Solved

Linux NFS boot (nfsroot) and VLAN

Posted on 2009-05-11
4
1,207 Views
Last Modified: 2013-12-02
Hi experts,

imagine the following implementation:
- NFS server on private LAN, vlan 5 on the switch's port
- Linux server, with system NFS share and getting kernel through tftp as part of the nfsroot process, vlan 5 for private IP address and vlan 15 and 20 on public IP ranges.

NFS client interfaces configuration is like :
- eth0 with private IP address
- vlan15 using raw-device-id eth0, with one public IP address
- vlan20 using raw-device-id eth0, with one public IP address on another range

From the Foundry point of view, the port of the nfs client is tagged on vlan 5, 15 and 20, dual-mode on vlan 5 (please translate to Cisco if needed)

The problem is that when the nfs client boots, he can't mount the NFS share to get its system space unless its switch's port is "no tagged" for vlan 15 and 20 (which needs to be tagged again in order to reach the world).
In fact, he can't even get DHCP answer at that time (well, the DHCP request doesn't reach the DHCP server).
Another nfs client which doesn't need vlan other than 5 (only on private network) can boot without any trouble.

I guess that's because there is no way to tell the kernel "hey dude, use vlan5" while booting.
Is that correct?
Why doesn't use the vlan specified on the dual-mode option of the switch's port?
Is there any workaround?

By the way, how do YOU use vlans on your network?

Thanks for your help.
0
Comment
Question by:Alf92130
  • 2
  • 2
4 Comments
 
LVL 43

Expert Comment

by:ravenpl
ID: 24361951
AFIR on cisco switches(at least 29xx) You can tell port to tag untagged frames with default vlan id, in Your case it's 5. What's the switch, and what's the port config?

> I guess that's because there is no way to tell the kernel "hey dude, use vlan5" while booting.
Actually You probably could hack the initrd to init eth on vlan5, but it's not kernel who asks for DHCP and kernel+initrd via tftp - right?
0
 
LVL 1

Author Comment

by:Alf92130
ID: 24362329
Hi ravenpl, thanks for replying!

The switch is a Foundry FastIron II, port is tagged on vlan 5, 15 and 20 with "dual-mode 5", meaning "untagged frames go through vlan 5", I guess it's like the 29XX+ feature.
(http://www.foundrynetworks.co.jp/services/documentation/sribcg/VLANs.html#33633)
At that point I thought it should work but didn't. I wish I could blame Foundry but I won't yet.

>Actually You probably could hack the initrd to init eth on vlan5, but it's not kernel who asks for DHCP
> and  kernel+initrd via tftp - right?
Mhh I don't think I use initrd at all for the moment and I don't know it that much, any hint could be appreciated =)
Indeed, PXE asks for DHCP and kernel via tftp, thanks for pointing that out. I'm gonna check if there is any VLAN option in PXE configuration ...
0
 
LVL 43

Expert Comment

by:ravenpl
ID: 24362937
> Mhh I don't think I use initrd at all
They always come in twos, the master kernel and the apprentice initramfs <lol> Check out the tftp dir...
0
 
LVL 1

Accepted Solution

by:
Alf92130 earned 0 total points
ID: 24413286
Of course, PXE doesn't provide the option.
Anyway, we decided to cancel this project and went back on a non-tagged vlan.

If anyone still got the answer, I hope he can post it, but I'm gonna close this question.
ravenpl> thanks for your participation, I'll give you some points for that.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Goal:  To set up a secure SSH server for your home computer to make it accessible anywhere AND to use it as a port forwarding proxy. Steps 1.  WinSSHD version 5 is free for personal use.  So download and install it.  You can download it from the…
​Being a Managed Services Provider (MSP) has presented you  with challenges in the past— and by meeting those challenges you’ve reaped the rewards of success.  In 2014, challenges and rewards remain; but as the Internet and business environment evol…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now