pxe 安装 debian9

debian+pxe+preseed.cfg安装配置

 
 
服务端口作用备注
dhcp 67(utp服务端)68(utp客户端) ip地址自动获取  
tftp 69(utp) 系统启动引导文件下载  
http 80(tcp) preseed应答文件下载  

下图详解

 

图片

 

 

基础环境部署

 
  1. dhcpd服务:
  2. 1yum install -y dhcp
  4. 2、配置/etc/dhcp/dhcpd.conf文件,具体ip分配,根据生产环境需求决定,以下仅为参考;
  5. allow booting;
  6. allow bootp;
  8. subnet 192.168.233.0 netmask 255.255.255.0 {
  9. range 192.168.233.5 192.168.233.9;
  10. option domain-name-servers 114.114.114.114;
  11. option routers 192.168.233.2;
  12. option broadcast-address 192.168.233.255;
  13. next-server 192.168.233.129;
  14. filename "pxelinux.0";
  15. default-lease-time 600;
  16. max-lease-time 7200;
  17. }
  19. 3、重启生效
  22. tftp服务:
  23. 1yum -y install tftp-server
  25. 2、设置开机自动开启tftp服务器设置,下载官网netboot压缩文件,解压到/var/lib/tftpboot/下。
  26. chmod -R a+r /var/lib/tftpboot

bios启动方式

 

 

  1. 3、修改defalut设置,超时时间为3秒,选择第一个
  2. path debian-installer/amd64/boot-screens/
  3. include debian-installer/amd64/boot-screens/menu.cfg
  4. default debian-installer/amd64/boot-screens/vesamenu.c32
  5. prompt 1
  6. timeout 30
  8. 4、修改txt.cfg文件,设置自动装机的参数;
  9. label install DEBAIN
  10. kernel debian-installer/amd64/linux
  11. append vga=normal initrd=debian-installer/amd64/initrd.gz auto=true interface=auto netcfg/dhcp_timeout=60 netcfg/choose_interface=auto priority=critical url=http://192.168.233.129/pxe/preseed.cfg DEBCONF_DEBUG=5
  12. IPAPPEND 2

UEFI 启动方式

 

 

  1. 3、把bootnetx64.efi文件放到 /var/lib/tftpboot/下
  3. 4、修改grub.cfg文件,设置自动装机
  4. insmod play
  5. play 960 440 1 0 4 440 1
  6. menuentry 'Install' {
  7. set background_color=black
  8. linux /debian-installer/amd64/linux vga=normal auto=true interface=auto netcfg/choose_interface=auto priority=critical url=http://119.188.9.133/pxe/preseed.cfg --- quiet

配置httpd服务

 

 

  1. http
  2. 1、已经把服务搭建在一个拥有公网ip地址的服务器上,主要存放preseed和初始化脚本等重要文件
  3. (搭建在180.76.169.48上,需要注意加入机房机器所在ip段的白名单)

以上基础环境搭建部分相对简单,已经完成脚本初始化一键部署(脚本比较简单,后期争取完善更好)

 
  1. #/bin/bash
  2. cd ~
  3. curl ifconfig.me > ip.txt
  4. if [ $? -eq 0 ]
  5. then
  6. ip=`cat /root/ip.txt |awk '{print $1}'`
  7. ip_a=`cat /root/ip.txt |awk -F "." '{print $1}'`
  8. ip_b=`cat /root/ip.txt |awk -F "." '{print $2}'`
  9. ip_c=`cat /root/ip.txt |awk -F "." '{print $3}'`
  10. else
  11. echo "no ip !!!!"
  12. exit 2
  13. fi
  15. yum -y install httpd dhcp tftp-server
  18. #tftp设置
  19. sed -i '/disable/{s/yes/no/g;}' /etc/xinetd.d/tftp&&service xinetd restart
  20. cd ~
  21. wget http://ftp.nl.debian.org/debian/dists/stretch/main/installer-amd64/current/images/netboot/netboot.tar.gz
  22. tar -xf netboot.tar.gz -C /var/lib/tftpboot && chmod a+r -R /var/lib/tftpboot

bios启动方式

 

 

