Skip to content

OpenBSD#

OpenBSD is identified with openbsd kind in the topology file. It is built using vrnetlab project and essentially is a Qemu VM packaged in a docker container format.

Getting OpenBSD image#

To build OpenBSD docker container image you will need to download a custom-built qcow2 VM image with pre-installed cloud-init from https://bsd-cloud-image.org/.

If, for some reason, you're unable to obtain an image from https://bsd-cloud-image.org/, you can build it yourself with the script from this repository.

Managing OpenBSD nodes#

Note

Containers with OpenBSD inside will take ~1-2 min to fully boot.
You can monitor the progress with docker logs -f <container-name>.

OpenBSD node launched with containerlab can be managed via the following interfaces:

to connect to a bash shell of a running OpenBSD container: 

docker exec -it <container-name/id> bash

to connect to the OpenBSD shell (password admin) 

ssh admin@<container-name>

serial port (console) is exposed over TCP port 5000: 

# from container host
telnet <container-name> 5000
You can also connect to the container and use telnet localhost 5000 if telnet is not available on your container host.

Info

Default user credentials: admin:admin

Interface naming#

You can use interfaces names in the topology file like they appear in OpenBSD.

The interface naming convention is: vioX, where X is the port number.

With that naming convention in mind:

  • vio1 - first data port available
  • vio2 - second data port, and so on...

Warning

Data port numbering starts at 1, as vio0 is reserved for management connectivity. Attempting to use vio0 in a containerlab topology will result in an error.

The example ports above would be mapped to the following Linux interfaces inside the container running the OpenBSD VM:

  • eth0 - management interface connected to the containerlab management network (rendered as vio0 in the CLI)
  • eth1 - first data interface, mapped to the first data port of the VM (rendered as vio1)
  • eth2+ - second and subsequent data interfaces, mapped to the second and subsequent data ports of the VM (rendered as vio2 and so on)

When containerlab launches OpenBSD node the vio0 interface of the VM gets assigned 10.0.0.15/24 address from the QEMU DHCP server. This interface is transparently stitched with container's eth0 interface such that users can reach the management plane of the OpenBSD using containerlab's assigned IP.

Data interfaces vio1+ need to be configured with IP addressing manually using CLI or other available management interfaces.

Features and options#

Node configuration#

OpenBSD nodes come up with a basic configuration where only the management interface and a default user are provisioned.

Configuration save#

Containerlab's save command will perform a configuration backup for OpenBSD nodes via SCP. The entire /etc directory of each node will be archived and saved under backup.tar.gz file and can be found at the node's directory inside the lab parent directory:

# assuming the lab name is "openbsd01"
# and node name is "obsd1"
ls clab-openbsd01/obsd1/config/
backup.tar.gz

If the backup file is present upon the node's boot, it will be transferred to the node and extracted.The node will then reboot to apply the restored configuration.

Lab examples#

The following simple lab consists of two Linux hosts connected via one OpenBSD host: