Distro Infrastructure container PXE-boot MVP (#711)

travisb-nexthop · meta-codesync[bot] · commit 8f6b9e255221 · 2026-01-21T17:53:17.000-08:00
Summary:  **Pre-submission checklist** - [x] I've ran the linters locally and fixed lint errors related to the files I modified in this PR. You can install the linters by running `pip install -r requirements-dev.txt && pre-commit install` - [x] `pre-commit run`  Here the minimum viable Distro Infrastucture container needed to support IPv4 and IPv6 PXE boot is added. IPv4 expects a DHCP server to exist on the network to provide IPv4 addresses to the switch. IPv6 defaults to supply its own DHCPv6 server on the L2 segment, but that can be disabled. This is a self-contained, interactive docker container which uses Proxy DHCP (IPv4) or DHCPv6 (IPv6) to direct PXE-booting devices to the container's TFTP server and web server. iPXE is used to support loading the relatively large initrd image over HTTP instead of TFTP and to support supplying changeable arguments to the installer initrd. Currently these are hardcoded into autoexec.ipxe, but future changes might autogenerate this file based on the needs of the particular PXE installer. For usage details, see the included README.md. As this is a MVP, those instructions must be followed to the letter. Future work will integrate with the fboss-image tool to drive the Distro Infra container in a more user-friendly way. Once PXE boot has completed, the MAC is made ineligible for PXE booting again until reconfigured. This is to support PXE installing, then booting off the internal drive for every subsequent boot until PXE-booting is explicitly requested again. ## IPv4 boot flow Under IPv4, the boot flow with iPXE is simple because iPXE receives the next-server IP address. The IPv4 boot flow looks like: 1. BIOS 2. iPXE 3. `tftp://next-server/autoexec.ipxe` 4. `http://next-server/FBOSS-Distro-Image.{kernel,initrd}` 5. `http://next-server/FBOSS-Distro-Image.xz` ## IPv6 boot flow Unfortunately IPv6 is more complicated. iPXE does not receive next-server or anything like it under IPv6, so we cannot follow that simple flow. Further, iPXE by default tries to autoconfigure its network interface with IPv4 first then IPv6. Thus if the network were configured to support both IPv4 PXE boot and IPv6 PXE boot (the Distro Infrastructure default), while the BIOS would load iPXE over IPv6, iPXE would load the PXE installer over IPv4. This protocol switching is not satisfactory testing. To resolve these two problems, we separate iPXE into IPv4 and IPv6 versions. The IPv4 version operates as above. The IPv6 version uses two intermediate scripts to insert the server_ip configuration and maintain IPv6 throughout. The boot flow for IPv6 is: 1. BIOS 2. iPXEv6 3. Script embedded inside iPXEv6 which forces IPv6 and 'sources' a generated script `-serverip` 4. `-serverip`, a generated script sets the server_ip variable before passing control onto `tftp://server-ip/autoexec.ipxe` shared with IPv4 5. `tftp://next-server/autoexec.ipxe` 6. `http://next-server/FBOSS-Distro-Image.{kernel,initrd}` 7. `http://next-server/FBOSS-Distro-Image.xz` To support both paths with a common `autoexec.ipxe`, `host-server` is used as `server_ip` when executing under IPv4. Pull Request resolved: #711 Test Plan:   Only manual, happy path is tested. This has been tested manually against fboss103. Under IPv6 that test output is: ``` ds103:#s-image/distro_infra $ ./build.sh && ./distro_infra.sh --intf vlan1033 --persist-dir data ... => exporting to image 0.7s => => exporting layers 0.6s => => writing image sha256:27dec285715ddfc30a692a4fee1cb34f79a02e581df34801a8a0330e256cf0c9 