天道酬勤,学无止境

proxmox

Proxmox with OPNsense as pci-passthrough setup used as Firewall/Router/IPsec/PrivateLAN/MultipleExtIPs

This setup should be based on a proxmox, being behind a opnsense VM hosted on the Proxmox itself which will protect proxmox, offer a firewall, a privat LAN and DHCP/DNS to the VMs and offer a IPsec connection into the LAN to access all VMs/Proxmox which are not NATed. The server is the typical Hetzner Server, so only on NIC but multiple IPs or/subnets on this NIC. Proxmox Server with 1 NIC(eth0) 3 Public 1IPs, IP2/3 are routed by MAC in the datacenter (to eth0) eth0 is PCI-Passthroughed to the OPNsense KVM A private network on vmbr30, 10.1.7.0/24 An IPsec mobile client connect (172.16.0.0/24)

2021-11-13 21:15:12    分类:问答    networking   ipsec   proxmox   Opnsense

具有多个公共 IP 的 proxmox KVM 路由网络(proxmox KVM routed network with multiple public IPs)

问题 我有一个与 hetzner 的专用主机。 另外我买了一个6IP子网。 我的主IP是:88.198.60.125 我的主子网是:255.255.255.224 我的附加 IP 是 46.4.214.81 到 46.4.214.86 互联网访问在 Windows 服务器上工作。 但是centos给了我无效的主机我不能使用桥接模式,因为hetzner不允许在同一个外部ip上有多个MAC,所以我必须使用路由模式。 这是我的主机的 /etc/network/interfaces 文件: auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 88.198.60.125 netmask 255.255.255.255 pointopoint 88.198.60.97 gateway 88.198.60.97 post-up echo 1 > /proc/sys/net/ipv4/conf/eth0/proxy_arp auto vmbr0 iface vmbr0 inet static address 88.198.60.125 netmask 255.255.255.255 bridge_ports none bridge_stp off bridge_fd 0 bridge_maxwait 0

2021-11-10 06:45:02    分类:技术分享    virtual-machine   KVM   subnet   proxmox   routed

proxmox KVM routed network with multiple public IPs

I have a dedicated hosting with hetzner. Additionally i have bought a 6IP subnet. My main IP is: 88.198.60.125 My main subnet is: 255.255.255.224 My additional IPs are 46.4.214.81 to 46.4.214.86 the internet access work on windows servers . but centos give me invalid host I cannot use bridged mode, since hetzner does not allow multiple MACs on same external ip, so I have to use routing mode. Here is my /etc/network/interfaces file for the host: auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 88.198.60.125 netmask 255.255.255.255 pointopoint 88.198.60.97 gateway 88.198

2021-11-05 08:03:52    分类:问答    virtual-machine   KVM   subnet   proxmox   routed

Rundeck 通过 REST API 控制 Proxmox(Rundeck controlling Proxmox through REST API)

问题 我对 Rundeck 完全陌生,我用 Docker 安装了它。 我的目标是使用其 API 控制 Proxmox 集群。 我怎样才能做到这一点? 也许用 Ansible? 你有指点给我吗? 提前致谢 问候 回答1 Ansible 不是必需的。 您可以使用 HTTP Workflow step 插件创建工作流,以将 API 请求发送到您的 Proxmox 主机(从此处下载 jar 文件并将其放在 libext 目录或使用插件管理器安装它 [齿轮图标 > 插件 > 查找插件 >搜索“HTTP Workflow Step”并点击“Install”按钮],您无需重启实例)。 或者,您可以使用 Proxmox API 直接使用 cURL 调用的脚本步骤创建工作流。 此外,您可以使用@option.myoption@语法将选项动态传递给您的脚本步骤(例如,从选项列表传递操作)。 我留下了一个工作定义示例,有两种方法可以做到这一点(使用 httpbin.org 服务并向两个步骤传递几个选项)。 <joblist> <job> <context> <options preserveOrder='true'> <option name='action' value='anything' /> <option name='host' value='httpbin.org' /> </options

2021-10-30 16:57:02    分类:技术分享    ansible   rundeck   proxmox

Rundeck controlling Proxmox through REST API

I'm completely new to Rundeck, which I installed with Docker. My goal is to control a Proxmox cluster with its APIs. How can I do that? Maybe with Ansible? Do you have pointers for me? Thanks in advance Regards

2021-10-23 02:53:11    分类:问答    ansible   rundeck   proxmox

在 Linux 容器上使用 screen -x 命令“必须连接到终端错误”(“Must be connected to a terminal error” with screen -x command on a Linux Container)