  1. sed -i '/prompt/{s/0/1/g;}' /var/lib/tftpboot/pxelinux.cfg/default
  2. sed -i '/timeout/{s/0/30/g;}' /var/lib/tftpboot/pxelinux.cfg/default
  3. echo "label install DEBAIN" >/var/lib/tftpboot/debian-installer/amd64/boot-screens/txt.cfg
  4. echo -e "\tkernel debian-installer/amd64/linux" >>/var/lib/tftpboot/debian-installer/amd64/boot-screens/txt.cfg
  5. echo -e "\tappend vga=normal initrd=debian-installer/amd64/initrd.gz auto=true interface=auto netcfg/dhcp_timeout=60 netcfg/choose_interface=auto priority=critical url=http://$ip/pxe/preseed.cfg DEBCONF_DEBUG=5">>/var/lib/tftpboot/debian-installer/amd64/boot-screens/txt.cfg
  6. echo -e "\tIPAPPEND 2">>/var/lib/tftpboot/debian-installer/amd64/boot-screens/txt.cfg
  7. cp -a /var/lib/tftpboot/debian-installer/amd64/bootnetx64.efi /var/lib/tftpboot/
  8. old="linux /debian-installer/amd64/linux vga=788 --- quiet"
  9. new="linux /debian-installer/amd64/linux vga=normal auto=true interface=auto netcfg/choose_interface=auto priority=critical url=http://180.76.169.48/pxe/preseed.cfg --- quiet"
  10. sed -i "s#$old#$new#g" /var/lib/tftpboot/debian-installer/amd64/grub/grub.cfg

dhcp设置

 

 

  1. #dhcpd设置
  2. cat <<EOF >/etc/dhcp/dhcpd.conf
  3. allow booting;
  4. allow bootp;
  6. subnet $ip_a.$ip_b.$ip_c.0 netmask 255.255.255.0 {
  7. range $ip_a.$ip_b.$ip_c.2 $ip_a.$ip_b.$ip_c.3;
  8. subnet $ip_a.$ip_b.$ip_c.0 netmask 255.255.255.0 {
  9. range $ip_a.$ip_b.$ip_c.2 $ip_a.$ip_b.$ip_c.3;
  10. option domain-name-servers 114.114.114.114;
  11. option routers $ip_a.$ip_b.$ip_c.1;
  12. option broadcast-address $ip_a.$ip_b.$ip_c.255;
  13. next-server $ip;
  14. filename "bootnetx64.efi";
  15. default-lease-time 600;
  16. max-lease-time 7200;
  17. }
  18. EOF
  19. dchp设置
  20. #http设置(该部分理应放在http公网服务器上,已经部署在180.76.169.48上,所以在此并没有写)
  21. mkdir /var/www/html/pxe
  22. service httpd restart

 