0.0s => => naming to docker.io/library/fboss_distro_infra 0.0s Listening on vlan1033 - 10.250.33.194 & fc00:33::89 dnsmasq: started, version 2.85 DNS disabled dnsmasq: compile time options: IPv6 GNU-getopt DBus no-UBus no-i18n IDN2 DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth cryptohash DNSSEC loop-detect inotify dumpfile dnsmasq-dhcp: DHCP, proxy on subnet 10.250.33.194 dnsmasq-dhcp: DHCPv6, IP range ::fb05:5000:1 -- ::fb05:50ff:ffff, lease time 5m, template for vlan1033 dnsmasq-dhcp: router advertisement on vlan1033 dnsmasq-dhcp: DHCPv6, IP range fc00:33::fb05:5000:1 -- fc00:33::fb05:50ff:ffff, lease time 5m, constructed for vlan1033 dnsmasq-dhcp: router advertisement on fc00:33::, constructed for vlan1033 dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: IPv6 router advertisement enabled dnsmasq-dhcp: DHCP, sockets bound exclusively to interface vlan1033 dnsmasq-tftp: TFTP root is /distro_infra/persistent secure mode dnsmasq-dhcp: read /distro_infra/dnsmasq_conf.d/default_ignore dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: Enter MAC address (blank to exit): dc-da-4d-fc-ad-2d dnsmasq: inotify, new or changed file /distro_infra/dnsmasq_conf.d/dc-da-4d-fc-ad-2d dnsmasq-dhcp: read /distro_infra/dnsmasq_conf.d/dc-da-4d-fc-ad-2d Enter MAC address (blank to exit): ``` Reboot fboss103 here ``` >>Checking Media Presence...... >>Media Present...... >>Start PXE over IPv6 on MAC: DC-DA-4D-FC-AD-2D. Press ESC key to abort PXE boot.. Station IP address is FC00:33:0:0:0:FB05:50DC:B9F7 Server IP address is FC00:33:0:0:0:0:0:89 NBP filename is ipxev6.efi NBP filesize is 1052160 Bytes >>Checking Media Presence...... >>Media Present...... Downloading NBP file... NBP file downloaded successfully. iPXE initialising devices... iPXE 1.21.1+ (g9486) -- Open Source Network Boot Firmware -- https://ipxe.org Features: DNS HTTP iSCSI TFTP VLAN SRP AoE EFI Menu Configuring [ipv6] (net0 dc:da:4d:fc:ad:2d)... ok tftp://[fc00:33::89]/ipxev6.efi-serverip... ok autoexec.ipxe... ok http://[fc00:33::89]:6969/dc-da-4d-fc-ad-2d/pxeboot.FBOSS-Distro-Image.x86_64-1.0.initrd... ok http://[fc00:33::89]:6969/dc-da-4d-fc-ad-2d/pxeboot.FBOSS-Distro-Image.x86_64-1.0.kernel... ok tftp://[fc00:33::89]/pxeboot_complete... ok EFI stub: Loaded initrd from LINUX_EFI_INITRD_MEDIA_GUID device path EFI stub: Measured initrd data into PCR 9 [ 0.000000] Linux version 6.12.63-200.el9.x86_64... ``` Then the PXE installer runs. The Distro Infrastructure output during this period is: ``` dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: DHCPSOLICIT(vlan1033) 00:02:00:00:ab:11:ea:34:3d:47:ca:ee:d2:07 dnsmasq-dhcp: DHCPREPLY(vlan1033) 00:02:00:00:ab:11:ea:34:3d:47:ca:ee:d2:07 no addresses available dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: DHCPSOLICIT(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPADVERTISE(vlan1033) fc00:33::fb05:50dc:b9f7 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPREQUEST(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPREPLY(vlan1033) fc00:33::fb05:50dc:b9f7 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: RTR-SOLICIT(vlan1033) dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: DHCPSOLICIT(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPADVERTISE(vlan1033) fc00:33::fb05:50a2:9696 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPREQUEST(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPREPLY(vlan1033) fc00:33::fb05:50a2:9696 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: DHCPRELEASE(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-tftp: error 8 User aborted the transfer received from fc00:33::fb05:50dc:b9f7 dnsmasq-tftp: sent /distro_infra/persistent/dc-da-4d-fc-ad-2d/ipxev6.efi to fc00:33::fb05:50dc:b9f7 dnsmasq-tftp: sent /distro_infra/persistent/dc-da-4d-fc-ad-2d/ipxev6.efi to fc00:33::fb05:50dc:b9f7 dnsmasq-dhcp: DHCPRELEASE(vlan1033) 00:01:00:01:2e:30:1a:70:dc:da:4d:fc:ad:2d dnsmasq-dhcp: RTR-SOLICIT(vlan1033) dc:da:4d:fc:ad:2d dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: DHCPSOLICIT(vlan1033) 00:04:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 dnsmasq-dhcp: DHCPADVERTISE(vlan1033) fc00:33::fb05:50f5:dfc9 00:04:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 dnsmasq-dhcp: DHCPREQUEST(vlan1033) 00:04:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 dnsmasq-dhcp: DHCPREPLY(vlan1033) fc00:33::fb05:50f5:dfc9 00:04:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 dnsmasq-tftp: sent /distro_infra/persistent/dc-da-4d-fc-ad-2d/ipxev6.efi-serverip to fc00:33::fb05:50f5:dfc9 dnsmasq-tftp: sent /distro_infra/persistent/dc-da-4d-fc-ad-2d/autoexec.ipxe to fc00:33::fb05:50f5:dfc9 dnsmasq-dhcp: RTR-SOLICIT(vlan1033) dnsmasq-dhcp: RTR-ADVERT(vlan1033) fc00:33:: dnsmasq-dhcp: DHCPSOLICIT(vlan1033) 00:04:62:19:3e:08:1d:5a:56:77:93:71:a4:d7:25:6f:4c:de dnsmasq-dhcp: DHCPREPLY(vlan1033) fc00:33::fb05:50b2:2cbb 00:04:62:19:3e:08:1d:5a:56:77:93:71:a4:d7:25:6f:4c:de dnsmasq-tftp: sent /distro_infra/persistent/dc-da-4d-fc-ad-2d/pxeboot_complete to fc00:33::fb05:50f5:dfc9 dnsmasq-dhcp: read /distro_infra/dnsmasq_conf.d/default_ignore dc-da-4d-fc-ad-2d PXE booted, disabling future PXE boot provisioning ``` Critical is the line `dc-da-4d-fc-ad-2d PXE booted, disabling future PXE boot provisioning`, which indicates that PXE boot has been detected as complete and will not be offered to future boots. Subsequent reboots of fboss103 time-out when attempting PXE boot and boot off the NVME instead. IPv4 works almost identically except for downloads of the additional autoipv6.ipxe script. Reviewed By: srikrishnagopu Differential Revision: D91169704 Pulled By: kevin645 fbshipit-source-id: 4b9e8f7bacfe80a1600bdc70f9e65ffba6b020b4
diff --git a/fboss-image/.gitignore b/fboss-image/.gitignore
@@ -0,0 +1,5 @@
+distro_infra/parts/ipxe/ipxe
+distro_infra/parts/ipxe/ipxev4.efi
+distro_infra/parts/ipxe/ipxev6.efi
+image_builder/logs
+image_builder/output
diff --git a/fboss-image/distro_infra/BUCK b/fboss-image/distro_infra/BUCK
@@ -0,0 +1 @@
+oncall("fboss_distro")
diff --git a/fboss-image/distro_infra/Dockerfile b/fboss-image/distro_infra/Dockerfile
@@ -0,0 +1,20 @@
+FROM quay.io/centos/centos:stream9
+
+RUN dnf install -y 'dnf-command(config-manager)' && \
+    dnf config-manager --set-enabled crb && \
+    dnf install -y epel-release epel-next-release && \
+    dnf install -y --allowerasing \
+    wget curl tcpdump zstd iputils which net-tools iproute \
+    man dnsmasq vim nginx procps-ng && \
+    dnf clean all && rm -rf /var/cache/dnf
+
+RUN mkdir -p /distro_infra/dnsmasq_conf.d
+COPY parts/run_distro_infra.sh /distro_infra
+COPY parts/post_tftp.sh /distro_infra
+COPY parts/ipxe/ipxev4.efi /distro_infra
+COPY parts/ipxe/ipxev6.efi /distro_infra
+COPY parts/autoexec.ipxe /distro_infra
+COPY parts/nginx.conf /distro_infra
+
+RUN mkdir -p /distro_infra/persistent
+WORKDIR /distro_infra/persistent
diff --git a/fboss-image/distro_infra/README.md b/fboss-image/distro_infra/README.md
@@ -0,0 +1,64 @@
+Distro Infrastructure
+=====================
+
+This directory contains the FBOSS Distro Infracture container. Right now it provides only the necessary support for IPv4
+and IPv6 PXE boot. Under IPv4 the network must have a DHCP server providing IP addresses. Under IPv6 the network must
+**NOT** have a DHCP server providing IP addresses.
