| 1 |
On Tue, 2003-08-05 at 22:28, Justin Filoseta wrote: |
| 2 |
> Unfortunately the requirements for the windows kickstart include samba shares |
| 3 |
> which may not be suitable for the gold server. However, it is something to |
| 4 |
> consider rather than imaging windows boxes. |
| 5 |
|
| 6 |
Whether it's images, packages, kickstart, jumpstart, or |
| 7 |
emerge/bootstrap, there's nothing that says the file shares have to be |
| 8 |
on the gold server. |
| 9 |
|
| 10 |
If you're going to be bootstrapping an entire trading floor full of |
| 11 |
machines one afternoon, it's clear that you'll need multiple (a few) |
| 12 |
file servers to take the load of so many clients hitting them for that |
| 13 |
volume of binary. |
| 14 |
|
| 15 |
No biggie - have multiple file servers. |
| 16 |
|
| 17 |
So applying that thought to the question of regulating access to the |
| 18 |
gold server, the key ingredient is that the master server is the one |
| 19 |
from which the others *get their instructions*. It could be that the |
| 20 |
gold server is contacted by a PXE boot, and then passes instructions to |
| 21 |
the new client of where to find the images (on another host), or, it |
| 22 |
could be (and this would only be necessary in a *really* large situation |
| 23 |
or if you wanted to be *really* paranoid about security) that the PXE |
| 24 |
servers themselves are just a class of machine whose configuration and |
| 25 |
content are controlled by the gold server. |
| 26 |
|
| 27 |
> Note, this does require a http server on the gold box (or a |
| 28 |
> machine controlled by gold box). |
| 29 |
|
| 30 |
Exactly. Nothing wrong with that that I can see in any case. Doesn't |
| 31 |
mean it's a web server speaking to the outside world. |
| 32 |
|
| 33 |
AfC |
Archives