New OPS-centric setup. Integrated with wild-init and wild-setup.

setup/dnsmasq/bin/create-setup-bundle.sh

@@ -0,0 +1,63 @@
+#!/bin/bash
+
+if [ ! -d ".wildcloud" ]; then
+    echo "Error: You must run this script from a wild-cloud directory"
+    exit 1
+fi
+
+WILDCLOUD_ROOT=$(wild-config wildcloud.root) || exit 1
+
+# ---
+
+DNSMASQ_SETUP_DIR="./setup/dnsmasq"
+BUNDLE_DIR="${DNSMASQ_SETUP_DIR}/setup-bundle"
+mkdir -p "${BUNDLE_DIR}"
+
+
+# Copy iPXE bootloader to ipxe-web.
+echo "Copying Talos kernel and initramfs for PXE boot..."
+PXE_WEB_ROOT="${BUNDLE_DIR}/ipxe-web"
+mkdir -p "${PXE_WEB_ROOT}/amd64"
+cp "${DNSMASQ_SETUP_DIR}/boot.ipxe" "${PXE_WEB_ROOT}/boot.ipxe"
+
+# Create Talos bare metal boot assets.
+# This uses the Talos factory API to create boot assets for bare metal nodes.
+# These assets include the kernel and initramfs needed for PXE booting Talos on bare metal.
+echo "Creating Talos bare metal boot assets..."
+TALOS_ID=$(curl -X POST --data-binary @${DNSMASQ_SETUP_DIR}/bare-metal.yaml https://factory.talos.dev/schematics | jq -r '.id')
+if [ -z "${TALOS_ID}" ] || [ "${TALOS_ID}" = "null" ]; then
+    echo "Error: Failed to create Talos bare metal boot assets"
+    exit 1
+fi
+echo "Successfully created Talos bare metal boot assets with ID: ${TALOS_ID}"
+
+# Download kernel to ipxe-web if it's not already there.
+TALOS_VERSION=$(wild-config cluster.nodes.talos.version) || exit 1
+if [ ! -f "${PXE_WEB_ROOT}/amd64/vmlinuz" ]; then
+    echo "Downloading Talos kernel..."
+    wget -O "${PXE_WEB_ROOT}/amd64/vmlinuz" "https://pxe.factory.talos.dev/image/${TALOS_ID}/${TALOS_VERSION}/kernel-amd64"
+else
+    echo "Talos kernel already exists, skipping download"
+fi
+
+# Download initramfs to ipxe-web if it's not already there.
+if [ ! -f "${PXE_WEB_ROOT}/amd64/initramfs.xz" ]; then
+    echo "Downloading Talos initramfs..."
+    wget -O "${PXE_WEB_ROOT}/amd64/initramfs.xz" "https://pxe.factory.talos.dev/image/${TALOS_ID}/${TALOS_VERSION}/initramfs-amd64.xz"
+else
+    echo "Talos initramfs already exists, skipping download"
+fi
+
+# Update PXE's iPXE bootloader files.
+# TODO: Put download to cache first.
+echo "Updating iPXE ftpd bootloader files."
+FTPD_DIR="${BUNDLE_DIR}/pxe-ftpd"
+mkdir -p $FTPD_DIR
+wget http://boot.ipxe.org/ipxe.efi -O ${FTPD_DIR}/ipxe.efi
+wget http://boot.ipxe.org/undionly.kpxe -O ${FTPD_DIR}/undionly.kpxe
+wget http://boot.ipxe.org/arm64-efi/ipxe.efi -O ${FTPD_DIR}/ipxe-arm64.efi
+
+
+cp "${DNSMASQ_SETUP_DIR}/nginx.conf" "${BUNDLE_DIR}/nginx.conf"
+cp "${DNSMASQ_SETUP_DIR}/dnsmasq.conf" "${BUNDLE_DIR}/dnsmasq.conf"
+cp "${DNSMASQ_SETUP_DIR}/bin/setup.sh" "${BUNDLE_DIR}/setup.sh"

setup/dnsmasq/bin/setup.sh

@@ -0,0 +1,55 @@
+#!/bin/bash
+
+# This file to be run on dnsmasq server (Central)
+
+echo "Updating APT repositories."
+sudo apt-get update
+
+echo "Installing dnsmasq and nginx."
+sudo apt install -y dnsmasq nginx
+
+DNSMASQ_SETUP_DIR="."
+PXE_FTPD_DIR="${DNSMASQ_SETUP_DIR}/pxe-ftpd"
+PXE_WEB_ROOT="${DNSMASQ_SETUP_DIR}/pxe-web"
+
+# Configure nginx.
+echo "Configuring nginx."
+sudo cp "${DNSMASQ_SETUP_DIR}/nginx.conf" /etc/nginx/sites-available/talos
+sudo chown www-data:www-data /etc/nginx/sites-available/talos
+sudo chmod -R 755 /etc/nginx/sites-available/talos
+
+# Copy assets to nginx web root
+echo "Copying Talos PXE boot assets to nginx web root."
+TALOS_PXE_WEB_ROOT="/var/www/html/talos"
+sudo mkdir -p "${TALOS_PXE_WEB_ROOT}"
+sudo rm -rf ${TALOS_PXE_WEB_ROOT}/* # Clean the web root directory
+sudo cp -r ${PXE_WEB_ROOT}/* "${TALOS_PXE_WEB_ROOT}"
+sudo chown -R www-data:www-data "${TALOS_PXE_WEB_ROOT}"
+sudo chmod -R 755 "${TALOS_PXE_WEB_ROOT}"
+
+# Start nginx service to serve the iPXE script and images
+echo "Starting nginx service."
+sudo ln -s /etc/nginx/sites-available/talos /etc/nginx/sites-enabled/talos > /dev/null 2>&1 || true
+sudo rm -f /etc/nginx/sites-enabled/default
+sudo systemctl reload nginx
+
+# Stop and disable systemd-resolved if it is running
+if systemctl is-active --quiet systemd-resolved; then
+    echo "Stopping and disabling systemd-resolved..."
+    sudo systemctl disable systemd-resolved
+    sudo systemctl stop systemd-resolved
+    # sudo rm -f /etc/resolv.conf
+    echo "systemd-resolved stopped and disabled"
+fi
+
+# Update PXE's iPXE bootloader files.
+echo "Updating iPXE ftpd bootloader files."
+sudo mkdir -p /var/ftpd
+sudo cp ${PXE_FTPD_DIR}/* /var/ftpd/
+
+# Finally, install and configure DNSMasq.
+echo "Configuring and starting DNSMasq."
+sudo cp "${DNSMASQ_SETUP_DIR}/dnsmasq.conf" /etc/dnsmasq.conf
+sudo systemctl restart dnsmasq
+
+echo "DNSMasq installation and configuration completed successfully."

setup/dnsmasq/bin/transfer-setup-bundle.sh

@@ -0,0 +1,13 @@
+#!/bin/bash
+
+if [ ! -d ".wildcloud" ]; then
+    echo "Error: You must run this script from a wild-cloud directory"
+    exit 1
+fi
+
+SERVER_HOST=$(wild-config cloud.dns.ip2) || exit 1
+SETUP_DIR="./setup/dnsmasq/setup-bundle"
+DESTINATION_DIR="~/dnsmasq-setup"
+
+echo "Copying DNSMasq setup files to ${SERVER_HOST}:${DESTINATION_DIR}..."
+scp -r ${SETUP_DIR}/* root@${SERVER_HOST}:${DESTINATION_DIR}