Re-implementing the entire backend/frontend of pfSense
-
Ok, apart from killing my "worlds worst implementation of NFS" NAS appliance I have a functional test build, unfortunately tftpd-hpa seems a little fruity on FreeBSD and requires restarting when remounting /cf. Here are some screenshots showing how little I have done:
Active Directory configuration, absolute minimum parameters required:
DHCPD configuration, adding gateway & PXE boot filename:
TFTP configuration, slightly spartan, really needs a file manager like captive portal:
User & Groups modified to take posixAccount fields:
And the ISO/IMG files:
http://fnjordy.umcus.org/tmp/test.iso [ 26MB ]
http://fnjordy.umcus.org/tmp/test-generic-pc-img [ 12MB ]Slight mess in order to get TFTPBOOT files up you need to SSH in and run the following then SCP the files over.
mkdir /cf/tftpboot /sbin/umount -f /cf /sbin/mount -w -o noatime /cfI have a kernel an initrd image from Ubuntu Dapper with two configurations. One for a LTSP Ubuntu, basically regular Ubuntu Dapper Desktop install made diskless following the wiki instructions. The other for Ubuntu MueKow which loads the ltsp-client built from the server. The server is configured with NSS_LDAP for users & groups, and PAM_HEIMDAL to allow AD based logins. I couldn't get a crypted password up for shadow, but kerberos is the more secure method, albeit Samba 4 has no security :D
I wonder if I can find anyone who would actually use it ;)
-
Network diagram to make things a bit prettier: :-*
-
Kewl :) 8) ;)
Keep the good work and us posted, thanks for sharing with the community 8)
-
Can't wait to see you actually starting to work on pfSense ;D
-
Well i've just finished porting the directory server from FreeNAS core to a FreeSBIE core and I have to say i'm very impressed with how far the pfSense team have come. Its a minefield myriad of different options and decisions needing to be made and to get something working so well like pfSense is just brilliant. I on the other hand have quite a way to go, I have a system that works from CD but I need to test and get working CD+floppy/CF/HDD and HDD/CF setups, and then test on some WRAP hardware. My first significant change will be to introduce a private config, and then a runtime/public pair. I have setup my notes on Novell Forge:
http://developer.novell.com/wiki/index.php/%E3%81%BF%E3%82%8B_directory_server
Albeit rather fruity services, as Bugzilla still isn't working yet, and its taken a couple of days to get subversion and file hosting up. I'm working on a "build from scratch" how to just like pfsense / freenas / m0n0wall have as the current state is a rather confusing plethora of scripts. My only nitpick is with FreeSBIE 2, running a "make iso" always wants to rebuild everything so I added some code to force the build & install to be skipped.
-
FreeSBIE 2 ignores the build if its already done. Not sure what you mean:
Building world for i386 architecture
NO_BUILDWORLD set, skipping build
Building kernel for i386 architecture
NO_BUILDKERNEL set, skipping build
Installing world for i386 architecture
Making hierarchy
Are you sure you are running FreeSBIE 2 (not 1)?
-
FreeSBIE 2 ignores the build if its already done. Not sure what you mean:
Building world for i386 architecture
NO_BUILDWORLD set, skipping build
Building kernel for i386 architecture
NO_BUILDKERNEL set, skipping build
Installing world for i386 architecture
Making hierarchy
Are you sure you are running FreeSBIE 2 (not 1)?
It is FreeSBIE 2, but I guess i'm working with buildworld/buildkernel in not the best way possible. I'll work on it a bit to see why.