+
+Building
+--------
+
+Build the container with `./build.sh`.
+
+Usage
+-----
+
+Start the container by running the 'distro_infra.sh' script which will start the container. This script takes two
+arguments:
+
+- interface: The interface to attach to. This must have L2 adjacency with the management port of the FBOSS duts
+- persistent directory: The directory to use for persistent storage, primarily of images to load
+
+For example, `mkdir images; ./distro_infra.sh vlan1033 images`.
+
+This will start an interactive tool to configure supplying PXE boot options to a given MAC address. Exiting the tool
+terminates the container.
+
+The first time a MAC address is given, a `<MAC>` directory under the persistent directory will be created. Into this the
+image files to boot must be manually extracted. eg:
+
+```
+$ ./distro_infra.sh vlan1033 images
+Listening on vlan1033 - 10.250.33.194
+dnsmasq: started, version 2.85 DNS disabled
+dnsmasq: compile time options: IPv6 GNU-getopt DBus no-UBus no-i18n IDN2 DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth
+cryptohash DNSSEC loop-detect inotify dumpfile
+dnsmasq-dhcp: DHCP, proxy on subnet 10.250.33.194
+...
+Enter MAC address (blank to exit): DC-DA-4D-FC-AD-2D
+```
+
+Now images/dc-da-4d-fc-ad-2d has been created. Into that directory the following files must be copied (or hardlinked
+from the also created `images/cache` directory), or extracted from the PXE installer tarball, which contains these
+precise names:
+
+```
+$ cd images/dc-da-4d-fc-ad-2d
+$ tar -xf fboss-distro-image_pxe.tar
+$ ls -1
+FBOSS-Distro-Image.x86_64-1.0.config.bootoptions
+FBOSS-Distro-Image.x86_64-1.0.initrd
+FBOSS-Distro-Image.x86_64-1.0.kernel
+FBOSS-Distro-Image.x86_64-1.0.sha256
+FBOSS-Distro-Image.x86_64-1.0.xz
+pxeboot.FBOSS-Distro-Image.x86_64-1.0.kernel
+pxeboot.FBOSS-Distro-Image.x86_64-1.0.initrd
+```
+
+Other files will be generated and populated automatically.
+
+The dut can then be rebooted and PXE boot will start. Once PXE boot has completed, the Distro Infrastructure container
+will stop serving PXE boot to that MAC. To serve PXE boot again, re-enter the MAC address at the menu. It is not
+necessary to recopy the image files.
+
+To terminate the script and container, enter a blank MAC address at the prompt: `Enter MAC address (blank to exit):`.
