CRCinAU's latest activity
-
CCRCinAU replied to the thread Allowing all hosts that can connect to port 26 be trusted networks..Had a chance to take a look at this today. I've done modifications to templates before, so not a huge learning curve here - but on the postfix config side, if I'm understanding it right, I just have to add `-o mynetworks=0.0.0.0/0` to the...
-
CCRCinAU posted the thread Allowing all hosts that can connect to port 26 be trusted networks. in Mail Gateway: Installation and configuration.Hi all, So I have a mate that I'm relaying email via my PMG instance. He's on a dynamic IP - which due to DNS updates works fine for sending mail TO his mail server, but having mail sent via PMG port 26 becomes difficult because I can't add a...
-
CThanks everyone for sharing their insights/scripts. @SimoneGiacomelli I have implemented your script. Nice work. I performed roughly the following after reading the code and running the unit tests. curl -sSL...
-
CCRCinAU replied to the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1.Ahhh gotcha. Ok, i'll remove the fstab entry for /boot/efi and see how that goes.
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.Thanks for the tip - I did manage to find a missing security group on one of the VMs I imported from elsewhere. From looking at the firewall on each VM, the UI didn't indicate in anyway that the security group was missing. It was the only...
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.@shanreich - I have noticed an issue with the nftables firewall where this rule seems to be repeated thousands of times: meta protocol != arp ct state vmap { invalid : jump invalid-conntrack, established : accept, related : accept } Some...
-
CCRCinAU replied to the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1.*nudge*
-
CCRCinAU posted the thread Shutting down the last VM on a bridge takes the bridge down. in Proxmox VE: Networking and Firewall.I've just been playing with my newly installed PVE 9.0.6 install - and when implementing BGP on the host using FRR, I noticed that if I shut down all VMs on the host, then the bridges will end up in the `state DOWN` state when viewing the output...
-
CCRCinAU reacted to shanreich's post in the thread MACRO firewall rules not working with nftables? with
Like.
Please do, if you find any irregularities or issues you can always mention me. Make sure to check systemctl status proxmox-firewall beforehand, as it might give clues if something is going wrong! -
CCRCinAU posted the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1 in Proxmox VE: Installation and configuration.Since removing grub and using systemd-bootd via proxmox-boot-tool, now updates via apt show: root@mel-dc:~# apt dist-upgrade Summary: Upgrading: 0, Installing: 0, Removing: 0, Not Upgrading: 0 1 not fully installed or removed. Space...
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.Interestingly, I left the firewall rules as they were and then enabled nftables - and all the created rules were there as expected. I added a macro rule, and saw its output just fine. It was almost instant. Interestingly, when I wrote this...
-
CCRCinAU posted the thread MACRO firewall rules not working with nftables? in Proxmox VE: Networking and Firewall.Hi all, I've just done a fresh install of PVE 9.0.6, and noticed that when I add macro rules to a guests firewall - such as the HTTP / HTTPS macros, I can't seem to locate any rule that is created in the nftables firewall. I'm checking with...
-
CCRCinAU replied to the thread Opt-in Linux 6.14 Kernel for Proxmox VE 8 available on test & no-subscription.https://bugzilla.proxmox.com/
-
CCRCinAU replied to the thread [SOLVED] The backup (passkey) elligibility of this device has changed, meaning it must be re-enrolled for security validation.Fixed in 4.0.11-4.
-
Cthe passkey issue was indeed a separate one, but should be fixed with 4.0.11-4 as well :)
-
CCRCinAU replied to the thread Proxmox Backup Server 4.0 BETA released!.Hmmm - I still see this with 4.0.11.. The journal logs for the entire login to logged out are: Aug 07 06:56:55 pbs unix_chkpwd[829]: password check failed for user (root) Aug 07 06:56:55 pbs proxmox-backup-api[615]...
-
CCRCinAU replied to the thread Proxmox Backup Server 4.0 BETA released!.It occurs in 4.0.10 - even after reboots etc. I can't see a 4.0.11 anywhere at the moment. Also, I can login ok, but normally get logged out again quickly. The journal seems to show the auth failures, and the login session will be invalidated...
-
CCRCinAU replied to the thread [SOLVED] The backup (passkey) elligibility of this device has changed, meaning it must be re-enrolled for security validation.I'm using 1Password + the browser plugin to handle all passkeys.
-
CCRCinAU replied to the thread Proxmox Backup Server 4.0 BETA released!.I'm using Edge on linux (Fedora 42). No customisation of PAM, and only minimal changes to the underlying OS. I don't seem to see any errors for /api2/* in the journal when using a PBS realm user. EDIT: After adding a 2FA WebAuthn device to the...
-
CFYI That's the same issue I reported earlier in the thread.