PXE is made up of several components: DHCP, HTTP, and TFTP. This procedure demonstrates how to set up a PXE server on Ubuntu.
DHCP dynamically distributes IP settings to NSX components, such as NSX Edge. In a PXE environment, the DHCP server allows NSX Edge to request and receive an IP address automatically.
TFTP is a file-transfer protocol. The TFTP server is always listening for PXE clients on the network. When it detects any network PXE client asking for PXE services, it provides the NSX component ISO file and the installation settings contained in a preseed file.
Prerequisites
- A PXE server must be available in your deployment environment. The PXE server can be set up on any Linux distribution.
- Verify that the preseeded configuration file has the parameters net.ifnames=0 and biosdevname=0 set after
--
to persist after reboot.
- See Bare Metal Server System Requirements.
Procedure
- (Optional) Use a kickstart file to set up a new TFTP or DHCP services on an Ubuntu server.
A kickstart file is a text file that contains CLI commands that you run on the appliance after the first boot.
Name the kickstart file based on the PXE server it is pointing to. For example:
nsxcli.install
The file must be copied to your Web server, for example at
/var/www/html/nsx-edge/nsxcli.install.
In the kickstart file, you can add CLI commands. For example, to configure the IP address of the management interface:
stop service dataplane
set interface eth0 <ip-cidr-format> plane mgmt
start service dataplane
To change the admin user password:
set user admin password <new_password> old-password <old-password>
If you specify a password in the preseed.cfg file, use the same password in the kickstart file. Otherwise, use the default password, which is "default".
To join the NSX Edge with the management plane:
join management-plane <manager-ip> thumbprint <manager-thumbprint> username <manager-username> password <manager password>
- Create two interfaces, one for management and another for DHCP and TFTP services.
Make sure that the DHCP/TFTP interface is in the same subnet that the
NSX Edge resides in.
For example, if the NSX Edge management interfaces are going to be in the 192.168.210.0/24 subnet, place eth1 in that same subnet.
# The loopback network interface
auto lo
iface lo inet loopback
# PXE server's management interface
auto eth0
iface eth0 inet static
address 192.168.110.81
gateway 192.168.110.1
netmask 255.255.255.0
dns-nameservers 192.168.110.10
# PXE server's DHCP/TFTP interface
auto eth1
iface eth1 inet static
address 192.168.210.82
gateway 192.168.210.1
netmask 255.255.255.0
dns-nameservers 192.168.110.10
- Install DHCP server software and configure required settings to set up the PXE server. For more details, see Linux documentation.
- Install the Apache server and TFTP and other components required to configure the PXE server.
- Copy or download the NSX Edge installer ISO file to a temporary folder.
- Mount the ISO file and copy the install components to the TFTP server and the Apache server.
sudo mount -o loop ~/nsx-edge.<build>.iso /mnt
cd /mnt
sudo cp -fr install/netboot/* /var/lib/tftpboot/
sudo mkdir /var/www/html/nsx-edge
sudo cp -fr /mnt/* /var/www/html/nsx-edge/
- (Optional) Edit the /var/www/html/nsx-edge/preseed.cfg file to modify the encrypted passwords.
You can use a Linux tool such as mkpasswd to create a password hash.
sudo apt-get install whois
sudo mkpasswd -m sha-512
Password:
$6$SUFGqs[...]FcoHLijOuFD
- Modify the root password, edit /var/www/html/nsx-edge/preseed.cfg and search for the following line:
d-i passwd/root-password-crypted password $6$tgmLNLMp$9BuAHhN...
- Replace the hash string.
You do not need to escape any special character such as $, ', ", or \.
- Add the usermod command to preseed.cfg to set the password for root, admin, or both.
For example, add the following command.
usermod --password '\$6\$VS3exId0aKmzW\$U3g0V7BF0DXlmRI.LR0v/VgloxVotEDp00bO2hUF8u/' root; \
usermod --password '\$6\$VS3exId0aKmzW\$U3g0V7BF0DXlmRI.LR0v/VgloxVotEDp00bO2hUF8u/' admin; \
The hash string is an example. You must escape all special characters. The root password in the first usermod command replaces the password that is set in d-i passwd/root-password-crypted password $6$tgm...
.
If you use the usermod command to set the password, the user is not prompted to change the password at the first login. Otherwise, the user must change the password at the first login.
- Add the following lines to the /var/lib/tftpboot/pxelinux.cfg/default file.
Replace 192.168.210.82 with the IP address of your TFTP server.
label nsxedge
kernel ubuntu-installer/amd64/linux
ipappend 2
append netcfg/dhcp_timeout=60 auto=true priority=critical vga=normal partman-lvm/device_remove_lvm=true netcfg/choose_interface=auto debian-installer/allow_unauthenticated=true preseed/url=http://192.168.210.82/nsx-edge/preseed.cfg mirror/country=manual mirror/http/hostname=192.168.210.82 nsx-kickstart/url=http://192.168.210.82/nsx-edge/nsxcli.install mirror/http/directory=/nsx-edge initrd=ubuntu-installer/amd64/initrd.gz mirror/suite=bionic netcfg/do_not_use_netplan=true --
- Add the following lines to the /etc/dhcp/dhcpd.conf file.
Replace 192.168.210.82 with the IP address of your DHCP server.
allow booting;
allow bootp;
next-server 192.168.210.82; #Replace this IP address
filename "pxelinux.0";
- Restart the DHCP service.
sudo service isc-dhcp-server restart
Note: If an error is returned, for example: "stop: Unknown instance: start: Job failed to start", run
sudo /etc/init.d/isc-dhcp-server stop and then
sudo /etc/init.d/isc-dhcp-server start. The
sudo /etc/init.d/isc-dhcp-server start command returns information about the source of the error.
What to do next
Install NSX Edge on bare metal using an ISO file. See Install Bare Metal NSX Edge Automatically using ISO File.