Hello,
I have installed a POM and added a POM subscription and PVE subscriptions, which has been working well.
I'm also syncing several repositories, all setup via proxmox-offline-mirror setup -> works also perfectly fine.
This is my config:
Our Proxmox systems are not able to access the internet, but can access the POM VM via HTTP, that's why I have installed nginx and have setup a simple vhost:
Now my questions:
It would be great to get some feedback about my questions!
Best regards,
Flo
I have installed a POM and added a POM subscription and PVE subscriptions, which has been working well.
I'm also syncing several repositories, all setup via proxmox-offline-mirror setup -> works also perfectly fine.
This is my config:
Code:
cat /etc/proxmox-offline-mirror.cfg
subscription: pom-aaa
info aaa
server-id aaa
subscription: pve1s-aaa
info aaa
server-id aaa
...
mirror: debian_trixie_main
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/debian-archive-trixie-stable.pgp
repository deb https://debian.anexia.at/debian trixie main contrib non-free-firmware
skip-sections debug
skip-sections games
sync true
verify true
mirror: pve_trixie_enterprise
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/proxmox-release-trixie.gpg
repository deb https://enterprise.proxmox.com/debian/pve trixie pve-enterprise
sync true
use-subscription pve
verify true
mirror: debian_trixie_security
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/debian-archive-trixie-security-automatic.pgp
repository deb https://debian.anexia.at/debian-security trixie-security main contrib non-free-firmware
skip-sections debug
skip-sections games
sync true
verify true
mirror: debian_trixie_updates
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/debian-archive-trixie-automatic.pgp
repository deb https://debian.anexia.at/debian trixie-updates main contrib non-free-firmware
skip-sections debug
skip-sections games
sync true
verify true
medium: pve_trixie_enterprise_medium
mirrors "" <- doesn't work!
mountpoint /pom-mirror/test/
sync true
verify true
mirror: ceph_squid_trixie
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/proxmox-release-trixie.gpg
repository deb https://enterprise.proxmox.com/debian/ceph-squid trixie enterprise
sync true
use-subscription pve
verify true
mirror: pve_trixie_no-subscription
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/proxmox-release-trixie.gpg
repository deb http://download.proxmox.com/debian/pve trixie pve-no-subscription
sync true
verify true
mirror: ceph_squid_trixie_no_sub
architectures amd64
architectures all
base-dir /var/lib/proxmox-offline-mirror/mirrors/
ignore-errors false
key-path /usr/share/keyrings/proxmox-release-trixie.gpg
repository deb http://download.proxmox.com/debian/ceph-squid trixie no-subscription
sync true
verify trueOur Proxmox systems are not able to access the internet, but can access the POM VM via HTTP, that's why I have installed nginx and have setup a simple vhost:
Code:
cat /etc/nginx/sites-enabled/repo
server {
listen 80;
server_name default_server;
location / {
root /var/lib/proxmox-offline-mirror/mirrors ;
autoindex on;
allow all;
}
location = /favicon.ico {
log_not_found off;
access_log off;
}
}Now my questions:
- Do I need to create mediums for all the mirrors configured?
- At the moment, I use nginx directly on the mirrors and this is also working great
- Using mediums for this would in my opinion use double the space as I don't know, if there are also hard links used
- I want to do daily / weekly mirror updates and then create sym-links to those timestamp directories -> will this work without issues?
- At the moment, I'm already using a sym-link, which I use in my repo files on the nodes:
-
Code:
ll /var/lib/proxmox-offline-mirror/mirrors/debian_trixie_* /var/lib/proxmox-offline-mirror/mirrors/debian_trixie_main: total 6 drwxr-xr-x 6 root root 7 Nov 10 14:54 . drwxr-xr-x 10 root root 10 Nov 10 08:37 .. drwxr-xr-x 4 root root 4 Nov 7 12:34 2025-11-07T12:34:02Z drwxr-xr-x 4 root root 4 Nov 7 13:42 2025-11-07T13:42:36Z drwxr-xr-x 4 root root 4 Nov 7 15:23 2025-11-07T15:23:53Z drwxr-xr-x 4 root root 4 Nov 10 14:47 2025-11-10T14:47:17Z lrwxrwxrwx 1 root root 20 Nov 7 15:38 stable -> 2025-11-07T15:23:53Z /var/lib/proxmox-offline-mirror/mirrors/debian_trixie_security: total 5 drwxr-xr-x 5 root root 6 Nov 10 14:46 . drwxr-xr-x 10 root root 10 Nov 10 08:37 .. drwxr-xr-x 4 root root 4 Nov 7 13:29 2025-11-07T13:29:33Z drwxr-xr-x 4 root root 4 Nov 7 15:33 2025-11-07T15:33:06Z drwxr-xr-x 4 root root 4 Nov 10 14:46 2025-11-10T14:46:41Z lrwxrwxrwx 1 root root 21 Nov 7 15:39 stable -> 2025-11-07T15:33:06Z/ /var/lib/proxmox-offline-mirror/mirrors/debian_trixie_updates: total 5 drwxr-xr-x 5 root root 6 Nov 10 14:54 . drwxr-xr-x 10 root root 10 Nov 10 08:37 .. drwxr-xr-x 4 root root 4 Nov 7 13:29 2025-11-07T13:29:25Z drwxr-xr-x 4 root root 4 Nov 7 15:32 2025-11-07T15:32:56Z drwxr-xr-x 4 root root 4 Nov 10 14:54 2025-11-10T14:54:40Z lrwxrwxrwx 1 root root 20 Nov 7 15:39 stable -> 2025-11-07T15:32:56Z - stable in this content means, that this state was used on the test system successfully and can be used for production systems
- I would like to use 2 more sym-links:
- testing -> should be used on the test cluster
- current -> always links to the newest snapshot
- I hope with this setup, I can create a very stable production environment, where all nodes are on the same version
- will this be an appropriate solution?
- Lower mirror size:
- I have always excluded debug and games
- -> can I exclude other content, too? I use this POM only for Proxmox VE installations -> some hints would be nice...
- Subscription keys:
- I think to use POM for subscriptions, I have always to create a medium, isn't it?
- Also, I can't use this over HTTP, so I need to sync this medium somehow to my nodes?
- As the nodes would only need the subscription data, can I create a medium without mirror? -> I have read this in a thread, but I haven't been able to get it working!
- For my tests, I have used pve_trixie_enterprise here, but this also isn't small and I then used rsync to exclude the mirror and only snyc the ".mirror-state" file
It would be great to get some feedback about my questions!
Best regards,
Flo