preseed配置

 
  1. ### Locale sets language and country.
  2. d-i debian-installer/language string en
  3. d-i debian-installer/country string US
  4. d-i debian-installer/locale string en_US.UTF-8
  7. ### Keyboard selection.
  8. #d-i console-tools/archs select at
  9. d-i console-keymaps-at/keymap select us
  10. d-i keyboard-configuration/xkb-keymap select us
  11. console-data console-data/keymap/qwerty/layout select US american
  12. d-i keymap select us
  13. d-i keyboard-configuration/variant select English (US)
  16. ### Package selection
  17. # You can choose to install any combination of tasks that are available.
  18. # Available tasks as of this writing include: Desktop environment,
  19. # Web server, Print server, DNS server, File server, Mail server,
  20. # SQL database, manual package selection. The last of those will run
  21. # aptitude. You can also choose to install no tasks, and force the
  22. # installation of a set of packages in some other way.
  24. # don't install any tasks
  25. tasksel tasksel/first multiselect ssh-server
  28. ### Controls whether or not the hardware clock is set to UTC.
  29. d-i clock-setup/utc boolean true
  31. # Many countries have only one time zone. If you told the installer you're
  32. # in one of those countries, you can choose its standard time zone via this
  33. # question.
  34. base-config tzconfig/choose_country_zone_single boolean true
  35. d-i time/zone select UTC
  37. ### keyboard layouts
  38. console-data console-data/keymap/qwerty/layout select US american
  39. #console-data console-data/keymap/family select qwerty
  40. #console-common console-data/keymap/family select qwerty
  43. ### Account setup.
  45. # To preseed the root password, you have to put it in the clear in this
  46. # file. That is not a very good idea, use caution!
  47. passwd passwd/root-password password Admin123
  48. passwd passwd/root-password-again passwor Admin123
  50. # If you want to skip creation of a normal user account.
  51. passwd passwd/make-user boolean false
  54. #### Network configuration.
  55. d-i netcfg/get_domain string
  56. d-i netcfg/get_nameservers string 114.114.114.114 8.8.8.8
  58. # Disable that annoying WEP key dialog.
  59. d-i netcfg/wireless_wep string
  62. ### Partitioning
  63. ## Partitioning example
  64. # If the system has free space you can choose to only partition that space.
  65. # This is only honoured if partman-auto/method (below) is not set.
  66. #d-i partman-auto/init_automatically_partition select biggest_free
  68. # Alternatively, you may specify a disk to partition. If the system has only
  69. # one disk the installer will default to using that, but otherwise the device
  70. # name must be given in traditional, non-devfs format (so e.g. /dev/sda
  71. # and not e.g. /dev/discs/disc0/disc).
  72. # For example, to use the first SCSI/SATA hard disk:
  73. #d-i partman-auto/disk string /dev/sda
  74. # In addition, you'll need to specify the method to use.
  75. # The presently available methods are:
  76. # - regular: use the usual partition types for your architecture
  77. # - lvm: use LVM to partition the disk
  78. # - crypto: use LVM within an encrypted partition
  79. #d-i partman-auto/method string lvm
  81. # If one of the disks that are going to be automatically partitioned
  82. # contains an old LVM configuration, the user will normally receive a
  83. # warning. This can be preseeded away...
  84. d-i partman-lvm/device_remove_lvm boolean true
  85. # The same applies to pre-existing software RAID array:
  86. d-i partman-md/device_remove_md boolean true
  87. # And the same goes for the confirmation to write the lvm partitions.
  88. d-i partman-lvm/confirm boolean true
  89. d-i partman-lvm/confirm_nooverwrite boolean true
  91. # You can choose one of the three predefined partitioning recipes:
  92. # - atomic: all files in one partition
  93. # - home: separate /home partition
  94. # - multi: separate /home, /var, and /tmp partitions
  95. #d-i partman-auto/choose_recipe select atomic
  97. # Or provide a recipe of your own...
  98. # If you have a way to get a recipe file into the d-i environment, you can
  99. # just point at it.
  100. #d-i partman-auto/expert_recipe_file string /hd-media/recipe
  102. # If not, you can put an entire recipe into the preconfiguration file in one
  103. # (logical) line. This example creates a small /boot partition, suitable
  104. # swap, and uses the rest of the space for the root partition:
  105. #d-i partman-auto/expert_recipe string \
  106. # boot-root :: \
  107. # 40 50 100 ext3 \
  108. # $primary{ } $bootable{ } \
  109. # method{ format } format{ } \
  110. # use_filesystem{ } filesystem{ ext3 } \
  111. # mountpoint{ /boot } \
  112. # . \
  113. # 500 10000 1000000000 ext3 \
  114. # method{ format } format{ } \
  115. # use_filesystem{ } filesystem{ ext3 } \
  116. # mountpoint{ / } \
  117. # . \
  118. # 64 512 300% linux-swap \
  119. # method{ swap } format{ } \
  120. # .
  122. # The full recipe format is documented in the file partman-auto-recipe.txt
  123. # included in the 'debian-installer' package or available from D-I source
  124. # repository. This also documents how to specify settings such as file
  125. # system labels, volume group names and which physical devices to include
  126. # in a volume group.
  128. # This makes partman automatically partition without confirmation, provided
  129. # that you told it what to do using one of the methods above.
  130. d-i partman-partitioning/confirm_write_new_label boolean true
  131. d-i partman/choose_partition select finish
  132. d-i partman/confirm boolean true
  133. d-i partman/confirm_nooverwrite boolean true
  135. # When disk encryption is enabled, skip wiping the partitions beforehand.
  136. #d-i partman-auto-crypto/erase_disks boolean false
  138. ## Partitioning using RAID
  139. # The method should be set to "raid".
  140. d-i partman-auto/method string raid
  141. # Specify the disks to be partitioned. They will all get the same layout,
