Бездисковая загрузка по технологии iscsi на базе ос windows
Содержание:
- haneWin TFTP Server
- Setting up the TFTP Client
- Соображения безопасности
- What is TFTP?
- Best TFTP server
- Client Configuration
- [edit] Mac OS X
- TFTPD32/64
- [edit] Linux
- Документация по стандартам IETF
- Install TFTP Client
- The best macOS TFTP server
- TFTP Desktop
- Настройка и установка NFS в Ubuntu
- Tftp сервер windows
- Test Windows TFTP Client on Windows 10 or any Other Versions
haneWin TFTP Server
haneWin TFTP Server is a shareware offering for Windows. It supports both current and legacy Windows versions ranging from XP to Windows 10, and it can run as a service in the background on Windows 95/98/2000 without a user account logged in.
Data security options provided by haneWin include profiles based on the operation requested, IP address, and the file directories used by the server.
You can configure the server to transfer data through a range of UDP ports depending on your firewall settings and network traffic.
The client that comes with haneWin’s TFTP server is a Win32 console app that implements TFTP configurations in its command line options. For instance, you can set up a pipeline that will direct file transfers to other applications.
Setting up the TFTP Client
The TFTP Client depends on the successful installation and configuration of the TFTP server. The client is probably the one that you will be using the most.
The only task you might need to do with the server is to update the shared files and input/remove some IPs.
When using the TFTP server, don’t forget about the following settings (already mentioned).
- The TFTP server service has to be up and the application is running.
- Configure the right TFTP folder.
- Make sure no Firewall and Antivirus is blocking the application and connection.
- If you are file sharing to a remote location, don’t forget about port forwarding.
- Make sure all your TFTP clients can reach your TFTP server.
From the TFTP client
Most networking devices already have TFTP enabled. For example, to transfer a Cisco Switch image from the server to the device, you would have to specify the IP address of the TFTP server on the client (Cisco Switch).
As you can see from the screenshot below, this switch does not have any configuration or image filename.
It does have a default address and a TFTP address. So to receive these missing files, you can use the IOS command “copy tftp startup-config ”.
Another example, from a Huawei Switch (screenshot below).
The first line (TFTP get) downloads the files from the TFTP Server (192.168.0.2) to the switch.
The second line (TFTP put) uploads the files from the switch device to the TFTP server.
But networking devices are not the only ones that can run TFTP clients. You can also run the client on a Windows system.
Соображения безопасности
TFTP не включает механизмов входа в систему или контроля доступа
Необходимо соблюдать осторожность при использовании TFTP для передачи файлов, когда требуются аутентификация, контроль доступа, конфиденциальность или проверка целостности
Обратите внимание, что эти службы безопасности могут быть предоставлены выше или ниже уровня, на котором работает TFTP
Также необходимо проявлять осторожность в правах, предоставляемых процессу сервера TFTP, чтобы не нарушать безопасность файловой системы сервера. TFTP часто устанавливается с такими элементами управления, что только файлы с общедоступным доступом для чтения доступны через TFTP
Также обычно запрещены перечисление, удаление, переименование и запись файлов через TFTP. Передача файлов по TFTP не рекомендуется, если присущие протоколу ограничения могут вызвать непреодолимую ответственность.
TFTP часто устанавливается с такими элементами управления, что только файлы с общедоступным доступом для чтения доступны через TFTP. Также обычно запрещены перечисление, удаление, переименование и запись файлов через TFTP. Передача файлов по TFTP не рекомендуется, если присущие протоколу ограничения могут вызвать непреодолимую ответственность.
What is TFTP?
Current FTP sessions support a lot of different commands. While logged in to an FTP server, users can usually list, delete, rename, upload, or download files and change directories. In contrast, TFTP offers only the ability to upload or download a file and uses UDP over IP instead of the more standard TCP/IP stack.
The protocol is not capable of allowing more advanced functionality but compensates by using the lockstep method of fault-tolerance that makes it extremely reliable. Due to this limited functionality, TFTP servers can have an extremely small footprint on the disk as well as in memory, making it ideal for use in embedded network devices.
