| 1 | <?xml version="1.0" encoding="ISO-8859-1"?>
|
|---|
| 2 | <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
|
|---|
| 3 | "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
|
|---|
| 4 | <!ENTITY % general-entities SYSTEM "../general.ent">
|
|---|
| 5 | %general-entities;
|
|---|
| 6 | ]>
|
|---|
| 7 |
|
|---|
| 8 | <sect1 id="ch-scripts-network">
|
|---|
| 9 | <?dbhtml filename="network.html"?>
|
|---|
| 10 |
|
|---|
| 11 | <title>General Network Configuration</title>
|
|---|
| 12 |
|
|---|
| 13 | <indexterm zone="ch-scripts-network">
|
|---|
| 14 | <primary sortas="d-network">network</primary>
|
|---|
| 15 | <secondary>configuring</secondary></indexterm>
|
|---|
| 16 |
|
|---|
| 17 | <para>This section only applies if a network card is to be
|
|---|
| 18 | configured.</para>
|
|---|
| 19 |
|
|---|
| 20 | <para>If a network card will not be used, there is likely no need to
|
|---|
| 21 | create any configuration files relating to network cards. If that is
|
|---|
| 22 | the case, remove the <filename class="symlink">network</filename>
|
|---|
| 23 | symlinks from all run-level directories (<filename
|
|---|
| 24 | class="directory">/etc/rc.d/rc*.d</filename>).</para>
|
|---|
| 25 |
|
|---|
| 26 | <sect2 id='stable-net-names'>
|
|---|
| 27 | <title>Creating stable names for network interfaces</title>
|
|---|
| 28 |
|
|---|
| 29 | <para>If there is only one network interface in the system to be
|
|---|
| 30 | configured, this section is optional, although it will never be wrong to do
|
|---|
| 31 | it. In many cases (e.g. a laptop with a wireless and a wired interface),
|
|---|
| 32 | accomplishing the configuration in this section is necessary.</para>
|
|---|
| 33 |
|
|---|
| 34 | <para>With Udev and modular network drivers, the network interface numbering
|
|---|
| 35 | is not persistent across reboots by default, because the drivers are loaded
|
|---|
| 36 | in parallel and, thus, in random order. For example, on a computer having
|
|---|
| 37 | two network cards made by Intel and Realtek, the network card manufactured
|
|---|
| 38 | by Intel may become <filename class="devicefile">eth0</filename> and the
|
|---|
| 39 | Realtek card becomes <filename class="devicefile">eth1</filename>. In some
|
|---|
| 40 | cases, after a reboot the cards get renumbered the other way around. To
|
|---|
| 41 | avoid this, Udev comes with a script and some rules to assign stable names
|
|---|
| 42 | to network cards based on their MAC address.</para>
|
|---|
| 43 |
|
|---|
| 44 | <para>The rules were pre-generated in the build instructions for
|
|---|
| 45 | <application>udev (systemd)</application> in the last chapter. Inspect the
|
|---|
| 46 | <filename>/etc/udev/rules.d/70-persistent-net.rules</filename> file, to
|
|---|
| 47 | find out which name was assigned to which network device:</para>
|
|---|
| 48 |
|
|---|
| 49 | <screen role="nodump"><userinput>cat /etc/udev/rules.d/70-persistent-net.rules</userinput></screen>
|
|---|
| 50 |
|
|---|
| 51 | <note><para>In some cases such as when MAC addresess have been assigned to
|
|---|
| 52 | a network card manually or in a virtual envirnment such as Xen,
|
|---|
| 53 | the network rules file may not have been generated because addresses
|
|---|
| 54 | are not consistently assigned. In these cases, just continue to
|
|---|
| 55 | the next section.</para></note>
|
|---|
| 56 |
|
|---|
| 57 | <para>The file begins with a comment block followed by two lines for each
|
|---|
| 58 | NIC. The first line for each NIC is a commented description showing its
|
|---|
| 59 | hardware IDs (e.g. its PCI vendor and device IDs, if it's a PCI card),
|
|---|
| 60 | along with its driver in parentheses, if the driver can be found. Neither
|
|---|
| 61 | the hardware ID nor the driver is used to determine which name to give an
|
|---|
| 62 | interface; this information is only for reference. The second line is the
|
|---|
| 63 | Udev rule that matches this NIC and actually assigns it a name.</para>
|
|---|
| 64 |
|
|---|
| 65 | <para>All Udev rules are made up of several keys, separated by commas and
|
|---|
| 66 | optional whitespace. This rule's keys and an explanation of each of them
|
|---|
| 67 | are as follows:</para>
|
|---|
| 68 |
|
|---|
| 69 | <itemizedlist>
|
|---|
| 70 | <listitem>
|
|---|
| 71 | <para><literal>SUBSYSTEM=="net"</literal> - This tells Udev to ignore
|
|---|
| 72 | devices that are not network cards.</para>
|
|---|