  142. # so this will only work if the disks are the same size.
  143. d-i partman-auto/disk string /dev/nvme0n1 /dev/nvme1n1 /dev/sda /dev/sdb /dev/sdc
  145. # Next you need to specify the physical partitions that will be used.
  146. d-i partman-auto/expert_recipe string \
  147. multiraid :: \
  148. 512 100 512 fat32 \
  149. $gptonly{ } \
  150. $primary{ } \
  151. method{ efi } \
  152. format{ } \
  153. $lvmignore{ } \
  154. mountpoint{ /boot/efi } \
  155. . \
  156. 798720 10000 798720 raid \
  157. method{ raid } \
  158. $primary{ } \
  159. . \
  160. 100 1000 1000000000 ext4 \
  161. $primary{ } \
  162. $bootable{ }
  163. method{ format } \
  164. format{ } \
  165. use_filesystem{ } \
  166. filesystem{ ext4 } \
  167. mountpoint{ / }
  170. # Last you need to specify how the previously defined partitions will be
  171. # used in the RAID setup. Remember to use the correct partition numbers
  172. # for logical partitions. RAID levels 0, 1, 5, 6 and 10 are supported;
  173. # devices are separated using "#".
  174. # Parameters are:
  175. # <raidtype> <devcount> <sparecount> <fstype> <mountpoint> \
  176. # <devices> <sparedevices>
  178. d-i partman-auto-raid/recipe string \
  179. 1 2 0 ext4 / \
  180. /dev/nvme0n1p2#/dev/nvme1n1p2
  181. # For additional information see the file partman-auto-raid-recipe.txt
  182. # included in the 'debian-installer' package or available from D-I source
  183. # repository.
  185. # This makes partman automatically partition without confirmation.
  186. d-i partman-basicfilesystems/choose_label string gpt
  187. d-i partman-basicfilesystems/default_label string gpt
  188. d-i partman-partitioning/choose_label string gpt
  189. d-i partman-partitioning/default_label string gpt
  190. d-i partman/choose_label string gpt
  191. d-i partman/default_label string gpt
  192. d-i partman-md/confirm boolean true
  193. d-i partman/confirm_write_new_label boolean true
  194. d-i partman/choose_partition select finish
  195. d-i partman/confirm boolean true
  196. d-i mdadm/boot_degraded boolean true
  197. d-i partman/confirm_nooverwrite boolean true
  198. d-i partman-basicfilesystems/no_swap boolean false
  199. d-i partman/choose_partition select finish
  200. d-i partman-md/confirm boolean true
  201. d-i partman-partitioning/confirm_write_new_label boolean true
  202. d-i partman-md/confirm_nooverwrite boolean true
  203. #
  205. d-i grub-installer/bootdev string /dev/nvme0n1 /dev/nvme1n1 /dev/sda /dev/sdb /dev/sdc
  210. ### Boot loader installation.
  212. # This is fairly safe to set, it makes grub install automatically to the MBR
  213. # if no other operating system is detected on the machine.
  214. d-i grub-installer/only_debian boolean false
  215. # This one makes grub-installer install to the MBR if if finds some other OS
  216. # too, which is less safe as it might not be able to boot that other OS.
  217. d-i grub-installer/with_other_os boolean true
  221. ### Apt setup.
  223. # automatically set the CD as the installation media.
  224. #base-config apt-setup/uri_type select http
  225. base-config apt-setup/uri_type select cdrom
  226. # only scan the first CD by default
  227. #base-config apt-setup/cd/another boolean false
  228. # don't ask to use additional mirrors
  229. base-config apt-setup/another boolean false
  230. # Use a network mirror?
  231. apt-mirror-setup apt-setup/use_mirror boolean false
  235. ### Mirror settings
  236. # If you select ftp, the mirror/country string does not need to be set.
  237. #d-i mirror/protocol string ftp
  238. #d-i mirror/country string manual
  239. #d-i mirror/http/hostname string http.us.debian.org
  240. #d-i mirror/http/directory string /debian
  241. d-i mirror/http/proxy string
  243. # Do enable security updates.
  244. #base-config apt-setup/security-updates boolean true
  246. # You can choose to install non-free and contrib software.
  247. #d-i apt-setup/non-free boolean true
  248. #d-i apt-setup/contrib boolean true
  250. # Controls whether to use NTP to set the clock during the install
  251. d-i clock-setup/ntp boolean false
  252. # NTP server to use. The default is almost always fine here.
  253. #d-i clock-setup/ntp-server string ntp.example.com
  256. ### Mailer configuration.
  258. # During a normal install, exim asks only two questions. Here's how to
  259. # avoid even those. More complicated preseeding is possible.
  260. exim4-config exim4/dc_eximconfig_configtype select no configuration at this time
  261. # It's a good idea to set this to whatever user account you choose to
  262. # create. Leaving the value blank results in postmaster mail going to
  263. # /var/mail/mail.
  264. exim4-config exim4/dc_postmaster string
  267. ### skip some annoying installation status notes
  269. # Avoid that last message about the install being complete.
  270. #d-i finish-install/reboot_in_progress note
  271. # Avoid the introductory message.
  272. base-config base-config/intro note
  273. # Avoid the final message.
  274. base-config base-config/login note
  276. d-i popularity-contest/participate boolean false
  278. ### simple-cdd commands
  280. # you may add to the following commands by including a ";" followed by your
  281. # shell commands.
  283. # loads the simple-cdd-profiles udeb to which asks for which profiles to use,
  284. # load the debconf preseeding and queue packages for installation.
  285. #d-i preseed/early_command string anna-install simple-cdd-profiles
  286. #d-i preseed/late_command string /cdrom/cf/cf-post-install.sh
  288. d-i preseed/late_command string \
  289. sed -i '/PermitRootLogin / s/ .*/ yes/' /target/etc/ssh/sshd_config;\
  290. echo "PermitRootLogin yes" >> /target/etc/ssh/sshd_config \
  291. cd /target;\
  292. chroot ./ apt-get install curl -y ;\
  293. wget http://180.76.169.48/pxe/port_install/public_key.sh; chmod +x ./public_key.sh; chroot ./ ./public_key.sh;\
  294. wget http://180.76.169.48/pxe/port_install/port_install.sh; chmod +x ./port_install.sh; chroot ./ ./port_install.sh;\
  295. chroot ./ apt-get update;