Linux is far and away the most common operating system on the type of devices where you’re likely to encounter a TFTP server. But, there is also a rich ecosystem of Windows and macOS devices that run device firmware (think Apple TVs and Microsoft Surface for a few examples).
See also:
- Best SCP servers
- Best SFTP servers
Best TFTP server
| Name | IPv4/IPv6 | File Size Limit | Link |
|---|---|---|---|
| SolarWinds Free TFTP server | IPv4 | 4 GB | Learn More |
| Spiceworks TFTP server | IPv4 | 33 MB | Learn More |
| Progress WhatsUp TFTP Server | IPv4 | 4 GB | Learn More |
1) SolarWinds Free TFTP server
SolarWinds provides a free TFTP server for Windows that offers basic functionalities like IP-range lockdown, etc. It can transfer files up to 4GB in size. This server management service is easier to manage with native Windows tools.
Key Features:
- Suitable for transferring device configuration images
- Communicates with several devices simultaneously
- It offers concurrent transfers from multiple devices and runs as a Windows service.
- Let’s you authorize a specific IP address or a range of IPs altogether.
- Easy to use TFTP software with backup network devices and configurations.
- Offers highly scalable multi-user administration and advanced device config backup.
- Free TFTP server which runs on Windows easily
2) Spiceworks TFTP server
Spiceworks is a complete IT management tool that provides its users with free TFTP servers to make their work easy.
This TFTP software is one of the best TFTP servers developed for IT professionals to track their network device config. It also enables you to backup and view all your config in one place.
Features
- Allows you to compare current network configration with backups.
- These TFTP servers can be used for configuration image transfers
- Helps you to push out firmware updates in the background.
- Free and in-built features of Spiceworks.
Link: https://www.spiceworks.com/free-tftp-server-for-network-configuration-management/
3) Progress WhatsUp TFTP Server
WhatsUp Gold is one of the best TFTP servers, which helps save you time while doing networking. This service-based tool allows you to securely transfer files across the network.
Features:
- It offers a simple transfer of system configuration.
- Sturdy, clean, and attractive GUI based interface.
- It helps you to save time and effort when uploading and downloading the file.
- Compatible with the older versions of Windows such as XP, Vista, and others.
Link:https://www.whatsupgold.com/free-network-monitoring-tools/free-tftp-server
4) TFTP Desktop Server
TFTP desktop server is the best solution for updating routers, OS, image transfer, and remote booting. It also allows you to configure multiple devices in a single network.
Features:
- Real-time TFTP graph transfer helps you to work across the network.
- Unlimited file sizes: no 16/32MB file size limitation
- Graphs TFTP transfers in real-time
- Directory and IP address-based security
- Secured and locked TFTP root folder
- It offers security based on the directory as well as the IP address.
- Extremely fast file transfers
Link:https://tftp-desktop-server.apponic.com/
5) WinAGents
WinAgents provides a fully recognized TFTP server. It is a specially built tool to work consistently in the background. It helps you to create stock copies of different data like flash images, config files, and device settings in case of an emergency.
Features:
- Offers virtual TFTP folders, servers, and graphic utilities for status control.
- Offers highly scalable server architecture that has a built-in cache system and remote server administration.
- It helps you to set different access rights for various folders.
- It provides an option for setting the highest precedence for the server process
- Provide IP based access control
- File transmission using firewalls, and high precedence for a server process.
Link:https://www.winagents.com/en/products/tftp-server/
6) atftpd
ATFTPD is a Windows TFTF server that is widely used in various types of networks. It offers multithreaded and multicast architecture.
Features:
- Full TFTP options support with high compatibility options.
- It also supports PXE or MTFTP specifications.
- Provides fast servers to make your packages search as fast as possible.
- It helps you to replace the requested filename with the new one.
- Allows users to restrict accessing the untrusted hosts.
- Free TFTP Server for Linux.
