Showing posts with label 14.04 lts. Show all posts
Showing posts with label 14.04 lts. Show all posts

Wednesday, July 08, 2015

Running TFTP server on Ubuntu 14.04

# Install tftpd-hpa package
apt-get update
apt-get -y install tftpd-hpa

# Fix config file broken by default
# - use correct tftpboot directory rather than random location under /var
# - chroot to tftpboot
# - allow uploading of files but not overwriting existing
# - listen IPv4 and IPv6 instead of IPv6 only
# - enable logging
mv /etc/default/tftpd-hpa /etc/default/tftpd-hpa.old
cat <<'__EOF__' >/etc/default/tftpd-hpa
TFTP_USERNAME="tftp" 
TFTP_DIRECTORY="/tftpboot" 
TFTP_ADDRESS=":69"
TFTP_OPTIONS="--secure --create --listen --verbose"
__EOF__

# Create tftpboot directory and use proper permissions
mkdir /tftpboot
chmod -R 1770 /tftpboot 
chown -R root:tftp /tftpboot

# Restart service
service tftpd-hpa restart

P.S. There's config file bug causing tftpd to listen only IPv6 connections by default... https://bugs.launchpad.net/ubuntu/+source/tftp-hpa/+bug/1448500

Wednesday, December 10, 2014

Oddities of dnsmasq when used with IPv6 resolvers

# dnsmasq --version
Dnsmasq version 2.68  Copyright (c) 2000-2013 Simon Kelley
Compile time options: IPv6 GNU-getopt DBus i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset auth

# md5sum dnsmasq*
8a704b6aa977df9485b3faf940cc5e35  dnsmasq_2.68-1_all.deb
60bafb9b863671bb02595505a447270c  dnsmasq-base_2.68-1_amd64.deb

There was odd "[icmp6 sum ok] ICMP6, destination unreachable, unreachable port" going out from my server every time DNS reply was received. Turns out it was because dnsmasq IPv6 support is buggy.

Wednesday, July 16, 2014

Ubuntu Server 14.04 LTS with encrypted md mirrored rootfs and remote ssh unlock

This post is just to let everyone know old process described here in my earlier post still works and also survives upgrade from older Ubuntu version to 14.04 LTS.