Enhance provisioning documentation and scripts for improved network boot and DNS management</message>

<message>Add new documentation files for device DNS management via DHCP and dnsmasq configuration. Update cloud-init scripts to ensure proper handling of /etc/resolv.conf and DNS settings, allowing for seamless integration with file.server. Modify existing scripts to support dynamic LAN subnet configuration and improve overall network boot functionality. These changes enhance user experience and streamline the setup process for the CM4 eMMC provisioning service.

emmc-provisioning/scripts/setup-network-boot-on-lxc.sh

@@ -1,10 +1,12 @@
 #!/usr/bin/env bash
 # Setup network boot on the provisioning LXC: DHCP + TFTP on eth1, NAT so LAN uses eth0 for internet.
-# Run inside the LXC (as root), or from your machine: ./setup-network-boot-on-lxc.sh root@10.130.60.141
-# When run with ssh target, rsyncs lxc/ and runs this script inside the container.
+# Run inside the LXC (as root), or from your machine: ./setup-network-boot-on-lxc.sh root@10.130.60.141 [SUBNET]
+# SUBNET optional: A.B.C.D/PREFIX (e.g. 10.100.1.1/24). When run with ssh target, writes lan-subnet.conf on LXC if SUBNET given.
+# When run with ssh target, rsyncs lxc/ and runs this script inside the container. Subnet is read from /opt/cm4-provisioning/lan-subnet.conf.
 
 set -e
 TARGET="${1:-}"
+SUBNET_ARG="${2:-}"
 
 if [[ -n "$TARGET" ]]; then
   # Run remotely: sync lxc/ and script, then execute inside LXC
@@ -19,21 +21,51 @@ if [[ -n "$TARGET" ]]; then
     echo "Note: network-boot-initramfs/initrd.img not found (run build.sh first); skipping."
   fi
   scp "$SCRIPT_DIR/setup-network-boot-on-lxc.sh" "$TARGET:/tmp/cm4-network-boot-lxc/setup.sh"
+  # If SUBNET_ARG given, write lan-subnet.conf on LXC so inner script uses the set subnet
+  if [[ -n "$SUBNET_ARG" ]]; then
+    if [[ "$SUBNET_ARG" =~ ^([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+)/([0-9]+)$ ]]; then
+      LAN_GW="${BASH_REMATCH[1]}"
+      PREFIX="${BASH_REMATCH[2]}"
+      BASE_3="${LAN_GW%.*}"
+      LAN_CIDR="${BASE_3}.0/${PREFIX}"
+      DHCP_RANGE_START="${BASE_3}.100"
+      DHCP_RANGE_END="${BASE_3}.200"
+      ssh "$TARGET" "mkdir -p /opt/cm4-provisioning && echo 'LAN_GW=$LAN_GW' > /opt/cm4-provisioning/lan-subnet.conf && echo 'LAN_CIDR=$LAN_CIDR' >> /opt/cm4-provisioning/lan-subnet.conf && echo 'DHCP_RANGE_START=$DHCP_RANGE_START' >> /opt/cm4-provisioning/lan-subnet.conf && echo 'DHCP_RANGE_END=$DHCP_RANGE_END' >> /opt/cm4-provisioning/lan-subnet.conf"
+      echo "Wrote lan-subnet.conf on LXC (LAN_GW=$LAN_GW, DHCP ${DHCP_RANGE_START}-${DHCP_RANGE_END})."
+    else
+      echo "Warning: SUBNET must be A.B.C.D/PREFIX (e.g. 10.100.1.1/24); ignoring '$SUBNET_ARG'."
+    fi
+  fi
   ssh "$TARGET" "bash /tmp/cm4-network-boot-lxc/setup.sh"
   echo "Done."
   exit 0
 fi
 