Link: https://pkgs.org/download/atftpd
7) haneWIN TFTP server
haneWIN TFTP is a multithreaded server-based and fully realizable TFTP server for all versions of Windows. This TFTP server for Windows helps you to achieve maximum reliability and high performance while transferring the data.
Features:
- Implemented as a Windows service and also supports all types of Windows versions.
- This TFTP server for Windows includes an intuitive control panel for accessing all services.
- Offers multithreaded architecture for high performance, security, and reliability as well.
- It helps you to receive data directly into another application using a pipe option.
Link: https://www.hanewin.net/tftp-e.htm
Client Configuration
Install the TFTP client:
Run the tftp command to connect to the TFTP server. Here is an example that enables the verbose option:
Remember, TFTP does not have the ability to list file names. So you’ll need to know the file name before running the get command to download any files.
13 Comments
Edgar Hoch
What crazy description for tftp configuration do you release into the world? Why should anyone be allowed to upload any files to the server without any restrictions? What application is there that requires this and you can’t use a more secure method (with authentication and authorization)?
You don’t need this to boot devices over the network. The only thing you need to do, apart from installing the packages, is to enable the socket with “systemctl enable -now tftpd.socket” and place the files needed for booting over the network in /var/lib/tftpboot/ or a subdirectory in it, preferably as owner and group root and only writeable for root and readable for all.
You should NOT make /var/lib/tftpboot/ writeable for all. You should NOT use the -c option. You don’t need to make a copy of tftpd.server and tftpd.socket in /etc/systemd/system/; if you want to make local changes, create a directory /etc/systemd/system/tftpd.server.d/ and create a file in it with the extension “.conf”, where you just enter the change – see “man systemd.unit”. This could be used, for example, to make changes to the options when calling the service:
ExecStart=/usr/sbin/in.tftpd -s /var/lib/tftpboot
Do NOT enter “WantedBy=multi-user.target”! You also don’t activate the tftpd.service, but tftpd.socket (see above). This has the advantage that the service only runs and occupies resources when it is needed (and after some time of inactivity (default 15 minutes) it stops itself).
Why should someone use the tftp client to download a file like server.logs (as in your example)? Somebody has to put the file there first.
TFTP is only needed for booting devices over the network, usually with PXE – to load a boot kernel, grub, or similar. Everything else the device should do via other services.
People should only use the tftp client to test the connection. Upload or download files to a server should only be done via secure services, e.g. ssh / scp / sftp / rsync via ssh or via network file systems.
Thank-you for taking the time to bring up some valid concerns.
The intent of the article was not meant to try to ask anyone to embrace tftp or to even suggest it should be anyone’s first choice. I would not expect any enterprise environments to ever use this in production.
This article was written as more of a way to just show how to configure a legacy application such as this.
It was even noted in the article that it is not a secure method of uploading files:
“There are also no provisions for user authentication. Because of security implications and the lack of advanced features, TFTP is generally only used on a local area network (LAN). ”
“Note TFTP is an inherently insecure protocol, so this may not be advised on a network you share with other people.”
But I have come across occasions where I’ve been asked how to set this up even with my recommendation to use a more secure method.
Источник
[edit] Mac OS X
OS X ships with a command-line TFTP client.
First, download the firmware file and put it in your user folder (/Users/yourusername/).
Then connect your computer directly to your router via ethernet. Go to System Preferences > Network. Click on «Ethernet» in the left panel and change «Configure IPv4» to «Manually». Then change «IP address» to 192.168.1.x (where x is any number between 2 & 255).
Then copy & paste the following text into a text editor:
connect 192.168.1.1 binary rexmt 1 timeout 60 put dd-wrt.vXX_XXX.XXX
Change the last line to the filename of the firmware file, which you just moved to your user folder. Copy the whole thing, including the line break after the last line.
Now open Applications > Utilities > Terminal. Enter:
tftp
A «tftp>» command prompt will appear. Now press the reset button on your router. On the tftp command line in Terminal, paste (Cmd+v) the text you copied. Since you copied the line break at the end, tftp will execute the command at the moment you paste it. Depending on your router, you may have to paste it multiple times to get the timing right.