diff --git a/fboss-image/distro_infra/build.sh b/fboss-image/distro_infra/build.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+set -e
+
+pushd parts/ipxe
+./build.sh
+popd
+
+DOCKER_BUILDKIT=1 docker build . -t fboss_distro_infra
diff --git a/fboss-image/distro_infra/distro_infra.sh b/fboss-image/distro_infra/distro_infra.sh
@@ -0,0 +1,61 @@
+#!/bin/bash
+
+INTERFACE=""
+PERSIST_DIR=""
+
+help() {
+  echo "Usage: $0 --intf <interface> --persist-dir <persistent dir>"
+  echo ""
+  echo "Options:"
+  echo ""
+  echo "  -i|--intf <interface>       Network interface to attach to (must have L2 adjacency with FBOSS duts)"
+  echo "  -p|--persist-dir <dir>      Directory for persistent storage, primarily of images to load"
+  echo ""
+  echo "  -h|--help                   Print this help message"
+  echo ""
+  echo "Examples:"
+  echo "  $0 --intf vlan1033 --persist-dir persist"
+  echo "  $0 -i vlan1033 -p persist"
+  echo ""
+}
+
+if [[ $# -eq 0 ]]; then
+  echo "Error: No arguments provided"
+  help
+  exit 1
+else
+  while [[ $# -gt 0 ]]; do
+    case "$1" in
+    -i | --intf)
+      INTERFACE="$2"
+      shift 2
+      ;;
+    -p | --persist-dir)
+      PERSIST_DIR="$2"
+      shift 2
+      ;;
+    -h | --help)
+      help
+      exit 0
+      ;;
+    *)
+      echo "Error: Unrecognized command option: '${1}'"
+      help
+      exit 1
+      ;;
+    esac
+  done
+fi
+
+if [[ -z $INTERFACE || -z $PERSIST_DIR ]]; then
+  echo "Error: --intf and --persist-dir are required"
+  help
+  exit 1
+fi
+
+mkdir -p "${PERSIST_DIR}"
+
+# Run the Docker container with the parsed arguments
+docker run --rm -it --network host --cap-add=NET_ADMIN \
+  --volume "$(realpath "${PERSIST_DIR}")":/distro_infra/persistent:rw \
+  fboss_distro_infra /distro_infra/run_distro_infra.sh --intf "${INTERFACE}"
diff --git a/fboss-image/distro_infra/parts/autoexec.ipxe b/fboss-image/distro_infra/parts/autoexec.ipxe
@@ -0,0 +1,23 @@
+#!ipxe
+
+# Under IPv6 we'll already have an IP address and will have set server_ip via the generated intermediate -serverip
+# script. With IPv4, this script is the first thing we'll have executed and so need to get an IP and set server_ip here.
+
+# IPv4-only
+isset ${server_ip} || ifconf -c dhcp
+isset ${server_ip} || set server_ip ${next-server}
+
+# Common to both IPv6 and IPv4
+set hbase http://${server_ip}:6969/${net0/mac:hexhyp}
+set tbase tftp://${server_ip}
+
+set stub_name FBOSS-Distro-Image.x86_64-1.0
+
+initrd ${hbase}/pxeboot.${stub_name}.initrd
+
+kernel ${hbase}/pxeboot.${stub_name}.kernel console=ttyS4,57600n8 nomodeset rd.neednet=1 rd.kiwi.install.pxe ip=eno1:dhcp rd.kiwi.install.image=${hbase}/${stub_name}.xz rd.kiwi.install.target=/dev/nvme0n1
+
+# Download a marker file via TFTP so we can use it as a signal to remove the dnsmasq configuration
+imgfetch ${tbase}/pxeboot_complete /pxeboot_complete
+
+boot
diff --git a/fboss-image/distro_infra/parts/ipxe/autoipv6.ipxe b/fboss-image/distro_infra/parts/ipxe/autoipv6.ipxe
@@ -0,0 +1,9 @@
+#!ipxe
+
+ifconf -c ipv6
+
+# When booting over IPv6, iPXE only receives a fully-formed bootfile-url DHCPv6 option and it appears there is no way to
+# give just iPXE other options. bootfile-url becomes the iPXE ${filename} setting, but is a full URL and iPXE scripting
+# is not powerful enough to extract just the server IP from it so we can use HTTP downloading for the large artifacts.
+# Thus we autogenerate this iPXE script simply to set the server IP to be used by autoexec.ipxe.
+imgexec --replace ${filename}-serverip
diff --git a/fboss-image/distro_infra/parts/ipxe/build.sh b/fboss-image/distro_infra/parts/ipxe/build.sh
@@ -0,0 +1,15 @@
+#!/bin/bash
+
+set -e
+
+# We need to build a custom iPXE executable for IPv6 so we can include the autoexecipv6.ipxe script which works around
+# the lack of a 'source server' during IPv6 boot.