 

port_install.sh

 
  1. #!/bin/sh -x
  2. curl ifconfig.me > /root/ip.txt
  3. id=112
  4. ip=$(cat /root/ip.txt)
  5. gateway=$(ip route show | grep default|awk '{print $3}')
  6. host=$(cat /root/ip.txt |awk -F "." '{print $4}')
  7. let host=host-1
  8. hostname ${id}r0$host
  9. echo `hostname` > /etc/hostname
  10. echo "127.0.0.1 hostname" >> /etc/hosts
  11. echo nameserver 114.114.114.114 > /etc/resolv.conf
  13. #设置apt-list
  14. wget -O - https://repo.saltstack.com/apt/debian/8/amd64/2018.3/SALTSTACK-GPG-KEY.pub | apt-key add -
  15. curl -s http://apt-yjs.su.baidu.com/aptly.gpg.asc | apt-key add -
  16. DEBIAN_VERSION=$(cat /etc/debian_version | awk -F'\.' '{print $1}')
  17. echo "deb http://repo.saltstack.com/apt/debian/${DEBIAN_VERSION}/amd64/2018.3 stretch main" >/etc/apt/sources.list.d/saltstack.list
  18. apt-get update
  19. apt-get -y dist-upgrade
  20. apt-get install -y vim
  21. #设置网卡
  23. cat << EOF > /target/etc/network/interfaces
  24. auto lo
  25. iface lo inet loopback
  27. # The primary network interface
  28. allow-hotplug eno5
  29. iface eno5 inet static
  30. address $ip/24
  31. gateway $gateway
  32. # dns-* options are implemented by the resolvconf package, if installed
  33. dns-nameservers 114.114.114.114
  34. dns-search ${xxx}r0$host
  37. auto eno6
  38. iface eno6 inet static
  40. address 10.$xxx.15.2
  42. netmask 255.255.255.0
  43. broadcast 10.$xxx.15.255
  44. up route add -net 10.$xxx.0.0/16 gateway 10.$xxx.0.1 dev eno6
  45. auto eno6:0
  46. iface eno6:0 inet static
  48. address 10.$xxx.8.2
  50. netmask 255.255.0.0
  51. broadcast 10.$xxx.255.255
  52. EOF
  56. #设置salt
  57. in-target apt-get install -y salt-minion
  59. cat << EOF > /target/etc/salt/minion
  60. master:
  61. - salt.su.baidu.com
  62. grains:
  63. type: yjs-relay
  64. tag: CDN
  65. EOF
  67. in-target salt-call -l debug state.apply
posted @ 2021-03-16 10:42  zhangshan  阅读(134)  评论(0编辑  收藏  举报