 # --- Running inside the LXC from here ---
-# LAN subnet: use /opt/cm4-provisioning/lan-subnet.conf (written by deploy-to-proxmox.sh when DEPLOY_LXC_LAN_SUBNET is set)
+# LAN subnet: use /opt/cm4-provisioning/lan-subnet.conf (written by deploy-to-proxmox.sh or passed as SUBNET when running remotely)
+# Optional first arg when running locally: A.B.C.D/PREFIX to set/write lan-subnet.conf
 LAN_CONF="/opt/cm4-provisioning/lan-subnet.conf"
-if [[ -f "$LAN_CONF" ]]; then
+if [[ "$1" =~ ^([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+)/([0-9]+)$ ]]; then
+  LAN_GW="${BASH_REMATCH[1]}"
+  PREFIX="${BASH_REMATCH[2]}"
+  BASE_3="${LAN_GW%.*}"
+  LAN_CIDR="${BASE_3}.0/${PREFIX}"
+  DHCP_RANGE_START="${BASE_3}.100"
+  DHCP_RANGE_END="${BASE_3}.200"
+  mkdir -p /opt/cm4-provisioning
+  echo "LAN_GW=$LAN_GW" > "$LAN_CONF"
+  echo "LAN_CIDR=$LAN_CIDR" >> "$LAN_CONF"
+  echo "DHCP_RANGE_START=$DHCP_RANGE_START" >> "$LAN_CONF"
+  echo "DHCP_RANGE_END=$DHCP_RANGE_END" >> "$LAN_CONF"
+  echo "Using set subnet: $LAN_CIDR (gateway $LAN_GW), DHCP ${DHCP_RANGE_START}-${DHCP_RANGE_END}."
+elif [[ -f "$LAN_CONF" ]]; then
   source "$LAN_CONF"
 else
   LAN_GW="10.20.50.1"
   LAN_CIDR="10.20.50.0/24"
   DHCP_RANGE_START="10.20.50.100"
   DHCP_RANGE_END="10.20.50.200"
+  echo "No lan-subnet.conf and no SUBNET argument; using defaults: $LAN_CIDR."
 fi
 echo "Configuring network boot (DHCP + TFTP on eth1, NAT via eth0) — LAN $LAN_CIDR (gateway $LAN_GW), DHCP ${DHCP_RANGE_START}-${DHCP_RANGE_END} ..."
 
@@ -42,17 +74,21 @@ if ! command -v dnsmasq >/dev/null 2>&1; then
   apt-get update -qq && DEBIAN_FRONTEND=noninteractive apt-get install -y -qq dnsmasq
 fi
 
-# 2) dnsmasq config for eth1 only (DHCP + TFTP); PXE options in network-boot-pxe.conf (toggle with toggle-network-boot-dhcp.sh)
+# 2) dnsmasq config for eth1 only (DHCP + TFTP + DNS); PXE options in network-boot-pxe.conf (toggle with toggle-network-boot-dhcp.sh)
 mkdir -p /etc/dnsmasq.d
 cat > /etc/dnsmasq.d/network-boot.conf << DNSMASQ
-# DHCP on eth1 only (provisioning LAN)
-# TFTP and PXE options are in network-boot-pxe.conf, controlled by toggle-network-boot-dhcp.sh
+# DHCP + DNS on eth1 only (provisioning LAN)
+# TFTP and PXE options in network-boot-pxe.conf, controlled by toggle-network-boot-dhcp.sh
 interface=eth1
 bind-interfaces
 dhcp-range=${DHCP_RANGE_START},${DHCP_RANGE_END},12h
+# DNS: file.server resolves to this host (eth1) so scripts can use http://file.server/...
+address=/file.server/${LAN_GW}
+# Explicitly send this host as DNS server to DHCP clients (option 6) so they use LXC DNS and resolve file.server
+dhcp-option=6,${LAN_GW}
+# Other DNS queries forwarded via LXC's resolv.conf
 log-dhcp
 log-queries
-port=0
 DNSMASQ
 mkdir -p /opt/cm4-provisioning
 if [ -f /tmp/cm4-network-boot-lxc/toggle-network-boot-dhcp.sh ]; then