Am Montag, den 05.12.2005, 14:41 -0700 schrieb Steve Dibb: > Steve Dibb wrote: > > Okay, this is weird... > > > Okay, i was reading the logs wrong .. those were outgoing ports, not > incoming. Whoops. :) > > Anyway, I went back to my original setup, and now TFTP isn't working at > all on any of the clients. I'm getting open timeout errors on the TFTP. > > So, my question is this: > > Which ports do I need to open on my firewall so TFTP can listen/send > correctly??
You should allow incoming packets TO port 67, 68, 69 and outgoing packets FROM 67, 68, 69 (I think because of pecularities of DHCP, you could even kick off 68 on incoming and 67 on outgoing, but I would rather not be too rude on that). The client might choose any port, so you should not setup firewall rules referencing the ports that the client uses. 67/68 is for DHCP, 69 for TFTP (you can look up port numbers in /etc/services). In case you use multicast tftp (and you would know if you did), additional ports might be needed - better keep your fingers out of that for the moment :-) Chances are you are not using it. I do not at all understand what is going on in the packet log you sent earlier. This does not look like DHCP packets to me. Are your clients running etherboot, or (Intel/...) PXE or some proprietary "boot agent" that might try to do its own discovery method? Where did the client (seems to be the .198, if I figure that right) get that address from in the first place? If your problems persist, a dump right from the moment of powering on the thin client could shed some light onto this. Anselm ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net