If it works, you’ll see something like this:
tftp> connect 192.168.1.1 tftp> binary tftp> rexmt 1 tftp> timeout 60 tftp> put dd-wrt.vXX_XXX.XXX Sent 1769472 bytes in 9.0 seconds
TFTPD32/64
TFTPD32 or TFTPD64 is the 32-bit or 64-bit Windows version of a French open source network utility package that includes a TFTP server. The services provided in addition to the TFTP server include DHCP, Syslog server, log viewer etc. A TFTP client is also in the package if you need one to install on network devices receiving files.
TFTPD32/64 is the brainchild of Phillipe Jounin, who has made it available to the public under the European Union Public License. It’s been implemented in projects like Cisco’s PIX and Aironet, HP’s Alpha servers, and Juniper’s Netscreen. It also won CNET’s Five Star Award in 2009 and is probably the oldest utility of its kind.
[edit] Linux
In Linux, tftp can generally be installed with whatever package manager your distribution uses.
on suse:
smart install tftp
on fedora:
yum install tftp
on ubuntu
sudo apt-get install tftp
etc.
The tftp client for Linux and OS X is very similar. When invoked, it gives the user a prompt and takes commands from the standard input.
Binary mode can be set with command-line flags — in OS X, the «-e» flag sets binary mode (among other things which are less important), and in Linux «-m binary». Binary can be set from the prompt in either (this is done below for consistency).
Typical usage looks like:
tftp 192.168.x.x > binary > put dd-wrt.vXX_XXX.XXX
Because the transfer must be initiated in a narrow time window during the router’s bootup, tftp’s retransmit option is useful. In the following sequence of commands, tftp will retry to send the file every second for one minute. This can be issued just before the router is booted, so that it will retry to send every second while the router boots.
tftp 192.168.x.x > binary > rexmt 1 > timeout 60 > put dd-wrt.vXX_XXX.XXX
If it worked, it will say something like «Sent 1769472 bytes in 9.0 seconds»
If it didn’t work, it will say «Transfer timed out.» This is often because it cannot connect to the IP address. Make sure you have manually set your computer’s IP address to one in the router’s subnet.
You can quit tftp with the ‘quit’ command or hitting ctrl+D.
Using atftp on Linux
Another way of doing this is using atftp. You can install aftp by search it in your package manager.
On Ubuntu:
sudo aptitude install atftp
On Debian (as root):
aptitude install atftp
On Fedora (as root):
yum install atftp
On Suse (as root):
smart install atftp
Then you go to the folder where you downloaded the official Linksys firmware, for instance if you downloaded it in your desktop:
cd ~Desktop
Unrar the file, for instance if the file is WRT54GL_v4.30.11_012_ETSI_EN_code.rar
unrar x WRT54GL_v4.30.11_012_ETSI_EN_code.rar
Rename the firmware to code.bin.
cp WRT54GL_v4.30.11_012_ETSI_EN_code.bin code.bin
Then you prepare this command (do not press enter yet):
atftp --option "mode octet" --option "timeout 60" --verbose --trace -p -l code.bin 192.168.1.1
Disconnect all your network cables from your router, only leaving one from the computer to the router. Then open another terminal and ping to 192.168.1.1
ping 192.168.1.1
About the atftp command: we are putting (-p) a local file (-l) called code.bin to the IP address 192.168.1.1 asking for fully information (verbose) and showing all packages (trace), also that it must be trying for one minute (timeout 60) and in octet mode. Remember, if you get «code pattern error», try with the official Linksys firmware. More information:
man atftp atftp --help
Important: you should always try atftp with the official firmware and then flashing to DD-WRT with the HTTP webpage on Administration, «Upgrade Firmware»; specially if you get «code pattern error».
