Configuring a FreeBSD "Kickstart" server

                        by Steven St.Laurent  - steven@403forbidden.net

Intro

Ducks
Ingredients
Security
Contributing

Files
Distro
Files
Files
Mfsroot
Patch
PXEBoot
Boot
Kernel

Services
INETD
DHCP
TFTP
NFS
FTP

Details
How it works
Loader.rc

Installing

Finishing


	DISTRIBUTION

	You need to acquire your distro version of choice. I downloaded 4.8-Stable iso
	images from my local FreeBSD mirror. You have several options for serving out your
	distribution. Each has pros and cons


	ISO Copied to filesystem -
		while this makes it easy to modify your installation it does
		make it easy for a hacker to modify them also. You might 
		consider creating a file system read-only just for this task
		but then you have the problem of needing to make changes harder.
		This method also takes up considerable filesystem space which
		while cheap might be better used elsewhere. This option does
		make serving multiple versions the easiest.

	ISO burned to CD -
		this is a more secure method but tends to be slower. CDRom
		drives are slower than most fixed disk drives but this
		method takes no more space than a 5 1/4" drive bay and offers
		some flexibility. You can swap out disks as you upgrade or
		if space permits have multiple cdroms serving multiple
		distributions.

	In my opinion method one works best for initial setup and testing.
	Once you have established a set distribution it can safely be burned
	to a cd for safety. In many production systems changes are infrequent
	with the core distribution being used for several years. Security
	updates will come more frequenty, or should, so these can either be
	accessable on another volume for installation on a new machine or if
	done in batches, say quarterly, it isn't difficult to burn a updated cd.


	You can decide which works best.


	QUICK HINT - To copy the ISO to a filesystem:


 	       Make a directory to hold the ISO image.

 	        $ mkdir /opt/export/4.8

	(iso image on disk)
        	$ vnconfig vn0 /tmp/image.file
        	$ mount /dev/vn0 /mnt
	(for 5.x use mdconfig -a -t vnode -f FILENAME -u 0 && mount -t cd9660 /dev/md0 /mnt)

        (iso image on cd)
        	$ mount_cd9660 /dev/cdrom /mnt

	then
        	$ cd /mnt
        	$ cp -prv * /opt/export/4.8
        	$ cd /
        	$ umount /mnt
        	$ vnconfig -u vn0 (if you mounted an image file)
        	$ cd /opt/export/4.8/
        	$ cp kernel /opt/export/tftpboot