+if [ ! -d ipxe ]; then
+  git clone https://github.com/ipxe/ipxe.git
+fi
+
+cd ipxe/src
+make bin-x86_64-efi/ipxe.efi
+cp bin-x86_64-efi/ipxe.efi ../../ipxev4.efi
+make bin-x86_64-efi/ipxe.efi EMBED=../../autoipv6.ipxe
+cp bin-x86_64-efi/ipxe.efi ../../ipxev6.efi
diff --git a/fboss-image/distro_infra/parts/nginx.conf b/fboss-image/distro_infra/parts/nginx.conf
@@ -0,0 +1,31 @@
+# Most basic nginx config which statically serves /distro_infra/persistent on port 6969
+
+daemon on;
+worker_processes 2;
+user nginx;
+
+events {
+    use epoll;
+    worker_connections  128;
+}
+
+error_log nginx_error.log info;
+
+http {
+    default_type application/octet-stream;
+    access_log nginx_access.log;
+    sendfile on;
+    keepalive_timeout  65;
+
+    server {
+        listen V4IP:6969 default_server;
+        listen [V6IP]:6969 default_server;
+        server_name localhost;
+        root /distro_infra/persistent;
+
+        location / {
+            try_files $uri $uri/ =404;
+            autoindex on;
+        }
+    }
+}
diff --git a/fboss-image/distro_infra/parts/post_tftp.sh b/fboss-image/distro_infra/parts/post_tftp.sh
@@ -0,0 +1,29 @@
+#!/bin/bash
+
+# Called by dnsmasq when a TFTP transfer completes. This is used to remove the dnsmasq configuration for the given MAC
+# so that a subsequent reboot does not PXE-boot again.
+
+set -euo pipefail
+
+action=$1
+if [[ $action != "tftp" ]]; then
+  exit 0
+fi
+
+# Document the script arguments even though we ignore some of them
+#shellcheck disable=SC2034
+filesize=$2
+#shellcheck disable=SC2034
+address=$3
+filepath=$4
+
+case "$filepath" in
+/distro_infra/persistent/*/pxeboot_complete)
+  mac=$(echo "$filepath" | cut -d/ -f4)
+  rm -rf "/distro_infra/dnsmasq_conf.d/$mac"
+  killall -HUP dnsmasq
+  echo "$mac PXE booted, disabling future PXE boot provisioning"
+  ;;
+esac
+
+exit 0
diff --git a/fboss-image/distro_infra/parts/run_distro_infra.sh b/fboss-image/distro_infra/parts/run_distro_infra.sh
@@ -0,0 +1,116 @@
+#!/bin/bash
+
+INTERFACE=""
+
+help() {
+  echo "Usage: $0 --intf <interface>"
+  echo ""
+  echo "Run FBOSS Distro Infrastructure PXE boot services"
+  echo ""
+  echo "Options:"
+  echo ""
+  echo "  -i|--intf <interface>       Network interface to attach to (must have L2 adjacency with FBOSS duts)"
+  echo ""
+  echo "  -h|--help                   Print this help message"
+  echo ""
+  echo "Examples:"
+  echo "  $0 --intf vlan1033"
+  echo "  $0 -i eth0"
+  echo ""
+}
+
+if [[ $# -eq 0 ]]; then
+  echo "Error: No arguments provided"
+  help
+  exit 1
+else
+  while [[ $# -gt 0 ]]; do
+    case "$1" in
+    -i | --intf)
+      INTERFACE="$2"
+      shift 2
+      ;;
+    -h | --help)
+      help
+      exit 0
+      ;;
+    *)
+      echo "Error: Unrecognized command option: '${1}'"
+      help
+      exit 1
+      ;;
+    esac
+  done
+fi
+
+if [[ -z $INTERFACE ]]; then
+  echo "Error: --intf is required"
+  help
+  exit 1
+fi
+
+v4_ip=$(ip -4 addr show dev "$INTERFACE" | awk -F '[[:space:]/]+' '/inet/{print $3}')