Note: if you use Gnome or KDE you can get problems while trying to put your static IP address. Most of the times, applications like NetworkManager (aka nm-applet) or knetworkmanager will try to get a dynamic IP address, so you should first kill them. For example:
sudo killall NetworkManager
or
sudo killall nm-applet
Документация по стандартам IETF
| Номер RFC | Заголовок | Опубликовано | Автор | Устаревшая и обновленная информация |
|---|---|---|---|---|
| RFC 783 | Протокол TFTP (редакция 1) | Июнь 1981 г. | К. Соллинз | Устарело — RFC 1350 |
| RFC 906 | Загрузка начальной загрузки с использованием TFTP | Июнь 1984 г. | Росс Финлейсон | — |
| RFC 951 | Протокол начальной загрузки | Сентябрь 1985 г. | Билл Крофт | Обновлено RFC 1395, RFC 1497, RFC 1532, RFC 1542, RFC 5494 |
| RFC 1350 | Протокол TFTP (Версия 2) | Июль 1992 г. | К. Соллинз | Обновлено RFC 1782, RFC 1783, RFC 1784, RFC 1785, RFC 2347, RFC 2348, RFC 2349 |
| RFC 1782 | Расширение опции TFTP | Март 1995 г. | Г. Малкин | Устарело — RFC 2347 |
| RFC 2131 | Протокол динамического конфигурирования сервера | Март 1997 г. | Р. Дромс | Обновлено RFC 3396, RFC 4361, RFC 5494, RFC 6842 |
| RFC 2347 | Расширение опции TFTP | Май 1998 г. | Г. Малкин | — |
| RFC 2348 | Вариант размера блока TFTP | Май 1998 г. | Г. Малкин | — |
| RFC 2349 | Интервал тайм-аута TFTP и параметры размера передачи | Май 1998 г. | Г. Малкин | — |
| RFC 5505 | Принципы настройки Интернет-хоста | Май 2009 г. | Б. Абоба | — |
| RFC 7440 | Вариант TFTP Windowsize | Январь 2015 | П. Масотта | — |
Install TFTP Client
At this point, the TFTP server is installed and configured.
Now, you will need to install a TFTP Client on the Client computer.
You can install the TFTP Client on the client computer by following the below steps:
1. Click on the Start Menu and click on Control Panel.
2. Click on the Programs and Features => Turn Windows features on or off. This will open the Windows Features dialog box.
3. Scroll down until you see the TFTP Client check box and CHECK it as shown below:
4. Click on the OK button to start the installation process of the TFTP client.
This process will take some time to finish the installation. Once you are finished, you can proceed to the next step.
The best macOS TFTP server
1. macOS TFTP server
macOS has a built-in TFTP server that won’t be loaded by default. The easiest way to get it running is to simply type:
Then, provide your password when prompted. You can use something like netstat to confirm it is running:
$ netstat -n | grep *.69 udp4 0 .69 .* udp6 0 .69 .*
The TFTP server is now running on port 69 waiting for connections. You can use any TFTP client to connect to the server and upload or download files. To shut down the TFTP server, simply use the command:
Pros:
- Already part of the macOS, just needs to be loaded
- Easy setup, only takes a minute or two
- Runs incredibly lean, using few resources
Cons:
Configuration options might be difficult to find
Key Features:
- Native to Macs’ operating system
- Command line
- Free TFTP server for macOS
TFTP Desktop
Not all the TFTP servers are designed specifically for network administrators handling hundreds of workstations and routers on an intranet.
TFTP Desktop is a consumer app made for situations that can arise on home networks. It was released during the Windows 7 era and hasn’t received an update, so it’s limited to running on pre-Windows 8 computers.
It does, however, support Windows 98, so if you have a legacy computer you keep as a home server, this program can run on it. It’s a free trial download on CNET that’s fully functional, which makes it ideal for fixing temporary problems like transfering large files between incompatible OSes.
