Category Archives: Networking

Remapping file names with TFTP-HPA for buggy PXE clients

Some PXE clients send extraneous garbage characters in TFTP requests for files, e.g. “RRQ from … filename pxelinux.biny#012;o#036”instead of just “pxelinux.bin”. This is logged in the syslog. To work around this we can use a feature of tftp-hpa to remap file names, based on a rewrite regex: /etc/default/tftp-hpa: TFTP_OPTIONS=”–secure –verbose -v -m /etc/” /etc/ r … Continue reading Remapping file names with TFTP-HPA for buggy PXE clients

PXE Booting Guide

Configure DHCP ServerConfiguration below is for isc-dhcp-server on Linux: # For hardware LAN Boot ROMs:option tftp-server-address;filename “pxelinux.0”;# For HyperV Guests:# option 60 = client identifieroption dhcp-client-identifier “PXEClient”;# option 66 = TFTP server nameoption tftp-server-name “”;# option 67 = Bootfile nameoption bootfile-name “pxelinux.0”; 2. Configure TFTP ServerOn Linux, tftp-hpa is recommended, with a directory structure … Continue reading PXE Booting Guide

OXO Connect to Linux with Strongswan

Strongswan is a IPsec provider for Linux. It can be used to provide a responder endpoint for connection to phone systems using OXO Connect. Below are the key settings that have been tested to work with a OXO Connect PSK-PSK profile, using Debian Linux: /etc/ipsec.conf: conn ike2psk-clientA auto=add keyexchange=ikev2 ike=aes256-sha2_256-modp2048! # modify to match esp=aes256-sha2_256-modp2048! … Continue reading OXO Connect to Linux with Strongswan

Configure Geo-blocking with Apache on Debian

To enable Geo-IP Blocking on Debian 9 Stretch, assuming you already have a running Apache web server: apt install libmaxminddb0 libmaxminddb-dev apt install apache2-dev Download and extract the latest MaxMind Apache mod version from: Follow the instructions to configure and install from the source code Download and install the GeoIP Update program to automate … Continue reading Configure Geo-blocking with Apache on Debian

Draytek 2700G DNS suffix

On Draytek 2700G ADSL router to add a DNS suffix to the DHCP server use the following command in a telnet session to the router: >sys domainname mydomain.local You can also define a hostname for the router, e.g.: >sys name gw.mydomain.local The changes save automatically.

Valid push dhcp-options for OpenVPN

push “dhcp-option DNS″push “dhcp-option WINS″push “dhcp-option DOMAIN mydomain.local” In pfSense these options should be set on the OpenVPN “server” settings; they do not need to be in the client’s config file.