

        Posts
        Copyright © 2012-2024 FOG Project