Apple NetBoot not working

  1. last year

    Hi,

    I'm experimenting with three VMs:

    1. Ubuntu Server 16.04 for CloneDeploy + Proxy DHCP
    2. Windows 10 (with BIOS) as PXE Client
    3. Mac OS X 10.12 (Sierra) as PXE Client

    I got the Win10 machine to net-boot correctly, but Apple NetBoot doesn't work with the Mac even after I followed every step of the guide .

    I copied NetBoot.dmg to /var/www.../0001/ and i386 to /tftpboot/0001/.

    This is my configuration file:

    [settings]
    listen-dhcp=true
    listen-proxy=true
    listen-apple-bsdp=true
    interface=0.0.0.0
    next-server=10.0.158.216
    ;clonedeploy-service-url=http://192.168.56.1/clonedeploy/service/client.asmx/
    allow-all-mac=false
    bios-bootfile=proxy/bios/pxeboot.0
    efi32-bootfile=proxy/efi32/pxeboot.0
    efi64-bootfile=/proxy/efi64/pxeboot.0
    apple-efi-boot-file=proxy/efi64/ipxe.efi
    apple-boot-file=[nbi_id]/i386/booter
    apple-root-path=http://10.0.158.216/clonedeploy/public/macos_nbis/[nbi_id]/NetBoot.dmg
    ;10.0.158.216 is the IP this machine, on which both CloneDeploy and its proxy DHCP are run
    apple-vendor-specific-information=01:01:01:03:04:0A:00:9E:D8:04:02:FF:FF:07:04:01:00:00:01:09:10:01:00:00:01:0B:4E:65:74:42:6F:6F:74:2E:64:6D:67
    server-identifier-override=10.0.158.216
    
    [vendor-specific-info-generator]
    netboot-server-ip=
    apple_nbi_id_1=
    apple_nbi_name_1=
    apple_nbi_id_2=
    apple_nbi_name_2=
    apple_nbi_id_3=
    apple_nbi_name_3=
    apple_nbi_id_4=
    apple_nbi_name_4=
    apple_nbi_id_5=
    apple_nbi_name_5=

    Running the proxy DHCP with --debug, I get:

    root@ubuntu:/clonedeploy_installation/cd_proxyd# mono cd_proxyd.exe --debug
    CloneDeploy Web Service Is Not Populated.  Web Reservations Will Not Be Processed
    
    DHCP Service Listening On 0.0.0.0:67
    DHCP Service Listening On 0.0.0.0:4011
    
    DHCP Service Running
    Press [Enter] to Exit.

    When I boot the Mac machine, I get:

    DHCPDISCOVER Request From 005056B7A852
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Not An Apple BSDP Request, Vendor Specific Information Mismatch - Ignoring
    
    DHCPINFORM Request From 005056B7A852
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot
    
    DHCPINFORM Request From 005056B7A852
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot
    
    DHCPINFORM Request From 005056B7A852
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot
    
    DHCPINFORM Request From 005056B7A852
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot Selection

    What am I missing?

    Something else that's very strange. In the tftp request it shows [nbi-id], but it should show [nbi_id], with an underscore in order for the replacement to happen. Any ideas why there is a dash instead of an underscore?

  2. clonedeploy

    13 Mar 2017 Administrator

    Verify you can access the dmg file from a browser.
    http://10.0.158.216/clonedeploy/public/macos_nbis/0001/NetBoot.dmg

  3. Edited last year by eliadl

    Yes I can, same for tftp...booter

  4. clonedeploy

    13 Mar 2017 Administrator

    What happens on the mac do you get the spinning globe?

  5. If I set the boot order to network EFI first and continue, it fails once and then continues to load OSX locally.
    If I run network EFI boot from the Boot Manager, it fails and then returns to the EFI boot menu. (repeating this does not change the result)

  6. When the Mac machine attempts to boot from the network is prints:

    Attempting to start up from:
     -> EFI Network...

    And when it fails it prints something and exits too quickly for me to read.

  7. clonedeploy

    13 Mar 2017 Administrator

    Difficult to say what's happening. I think we would need a packet capture on the CD server to if the tftp request/ dmg is even making it to the server.

