tls

Currently, the lxc templates are downloaded from http://download.proxmox.com, which is also used as the domain for the Proxmox Debian repository. It was already reported that the domain has an invalid SSL certificate, which the Proxmox Staff pointed to not be a big concern as the Debian packages...

Hi, I'm experiencing a strange behaviour on my PVE cluster with an LXC container. Context: I have a PVE cluster running on baremetal with version 8.1.3 with SDN Networking in place. I created an LXC container (Ubuntu22.04) on one host and I'm trying to reach the cluster API using Proxmoxer...

hi, I've been trying to create a TLS certificate and use a custom domain. I've added a domain to ACME, then moved along to the node for System->certificate. When I click on 'Order Certificates Now' the output is as follows, bar my redactions: Loading ACME account details Placing ACME order...

I have proxmox running a container that runs nginx. When I try to connect to proxmox web-ui through the nginx redirect, I get a "401- no ticket" error a bit after logging in. I'm pretty new to dealing with ssl/tls, but it seems really confusing (both ssl and the error). I've found...

Hello, I would like to change the FQDN in a cluster which we mainly use to access the administrative interface. I see that in /etc/hosts both the fqdn and the one-label names are set: 127.0.0.1 localhost.localdomain localhost 10.88.88.231 pve1.example.com pve1 10.88.88.232 pve2.example.com...

Hello, I haven't been playing with my Proxmox homelab in some time. I fired them back up to try and do some work and noticed the TLS certs had expired for my WebUI. Previously I was using ACME DNS challenges with LetsEncrypt to configure my SSL/TLS certs. So I figured I would remove all of the...

Is it possible to completely disable TLS / certificates with spice connections? I'm using tailscale to "open up" my proxmox server, so I don't need tls for spice connections. Is there a way to disable tls?

We want to implement a mail gateway that is forwarding email to a specific mail host based on the MX record. However, the login credentials should be different (for that same mail host) based on the sender address. The email is sent from an application server via SMTP to the local Proxmox Mail...

Transcript of session follows. Out: 220 mail.dmz.se dmz.se In: EHLO mta-70-5-198.update.strava.com.sparkpostmail.com Out: 250-mail.dmz.se Out: 250-PIPELINING Out: 250-SIZE 10485760 Out: 250-VRFY Out: 250-ETRN Out: 250-STARTTLS Out: 250-ENHANCEDSTATUSCODES Out: 250-8BITMIME Out: 250-SMTPUTF8...

I am using an ACME server other than Let's Encrypt, and I observe PVE is having issues creating the CSR for IP addresses. Depending of the order of the domains (the actual domain and the IP) to be verified I add in the GUI to be verified it creates a bad CSR that is not accepted by the ACME...

The non-subscription repository has a bad certificate, and it prevents HTTPS usage on `apt` related commands. The issue is caused because it uses a certificate that is not valid for download.proxmox.com. The certificate is only valid for the following names: au.cdn.proxmox.com...

Today I am using Mail Gateway for all incoming email... to my Exchange Server. For ouotgoing smtp-mail I have an smart host via TLS SSL that I have to use. Can I use Proxmox Mail Gateway as my "Smarthost"? What version of TLS is this? Is it for outgoing, incoming or both? The SSL-certificate...

Good day everyone! I have a 5-node cluster on PVE 7.3-6 with a couple hundred unprivileged LXC, all using the Debian 11 Bullseye template. I was looking at how Netflix can serve 800Gb/s of TLS encrypted video content from a single server, and a large part of it appears to be kTLS. I also saw...

Hallo, ich habe heute meinen Exchange umgestellt, dass er seine Mails über das Proxmox Mail Gateway versendet. Dort habe ich TLS aktiviert. Seit dem werden meine Mails nicht von den Empfängern angenommen und ich bekomme folgenden Fehler: Cannot start TLS: handshake failure Hat jemand eine Idee...

Im using my own TLS certificate in PVE WebUI. But how can I setup How can I setup my custom TLS certificates in the SPICE protocol used by Proxmox PVE?

I'm running a Ubuntu 22.04 container on the latest version of Proxmox. I'm trying to load the kernel module in this container but it fails: mycontainer@root / # modprobe tls modprobe: FATAL: Module tls not found in directory /lib/modules/5.15.39-1-pve How can I load this module?

Hi there, as the title suggested, I would like to troubleshooting my issue with you. I installed a Proxmox Backup Server on a dedicated hardware: If I run proxmox-backup-client benchmark --repository BackupPVE i have this result: Now, from my main Proxmox server I get this result using...

Hi everyone!, we are in the process of upgrading our cluster to Proxmox version 7.2 and after upgrading one of the nodes we have encountered this error. Error Connection error 596: tls_process_server_certificate: certificate verify failed Curiously I see the status of all virtual machines and...

Hello, we are using PMG v 7.1-2 We started using the integrated ACME, but when the certificates are automatically generated, for some reason, they always contain outdated Let's Encrypt R3 certificate chain which expired in 2021. This means that TLS with our customers stops working every time...

Guten Abend Zusammen, ich habe jetzt schon eine Weile meinen PMG im Einsatz und bin extrem zufrieden mit dem Ergebniss, danke an das Team welches diese tolle Software erstellt und an alle die hier so tollen Support leisten! Ich habe heute für meine Domains im DNS DMARC aktiviert, und habe...