I have reduced the number of failed connection attempts by about ~50% by increasing the ephemeral port range on PVE
net.ipv4.ip_local_port_range = 1024 65535
Not a solution, but it helps. I think it would actually be better if PVE just maintained a long lived TCP connection and reused that...
Well, this is a little embarrasing.
I was restoring my Plex VM after giving up on UEFI boot with Nvidia gpu and I have plenty of restoration points for the main boot disk.
I restore the disk, and go into the hardware section to verify, and I see two unattached disks. One being my main media...
I have recently come across an issue with Proxmox VE 8 and Proxmox Backup Server 3.
Every couple of hours, a log message will appear saying VE couldn't connect to the backup server.
After doing a packet capture, I saw that Proxmox is creating two connections at a time of about 22-27 packets...
I have some unpriviledged tester users that have access to all VM roles for a certain Pool. I would also like to give them the ability to create open vswitches and linux bridges so they can create more complex networking setups.
I've tried both users as pam and pve realms, and given them...
Soon I'm going to be moving all my VMs from one node to new hardware. The existing local storage is LVM-thin, all VM disks are qcow.
The new hardware is going to be all new SSDs in a ZFS array.
I have a dedicated PBS node that has current backups of all my VMs and the host.
After some research...
I have a zabbix agent installed for host monitoring.
I just checked on both of my PVE hosts and they don't contain the gifs either, but the error is not produced when logging into them.
Just cleared my browser data for the PBS web interface, and it appears to have solved the issue. I suppose...
After upgrading to PBS 2.3, I noticed a bunch of logs coming in whenever I was logging in to the web interface.
Dec 09 08:14:14 pbs proxmox-backup-proxy: GET /extjs/theme-crisp/resources/images/btn/btn-grid-cell-small-corners.gif: 400 Bad Request: [client [::ffff:192.168.20.4]:57806]...
Just noticed that I accidentally created one of my containers with its storage on my backup nfs mount.
I tried moving the disk storage in the gui and got this error:
Formatting '/var/lib/vz/images/101/vm-101-disk-0.raw', fmt=raw size=53687091200 preallocation=off
Creating filesystem with...
I just moved PBS (v2.2-7) to new hardware, and I've been fighting chrony trying to get it to sync the time.
root@pbs:/var/log# chronyc activity
1 sources online
0 sources offline
0 sources doing burst (return to online)
0 sources doing burst (return to offline)
0 sources with...
We definitely disagree on the value of a pull model, but I completely understand the ROI for this feature.
At the end of the day, I'm nobody and you guys are the devs making this all happen, and I appreciate the work y'all have done.
You make some great points, and I'd like to take a moment to address some details in your response.
If an attacker compromised the hypervisor and also had the PBS management root credentials, there is nothing stopping them from logging into the management interface from a PVE host. A network...
I briefly mentioned the users/tokens feature originally, I think its a great security feature and use it myself.
Your point about not trusting the PBS host is an interesting backup model.
If PBS is being used as an offsite backup, then this model does make sense, and is used frequently in the...
One of the big problems I had with Veeam was the licensing requirement for more than 10 VMs, and their stubbornness to never develop a Linux based backup and replication server.
It was a significant part of why I dumped ESXi and moved to PVE.