问题 我在 Proxmox 4 上使用 Linux 容器。当我连接到 Ubuntu 16.04 容器时: pct enter <id> 我用 screen 运行一个脚本并尝试观看运行的进程: screen -x <processname> 我得到了错误: 必须连接到一个终端错误 当我连接时: ssh -t <user>@<container_ip> 它有效,我可以将显示器连接到屏幕上。 当我与pct enter连接时,如何使用screen -x ? 回答1 我找到了一个适用于相同案例的解决方案(https://www.svennd.be/screen-in-lxc-attach) 执行这个 脚本/开发/空 然后你可以运行 screen,等等 回答2 发生这种情况主要是因为您必须使用命令sudo su或用户更改命令将用户切换到当前终端用户。 您将需要拥有您正在使用的外壳。 您可以通过运行以下命令来实现: script /dev/null 。 或者,您可以与用户(在创建屏幕时使用)重新启动终端会话,而不是使用switch user commands进入当前用户。 要了解活动屏幕: screen -list 回答3 或者,您可以在“hohup”中启动会话并发送到后台

2021-10-08 08:04:16    分类:技术分享    linux   containers   gnu-screen   proxmox

Proxmox with OPNsense as Firewall/GW - routing issue

This setup should be based on a proxmox, being behind a opnsense VM hosted on the Proxmox itself which will protect proxmox, offer a firewall, a privat LAN and DHCP/DNS to the VMs and offer a IPsec connection into the LAN to access all VMs/Proxmox which are not NATed. The server is the typical Hetzner Server, so only on NIC but multiple IPs or/subnets on this NIC. Due to the cluster-blocker with the PCI-passthrough setup this is my alternative Proxmox Server with 1 NIC(eth0) 3 Public 1IPs, IP2/3 are routed by MAC in the datacenter (to eth0) KVM bridged setup ( eth0 no ip, vmbr0 bridged to eth0

2021-06-28 07:49:52    分类:问答    linux   networking   routing   proxmox   Opnsense

“Must be connected to a terminal error” with screen -x command on a Linux Container

I am using Linux containers with Proxmox 4. When I am connected on an Ubuntu 16.04 container with: pct enter <id> I run a script with screen and try to watch the process running with: screen -x <processname> I got the error: Must be connected to a terminal error When I connect with: ssh -t <user>@<container_ip> It works, I can attach the display to the screen. How can I use screen -x when I am connected with pct enter ?

2021-06-02 18:30:16    分类:问答    linux   containers   gnu-screen   proxmox

proxmox不付费订阅要出麻烦

前几天因事去北京,有兄弟反应,proxmox安装pveceph出现警告,具体信息如下: W: (pve-apt-hook) !! WARNING !! W: (pve-apt-hook) You are attempting to remove the meta-package 'proxmox-ve'! W: (pve-apt-hook) W: (pve-apt-hook) If you really you want to permanently remove 'proxmox-ve' from your system, run the following command W: (pve-apt-hook) touch '/please-remove-proxmox-ve' W: (pve-apt-hook) and repeat your apt-get/apt invocation. W: (pve-apt-hook) W: (pve-apt-hook) If you are unsure why 'proxmox-ve' would be removed, please verify W: (pve-apt-hook) - your APT repository settings W: (pve-apt-hook) - that you are using 'apt

2021-06-02 00:42:21    分类:博客    proxmox   私有云    《互联网运营智慧》

使用Proxmox 和 DoraCLoud 搭建桌面云系统

Proxmox VE是一个完整的企业虚拟化开源平台。借助内置的Web界面,您可以轻松管理虚拟机和容器,软件定义的存储和网络,高可用性集群以及单个解决方案上的多个现成工具。DoraCloud是一套多平台、一体化、分布式的桌面虚拟化方案。基于开放架构,支持多种虚拟化平台(Hyper-V,VMware,Proxmox,XenServer),多种桌面协议(RDP,PCoIP,SPICE)。本文介绍了基于Proxmox搭建DoraCloud桌面虚拟化系统的过程。安装前准备:1、一台服务器,配置为 :CPU i5 以上,内存 ≥8GB,硬盘为 SSD 。2、网络中开启了 DHCP 服务。3、Proxmox VE6.2 ISO镜像(本文以Proxmox VE6.2描述)官方下载地址: https://www.proxmox.com/en/downloads/category/iso-images-pve中科大Mirror: http://mirrors.ustc.edu.cn/proxmox/清华大学Mirror: https://mirrors.tuna.tsinghua.edu.cn/proxmox/iso/4、U盘制作工具:rufus rufus下载地址步骤一:安装Proxmox VE6.21、Rufus制作Proxmox6.2系统U盘启动盘2、服务器U盘启动安装Proxmox6.2

2021-05-12 13:09:48    分类:博客    proxmox   Deskpool   桌面云   技术实践