Search results

this works? i highly doubt that :) you cannto give eth0 AND vmbr0 the same ip that wont work ever. i assume you wanna go for a simple bridge and allow all vms on vmbr0 to have direct access to public ips - first your provider need to support that and you need to usually configure the mac of...

dont use masquerade use SNAT cause you have a fixed ip masquerade is only good for dynamic ips because it has to check continiously if the ip has changed.

short answer it doesnt for several reasons. fuirst promox doc s says ha only with low latency, so its not ment ot be used for WAN failover. second a multi site HA isnt something trivial. it can be done if you have the same tier 1 carrier like level 3 that could provide you some failover IPs...

corrected? good one, go get some qualifications first be grateful i gave away a little of my valued time to support newbies like you i told you why its not a good idea and why it wont work the way you expect it to work. take it or leave it but dont try to devalue someone with more knowlege only...

*facepalm* above peopel described using it as a defacto virtual router beside its a singel point of failure and cant be moved from host to host without reconfigure the virtual router if all your hosts are within the same lan then its adifferent and port mangeling should be done on lans firewall...

yes portforwarding wont work with promox. installing iptables? you dont install iptables you just configure it, iptables is kernel land, nothing to install. again redirecting aka DNAT or SNAT inside a VM (or container) makes no sense. jsut more overhead and more things to fail. you can simply...

@hello ofc its not working. novnc is just a vnc client that need to connect to the vnc port that said. using letsencrypt makes no that much sense except you have customer wanna access your host. it wont anything to security, in contrary a privatly signed cert if done right is always more...

qcow2 overhead ofc you ened to compress that image for minimum space requirement but you never get the same filesize as host disksize because cqow2 saves much more in that image than raw you have metadata, snapshots, etc. also it depends which blocksize you use and other factors. so diskspace...

that is not a reason sorry. but if you try to run a setup 2 or more host with one public ip each, seperated from each other, then youre out of luck anyway you gonna spin the wheel in almsot all cases first of all your host is not aware of vms internal ip, so there is always reconfigureing...

what? why? jsut set iptables on the promox host for port forwarding to the vms if you want a graphical gui for that usw firewallbuilder. its a gui standalone on win/linux/mac that create iptables scripts just run that script at startup and youre golden. no reson for gateway vms or similar

if you want performance use raw. if you wanna have qcow2 features and go on a small filesize or even (initial compressed) go qcow now what you dont wanna do is using single drives for vhosts. the I7O load is gonna kill you once you start more then one machine let alone 5-10 i also recommend not...

in dem fall machst das bridged setup deine config wäre routed das willst du nicht ernsthaft im hetzenr wiki steht eh die config die wäre sowas wie # remove or disable configuration for eth0 #auto eth0 #iface eth0 inet static # auto br0 iface br0 inet static address (Main IP) netmask (like...

es gibt viele wege nach rom in einem fall machst du vmbr0 zur absoluten bridge d.h. alles was auf vmbr0 läuft braucht eine öffentliche ip und du must die mac adresse der vm bei hetzer im portal eintragen sonst ärgerst du nur deren junipers vorteil du hast eine klare trennung zwischen host und...

try qm rescan then go back into the vm and see if the hdd is associated. if error persists remove the disk from the vm (but do not delete it ofc) and try to readd is. if that doesnt work. move the file out of the directory delete vm make a new vm create a directory with the same vm number and...

sidenote, only because someone names it best practise doesnt mean it is. balooning is mainly for overprovisioning your host. this might be good for special puposes, but for regular working vms, lets say you have 2 webserver, 2 databse server, one mail, some windows... none of those you really...

memory is cheap, memory is plenty, go for fixed btw for install a domain controller i recommend 2 gb ram, when you run it you can use 1gb without an issue, if youre really short then it will run on 500megs (install requires minimum of 756 but 2 installs way faster :)) as for me , i never...

please report this as a bug, that cant be intended behaviour, nasty one i wonder if thats jsut a local failure or indeed a bug in this kind of config, cant test it dont use prvate subs

hier ist das ding. wenn du bridged arbeitet iptables immer als trasnparente firewall mit. das ist eine sehr sehr nette sache mit deiner config jedoch komplizierst du dinge ins unendliche :)) egal ob du nun die eingebaute firewall nimmst oder iptables direkt, du darfst nie vergessen das nun min...

portforward too, in any case he need to have a network first. reverse proxy needs another vm with a reverse proxy because you do not want to install anything along promox if you can prevent it

umpf, it doesnt matter which port you can start, all ports have to closed except vpn is open. and openvpn runs chroot without root, it wont matter casue its just routing, doesnt need any system rights, only access to some libs depending on the plugins you use. no security is a tool ofc. or...