| 73 | </listitem>
|
|---|
| 74 | <listitem>
|
|---|
| 75 | <para><literal>ACTION=="add"</literal> - This tells Udev to ignore this
|
|---|
| 76 | rule for a uevent that isn't an add ("remove" and "change" uevents also
|
|---|
| 77 | happen, but don't need to rename network interfaces).</para>
|
|---|
| 78 | </listitem>
|
|---|
| 79 | <listitem>
|
|---|
| 80 | <para><literal>DRIVERS=="?*"</literal> - This exists so that Udev will
|
|---|
| 81 | ignore VLAN or bridge sub-interfaces (because these sub-interfaces do
|
|---|
| 82 | not have drivers). These sub-interfaces are skipped because the name
|
|---|
| 83 | that would be assigned would collide with their parent devices.</para>
|
|---|
| 84 | </listitem>
|
|---|
| 85 | <listitem>
|
|---|
| 86 | <para><literal>ATTR{address}</literal> - The value of this key is the
|
|---|
| 87 | NIC's MAC address.</para>
|
|---|
| 88 | </listitem>
|
|---|
| 89 | <listitem>
|
|---|
| 90 | <para><literal>ATTR{type}=="1"</literal> - This ensures the rule only
|
|---|
| 91 | matches the primary interface in the case of certain wireless drivers,
|
|---|
| 92 | which create multiple virtual interfaces. The secondary interfaces are
|
|---|
| 93 | skipped for the same reason that VLAN and bridge sub-interfaces are
|
|---|
| 94 | skipped: there would be a name collision otherwise.</para>
|
|---|
| 95 | </listitem>
|
|---|
| 96 | <listitem>
|
|---|
| 97 | <para><literal>KERNEL=="eth*"</literal> - This key was added to the
|
|---|
| 98 | Udev rule generator to handle machines that have multiple network
|
|---|
| 99 | interfaces, all with the same MAC address (the PS3 is one such
|
|---|
| 100 | machine). If the independent interfaces have different basenames,
|
|---|
| 101 | this key will allow Udev to tell them apart. This is generally not
|
|---|
| 102 | necessary for most Linux From Scratch users, but does not hurt.</para>
|
|---|
| 103 | </listitem>
|
|---|
| 104 | <listitem>
|
|---|
| 105 | <para><literal>NAME</literal> - The value of this key is the name that
|
|---|
| 106 | Udev will assign to this interface.</para>
|
|---|
| 107 | </listitem>
|
|---|
| 108 | </itemizedlist>
|
|---|
| 109 |
|
|---|
| 110 | <para>The value of <literal>NAME</literal> is the important part. Make sure
|
|---|
| 111 | you know which name has been assigned to each of your network cards before
|
|---|
| 112 | proceeding, and be sure to use that <literal>NAME</literal> value when
|
|---|
| 113 | creating your configuration files below.</para>
|
|---|
| 114 |
|
|---|
| 115 | </sect2>
|
|---|
| 116 |
|
|---|
| 117 | <sect2>
|
|---|
| 118 | <title>Creating Network Interface Configuration Files</title>
|
|---|
| 119 |
|
|---|
| 120 | <para>Which interfaces are brought up and down by the network script
|
|---|
| 121 | depends on the files in <filename
|
|---|
| 122 | class="directory">/etc/sysconfig/</filename>. This directory should
|
|---|
| 123 | contain a file for each interface to be configured, such as
|
|---|
| 124 | <filename>ifconfig.xyz</filename>, where <quote>xyz</quote> is
|
|---|
| 125 | meaningful to the administrator such as the device name (e.g. eth0).
|
|---|
| 126 | Inside this file are attributes to this interface, such as its IP
|
|---|
| 127 | address(es), subnet masks, and so forth. It is necessary that
|
|---|
| 128 | the stem of the filename be <emphasis>ifconfig</emphasis>.</para>
|
|---|
| 129 |
|
|---|
| 130 | <para>The following command creates a sample file for the
|
|---|
| 131 | <emphasis>eth0</emphasis> device with a static IP address:</para>
|
|---|
| 132 |
|
|---|
| 133 | <screen><userinput>cd /etc/sysconfig/
|
|---|
| 134 | cat > ifconfig.eth0 << "EOF"
|
|---|
| 135 | <literal>ONBOOT=yes
|
|---|
| 136 | IFACE=eth0
|
|---|
| 137 | SERVICE=ipv4-static
|
|---|
| 138 | IP=192.168.1.1
|
|---|
| 139 | GATEWAY=192.168.1.2
|
|---|
| 140 | PREFIX=24
|
|---|
| 141 | BROADCAST=192.168.1.255</literal>
|
|---|
| 142 | EOF</userinput></screen>
|
|---|
| 143 |
|
|---|
| 144 | <para>The values of these variables must be changed in every file to match
|
|---|
| 145 | the proper setup.</para>
|
|---|
| 146 |
|
|---|
| 147 | <para>If the <envar>ONBOOT</envar> variable is set to <quote>yes</quote> the
|
|---|
| 148 | network script will bring up the Network Interface Card (NIC) during
|
|---|
| 149 | booting of the system. If set to anything but <quote>yes</quote> the NIC
|
|---|
| 150 | will be ignored by the network script and not be automatically brought up.
