cluster node outside internal network - is it possible?

T

TauriRed

Member
Apr 11, 2022
13
1
8
hi,
I currently use following setup:
- router(Mikrotik RB3011 UiAS)) with 2 public IPs (PublicIP1 and PublicIP2), from diffrent ISPs
- Internal network with addresses in 192.168.99.0/24
- VM host(dedicated machine)
- Proxmox Mail Gateway Master on 192.168.99.51 (Router NATs PublicIP1:25 here) and Proxmox Mail Gateway Node1 on 192.168.99.52 (Router NATs PublicIP2:25 here)
- Real mailserver (mailcow instance) lives in VM on same VM host at 192.168.99.61, Proxmox sends mail here via default relay.
- Real mailserver sends mail via Proxmox Mail Gateway master only.

I want to have new node in Proxmox cluster at other physical location, outside internal network (sometimes whole setup goes down due to long power outages)
How to achive this? Only way I could thing of is making that new node connect to internal network via VPN and use it to deliver mail to real mailserver.
Is there other ways? Could Proxmox's cluster inter-node VPN be used to actually deliver mail from new node to one of existing ones and from there to real mailserver? (I don't to replicate all configuration and Proxmox's cluster setup means that Mail Proxy settings will be share by all nodes in cluster, right?)
 
TauriRed said:
I want to have new node in Proxmox cluster at other physical location, outside internal network (sometimes whole setup goes down due to long power outages)
How to achive this? Only way I could thing of is making that new node connect to internal network via VPN and use it to deliver mail to real mailserver.
Click to expand...
This sounds quite ok - just create a VPN tunnel between your outside PMG and your mail-server then mails should be correctly handled (you can use wireguard for this)

for receiving mail - maybe just add another MX record with lower priority pointing to your outside PMG instance.

TauriRed said:
Could Proxmox's cluster inter-node VPN be used to actually deliver mail from new node to one of existing ones and from there to real mailserver?
Click to expand...
No the pmgtunnel VPN is quite custom-tailored towards syncing the configuration and statistics and quarantine mail - not a general purpose VPN.

TauriRed said:
(I don't to replicate all configuration and Proxmox's cluster setup means that Mail Proxy settings will be share by all nodes in cluster, right?)
Click to expand...
What do you not want to replicate?
and yes - the settings are clusterwide.

I hope this helps!
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back