Secure Boot UEFI IPv4 PXE
A partition and disk imaging/cloning program
Brought to you by:
steven_shiau
Menu
▾
▴
Hello,
Is there or will there be a way of PXE booting Clonezilla on a "Secure Boot" enabled UEFI machine. We currently use Clonezilla booted via PXE Legacy mode but the implementation on some machines is starting to be phased out. We can however disable "Secure Boot" and switch the unit back to BIOS mode but I fear we will soon not see this option in future UEFI machines.
Any information anyone has on this issue will be gratefully received.
Thanks in advance.
Sam
No. Not until a signed .efi module of pxelinux is avaliable, which is probably a long way away.
You can host efi pxelinux from your dhcp server, I recommend dhcpd-3 or later linux variant. You can modify dhcp.conf to serve out .efi modules. This will allow you to disable safeboot but still boot with UEFI BIOS
Cheers
Actually I had a look and it appears there are no pxelinux efi variants currently! So the closest bet would be to compile an iPXE .efi module and serve it via dhcpd. You can embed a script into the ipxe module to chainload pxelinux.0 or you could embed the entire menu into the iPXE module (it is capable of that)
Good luck
Thank you 'nottaken37' for your replies.
Could you point me in the right direction to complie an iPXE .efi that will chainload my current pxelinux.0.
Bit of a novice, sorry.
Thanks
Hi again
I have been researching about efi booting. UEFI does not have access to bios mbr which means in theory ipxe will be able to chainload pxelinux.0 however most modules eg memdisk which rely on being able to access int 13 (bios) wont work. It would be better to compile an embedded ipxe which contains clonezilla boot menu and in dhcpd.conf configure this to serve both efi clients and legacy bios clients.
This is still theory maybe someone else would care to comment from the ipxe forums?