Настройка и установка NFS в Ubuntu
Настраиваем, какие именно директории мы хотим открыть для совместного пользования и кому. Все это делается в файле /etc/exports:
В приведенном ниже примере я выделил директорию /data (директория с данными на сервере) в совместное пользование всем компьютерам с правами чтения и записи:
домашняя директория пользователя serhiy стала доступной в режиме только чтение для компьютера с IP 192.168.1.34. Все остальные компьютеры сети к этому разделу доступа не имеют.
ro — права только на чтение. Можно и не указывать, так как она установлена по умолчанию.
rw — дает клиентам право на запись.
no_root_squash — по умолчанию пользователь root на клиентской машине не будет иметь доступа к разделяемой директории сервера. Этой опцией мы снимаем это ограничение. В целях безопасности этого лучше не делать.
noaccess — запрещает доступ к указанной директории. Может быть полезной, если перед этим вы задали доступ всем пользователям сети к определенной директории, и теперь хотите ограничить доступ в поддиректории лишь некоторым пользователям.
Теперь нужно перезапустить nfs-kernel-server:
Если после этого вы захотите поменять что-нибудь в файле /etc/exports, то для того, чтобы изменения вступили в силу, достаточно запустить следующую команду:
Источник
Tftp сервер windows
Для того, чтобы развернуть сервер на своем рабочем месте необходимо:
Загрузить нужный дистрибутив отсюда
Стоит обратить внимание, что дистрибутивы различаются по типу запуска: как службу (service edition) и как приложение (standard edition) и также по битности ОС. Для себя я выбрал пакет tftpd64 service edition (installer)
После загрузки, устанавливаем загруженный дистрибутив, не изменяя абсолютно никаких параметров
Если Вы загрузили, как и я, дистрибутив с запуском в качестве службы, то стоит вручную запустить службу или просто перезапустить компьютер.
далее жмем i Agree и соглашаемся с лицензионным соглашением.
Выставляем нужный птички и жмем next.
Как установить tftp сервер на примере tftpd64 service edition-03
Задаем при необходимости альтернативный каталог для установки.
Как установить tftp сервер на примере tftpd64 service edition-04
Как установить tftp сервер на примере tftpd64 service edition-05
Как установить tftp сервер на примере tftpd64 service edition-06
Не забудьте проверить что открыт TCP, UPD порт 69.
Как установить tftp сервер на примере tftpd64 service edition-07
Открываем установленную программу и нажимаем снизу Settings
Как установить tftp сервер на примере tftpd64 service edition-08
Оставляем галку TFTP Server
Как установить tftp сервер на примере tftpd64 service edition-09
Переходим на вкладку TFTP и нажимаем Browse
Как установить tftp сервер на примере tftpd64 service edition-10
Указываем папку где у вас будет ссылка на папку tftp
Как установить tftp сервер на примере tftpd64 service edition-11
Закрываем, у вас должно получиться нечто подобное
Как установить tftp сервер на примере tftpd64 service edition-12
Всё! Теперь можно подключаться к серверу и копировать файлы. У операционной системы Windows XP tftp-клиент установлен по умолчанию, а у Windows server 2008R2 его необходимо доставить, я описал это тут (Как установить tftp клиента в Windows Server 2008R2)
Test Windows TFTP Client on Windows 10 or any Other Versions
Let’s assume that the TFTP server setup appropriately is done and files are available at the correct location. Before you download a file from the TFTP server, you must know the right file name with the extension.
In this example, I’m going to download a file called ‘tftp.zip’ from the TFTP server 192.168.1.244.
Type the below command in command prompt (you must have a working network communication with the server, the ping command is handy to confirm the connectivity)
Tftp -i GET
The below message indicates that the file transfer is successful. The file will be downloaded at the location where you are executing the command. In this case, it is C:\Users\Dinesh folder.
To upload a file using the TFTP tool, use the following command.
Tftp -i PUT
The below command shows the successful file upload to the TFTP server by Windows TFTP client. The file will be uploaded to the root of the TFTP settings on the server. We do not have any option to select the location.
As I’m using the Solarwind TFTP server in this example, the above command uploaded the file to this root location.
There you go, we learned how to install the Windows built-in TFTP client on Windows 10 and how to ensure that is working fine. We showed the simple steps to upload and download a file using the TFTP client. By the way, this method is applicable for Windows 8.1 and server versions also.