  8. clonedeploy

    13 Mar 2017 Administrator

    What model is this? I've never seen an apple say boot from efi network, but I also don't have much experience with apple devices.

  9. Edited last year by eliadl

    As I've mentioned, it is a VM. (on ESX to be exact)
    I'll try to provide a packet capture soon.

  10. clonedeploy

    13 Mar 2017 Administrator

    Oh ok, sorry I overlooked that. Don't generally associate mac with vm's I guess. That has never been tested, I'm guessing the vm netboot process is slightly different than a physical machine. The CloneDeploy Proxy DHCP might not handle it correctly.

  11. Edited last year by eliadl

    Ok so I ran tcpdump on the ubuntu server while booting up the Mac machine, and from the dump I picked only the packets that seemed relevant to that machine. Please find the attached '.pcap' binary (remove the '.txt' extension).
    Edit: Here's a screenshot of the tcpdump summaries:
    Screenshot from 2017-03-13 19-00-18.png

  12. Edited last year by eliadl

    I tried to net-boot (hold N) from a MacMini (a real one, not VM).
    There was a flashing globe indicating boot mode, but it continued to load the local OS X.

    On proxy dhcp --debug it printed:

    DHCPINFORM Request From 0C4DE9CC913C
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot
    
    DHCPINFORM Request From 0C4DE9CC913C
    Vendor Class Id 4141504C42534450432F693338362F564D77617265372C31
    Request Is An Apple NetBoot Selection

    Attached is the relevant packets from tcpdump. (remove the .txt to get the binary .pcap)
    And a screenshot of the tcpdump summaries:
    Screenshot from 2017-03-13 18-52-25.png
    Looks like the booter file was not found on tftp, although I see it there and have access to it from other computers... weird. How is that possible?

  13. clonedeploy

    13 Mar 2017 Administrator

    So the issue is that [nbi-id] isn't being replaced with the actual id for some reason. Out of curiosity is it any different if you use the option key to boot to the menu, instead of the n key

  14. clonedeploy

    13 Mar 2017 Administrator Answer

    Something else that's very strange. In the tftp request it shows [nbi-id], but it should show [nbi_id], with an underscore in order for the replacement to happen. Any ideas why there is a dash instead of an underscore?

  15. That was it! The "-" instead of "_".
    I deeply apologize, I recently tried applying "0001" instead of the [nbi_id] just in case I misunderstood the meaning of a placeholder, and after it didn't work I manually changed it back to [nbi-id].

    It seems to boot from the image now (held N, saw globe, then also apple, then globe disappeared).
    So apparently it doesn't work well with an ESX VM that has OS X installed.

  16. clonedeploy

    14 Mar 2017 Administrator

    Thats good to know. I wonder if an ESX VM works with a normal apple netboot server? I should also mention that Sierra isn't supported as an NBI yet. You should be able to image Sierra but would need an nbi made from el cap. When Sierra was released there was a bug when saving images to an smb share. I submitted a bug to Apple and they claim it has been fixed with 10.12.2, but I have yet to try.

  17. 1.
    I tried to make it work for the ESX VM using this guide:
    https://macmule.com/2015/11/01/how-to-netboot-a-vmware-fusion-and-esxi-hosted-vm/
    Unfortunately it doesn't seem to work.

    2.
    I used Sierra 10.12.3 to create the image. The physical MacMini still didn't finish the net-boot.
    I'm guessing that's because the image weighs 9GB.
    So if I create a Sierra image from ElCap, there's a better chance it'd work?

  18. clonedeploy

    14 Mar 2017 Administrator

    It should still boot with the sierra nbi, but the actual image capture would fail. It should only take a few mins to netboot. The nbi may be 9GB, but only about 1GB is transferred for the boot process.

  19. So what does it mean if the image capture didn't fail? (captured Sierra from Sierra)

  20. clonedeploy

    14 Mar 2017 Administrator

    Not sure, perhaps Apple did fix the bug. I haven't tried sierra since it was first released.

  21. Newer ›
 

or Sign Up to reply!