Translation(s): none


Debian-LAN

Debian-LAN with mainserver acting as gateway.

Debian-LAN

Debian-LAN with dedicated gateway.

Debian-LAN Setup_A

Network Topology

Two variants are available:

The mainserver serves the central services to the LAN and the root file system for diskless machines. The clients mount their home directories via kerberized NFSv4.

By default the following IP addresses are used: Gateway: 10.0.0.1, mainserver: 10.0.0.10, workstations: 10.0.0.50...10.0.0.149, diskless clients 10.0.0.150...10.0.0.249. This can be modified in the config space class/SERVER_A.var.

Machine Types

Details and Hints

First make sure you can ssh as root into the mainserver with the root password.

User and Machine Management

After installation of the mainserver (gateway version): Make sure your networks are connected to the right interfaces: Fixed IP address 10.0.0.1 to the internal network, DHCP to the outside world (internet/router).

To install a client machine, you have to add the hardware MAC address to /etc/dhcp/dhcpd.conf. This should be done with the command:

debian-lan add2dhcp

The command lists all (non-local and not yet known) MAC addresses found in the arp cache and prompts for skipping the address, adding it as workstation or as diskless machine.

So to (mass) add machines:

Distributing Kerberos keytabs to clients: During installation of a workstation, the kerberos keytab is sent to the machine and marked with a time stamp. In case you need to repeat this procedure manually, remove the timestamp from the keytab in /etc/root/installation/ (i.e. rename it). After that, use the command:

debian-lan key2machine workstationXX

on the mainserver to copy the Kerberos keytab to workstationXX. Diskless clients and roaming machines do not need this procedure to be activated.

Adding users: Adding users in GOsa should be straight forward (use the template prepared). Lists of users can be added with the provided script add2gosa.

If you prefer not to use GOsa, use:

debian-lan adduser <list of usernames separated by spaces>

or

debian-lan adduser <path to file>

to add users. The file is a simple text file containing on each line a single username and optionally the user's password separated by spaces. If you omit the password, debian-lan will create a random password and append it to the user's line in the file. Note that the users created with debian-lan are inaccessible within GOsa.

Removing users: Use the command deluser in the debian-lan script.

For more details take a look at the debian-lan script itself.

Backup

A dedicated backup disk is recommended. Use a class *BAK* for that case. Take a look at class/50-host-classes and disk_config/*BAK* for details.

RAID1

To use a RAID1 on the server, add the class RAID and replace LVM*_A with the corresponding RAIDLVM*_A class in class/50-host-classes.

Local APT repository

By default the mainserver includes a (signed) APT repository to distribute site-specific customized packages in your DebianLAN. For details look into /var/www/debian/create_archive.sh. This repository is added to the clients' sources.list on a FAI softupdate as soon as the publick key can be fetched. To disable this feature, remove the corresponding variables in class/SERVER_A.var and class/CLIENT_A.var.

Diskless Clients

/!\ The FAI classes DISKLESS_* work only on the mainserver, making the classes independent has not been done yet.

The mainserver by default serves the root file system for diskless machines. To disable diskless machines, install the mainserver with a corresponding partitioning scheme activated in class/50-host-classes ("FLAVOR"). After installation and the creation of the FAI nfsroot (fai-setup), you can install the chroot automatically. To install it manually, run:

export LC_ALL=C
fai -vNu diskless dirinstall /opt/live/filesystem.dir/

The command will install the chroot of the diskless machines in /opt. In addition, swaping over the network is activated and the PXE configuration prepared. Unknown machines and the disklessXX hosts will be booted as diskless clients. To update the chroot, use the commands:

chroot /opt/live/filesystem.dir/
fai -vNu diskless softupdate

Roaming Machines

Installation of roaming machines can be chosen from the PXE menu, when booting over the network. Users have a local home directory at /home/... where they can drop data for offline use or which they can synchronize with the Debian-LAN home directory.