+v6_ip=$(ip -6 addr show dev "$INTERFACE" scope global | awk -F '[[:space:]/]+' '/inet6/{print $3; exit}')
+echo "Listening on ${INTERFACE} - ${v4_ip} & ${v6_ip}"
+
+mkdir -m 777 /distro_infra/persistent/cache 2>/dev/null
+cp /distro_infra/ipxev4.efi /distro_infra/persistent/cache
+cp /distro_infra/ipxev6.efi /distro_infra/persistent/cache
+cp /distro_infra/autoexec.ipxe /distro_infra/persistent/cache
+
+sed -i "s/V4IP/${v4_ip}/" /distro_infra/nginx.conf
+sed -i "s/V6IP/${v6_ip}/" /distro_infra/nginx.conf
+nginx -c /distro_infra/nginx.conf -p /distro_infra/persistent
+
+# Minimize responding to other devices
+echo 'tag:!fbossdut,ignore' >/distro_infra/dnsmasq_conf.d/default_ignore
+
+dnsmasq --interface="${INTERFACE}" --no-daemon \
+  --port=0 \
+  --enable-tftp \
+  --tftp-root=/distro_infra/persistent \
+  --tftp-unique-root=mac \
+  --tftp-secure \
+  --dhcp-script=/distro_infra/post_tftp.sh \
+  --dhcp-hostsdir=/distro_infra/dnsmasq_conf.d \
+  --dhcp-range=tag:fbossdut,"${v4_ip}",proxy \
+  --pxe-service=tag:fbossdut,x86-64_EFI,ipxe,ipxev4.efi \
+  --enable-ra \
+  --dhcp-range=tag:fbossdut,::fb05:5000:0001,::fb05:50ff:ffff,constructor:"$INTERFACE",5m \
+  --dhcp-option=tag:fbossdut,option6:bootfile-url,tftp://["${v6_ip}"]/ipxev6.efi &
+
+sleep 2 # Wait for dnsmasq log spew
+
+# Loop asking the user for a MAC address, then creating the appropriate configuration files. Exiting the loop on an
+# empty MAC
+while read -rp "Enter MAC address (blank to exit): " mac; do
+  if [[ ${#mac} -eq 0 ]]; then
+    break
+  elif [[ ${#mac} -ne 17 ]]; then
+    echo "Invalid MAC address"
+    continue
+  fi
+
+  dashmac=$(echo "$mac" | tr '[:upper:]:' '[:lower:]-')
+  colonmac=$(echo "$dashmac" | tr '-' ':')
+
+  mkdir -m 777 "/distro_infra/persistent/${dashmac}" 2>/dev/null
+  ln -f /distro_infra/persistent/cache/ipxev4.efi "/distro_infra/persistent/${dashmac}/ipxev4.efi"
+  ln -f /distro_infra/persistent/cache/ipxev6.efi "/distro_infra/persistent/${dashmac}/ipxev6.efi"
+  ln -f /distro_infra/persistent/cache/autoexec.ipxe "/distro_infra/persistent/${dashmac}/autoexec.ipxe"
+  touch "/distro_infra/persistent/${dashmac}/pxeboot_complete"
+
+  # IPv6
+  # When booting over IPv6, iPXE only receives a fully-formed bootfile-url DHCPv6 option and it appears there is no
+  # way to give just iPXE other options. bootfile-url becomes the iPXE ${filename} setting, but is a full URL and iPXE
+  # scripting is not powerful enough to extract just the server IP from it so we can use HTTP downloading for the
+  # large artifacts.  Thus we autogenerate this iPXE script simply to set the server IP to be used by autoexec.ipxe.
+  echo "#!ipxe" >"/distro_infra/persistent/${dashmac}/ipxev6.efi-serverip"
+  echo "set server_ip [${v6_ip}]" >>"/distro_infra/persistent/${dashmac}/ipxev6.efi-serverip"
+  echo "imgexec autoexec.ipxe" >>"/distro_infra/persistent/${dashmac}/ipxev6.efi-serverip"
+
+  # Activate IPv4 and IPv6
+  echo "${colonmac},id:*,set:fbossdut" >"/distro_infra/dnsmasq_conf.d/${dashmac}"
+
+  sleep 1 # Wait for dnsmasq log spew
+done
