Sunday, October 20, 2024
Latest:
NETWORK ADMINISTRATIONSwindows dns serverWindows server

Don’t run Proxmox without these settings!

Check out Twingate, start making your network more secure and safe: https://twingate.com

In this video, I will share my essential best practices and configuration settings for Proxmox, a powerful hypervisor platform. I’ll walk you through crucial settings for any new Proxmox installation and tips for setting up new virtual machines, aiming to enhance the robustness, security, and performance of your setups. Join me as we delve into keeping your Proxmox server updated, configuring storage, and managing backups.

References

– Proxmox Cluster: https://www.youtube.com/watch?v=IhEE_QlI1MU
– Twingate Video: https://www.youtube.com/watch?v=iKq15WXdN88
– Proxmox Templates with Packer: https://www.youtube.com/watch?v=1nf3WOEFq1Y
– Proxmox VM automation with Terraform: https://www.youtube.com/watch?v=dvyeoDBUtsU

________________

💜 Support me and become a Fan!
→ https://christianlempa.de/patreon

💬 Join our Community!
→ https://christianlempa.de/discord

👉 Follow me everywhere
→ https://christianlempa.de

________________

Read my Tech Documentation
https://christianlempa.de/docs

My Gear and Equipment
https://christianlempa.de/kit

________________

Timestamps:

00:00 Introduction
02:25 Configure Updates
05:19 Notifications
06:36 Trusted TLS Certificates
12:19 Storage Options
14:39 Setup Backup Jobs
17:37 Enable PCI Passthrough
19:34 VM best-practices
23:46 VM templates

________________
Links can include affiliate links.

source

by Christian Lempa

windows server dns

You May Also Like

Red Hat OpenShift: Red Hat Enterprise Linux CoreOS

4 How To Install GNOME GUI on CentOS 8 / RHEL 8 | Install GNOME Desktop Packages on CentOS 8 / RHEL

Microsoft Server 2012 R2 – Hands-on Training Part II – learn Windows Server

Alice AUSTIN

38 thoughts on “Don’t run Proxmox without these settings!

  • please please please please please stop using apt dist-upgrade. Always use apt full-upgrade, which is also recommended by Proxmox

  • Great Video again. Thanks for that great one. Some of these settings was new to me and look really beneficial 🙂

  • Great Video for Proxmox beginners, thumbs up! Just for clearification: q35 isnt required to PCI Passthrough. Its required for PCIe Passthrough. For Storage Adapter Passthrough, you can easy use 440FX. Q35 gets interesting if you want to Passthrough a Grafixcard for example.

  • Great timing for the release of this video….I needed this checklist very much. Thank you!

  • Best! Please tell about nfs & Unprivileged LXC containers, аnd about share folder in proxmox lxs.

  • Did I hear you correctly when you said that you have your truenas vm on your proxmox machine?

  • Our main virtualization expert at work gave a REALLY great explination of CPU provisioning. One thing to keep in mind is that the numbrer of VCPU's assigned to a vm the CPU needs to have free and not already allocated to another vm in the QUE. For example if you assign 8 cores to a VM it would need 8 cores not already que'd to another VM. Even if the task the VM needs to run is a small task and doesn't require all 8 cores at that time it still needs to have the number of CPU cores available and not already allocated to another VM in the que. This means that a lot of times VM's that are over provisioned will actually run worse and lowering the number of CPU cores can actually increase performance. I am not sure how to see que times in Proxmox but this was an issue we were seeing at work with some of our VMware servers but the concept is still the same.

  • Christian you say you order a certificate and then the certificate warning disappears in the browser. But do these certificates autorenew yearly? Are they permanent certificates different from SSL certificates in being TLS certificates? I have a blockchain running inside a docker image and it needs a loop to restart the blockchain and rewrite a private key because the ssl certificate has to regularly be renewed, so that when it is renewed the blockchain is restarted to prevent dodgy handshake messages even though the blockchain ports ae secure, are you saying that I can use a TLS certificate once off, rather? So that I don't have to put my blockchain on a loop to restart so that I regenerate a new private key related to the SSL certificate. I' m not sure how it's different, the tls certificate from the ssl.

  • Id love to have a basic proxmox app with the GUI boot menu to slect the OS on boot and simple options to allow pass though GPU for windows or osx for gaming; its such a simple thing but alas damned iof anyone makes such a thing for single home user PC. the ability to VM your OS and run them all side by side at once is my idea of heaven!

  • 5:20 Im surprised you dont mention at all the option to use Gotify for notifications instead of (or in addition to) Email (SMTP). Especially for selfhosting/homelabbing Gotify can be very interesting and could message locally even when internet connection is lost.

  • what do you think about proxmox helper scripts? have you made a video about it before?

  • Awesome video! Quick tip to keep things organized for VMs and CTs is make use of resource pools. I have few pools but most common are Production, non-production and testing. I use them to create different backup jobs so it don't waste alot of time backing up CTs/VMs when it only needs to be backed up few times a week or weekly. Plus when you create new CTs/VMs you can specify which pool to put it under.

  • I'm still unclear on the TLS Certificate instructions. Especially the local DNS and the cloudflare DNS and the comment that there are two ways to do it. do I even need cloudflare ( I have it with domains there but do not run local DNS other than a .lan internal )

  • Are you using terraform with your current proxmox version? Is it working well?

  • I thought there was an issue with running updates from the CLI like that. I recall doing that and then borking up the boot process.

    Edit: I recall, I did the update commands incorrectly out of habit. No problem with the way it’s done here.

  • What do you recommend to use as SMTP server?

  • Better yet for the updates using the scripts by tteck it will disable the no subscription notification

  • Hi Christian, for backup your vm's you should use 1 pbs (as vm) on every proxmox host with daily replication to each other. If your host 1crashes, you have no more access to your backups, because your nas is down, too. In my case, you have 1 pbs with backups of every vm on both proxmox hosts.

  • Finally fixed my broken notifications for my backups. Thank you.

  • Would u make a video talking about attaching a storage, pool, or single disk shared over all the virtual machines?

  • nice list but seriously speaking using Proxmox Backup Server is way better than "just backup" – PBS gives more options for restoring i.e. selective restoring etc. It is very easy: just one more VM and storage for it from NAS

  • Requesting a wildcard cert would avoid needing to add each name to a SAN cert.

  • Was that a 1password pop-up for the ssh creds???

    Does anyone have a tutorial on that?

  • Excellent as always. Didn't think certificates would be so easy 👍

  • I place a .forward in the home directory for root so that mail to root goes where I want it to.

  • Awesome video! I know what Im doing when I get home today.

  • Do you think it is a good practice to hypervize Truenas? Also, what do you think about Cockpit for that purpose?

  • i wish i could use any of these… i really wanted to use the cert. i guess its because i am not using HA idk im still new at this..

Comments are closed.