CRCinAU's latest activity
-
CCRCinAU replied to the thread Support for SEV-SNP in guest VMs.Interesting. I'll consider it a false alarm then hahaha... I was kinda looking forward to tinkering.
-
CCRCinAU replied to the thread Support for SEV-SNP in guest VMs.I have a Ryzen 7 3700X - which seems to say it supports SEV: flags : ..... sev sev_es $ cat /run/qemu-server/host-hw-capabilities.json { "amd-sev": { "cbitpos": 47, "reduced-phys-bits": 5, "sev-support": true, "sev-support-es"...
-
CCRCinAU replied to the thread Proxmox with 48 nodes.If you're gunna be running Proxmox on 48 nodes, use your commercial support to lodge a ticket to get exact advice on your setup. You do have a support subscription given that Proxmox VE is core to your operation, right?
-
CCRCinAU replied to the thread Allowing all hosts that can connect to port 26 be trusted networks..Thanks. And yes, for the sake of anyone coming across this later on and skim reading, DO NOT do this unless there is a functional access restriction that limits the world from using your system - or it'll make you an open relay to everyone and...
-
CCRCinAU replied to the thread Allowing all hosts that can connect to port 26 be trusted networks..Had a chance to take a look at this today. I've done modifications to templates before, so not a huge learning curve here - but on the postfix config side, if I'm understanding it right, I just have to add `-o mynetworks=0.0.0.0/0` to the...
-
CCRCinAU posted the thread Allowing all hosts that can connect to port 26 be trusted networks. in Mail Gateway: Installation and configuration.Hi all, So I have a mate that I'm relaying email via my PMG instance. He's on a dynamic IP - which due to DNS updates works fine for sending mail TO his mail server, but having mail sent via PMG port 26 becomes difficult because I can't add a...
-
CThanks everyone for sharing their insights/scripts. @SimoneGiacomelli I have implemented your script. Nice work. I performed roughly the following after reading the code and running the unit tests. curl -sSL...
-
CCRCinAU replied to the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1.Ahhh gotcha. Ok, i'll remove the fstab entry for /boot/efi and see how that goes.
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.Thanks for the tip - I did manage to find a missing security group on one of the VMs I imported from elsewhere. From looking at the firewall on each VM, the UI didn't indicate in anyway that the security group was missing. It was the only...
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.@shanreich - I have noticed an issue with the nftables firewall where this rule seems to be repeated thousands of times: meta protocol != arp ct state vmap { invalid : jump invalid-conntrack, established : accept, related : accept } Some...
-
CCRCinAU replied to the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1.*nudge*
-
CCRCinAU posted the thread Shutting down the last VM on a bridge takes the bridge down. in Proxmox VE: Networking and Firewall.I've just been playing with my newly installed PVE 9.0.6 install - and when implementing BGP on the host using FRR, I noticed that if I shut down all VMs on the host, then the bridges will end up in the `state DOWN` state when viewing the output...
-
CCRCinAU reacted to shanreich's post in the thread MACRO firewall rules not working with nftables? with
Like.
Please do, if you find any irregularities or issues you can always mention me. Make sure to check systemctl status proxmox-firewall beforehand, as it might give clues if something is going wrong! -
CCRCinAU posted the thread systemd-bootd + run-parts: /etc/initramfs/post-update.d//proxmox-boot-sync exited with return code 1 in Proxmox VE: Installation and configuration.Since removing grub and using systemd-bootd via proxmox-boot-tool, now updates via apt show: root@mel-dc:~# apt dist-upgrade Summary: Upgrading: 0, Installing: 0, Removing: 0, Not Upgrading: 0 1 not fully installed or removed. Space...
-
CCRCinAU replied to the thread MACRO firewall rules not working with nftables?.Interestingly, I left the firewall rules as they were and then enabled nftables - and all the created rules were there as expected. I added a macro rule, and saw its output just fine. It was almost instant. Interestingly, when I wrote this...
-
CCRCinAU posted the thread MACRO firewall rules not working with nftables? in Proxmox VE: Networking and Firewall.Hi all, I've just done a fresh install of PVE 9.0.6, and noticed that when I add macro rules to a guests firewall - such as the HTTP / HTTPS macros, I can't seem to locate any rule that is created in the nftables firewall. I'm checking with...