|
|---|
| 151 | The interface can be manually started or stopped with the
|
|---|
| 152 | <command>ifup</command> and <command>ifdown</command> commands.</para>
|
|---|
| 153 |
|
|---|
| 154 | <para>The <envar>IFACE</envar> variable defines the interface name,
|
|---|
| 155 | for example, eth0. It is required for all network device configuration
|
|---|
| 156 | files. </para>
|
|---|
| 157 |
|
|---|
| 158 | <para>The <envar>SERVICE</envar> variable defines the method used for
|
|---|
| 159 | obtaining the IP address. The LFS-Bootscripts package has a modular IP
|
|---|
| 160 | assignment format, and creating additional files in the <filename
|
|---|
| 161 | class="directory">/lib/services/</filename> directory allows other IP
|
|---|
| 162 | assignment methods. This is commonly used for Dynamic Host Configuration
|
|---|
| 163 | Protocol (DHCP), which is addressed in the BLFS book.</para>
|
|---|
| 164 |
|
|---|
| 165 | <para>The <envar>GATEWAY</envar> variable should contain the default
|
|---|
| 166 | gateway IP address, if one is present. If not, then comment out the
|
|---|
| 167 | variable entirely.</para>
|
|---|
| 168 |
|
|---|
| 169 | <para>The <envar>PREFIX</envar> variable contains the number of
|
|---|
| 170 | bits used in the subnet. Each octet in an IP address is 8 bits. If the
|
|---|
| 171 | subnet's netmask is 255.255.255.0, then it is using the first three octets
|
|---|
| 172 | (24 bits) to specify the network number. If the netmask is 255.255.255.240,
|
|---|
| 173 | it would be using the first 28 bits. Prefixes longer than 24 bits are
|
|---|
| 174 | commonly used by DSL and cable-based Internet Service Providers (ISPs).
|
|---|
| 175 | In this example (PREFIX=24), the netmask is 255.255.255.0. Adjust the
|
|---|
| 176 | <envar>PREFIX</envar> variable according to your specific subnet.i
|
|---|
| 177 | If omitted, the PREFIX defaults to 24.</para>
|
|---|
| 178 |
|
|---|
| 179 | <para>For more information see the <command>ifup</command> man page.</para>
|
|---|
| 180 |
|
|---|
| 181 | </sect2>
|
|---|
| 182 |
|
|---|
| 183 | <sect2 id="resolv.conf">
|
|---|
| 184 | <title>Creating the /etc/resolv.conf File</title>
|
|---|
| 185 |
|
|---|
| 186 | <indexterm zone="resolv.conf">
|
|---|
| 187 | <primary sortas="e-/etc/resolv.conf">/etc/resolv.conf</primary>
|
|---|
| 188 | </indexterm>
|
|---|
| 189 |
|
|---|
| 190 | <para>If the system is going to be connected to the Internet, it will
|
|---|
| 191 | need some means of Domain Name Service (DNS) name resolution to
|
|---|
| 192 | resolve Internet domain names to IP addresses, and vice versa. This is
|
|---|
| 193 | best achieved by placing the IP address of the DNS server, available
|
|---|
| 194 | from the ISP or network administrator, into
|
|---|
| 195 | <filename>/etc/resolv.conf</filename>. Create the file by running the
|
|---|
| 196 | following:</para>
|
|---|
| 197 |
|
|---|
| 198 | <screen><userinput>cat > /etc/resolv.conf << "EOF"
|
|---|
| 199 | <literal># Begin /etc/resolv.conf
|
|---|
| 200 |
|
|---|
| 201 | domain <replaceable><Your Domain Name></replaceable>
|
|---|
| 202 | nameserver <replaceable><IP address of your primary nameserver></replaceable>
|
|---|
| 203 | nameserver <replaceable><IP address of your secondary nameserver></replaceable>
|
|---|
| 204 |
|
|---|
| 205 | # End /etc/resolv.conf</literal>
|
|---|
| 206 | EOF</userinput></screen>
|
|---|
| 207 |
|
|---|
| 208 | <para>The <varname>domain</varname> statement can be omitted
|
|---|
| 209 | or replaced with a <varname>search</varname> statement. See the man page for
|
|---|
| 210 | resolv.conf for more details.</para>
|
|---|
| 211 |
|
|---|
| 212 | <para>Replace <replaceable><IP address of the nameserver></replaceable>
|
|---|
| 213 | with the IP address of the DNS most appropriate for the setup. There will
|
|---|
| 214 | often be more than one entry (requirements demand secondary servers for
|
|---|
| 215 | fallback capability). If you only need or want one DNS server, remove the
|
|---|
| 216 | second <emphasis>nameserver</emphasis> line from the file. The IP address
|
|---|
| 217 | may also be a router on the local network.</para>
|
|---|
| 218 |
|
|---|
| 219 | <note><para>The Google Public IPv4 DNS addresses are 8.8.8.8 and 8.8.4.4.</para></note>
|
|---|
| 220 |
|
|---|
| 221 | </sect2>
|
|---|
| 222 |
|
|---|
| 223 | </sect1>
|
|---|
