Search results

Hello! I wonder if anybody deployed Datacenter Manager connected to a SDN overlay segment. I'm having issues connecting virtual machines & hosts via an external node doing the leaking. EVPN/EVPN overlay BGP peering to a firewall Firewall interconnecting VLAN based segments on the switch with...

did you ever find a solution?

Anybody?. Today I found something odd. Having 2 subnets in the overlay, same VRF: VM1 on subnet1 can reach proxmox web portal and SSH on host1 (routing is working as it should) - Traffic properly routed when VM initiates de connection? host1 cannot connect to VM2 running a web service on...

do the graph gap an log entries timing align?

For starters, "dmesg -T"

any events on the host side?

looking at the numbers, they are fine. OS uses RAM to place filesystem cache. Buffer/Cache portions of the memory will be free-up on demand when needed by other applications. In-OS memory monitoring is the meaningful metric, hypervisor level view is limited to (active pages). if the workloads...

It's not usual to be disk jockeying VMs between two datacenters, with complex networking, things break (MPLS, IPSEC, etc). For DR I've used ZFS replication successfully between sites. For a "single pane of glass" solution to manage both sites, you're probably better served by the new...

also a "top" output showing a list of the top 10 processes sorted by memory (shift+m)

What's reported by "free -m"?

first things first, change NIC to VirtIO, if the network traffic is heavy, enable multi queue. have you done any kind of profiling?, processes of interest?, what's the split in CPU time look like?, any relevant OS counters you could share?

https://forum.proxmox.com/threads/nested-virtualization-esxi-8-0-running-on-pve-8.133254/

what are you trying to achieve?. for SR-IOV, you basically create additional virtual PCI devices (VF) and assign each of them as you would do for PCI passthrough of a complete NIC, but this time using a virtual PCI device. the host won't touch it, it's delegated to a VM do not bridging...

bond0 with both interfaces and everything on top as a VLAN. dedicated corosync VLAN/subnet with QoS could do it (have done it in the past). You want to give it priority vs any other traffic (workloads, management, backups, Ceph, NFS, etc)

short answer: don't. semi short answer: the only sane "multi site" recipe for systems involving data integrity is a 3 site solution. What are you trying to achieve?

Just checked: net.ipv4.tcp_l3mdev_accept = 0 The local processes bound to default/global VRF should not touch forward requests through VRF based interfaces. 1- Want: FRR working with VRFs 2- Don't want PVEProxy going out through a VRF interface

Hello!, I'm trying to integrate PVE via OIDC to a Keycloak server. The thing is, the server is running as a VM on top of the same cluster and is a client of a EVPN/VXLAN VNI/Subnet. Even though the anycast GW is attached to a VRF, the traffic originated from the Management plane seems to exit...

Hello!, I believe I'm seeing the same thing. Just wanted to make sure it's the same case :) Having 4 nodes: peerA peerB peerC peerD I deploy a single VM (192.168.0.101/24) in peerC and from the external BGP node I see these routes being pushed: peerA 192.168.0.0/24 192.168.0.101/32 peerB...

I'm curious about this topic, should "advertise-svi-ip" be set by default instead?, or this is an edge use case?

that's too sad. EVPN/VXLAN is a few clicks away, DHCP would close the loop for easy deployment.