Search results

Hello. No, there is no inheritance - with two exceptions: If you create an IPSet called "management" at the Cluster level, it is inherited by the Node firewalls (but not VMs) If you create an IPSet called "blacklist" at the Cluster level, this is inherited by the Nodes and all VMs (note: The...

Thank you Marshalleq. I've found a large number of threads with people complaining about swap being used excessively on the node for no obvious reason. The general consensus seems to be to try setting swappiness to 10 (or less) on the node. In fact swapiness of 10 is recommended in the docs, at...

I though I'd made some progress. By limiting the number of concurrent threads that the AWS S3 command uses, at first I saw no swap usage at all. Load was minimal. CPU and memory usage minimal. Sure, the upload speed was limited to 30Mbytes/sec but that's OK by me for this application. However...

No, I think Francesco means a backup note. There is no way to add a note when doing a backup in the GUI, like "backup before installing ABC". It would be very useful to have this feature.

I'm still struggling with this. I find it alarming that Node swap goes to 100% when Container RAM and swap are pretty much unused when I'm backing up to S3. When I say "alarming", I mean I'm worried something may go wrong when I do my backups to S3. Any re-assurance would be appreciated.

I'm having problems limiting memory in an LXC container and would appreciate some help please. I have created a Centos 7 Container with the following settings: arch: amd64 cores: 2 cpuunits: 10 hostname: [redacted] memory: 512 mp0: /backup2/pm2/dump,mp=/mnt/pm2dump,ro=1 net0: name=[redacted]...

This is the syslog output from BEFORE I edited /etc/aliases and created /etc/aliases.db Oct 23 07:03:08 pm2 postfix/qmgr[1555]: 776DD240E35: from=<root@pm2.cymru1.org>, size=1048, nrcpt=1 (queue active) Oct 23 07:03:08 pm2 postfix/local[20891]: error: open database /etc/aliases.db: No such file...

The question is, why isn't it working? :-) It is logical to assume that there is an error in the way Proxmox (or postfix) is configured during Proxmox installation, which prevents mail to "root" from being sent. Although there is a .forward file in /root, this appears to have no effect/is...

There are around 27,000 IPs in the file that causes 30 to 40% CPU.

Well, mail.err contains: Oct 29 14:13:42 pm2 postfix/local[11580]: error: open database /etc/aliases.db: No such file or directory And the email is not sent. Looking at /root/.forward, it contains: |/usr/bin/pvemailforward That's a binary, but I can see another file pvemailforward.pl which...

OK, I think I have a lead on this. Firstly, it IS happening on both nodes, or at least it is now. Secondly, in my cluster.fw, I had added a very, very large number of IPs. For example I had created IPSets to block entire countries including China and various others with very large numbers of...

On a fresh PM 5.2 install, I happened to run "mailq" on a node and saw that there were 8 messages to "root" that were stuck in the queue. These messages were from smartd, trying to email "root" about some unreadable/pending disk sectors. The messages could not be delivered because postfix...

Please can someone help me understand what's happening? On one node in a two-node cluster, I'm seeing pve-firewall show up in "top" using 30% to 40% CPU for a second or so, every 10 seconds or so. This doesn't happen on the other node. These are new nodes and barely being used. I have one VE...

I've done a lot of testing recently, and you can barely notice any issue during backup. You really should install the agent.

I am curious to know what Proxmox users' thoughts are on whether or not to use LVM in a simple VM with local storage? I find myself unable to decide and I could do with some advice on this. My VMs are all for website hosting. The disk volumes are all stored on local storage and will very...

Is there a reason why the VM.Audit permission allows a user to see the Subscription that applies to a node, including the subscription key, and various other things that a non-admin user should not see? All I want to do is to create a Role that is suitable for a user who is a customer who has a...

Unfortunately this is beyond my ability to implement SAFELY as I have no experience of it. Would you be willing to assist? My current configuration is as follows: auto lo iface lo inet loopback iface eno1 inet manual iface eno2 inet manual auto eno3 iface eno3 inet static address...

Thank you. That's exactly the kind of thing I needed to know. I have successfully achieved my goal in a Container running on each Node. The ability to create a bind mount to the dump directory and to set it read-only in the Container is perfect for my needs. The only disadvantage is that I've...

To answer my own question, I am being too cautious. A Container is the right solution.

I intend to install aws cli (apt-get install python-pip & pip install awscli) on my nodes in order to sync backups to S3. It works fine on my test nodes but I'm concerned that the large number of python dependencies that get installed with python-pip might somehow cause unexpected problems with...