Search results

Would it be possible to limit any given VM to a subset of nodes in a cluster?. Use case: - I have a 4 node cluster, which run Ceph as a storage layer - I need to run VMs equivalent to 1 physical node with Windows Server - I will license 2 nodes for Windows Server (node1 & node2) - I want to...

I definitely need write a tutorial, I suffered with this. do you have a diagram?. I didn't go the Vyos route because I didn't want to maintain yet another component. On the bright side, it can act as EVPN exit node: if you want this, don't use my recipe and instead use exit nodes and route...

Hello, pastebin links still work. Only difference is the exit nodes were deleted. Will share a proper configuration guide once I get access to that environment again. Please report back if it works. Validated with 8.3, pending testing on 8.4 (I hope it doesn't break)

Hello!, I have a cluster up & running, with several network interface, EVPN/VXLAN, external BGP peering and Ceph. Now I would like to enable PVE firewall to manage filtering. Given a complex network environment already built, I'm worried about breaking the cluster beyond repair activating the...

Fixed!. The trick was removing the exit nodes (all of them) from the EVPN zone, since it leaks routes to the global/default table. That is paired with the manual BGP instances + VRF definition for the interface and traffic flow works as expected.

config that almost works: https://forum.proxmox.com/threads/management-plan-vs-vm-on-overlay.162892/#post-754741

root@pve-01:~/bin# ip addr show dev ol111001 191: ol111001: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue master vrf_L01VPN01 state UP group default qlen 1000 link/ether bc:24:11:e6:34:58 brd ff:ff:ff:ff:ff:ff inet 192.168.111.1/25 scope global ol111001 valid_lft forever...

that is fine and it works for VM to external networks, the issue is that outgoing connections from to host to a VM doesn't work through the external peering node, it seems to try to resolve locally (not desired). I have: pve01/02/03/04 are integrated with EVPN/VXLAN pve{01,02,03,04}/fw{01,02}...

I got a manual setup stablishing 2 sets of BGP sessions to maintain BGP separation. I can clean up my tests and share them if they are of interest. The only culprit so far is VM <-> Host traffic for things like Datacenter Manager, LibreNMS and OIDC authentication service running in overlay.

Hello! I wonder if anybody deployed Datacenter Manager connected to a SDN overlay segment. I'm having issues connecting virtual machines & hosts via an external node doing the leaking. EVPN/EVPN overlay BGP peering to a firewall Firewall interconnecting VLAN based segments on the switch with...

did you ever find a solution?

Anybody?. Today I found something odd. Having 2 subnets in the overlay, same VRF: VM1 on subnet1 can reach proxmox web portal and SSH on host1 (routing is working as it should) - Traffic properly routed when VM initiates de connection? host1 cannot connect to VM2 running a web service on...

do the graph gap an log entries timing align?

For starters, "dmesg -T"

any events on the host side?

looking at the numbers, they are fine. OS uses RAM to place filesystem cache. Buffer/Cache portions of the memory will be free-up on demand when needed by other applications. In-OS memory monitoring is the meaningful metric, hypervisor level view is limited to (active pages). if the workloads...

It's not usual to be disk jockeying VMs between two datacenters, with complex networking, things break (MPLS, IPSEC, etc). For DR I've used ZFS replication successfully between sites. For a "single pane of glass" solution to manage both sites, you're probably better served by the new...

also a "top" output showing a list of the top 10 processes sorted by memory (shift+m)

What's reported by "free -m"?

first things first, change NIC to VirtIO, if the network traffic is heavy, enable multi queue. have you done any kind of profiling?, processes of interest?, what's the split in CPU time look like?, any relevant OS counters you could share?